This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: ulITJch6HSArVTGdpXcILwXe+iIFnhz8lEW58evihRY= Subject key identifier: 57:05:6B:09:CF:F0:AB:82:6C:ED:66:2F:78:4F:0D:0A:27:38:A9:06 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 78BBD5872B99BAC8938DA68ED3B98E2C04491269 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 02F1 Signing time: Thu 18 Dec 2025 23:01:19 +0000 Manifest this update: Thu 18 Dec 2025 22:56:19 +0000 Manifest next update: Mon 22 Dec 2025 03:18:19 +0000 Files and hashes: 1: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM=) 2: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: QO9yzDb4CC7G7ZrOt9x3m3LlZY080vHY8ADNw1G145c=) 3: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: Bt0zdzLagi1DEdBY560q1fykz/O1yO52St7eehfvpNs=) 4: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: QdIixnzSq8N8sCH+dxKebIKtXdrr8qVttS8Xci0wB7M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:18:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:bb:d5:87:2b:99:ba:c8:93:8d:a6:8e:d3:b9:8e:2c:04:49:12:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Dec 18 22:56:19 2025 GMT Not After : Dec 22 03:18:19 2025 GMT Subject: CN=57056B09CFF0AB826CED662F784F0D0A2738A906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8c:65:90:a6:dc:8a:12:4a:5f:4f:1c:63:f4: de:d0:62:55:70:54:93:8d:c7:4d:b5:c1:4c:78:03: 48:76:47:c9:dc:c4:3a:82:be:b9:e3:2c:ca:f9:38: 76:21:7d:c1:8a:4b:97:94:95:af:08:74:bf:72:0e: 45:8e:c3:dc:6d:00:c9:29:57:93:d8:9a:7e:64:80: 1e:ed:9c:0f:fc:92:49:72:82:00:c7:16:35:24:6e: fd:04:68:c4:18:f3:80:aa:75:62:13:43:50:95:98: 95:85:50:cd:b2:c1:8a:fe:9c:3f:c3:f3:dc:38:71: d7:e2:2f:9f:4b:05:88:dc:4d:a3:08:62:8d:50:59: 5d:14:d8:cd:67:9f:b1:d0:f4:39:ca:c8:94:b1:bb: 00:11:6e:e3:8c:2c:95:a9:79:8a:0e:ca:ed:6d:73: 4c:8f:70:75:a3:70:73:b4:40:df:ea:cc:0c:8a:6f: d4:58:78:b4:e2:9c:da:ab:fe:a0:a5:4a:5a:0f:fa: 4d:cd:39:19:00:e0:08:e0:a9:19:84:d6:21:50:b4: 12:71:eb:78:7b:ed:69:7f:eb:a7:7a:b6:27:82:cc: c7:59:9a:6b:35:49:af:d3:f1:06:ba:3d:4f:48:e0: f3:d4:ca:c4:47:22:12:8c:77:63:a2:b2:3c:ff:ef: 43:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:05:6B:09:CF:F0:AB:82:6C:ED:66:2F:78:4F:0D:0A:27:38:A9:06 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:ea:30:6c:ce:8a:44:76:e0:49:8c:38:c2:ed:19:b5:6f:ba: c6:11:da:7d:9a:f3:11:9d:94:00:23:8f:03:dc:cf:51:f9:63: 63:80:02:58:c5:34:cb:4a:5a:1b:0d:29:fc:b3:3c:26:06:97: e1:e1:41:d2:d6:61:ed:33:9a:1c:92:9a:95:0a:bc:b1:85:2e: e6:2a:32:8b:11:88:cd:81:01:08:46:5e:5c:6e:b5:26:67:d9: 49:39:bf:20:86:4e:ad:8d:8b:d7:1e:cd:5d:53:7f:81:52:a7: 87:90:66:e8:89:94:30:ed:3b:4d:e8:32:16:fd:00:9d:22:f4: b7:7f:78:03:85:80:53:85:ba:14:f1:6b:a1:b1:aa:72:94:6a: 08:5a:fa:9f:8e:90:c1:ec:0a:68:a4:21:ec:06:1a:d7:94:d3: e6:98:04:35:5a:84:a8:56:a0:98:c9:0c:a4:68:7f:57:e6:04: 6b:d1:9b:91:d3:96:5a:bf:20:dc:fc:e9:d3:7e:00:f9:9f:c5: d4:02:52:37:37:cb:cb:ea:3b:16:56:96:d7:d6:8f:3e:2f:9c: 8b:03:16:ce:7d:dc:30:ad:62:b6:84:91:34:38:13:7a:c4:c6: e9:4c:48:47:94:73:45:51:b9:21:92:16:d6:14:87:a4:54:3c: 44:81:df:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeLvVhyuZusiTjaaO07mOLARJEmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTEyMTgyMjU2MTlaFw0yNTEyMjIwMzE4MTlaMDMxMTAvBgNV BAMTKDU3MDU2QjA5Q0ZGMEFCODI2Q0VENjYyRjc4NEYwRDBBMjczOEE5MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqjGWQptyKEkpfTxxj9N7QYlVw VJONx021wUx4A0h2R8ncxDqCvrnjLMr5OHYhfcGKS5eUla8IdL9yDkWOw9xtAMkp V5PYmn5kgB7tnA/8kklyggDHFjUkbv0EaMQY84CqdWITQ1CVmJWFUM2ywYr+nD/D 89w4cdfiL59LBYjcTaMIYo1QWV0U2M1nn7HQ9DnKyJSxuwARbuOMLJWpeYoOyu1t c0yPcHWjcHO0QN/qzAyKb9RYeLTinNqr/qClSloP+k3NORkA4AjgqRmE1iFQtBJx 63h77Wl/66d6tieCzMdZmms1Sa/T8Qa6PU9I4PPUysRHIhKMd2Oisjz/70OdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVwVrCc/wq4Js7WYveE8NCic4qQYwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEbqMGzOikR24EmMOMLtGbVvusYR2n2a8xGd lAAjjwPcz1H5Y2OAAljFNMtKWhsNKfyzPCYGl+HhQdLWYe0zmhySmpUKvLGFLuYq MosRiM2BAQhGXlxutSZn2Uk5vyCGTq2Ni9cezV1Tf4FSp4eQZuiJlDDtO03oMhb9 AJ0i9Ld/eAOFgFOFuhTxa6GxqnKUagha+p+OkMHsCmikIewGGteU0+aYBDVahKhW oJjJDKRof1fmBGvRm5HTllq/INz86dN+APmfxdQCUjc3y8vqOxZWltfWjz4vnIsD Fs593DCtYraEkTQ4E3rExulMSEeUc0VRuSGSFtYUh6RUPESB3/0= -----END CERTIFICATE-----Generated at Fri Dec 19 03:06:40 2025 by rpki-client