This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft File: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft (raw, json) Hash identifier: 68IrIx60TK08yl1mul7nEt9OX3+EYShT8RWjiKA34Ik= Subject key identifier: D2:D1:11:77:27:0F:59:2A:A2:03:CA:27:AF:35:33:FC:2F:C9:F5:8E Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 133C734ADCE3BDC1048E4FDC8B759795C4C502DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft Manifest number: 02E8 Signing time: Wed 17 Dec 2025 00:11:00 +0000 Manifest this update: Wed 17 Dec 2025 00:06:00 +0000 Manifest next update: Sat 20 Dec 2025 08:43:00 +0000 Files and hashes: 1: 3130332e362e3230362e302f32342d3234203d3e203538353033.roa (hash: uAtBSIDdapxegHcixT/adxYVRwIH8zS1jvQsYGI4FKs=) 2: 3130332e362e3230362e302f32332d3233203d3e203538353033.roa (hash: T5UFtTORiPkpyQMb1pkITrlGjn812lML7gJ4GIu0cac=) 3: 3130332e362e3230352e302f32342d3234203d3e203538353033.roa (hash: +R3i1yikLZX3N7J8PecP2cVBYYEEV31MZ2NuNFEDBz0=) 4: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl (hash: yJEH00Tl5WUP0vvZQ7YVMd4BAffVWngG3dtdzDKoBrA=) 5: 3130332e362e3230342e302f32322d3232203d3e203538353033.roa (hash: eKQ/v97Slfm6pdQvkBAo8Onj1CnRgWhKWbT8e4WqBcc=) 6: 3130332e362e3230372e302f32342d3234203d3e203538353033.roa (hash: vyhZOBYCU2sLXrzusVlJ/gl2TYFXG6e7dBbtLFYwhDU=) 7: 3130332e362e3230342e302f32332d3233203d3e203538353033.roa (hash: jlDnq/pTWKcqQPtJ6VRZIg3zm8PHprvuxU+BKt4Gk08=) 8: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (hash: r9QPk/LpoJs29sx2oR7f3Ru6EP7Ni5LmyXyyS4T2T/Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 08:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:3c:73:4a:dc:e3:bd:c1:04:8e:4f:dc:8b:75:97:95:c4:c5:02:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Dec 17 00:06:00 2025 GMT Not After : Dec 20 08:43:00 2025 GMT Subject: CN=D2D11177270F592AA203CA27AF3533FC2FC9F58E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ef:48:ea:60:42:4f:c3:f4:90:6d:36:33:7f: 16:5b:1a:5c:1a:c1:3d:ed:4f:b0:d9:66:c6:c6:d5: f6:90:bb:cd:8f:f5:f8:41:1e:58:5e:09:6d:d3:6e: 10:22:03:85:2c:c2:26:af:81:3a:17:d9:38:41:37: 90:17:41:f7:90:e2:ba:13:a9:38:71:b6:ca:cc:03: c8:d1:cd:2f:1b:4e:a3:90:e3:55:2f:ee:9b:fd:39: bf:f5:26:60:3f:41:0b:ca:17:4b:20:43:51:24:4d: 2b:38:2c:ef:16:7e:47:cd:a5:db:ac:21:85:22:70: 86:68:41:42:fa:a7:a6:74:7d:de:e9:2a:cd:e2:ee: 5b:b3:09:6f:48:5a:be:83:26:a7:fb:7c:cf:d1:fa: c3:a9:3b:4b:6f:82:70:b6:45:c4:7e:2e:72:e8:ba: b3:ca:40:56:e7:ab:58:f6:e9:09:fa:c8:bb:bf:d2: d0:bb:2b:82:83:2c:92:03:5d:be:36:e9:71:f5:f6: 