This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft (raw, json) Hash identifier: Is+L/JZH7YllodPInQAU4VXRY6bn6UD0qPW3Vp5h9jw= Subject key identifier: 12:53:8B:E3:A3:12:55:BE:45:7F:45:0D:AD:E0:BF:CC:B1:59:7A:9A Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 2316649438A9BBBD30ED92AA4C9E1F4F3FD62130 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft Manifest number: 052F Signing time: Thu 18 Dec 2025 10:01:02 +0000 Manifest this update: Thu 18 Dec 2025 09:56:02 +0000 Manifest next update: Sun 21 Dec 2025 12:40:02 +0000 Files and hashes: 1: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: vyo5RypkFQEnVHU24LrFw7oPwATfGzPKn/kBk5If2Fc=) 2: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: dHAXVvHNWN3lX3SmokQ/UCj86xJ8/z2lq2nv43vYPc0=) 3: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: YHgchxUowX4afg18dRitbsm1i2Jr1bcDLdOROkNe9ds=) 4: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: LSvRzZKZqA3NwdEC9iho4W4LPDyE6x1z3v9TKwhHRg0=) 5: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 0DSPPC3eIjICQ1QgbLgmjGB64GhEc/FiJxgxZMMi2rw=) 6: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: i8E531bAACF/do6q7C690HP7ycKInzio0QMeynldjVQ=) 7: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: wHpTffZ2nuWlAhlZXWgWT5vAarjhnzHKQ1BNdqdBZLA=) 8: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl (hash: R5dVvueiVQ0Lc8i+w3UNMOcgncJzqOOaFoAdbzJrsKE=) 9: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: jGoXC4NtMGtzcx+R9/Q81p54SI3SY8CoW+n8Kb2SzRU=) 10: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: tAs35Xh9PvYdZJSIW4FLCQe0rvv+Ua53CMSGfgCNFT4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 12:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:16:64:94:38:a9:bb:bd:30:ed:92:aa:4c:9e:1f:4f:3f:d6:21:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Dec 18 09:56:02 2025 GMT Not After : Dec 21 12:40:02 2025 GMT Subject: CN=12538BE3A31255BE457F450DADE0BFCCB1597A9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:fd:f9:33:73:48:16:61:93:63:29:11:d9:08: 58:28:22:7b:70:a6:37:08:df:63:1f:4a:0f:a0:37: 91:02:85:1d:92:2d:d8:68:ce:0f:93:fb:0d:19:66: 76:33:76:2f:36:c3:91:53:7a:e1:f6:25:b7:7a:8b: f9:be:64:3d:64:31:39:67:80:2e:69:58:0a:a1:a9: 2d:4b:9f:f9:1d:42:fd:3b:32:08:40:3c:46:8c:c4: eb:d7:ea:f3:23:8e:de:58:90:0e:21:e7:2e:aa:6a: 5f:4c:38:a4:4b:45:78:9f:f4:cb:47:e0:ef:bb:16: 51:65:28:3a:a3:6c:ee:a9:1a:dc:7b:ff:35:b2:1d: dd:0f:48:af:ad:da:83:23:95:15:c9:d0:9e:aa:a1: ce:40:77:18:16:c9:3c:70:51:52:46:a8:16:ef:1f: