This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json) Hash identifier: lnk4yW6uEgTvqcdnQ2mPyaOKios8a31jiAkeh3nAxdM= Subject key identifier: 63:02:3B:83:EF:F6:ED:15:9D:91:E8:3E:F7:76:3B:7D:4D:3E:B8:D4 Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 70AAA4BB91F5CEFBFB1D8DBA980DD6B10A96F3B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft Manifest number: 0188 Signing time: Wed 17 Dec 2025 18:00:48 +0000 Manifest this update: Wed 17 Dec 2025 17:55:48 +0000 Manifest next update: Sat 20 Dec 2025 18:17:48 +0000 Files and hashes: 1: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: fYXBcPuA2EPQLRXbxH64TKjoe/3yeOJo1+0tcpsIALc=) 2: 3130332e32392e31302e302f32332d3234203d3e20313530323530.roa (hash: WJMrEDY6+yYCu4Iz5tUshsi6eLGdRGAnm2hsfXk5iwc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 18:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:aa:a4:bb:91:f5:ce:fb:fb:1d:8d:ba:98:0d:d6:b1:0a:96:f3:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Dec 17 17:55:48 2025 GMT Not After : Dec 20 18:17:48 2025 GMT Subject: CN=63023B83EFF6ED159D91E83EF7763B7D4D3EB8D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:47:e3:11:7f:f9:98:8c:40:1f:37:9e:c8:b9: 09:98:d3:6b:d9:89:ae:f2:4d:89:2f:c5:3e:7b:bb: c8:b1:37:e1:0d:3d:0a:4c:8e:da:02:9c:68:1a:16: 88:f1:a3:3e:be:80:62:fa:dc:fc:d4:ab:7d:23:b6: 7e:8a:ce:30:5f:77:0c:f0:e9:41:9b:c3:af:15:5e: e3:de:d4:59:65:b1:80:0d:e0:d9:24:f7:7a:9d:84: 6c:c1:21:e4:1a:37:d3:3a:40:08:fc:29:59:b0:b9: 5b:e0:43:07:4e:ff:4d:6b:98:52:f8:d6:04:ab:81: eb:8d:26:9f:e1:a8:af:b9:10:89:1a:cb:5f:ab:73: e6:27:60:49:f5:90:6d:99:2b:bf:4a:49:61:98:2e: 21:e4:b4:83:67:52:8d:98:59:0a:a9:0e:55:3b:d6: 33:21:8c:dd:e2:22:d8:c1:04:82:04:fa:5b:f2:42: 0f:10:74:5b:92:a5:c5:b8:53:88:7b:67:2b:75:a8: 53:41:c5:04:af:0f:52:5e:a8:09:24:9e:d0:91:3e: f1:1c:88:e8:80:fd:64:f8:94:4d:66:31:07:b0:64: 18:14:77:69:2f:f2:26:47:00:14:a0:80:22:6d:d1: 3e:ab:09:49:d1:82:d0:8b:40:e8:d2:28:a0:16:10: 1f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:02:3B:83:EF:F6:ED:15:9D:91:E8:3E:F7:76:3B:7D:4D:3E:B8:D4 X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:92:4a:52:4d:76:89:f1:00:7b:bf:68:9a:7e:ff:9a:d4:f3: be:82:9a:6f:1b:fc:0a:2b:a5:a9:50:73:03:b8:cd:54:82:4f: cd:7e:8d:dd:42:f5:8f:35:12:80:e5:5f:bf:59:85:f0:b2:7b: e0:76:fe:1a:09:ab:de:07:10:57:10:e2:a7:6f:a4:aa:48:bc: ca:85:d0:d5:30:2e:dc:01:8c:a7:04:92:a1:5f:37:57:a4:49: c3:35:45:11:2d:97:d6:ec:37:6a:06:55:7b:d3:29:5a:91:ae: ff:b8:cf:1c:14:00:7b:fd:16:22:6d:0b:97:b8:72:85:e2:b7: a8:75:2b:1b:4a:9e:ae:40:2a:91:45:92:7b:85:ec:d3:20:09: da:bf:c2:7f:ae:34:ed:a3:93:3e:93:d6:85:eb:3f:68:ce:dd: 8c:e3:b2:3a:c9:49:27:d2:e1:a9:0c:75:b3:59:7e:02:ef:8d: 18:c6:4a:98:72:5e:84:09:25:db:2e:18:82:ca:c9:6c:b7:46: f4:d0:df:22:73:42:53:f0:6c:9e:b8:68:38:a4:4f:20:0a:9e: b3:fa:99:62:83:f6:a7:75:51:99:4c:7d:1b:db:7a:95:5b:fd: cd:41:02:dc:22:30:83:f0:ef:6e:65:c8:80:49:76:5e:1b:6a: 41:1b:a1:7c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcKqku5H1zvv7HY26mA3WsQqW87cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNTEyMTcxNzU1NDhaFw0yNTEyMjAxODE3NDhaMDMxMTAvBgNV BAMTKDYzMDIzQjgzRUZGNkVEMTU5RDkxRTgzRUY3NzYzQjdENEQzRUI4RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8R+MRf/mYjEAfN57IuQmY02vZ ia7yTYkvxT57u8ixN+ENPQpMjtoCnGgaFojxoz6+gGL63PzUq30jtn6KzjBfdwzw 6UGbw68VXuPe1FllsYAN4Nkk93qdhGzBIeQaN9M6QAj8KVmwuVvgQwdO/01rmFL4 1gSrgeuNJp/hqK+5EIkay1+rc+YnYEn1kG2ZK79KSWGYLiHktINnUo2YWQqpDlU7 1jMhjN3iItjBBIIE+lvyQg8QdFuSpcW4U4h7Zyt1qFNBxQSvD1JeqAkkntCRPvEc iOiA/WT4lE1mMQewZBgUd2kv8iZHABSggCJt0T6rCUnRgtCLQOjSKKAWEB9DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYwI7g+/27RWdkeg+93Y7fU0+uNQwHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE1MzJjNjUtODBiZS00ZmRlLTg3 ZDAtMzZjNWJkMjg4Y2Q4LzAvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2 OUI2NTM2N0VCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACiSSlJNdonxAHu/aJp+/5rU876Cmm8b/Aor palQcwO4zVSCT81+jd1C9Y81EoDlX79ZhfCye+B2/hoJq94HEFcQ4qdvpKpIvMqF 0NUwLtwBjKcEkqFfN1ekScM1RREtl9bsN2oGVXvTKVqRrv+4zxwUAHv9FiJtC5e4 coXit6h1KxtKnq5AKpFFknuF7NMgCdq/wn+uNO2jkz6T1oXrP2jO3YzjsjrJSSfS 4akMdbNZfgLvjRjGSphyXoQJJdsuGILKyWy3RvTQ3yJzQlPwbJ64aDikTyAKnrP6 mWKD9qd1UZlMfRvbepVb/c1BAtwiMIPw725lyIBJdl4bakEboXw= -----END CERTIFICATE-----Generated at Fri Dec 19 11:19:01 2025 by rpki-client