This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: 4flDiqVtq5VpSjAx+d+oAYq+FzpcqCoIhZyulTXuG7c= Subject key identifier: 1C:FB:BC:32:A6:5D:20:45:BF:40:5C:BD:6D:1E:86:38:98:C4:F6:64 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 1D3D7E82DD4F06459A6C94FF742EEA27FBD47D6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 053E Signing time: Tue 16 Dec 2025 17:02:09 +0000 Manifest this update: Tue 16 Dec 2025 16:57:09 +0000 Manifest next update: Sat 20 Dec 2025 04:01:09 +0000 Files and hashes: 1: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: EqiLa0rjSIUHUPNujsojQ8rlgZoq2EBgnbfECPlMfWU=) 2: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) 3: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 4: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 5: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 04:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:3d:7e:82:dd:4f:06:45:9a:6c:94:ff:74:2e:ea:27:fb:d4:7d:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Dec 16 16:57:09 2025 GMT Not After : Dec 20 04:01:09 2025 GMT Subject: CN=1CFBBC32A65D2045BF405CBD6D1E863898C4F664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:02:1a:b4:27:7b:16:9b:3f:d8:67:62:6a: 97:0c:21:bc:0c:78:70:2a:7f:7e:51:15:da:2e:92: 06:8e:3d:c5:bf:bb:8e:a6:2d:d9:bb:46:6e:4c:68: c5:a3:2b:fe:05:2d:e9:2d:3d:18:9c:19:73:ae:fe: d9:59:70:ae:0f:ba:5c:c0:f3:8a:3a:35:0c:57:5a: 3e:2e:49:60:fb:9f:5a:5a:c0:b3:23:ca:6c:f6:21: c6:a2:9d:4c:fe:b4:c8:b9:91:9a:1f:b1:5e:59:8a: 6f:16:ea:43:2f:da:45:b8:ac:38:a7:48:72:d4:76: 6d:e0:84:ca:9e:81:ec:32:62:ff:bc:e3:42:02:9d: 11:60:31:cb:1f:a1:4f:48:4c:75:d2:0f:25:78:9b: 7d:08:c6:b2:57:c6:11:32:65:82:9d:2c:ba:cd:23: d8:7d:17:e4:07:b9:02:70:05:b2:40:b0:47:4b:5f: 96:36:7c:85:99:6a:40:cc:21:27:ca:f1:85:08:bf: 7a:1b:ca:03:bd:6f:d6:02:b2:10:88:63:c8:f1:8e: 2b:b7:b1:29:f4:5e:f6:84:71:44:70:87:0a:8b:15: b6:47:c4:c1:f3:de:17:55:83:8c:3f:b2:d2:06:09: 6f:c8:3c:bf:f8:5c:70:67:11:ed:54:1d:bb:7a:5a: c2:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FB:BC:32:A6:5D:20:45:BF:40:5C:BD:6D:1E:86:38:98:C4:F6:64 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:6c:2e:7e:08:f8:6b:57:35:2b:8c:a8:71:71:76:84:fb:88: 03:ab:44:cb:68:a6:ec:cf:b4:7f:b9:f0:7d:49:3b:d9:6f:04: 69:66:09:41:df:a0:a7:cc:b7:ed:4e:a1:c2:fe:f5:53:21:15: 59:09:82:3d:a5:96:c9:95:10:9d:fd:b3:a4:99:80:b1:7e:55: fe:24:f5:29:c9:06:61:85:d1:82:58:48:0b:d2:e0:3b:5b:ee: 80:09:79:2d:e0:73:9b:3a:4b:f4:1e:a2:5f:10:dd:e3:db:07: c2:c8:b1:02:4c:5a:2b:c2:28:26:23:db:f7:06:e9:94:89:3d: 5e:df:64:c8:28:49:6d:1f:e5:25:5e:4d:35:76:60:5a:17:4d: fc:dd:69:7e:51:29:af:4c:b1:07:c7:65:e7:47:08:cf:07:4d: f8:28:c8:1d:ce:9f:38:b9:7a:f0:bf:61:e8:2a:be:2b:62:cc: 80:dc:fa:8d:66:9d:47:0f:e9:4a:1e:c0:0d:45:cc:84:99:c7: 59:86:63:fc:ab:89:01:e1:a7:db:b1:55:ca:c9:c4:a3:4d:3a: cb:5b:74:36:d0:d0:d3:5e:b7:b7:2d:26:ff:0c:69:1b:d6:9e: aa:4a:f6:29:b7:af:ca:e9:8b:84:c3:1a:4b:5b:a5:6e:dc:fc: ca:43:5c:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHT1+gt1PBkWabJT/dC7qJ/vUfW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTEyMTYxNjU3MDlaFw0yNTEyMjAwNDAxMDlaMDMxMTAvBgNV BAMTKDFDRkJCQzMyQTY1RDIwNDVCRjQwNUNCRDZEMUU4NjM4OThDNEY2NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA1wIatCd7Fps/2GdiapcMIbwM eHAqf35RFdoukgaOPcW/u46mLdm7Rm5MaMWjK/4FLektPRicGXOu/tlZcK4PulzA 84o6NQxXWj4uSWD7n1pawLMjymz2IcainUz+tMi5kZofsV5Zim8W6kMv2kW4rDin SHLUdm3ghMqegewyYv+840ICnRFgMcsfoU9ITHXSDyV4m30IxrJXxhEyZYKdLLrN I9h9F+QHuQJwBbJAsEdLX5Y2fIWZakDMISfK8YUIv3obygO9b9YCshCIY8jxjiu3 sSn0XvaEcURwhwqLFbZHxMHz3hdVg4w/stIGCW/IPL/4XHBnEe1UHbt6WsIxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHPu8MqZdIEW/QFy9bR6GOJjE9mQwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFxsLn4I+GtXNSuMqHFxdoT7iAOrRMtopuzP tH+58H1JO9lvBGlmCUHfoKfMt+1OocL+9VMhFVkJgj2llsmVEJ39s6SZgLF+Vf4k 9SnJBmGF0YJYSAvS4Dtb7oAJeS3gc5s6S/Qeol8Q3ePbB8LIsQJMWivCKCYj2/cG 6ZSJPV7fZMgoSW0f5SVeTTV2YFoXTfzdaX5RKa9MsQfHZedHCM8HTfgoyB3Onzi5 evC/YegqvitizIDc+o1mnUcP6UoewA1FzISZx1mGY/yriQHhp9uxVcrJxKNNOstb dDbQ0NNet7ctJv8MaRvWnqpK9im3r8rpi4TDGktbpW7c/MpDXBY= -----END CERTIFICATE-----Generated at Fri Dec 19 11:33:10 2025 by rpki-client