This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft File: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft (raw, json) Hash identifier: UysuPiu+yoMOPTHrvNdCux0/PeSZ+h/lcWZ73dkVUF0= Subject key identifier: DB:89:DE:ED:24:30:6A:65:D7:37:FB:DC:06:9A:A9:B9:F5:A6:18:5D Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 44CB6BFC831FC2CAE41C71DE4404A3D796587F32 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft Manifest number: 0193 Signing time: Wed 17 Dec 2025 23:51:04 +0000 Manifest this update: Wed 17 Dec 2025 23:46:04 +0000 Manifest next update: Sun 21 Dec 2025 05:46:04 +0000 Files and hashes: 1: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl (hash: JV+TDPhF4CW5aw22sQZuUIzaJ4r2d9lbtP6UIyrGQ7M=) 2: 3130332e3232372e3138362e302f32342d3234203d3e20313432333730.roa (hash: Ew2OSWEohUTuvmIQMM4jLPYBjKqzXCpLNwLiyPu5TfM=) 3: 3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa (hash: vmw9bcS7HYiEIqjVICRaVcatSeJQ8ZNuTTgtgTfawew=) 4: 3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa (hash: D5hukbaY+N3AjWmkuBGFFTwqc+CzamYmFL0amMEyMMM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 05:46:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:cb:6b:fc:83:1f:c2:ca:e4:1c:71:de:44:04:a3:d7:96:58:7f:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: Dec 17 23:46:04 2025 GMT Not After : Dec 21 05:46:04 2025 GMT Subject: CN=DB89DEED24306A65D737FBDC069AA9B9F5A6185D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e2:57:57:0d:89:3f:39:19:91:f4:68:4f:37: fe:94:d4:0d:39:29:96:b3:12:00:b0:87:f7:92:da: 40:96:75:52:8b:f2:1d:7b:da:2b:53:e8:52:23:a4: 34:7a:af:b4:1a:4b:fd:f9:df:7a:ff:d3:76:5e:1f: ea:6c:99:1d:17:d4:fd:60:35:94:5e:fd:ff:82:36: 4d:1d:6d:21:4b:21:bd:84:27:20:53:38:05:e3:68: f7:55:3d:37:a1:3e:3c:06:b5:d9:ec:04:12:45:04: 97:c1:7d:97:bf:23:3b:82:d7:77:78:fc:74:a0:86: b8:6d:7b:41:d9:4a:87:32:17:5b:b4:7b:f9:0f:57: bf:ec:a3:a8:12:d4:f1:23:d1:34:db:fb:7c:b8:77: 00:98:fe:ad:b8:79:ea:9f:bc:3b:b1:0f:bd:9f:ce: 10:cc:f4:51:8c:fb:06:af:68:3c:3c:10:17:ab:3c: 67:23:93:38:2a:cd:de:83:73:10:6e:06:d4:f7:d5: 95:9f:a8:02:87:5a:26:02:58:11:af:ce:5e:4b:1f: 2b:a8:e5:a0:09:8f:30:27:16:91:7d:85:35:0c:61: c5:05:77:99:2b:d4:af:56:81:47:d8:ff:b1:38:e1: 8d:03:2e:55:4f:54:83:fe:98:e4:0a:57:3e:ce:b8: f3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:89:DE:ED:24:30:6A:65:D7:37:FB:DC:06:9A:A9:B9:F5:A6:18:5D X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:e8:bb:4b:d2:c5:7f:43:61:b6:1a:b3:c8:37:0c:9b:3e:10: 86:be:1e:5e:81:71:b4:85:92:6a:34:62:b4:e7:04:1a:d9:c3: a3:e7:69:09:42:33:32:87:1d:56:66:be:02:51:8f:b7:6f:2b: 6a:f1:a1:61:8d:69:a5:74:bc:2a:38:e1:8c:84:c8:eb:40:cd: 8f:77:ba:c8:5e:24:40:21:e7:a3:9f:e4:e9:e0:10:db:0b:ba: a7:31:35:d5:a7:af:ff:b8:59:ad:db:16:04:43:55:69:cb:7c: 65:dc:2f:b1:36:5e:60:bf:d0:89:4f:1e:47:31:97:5d:d1:b4: 3e:30:f5:9e:d4:6d:01:f8:13:98:f0:4c:ef:4c:54:84:8e:6f: 42:af:3d:f0:51:76:c5:87:00:42:29:ba:da:1c:ea:ca:4e:16: 23:cb:03:37:50:13:2a:23:82:de:e6:32:1f:03:9d:0e:e5:cc: 60:66:1a:68:d1:ad:55:b1:69:c7:d2:ec:e0:0e:df:e9:36:51: 23:c0:b2:2d:6b:99:2c:89:ec:99:94:67:cd:88:e4:4c:aa:4f: 96:08:fd:37:64:aa:44:dd:77:c9:1b:d9:d4:8e:4b:0e:6d:92: 5a:29:65:2e:97:ab:1d:bb:9e:61:bb:aa:01:9d:60:65:fd:70: 75:78:ff:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURMtr/IMfwsrkHHHeRASj15ZYfzIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNTEyMTcyMzQ2MDRaFw0yNTEyMjEwNTQ2MDRaMDMxMTAvBgNV BAMTKERCODlERUVEMjQzMDZBNjVENzM3RkJEQzA2OUFBOUI5RjVBNjE4NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM4ldXDYk/ORmR9GhPN/6U1A05 KZazEgCwh/eS2kCWdVKL8h172itT6FIjpDR6r7QaS/3533r/03ZeH+psmR0X1P1g NZRe/f+CNk0dbSFLIb2EJyBTOAXjaPdVPTehPjwGtdnsBBJFBJfBfZe/IzuC13d4 /HSghrhte0HZSocyF1u0e/kPV7/so6gS1PEj0TTb+3y4dwCY/q24eeqfvDuxD72f zhDM9FGM+wavaDw8EBerPGcjkzgqzd6DcxBuBtT31ZWfqAKHWiYCWBGvzl5LHyuo 5aAJjzAnFpF9hTUMYcUFd5kr1K9WgUfY/7E44Y0DLlVPVIP+mOQKVz7OuPNfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU24ne7SQwamXXN/vcBpqpufWmGF0wHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGIzODhmNmUtOTk3NC00NDU3LWFm NGItNWM5YzgyZjUwZTk3LzAvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFE NEM1MDg1MkE2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAM7ou0vSxX9DYbYas8g3DJs+EIa+Hl6BcbSF kmo0YrTnBBrZw6PnaQlCMzKHHVZmvgJRj7dvK2rxoWGNaaV0vCo44YyEyOtAzY93 usheJEAh56Of5OngENsLuqcxNdWnr/+4Wa3bFgRDVWnLfGXcL7E2XmC/0IlPHkcx l13RtD4w9Z7UbQH4E5jwTO9MVISOb0KvPfBRdsWHAEIputoc6spOFiPLAzdQEyoj gt7mMh8DnQ7lzGBmGmjRrVWxacfS7OAO3+k2USPAsi1rmSyJ7JmUZ82I5EyqT5YI /TdkqkTdd8kb2dSOSw5tklopZS6Xqx27nmG7qgGdYGX9cHV4//0= -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:59 2025 by rpki-client