e1:50:23:e9:89:1d:c4:96:87:8e:33:e6:be:c6:06: b4:8d:74:12:d6:54:83:e6:93:00:d9:c5:fd:18:99: d5:b1:de:02:e5:15:95:33:a1:3d:66:89:d8:46:a8: 47:ba:06:d0:a2:3c:cb:04:3a:14:dc:02:b0:74:57: b9:c6:78:e5:84:4b:6d:8d:ce:58:f5:82:98:b0:57: 20:6a:a3:d5:b0:ed:b0:11:ce:ec:77:1b:ec:70:e2: 80:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:53:8B:E3:A3:12:55:BE:45:7F:45:0D:AD:E0:BF:CC:B1:59:7A:9A X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:01:83:a7:e7:c2:d7:f5:d2:80:c8:7b:1f:a8:12:ee:ff:2e: 6c:4a:75:6b:b1:05:b4:8d:9c:24:2d:6f:da:c3:d1:d8:b0:ad: eb:45:c0:bb:7c:b2:db:cb:4c:6a:2c:87:e7:31:a4:ee:68:80: 98:24:2f:ad:ab:79:ae:14:fc:fc:63:5f:50:0c:d7:a7:69:68: a6:80:33:51:99:22:fc:6e:03:de:cf:96:02:25:4f:5e:43:f5: 00:ab:f4:32:0f:be:bf:6d:47:96:1b:80:ed:e8:ac:b6:43:77: 98:25:e6:08:3b:33:09:32:8f:5e:46:f4:a0:94:00:91:0e:c1: 4d:6d:2e:0f:e8:98:29:4a:d5:86:96:92:ec:5e:58:f0:4a:15: bf:d4:b6:86:26:55:dd:62:ba:c3:42:ed:6a:a9:9b:e1:5a:77: 94:cb:d7:91:62:ad:1d:f2:95:65:b1:12:b0:9c:65:14:d2:cf: f0:48:3e:45:d5:40:3b:14:92:be:f3:da:98:c6:0f:21:aa:09: 75:3d:e5:86:eb:27:9b:e1:1f:1d:65:85:41:5b:56:cf:35:55: 15:b0:28:30:1a:11:a2:5e:5e:44:bd:1b:06:04:9f:36:03:52: e8:fe:ec:fb:27:dd:ba:26:df:36:dc:40:c6:24:d7:e7:6a:56: 1c:17:ef:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIxZklDipu70w7ZKqTJ4fTz/WITAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNTEyMTgwOTU2MDJaFw0yNTEyMjExMjQwMDJaMDMxMTAvBgNV BAMTKDEyNTM4QkUzQTMxMjU1QkU0NTdGNDUwREFERTBCRkNDQjE1OTdBOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+/fkzc0gWYZNjKRHZCFgoIntw pjcI32MfSg+gN5EChR2SLdhozg+T+w0ZZnYzdi82w5FTeuH2Jbd6i/m+ZD1kMTln gC5pWAqhqS1Ln/kdQv07MghAPEaMxOvX6vMjjt5YkA4h5y6qal9MOKRLRXif9MtH 4O+7FlFlKDqjbO6pGtx7/zWyHd0PSK+t2oMjlRXJ0J6qoc5AdxgWyTxwUVJGqBbv H+FQI+mJHcSWh44z5r7GBrSNdBLWVIPmkwDZxf0YmdWx3gLlFZUzoT1midhGqEe6 BtCiPMsEOhTcArB0V7nGeOWES22Nzlj1gpiwVyBqo9Ww7bARzux3G+xw4oD7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUElOL46MSVb5Ff0UNreC/zLFZepowHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMy MzQyN0MxOTFBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFIBg6fnwtf10oDIex+oEu7/LmxKdWuxBbSN nCQtb9rD0diwretFwLt8stvLTGosh+cxpO5ogJgkL62rea4U/PxjX1AM16dpaKaA M1GZIvxuA97PlgIlT15D9QCr9DIPvr9tR5YbgO3orLZDd5gl5gg7Mwkyj15G9KCU AJEOwU1tLg/omClK1YaWkuxeWPBKFb/UtoYmVd1iusNC7Wqpm+Fad5TL15FirR3y lWWxErCcZRTSz/BIPkXVQDsUkr7z2pjGDyGqCXU95YbrJ5vhHx1lhUFbVs81VRWw KDAaEaJeXkS9GwYEnzYDUuj+7Psn3bom3zbcQMYk1+dqVhwX7+M= -----END CERTIFICATE-----Generated at Fri Dec 19 11:33:11 2025 by rpki-client