This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: Ii+5O1x/tYI6H7w7/sG+4r6jKVnyFGCE65pe9HC8x70= Subject key identifier: 96:5B:FD:70:BB:7C:9E:9A:E7:67:F2:51:61:01:A0:43:91:E5:98:14 Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 0E83DF94E3D9B7786F79A3ED12E65A4C76DCC57C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 026C Signing time: Tue 23 Dec 2025 02:41:16 +0000 Manifest this update: Tue 23 Dec 2025 02:36:16 +0000 Manifest next update: Fri 26 Dec 2025 03:04:16 +0000 Files and hashes: 1: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: etYodgnJYh3trd5HBJwHsn5n2vL2wMwaYJQCzGIxOug=) 2: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: Yr/JZDXs1lDqee3M2fqcbU4SUTQ+jUKu3XWoRXorKsg=) 3: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: LJlBxq8ymyHGerS3R49fpjBElb4mwDz4wakEqWAnKM4=) 4: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: 0gXOJT38WPRdvZH/mvcMIDFy0eFxFO3CspBZZzjXpXE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:83:df:94:e3:d9:b7:78:6f:79:a3:ed:12:e6:5a:4c:76:dc:c5:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Dec 23 02:36:16 2025 GMT Not After : Dec 26 03:04:16 2025 GMT Subject: CN=965BFD70BB7C9E9AE767F2516101A04391E59814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:12:9b:87:cd:20:e8:b2:cd:70:8c:e3:11:4d: d6:dd:7f:97:45:8a:2e:65:38:3e:e1:67:43:ac:36: e0:6e:5c:15:a9:6e:21:40:6a:fe:56:42:f0:88:55: 41:76:c0:ee:93:96:3b:63:3b:f3:a7:ca:54:a9:0e: 91:45:f6:1c:2a:a8:76:b1:d2:de:a7:21:f7:04:a0: af:db:c1:b9:10:d1:e4:33:92:c9:8d:30:a7:a3:03: 5c:19:53:ad:52:b1:51:e6:4e:41:13:d9:4b:8c:49: 7d:37:e1:08:83:70:e3:29:13:62:e1:52:93:b4:5e: 7c:aa:01:37:28:e9:17:07:d2:14:70:b6:0d:5d:75: d4:de:ba:a2:83:75:f5:11:7f:74:4f:df:04:a7:e0: 23:cb:5a:c7:0a:79:ef:ce:6d:89:1d:61:90:19:40: d2:60:69:98:ff:ac:4d:81:6e:9d:17:9c:79:32:e8: 97:4e:c2:51:b5:c2:59:70:4e:c7:45:cf:55:de:52: 65:13:4b:96:49:f9:2e:92:6c:fb:cd:90:67:f0:6a: ec:13:2d:db:b9:d8:ce:54:d5:e2:da:e1:50:70:63: f8:75:d7:b0:9e:bc:56:a1:e8:98:fd:80:43:75:f7: fe:51:43:b7:78:43:e4:c0:6a:7d:0e:96:d9:76:d3: 5e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5B:FD:70:BB:7C:9E:9A:E7:67:F2:51:61:01:A0:43:91:E5:98:14 X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:cb:c2:db:cf:c6:58:80:fe:7d:c0:0f:57:14:8f:1f:81:1e: 8a:e4:d5:5c:79:43:51:c6:b0:7d:95:97:dc:c0:1a:99:d1:eb: 8b:29:f9:e6:96:06:56:ba:99:d1:4a:9e:20:56:61:8f:8f:44: b0:1b:fd:39:be:97:8c:51:6e:45:70:88:c1:8c:df:b1:7b:0f: d1:0f:5e:5a:48:e2:4a:ac:34:85:1c:a6:bf:62:7b:00:40:c7: 09:f3:00:34:e0:2f:f0:22:60:6f:00:44:f5:fa:4d:40:57:2c: 7a:e3:3f:2d:de:33:f8:1e:cf:d4:9c:3b:d4:ee:3b:9f:3d:00: 2d:ff:cd:a5:29:5b:bd:95:00:06:d0:88:8a:35:1c:df:31:48: 3e:5f:07:0a:fd:8d:c6:a7:43:c2:94:ab:0b:a1:cd:46:d2:26: 0e:f9:e7:57:a6:2f:50:57:cb:a5:94:62:0a:6a:92:f8:ba:b3: 88:c6:2c:bc:91:38:f2:f3:52:97:7f:63:7e:8a:ea:54:ce:2b: c5:53:d9:76:c2:74:96:69:8b:93:61:74:14:5b:6e:f8:e6:ea: 9f:cf:bb:a0:26:7c:1c:b1:d6:53:3a:bc:4b:9b:44:60:bd:b3: 5a:a2:b2:88:c5:37:6a:5b:da:48:55:59:bb:b7:1d:99:7e:b4: 8a:12:f0:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDoPflOPZt3hveaPtEuZaTHbcxXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTEyMjMwMjM2MTZaFw0yNTEyMjYwMzA0MTZaMDMxMTAvBgNV BAMTKDk2NUJGRDcwQkI3QzlFOUFFNzY3RjI1MTYxMDFBMDQzOTFFNTk4MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5EpuHzSDoss1wjOMRTdbdf5dF ii5lOD7hZ0OsNuBuXBWpbiFAav5WQvCIVUF2wO6TljtjO/OnylSpDpFF9hwqqHax 0t6nIfcEoK/bwbkQ0eQzksmNMKejA1wZU61SsVHmTkET2UuMSX034QiDcOMpE2Lh UpO0XnyqATco6RcH0hRwtg1dddTeuqKDdfURf3RP3wSn4CPLWscKee/ObYkdYZAZ QNJgaZj/rE2Bbp0XnHky6JdOwlG1wllwTsdFz1XeUmUTS5ZJ+S6SbPvNkGfwauwT Ldu52M5U1eLa4VBwY/h117CevFah6Jj9gEN19/5RQ7d4Q+TAan0Oltl2016xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUllv9cLt8nprnZ/JRYQGgQ5HlmBQwHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACbLwtvPxliA/n3AD1cUjx+BHork1Vx5Q1HG sH2Vl9zAGpnR64sp+eaWBla6mdFKniBWYY+PRLAb/Tm+l4xRbkVwiMGM37F7D9EP XlpI4kqsNIUcpr9iewBAxwnzADTgL/AiYG8ARPX6TUBXLHrjPy3eM/gez9ScO9Tu O589AC3/zaUpW72VAAbQiIo1HN8xSD5fBwr9jcanQ8KUqwuhzUbSJg7551emL1BX y6WUYgpqkvi6s4jGLLyROPLzUpd/Y36K6lTOK8VT2XbCdJZpi5NhdBRbbvjm6p/P u6AmfByx1lM6vEubRGC9s1qisojFN2pb2khVWbu3HZl+tIoS8EM= -----END CERTIFICATE-----Generated at Wed Dec 24 22:10:00 2025 by rpki-client