8f:51:dc:fe:33:7e:e1:a6:85:9c:4e:0a:b8:7f:7b: 0c:32:57:87:c0:9e:8b:04:00:46:a8:54:16:cb:33: 44:eb:29:db:d1:60:82:57:11:46:66:6f:48:73:1b: e0:3f:6d:fe:c1:24:f3:13:2b:b5:05:4b:8d:bc:e1: 2e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:D1:11:77:27:0F:59:2A:A2:03:CA:27:AF:35:33:FC:2F:C9:F5:8E X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:20:33:0d:b6:69:68:28:fa:ea:42:eb:a1:9a:d3:d8:cf:a9: 3b:76:b3:84:19:58:c3:54:bc:0f:85:1f:00:2f:22:7f:65:23: d8:d2:6c:8d:03:13:ae:99:e9:99:2b:ec:59:5b:22:86:2b:2e: 22:fe:26:c8:5c:f4:da:fe:0d:0f:04:b3:99:29:45:af:18:8f: d6:eb:3f:4a:a8:56:16:f9:17:7f:f4:11:86:9e:98:90:56:ea: 1c:ff:cf:c8:4f:52:1d:64:40:62:dc:ed:ca:81:10:a2:6b:2c: 24:f0:e6:98:95:c5:a7:69:25:1e:76:25:74:52:f7:c6:3b:56: a4:28:8e:d5:a7:b5:4a:42:d0:7f:e3:32:6a:3b:1b:6e:e1:42: c9:0b:9c:42:11:90:23:6c:5f:00:a6:92:c2:00:89:0d:ff:42: b4:24:00:1e:ef:36:19:84:c2:31:2e:ff:8c:28:81:f5:9a:f4: 32:a1:21:89:3f:fa:1d:63:20:76:07:40:ea:f1:a4:c6:c6:52: 0c:7c:25:78:34:17:6b:a0:6c:01:33:1a:b4:69:cf:d5:56:43: ce:5b:f7:d3:33:50:27:93:fd:10:f0:71:c5:89:dd:18:1b:0c: e1:13:6d:7d:e8:d2:36:ee:4f:74:9b:9c:52:b5:10:81:ae:f8: 62:7e:ae:20 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEzxzStzjvcEEjk/ci3WXlcTFAtswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNTEyMTcwMDA2MDBaFw0yNTEyMjAwODQzMDBaMDMxMTAvBgNV BAMTKEQyRDExMTc3MjcwRjU5MkFBMjAzQ0EyN0FGMzUzM0ZDMkZDOUY1OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCf70jqYEJPw/SQbTYzfxZbGlwa wT3tT7DZZsbG1faQu82P9fhBHlheCW3TbhAiA4UswiavgToX2ThBN5AXQfeQ4roT qThxtsrMA8jRzS8bTqOQ41Uv7pv9Ob/1JmA/QQvKF0sgQ1EkTSs4LO8WfkfNpdus IYUicIZoQUL6p6Z0fd7pKs3i7luzCW9IWr6DJqf7fM/R+sOpO0tvgnC2RcR+LnLo urPKQFbnq1j26Qn6yLu/0tC7K4KDLJIDXb426XH19o9R3P4zfuGmhZxOCrh/ewwy V4fAnosEAEaoVBbLM0TrKdvRYIJXEUZmb0hzG+A/bf7BJPMTK7UFS4284S5hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0tERdycPWSqiA8onrzUz/C/J9Y4wHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTgyZjJiMzgtYWRkZi00YmQzLTky NDktZTViYTU2Y2QwNTJlLzAvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3 N0IyMzRDQTQ0Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADggMw22aWgo+upC66Ga09jPqTt2s4QZWMNU vA+FHwAvIn9lI9jSbI0DE66Z6Zkr7FlbIoYrLiL+Jshc9Nr+DQ8Es5kpRa8Yj9br P0qoVhb5F3/0EYaemJBW6hz/z8hPUh1kQGLc7cqBEKJrLCTw5piVxadpJR52JXRS 98Y7VqQojtWntUpC0H/jMmo7G27hQskLnEIRkCNsXwCmksIAiQ3/QrQkAB7vNhmE wjEu/4wogfWa9DKhIYk/+h1jIHYHQOrxpMbGUgx8JXg0F2ugbAEzGrRpz9VWQ85b 99MzUCeT/RDwccWJ3RgbDOETbX3o0jbuT3SbnFK1EIGu+GJ+riA= -----END CERTIFICATE-----Generated at Fri Dec 19 11:16:52 2025 by rpki-client