This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft File: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft (raw, json) Hash identifier: pUHWesMdCPP9q0SJjCezmKHMepkuls2Wjbr78pR3LAw= Subject key identifier: C8:31:0B:BA:25:CD:38:45:3E:E2:71:A4:9C:DE:15:53:D9:34:8B:4B Authority key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Certificate issuer: /CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Certificate serial: 43D2EE57EE374DCE2B12EFE98FA5B9D33500025E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft Manifest number: 0213 Signing time: Thu 18 Dec 2025 23:00:58 +0000 Manifest this update: Thu 18 Dec 2025 22:55:58 +0000 Manifest next update: Mon 22 Dec 2025 04:46:58 +0000 Files and hashes: 1: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl (hash: bSNIrjECJwwxaqlsP02xp7qLlkliguyBi9wM0I3p6cw=) 2: 3130332e36352e39362e302f32332d3234203d3e203536323539.roa (hash: GJQ3NUFsB2nVnSk1uRZagjtzrc7ng31cjwY1HHOp2FQ=) 3: 3130332e32382e3136332e302f32342d3234203d3e203536323539.roa (hash: NAFqFIaSAImXyE9eWh33YjJ4/n4BJqvDNhOBlZ2+l28=) 4: 3130332e31302e3235332e302f32342d3234203d3e203536323539.roa (hash: HvzvMBj5qU+NExWSjTWqrdpmvH/WBtBrlcSKkhbhERc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d2:ee:57:ee:37:4d:ce:2b:12:ef:e9:8f:a5:b9:d3:35:00:02:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Validity Not Before: Dec 18 22:55:58 2025 GMT Not After : Dec 22 04:46:58 2025 GMT Subject: CN=C8310BBA25CD38453EE271A49CDE1553D9348B4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:50:e4:a9:9c:b2:49:4e:52:e3:74:28:aa:a0: 1d:16:de:13:68:08:e2:9f:e7:6e:59:42:af:1c:ad: b2:aa:18:78:ef:5c:69:e6:13:5f:af:3b:df:46:75: 36:57:ba:06:55:64:a7:83:42:3c:14:14:7f:83:d6: 9a:25:02:d2:62:20:bc:73:4a:5a:36:45:72:ef:03: 57:98:75:27:94:cd:72:ba:5e:bf:4c:56:33:d8:e9: 8b:eb:3b:1d:ca:8b:d0:41:70:72:9a:c5:8a:f0:16: c6:d1:9e:29:04:a0:0e:48:08:c0:28:ca:57:1a:fa: 18:fb:0a:41:cb:72:b7:da:d5:4b:5e:00:5f:24:67: 3e:3f:49:f8:9e:aa:2e:4b:0e:49:95:6f:db:78:16: 58:a9:5b:dd:66:5b:05:7c:92:c8:47:1e:54:e3:1a: 55:88:a3:9e:af:89:82:a1:48:8a:38:5a:9d:0c:ce: 80:9a:c3:a5:08:fd:46:e3:b5:5c:59:ed:74:2a:7c: 47:1d:38:34:09:d0:9d:94:77:38:f1:56:a8:bf:3e: 9f:5c:e5:d3:97:22:c0:4d:2c:c6:72:1b:6e:3e:a0: 5c:9d:a5:70:d0:47:d7:07:d7:09:a7:a4:55:14:b3: 4a:99:46:c5:59:cb:8b:83:a0:e2:d9:18:84:5a:2a: 6a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:31:0B:BA:25:CD:38:45:3E:E2:71:A4:9C:DE:15:53:D9:34:8B:4B X509v3 Authority Key Identifier: keyid:3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:37:40:6d:f1:ed:c3:f4:64:e1:56:3b:c9:e3:a7:52:f6:35: 3a:29:d8:fb:fb:f1:40:59:20:81:72:aa:fa:e5:92:55:0b:a1: c7:af:05:8c:41:d5:d2:c9:1b:56:62:75:57:92:36:f0:8c:36: 05:b3:bf:0b:24:ac:e2:ce:b1:a9:09:99:94:b4:b8:c1:2f:f1: 86:5d:29:10:9c:1e:87:5d:7a:5d:d7:02:15:f3:a2:dc:88:7c: 4b:2a:a9:d1:4f:9d:b9:f5:bf:f0:d1:5c:1b:68:bf:da:29:20: 7d:e6:07:b7:5f:9e:06:1e:d2:81:c0:d6:ae:0f:d6:52:11:45: d5:d7:3b:53:2e:e7:e5:e6:8a:66:90:99:7f:85:8f:1e:f6:47: 8f:e2:38:d0:8d:17:a7:68:f1:5c:f9:a0:a0:38:dc:44:d0:8e: db:ec:db:19:1f:1c:d5:5c:2e:6f:62:82:a9:61:d8:eb:b7:96: 38:5f:bc:5f:91:2a:49:cc:be:00:5f:d3:19:ac:da:b4:9f:06: ff:6c:7f:16:50:3b:33:0f:92:5b:d2:11:c3:0e:a1:5a:f5:eb: d5:23:b7:10:eb:ab:55:17:6c:e4:37:6d:48:3a:a2:dd:45:d6: a9:ee:c3:bd:4e:60:1b:8a:68:c7:ae:fc:a7:40:91:c0:ff:55: ba:da:2e:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ9LuV+43Tc4rEu/pj6W50zUAAl4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4 NUMzNUU0RjAeFw0yNTEyMTgyMjU1NThaFw0yNTEyMjIwNDQ2NThaMDMxMTAvBgNV BAMTKEM4MzEwQkJBMjVDRDM4NDUzRUUyNzFBNDlDREUxNTUzRDkzNDhCNEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvUOSpnLJJTlLjdCiqoB0W3hNo COKf525ZQq8crbKqGHjvXGnmE1+vO99GdTZXugZVZKeDQjwUFH+D1polAtJiILxz Slo2RXLvA1eYdSeUzXK6Xr9MVjPY6YvrOx3Ki9BBcHKaxYrwFsbRnikEoA5ICMAo ylca+hj7CkHLcrfa1UteAF8kZz4/Sfieqi5LDkmVb9t4FlipW91mWwV8kshHHlTj GlWIo56viYKhSIo4Wp0MzoCaw6UI/UbjtVxZ7XQqfEcdODQJ0J2UdzjxVqi/Pp9c 5dOXIsBNLMZyG24+oFydpXDQR9cH1wmnpFUUs0qZRsVZy4uDoOLZGIRaKmqfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyDELuiXNOEU+4nGknN4VU9k0i0swHwYDVR0j BBgwFoAUPXifr19+vmk4xMcj3NLu14XDXk8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMC8zRDc4OUZBRjVG N0VCRTY5MzhDNEM3MjNEQ0QyRUVENzg1QzM1RTRGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVFRDc4NUMz NUU0Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGQ5NzAwMzItMDhlYS00ODkwLWJk YmEtNjMwOWE0OTc5MTdkLzAvM0Q3ODlGQUY1RjdFQkU2OTM4QzRDNzIzRENEMkVF RDc4NUMzNUU0Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABw3QG3x7cP0ZOFWO8njp1L2NTop2Pv78UBZ IIFyqvrlklULocevBYxB1dLJG1ZidVeSNvCMNgWzvwskrOLOsakJmZS0uMEv8YZd KRCcHoddel3XAhXzotyIfEsqqdFPnbn1v/DRXBtov9opIH3mB7dfngYe0oHA1q4P 1lIRRdXXO1Mu5+XmimaQmX+Fjx72R4/iONCNF6do8Vz5oKA43ETQjtvs2xkfHNVc Lm9igqlh2Ou3ljhfvF+RKknMvgBf0xms2rSfBv9sfxZQOzMPklvSEcMOoVr169Uj txDrq1UXbOQ3bUg6ot1F1qnuw71OYBuKaMeu/KdAkcD/VbraLoU= -----END CERTIFICATE-----Generated at Fri Dec 19 11:19:42 2025 by rpki-client