This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft File: 651790FFFC1688AFA384D136FC4792AD18879019.mft (raw, json) Hash identifier: ByaUU5xvV1qFdO5eRC6akIb1xR9lN2R9WgAcG1qBNNw= Subject key identifier: F4:8A:1F:47:FE:F5:94:0E:CB:C8:43:BA:95:FF:CB:0D:01:0F:0B:5D Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 73F5DEFDC82011BE4893AA13BA4234065F6F1076 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft Manifest number: 0531 Signing time: Thu 18 Dec 2025 06:53:44 +0000 Manifest this update: Thu 18 Dec 2025 06:48:44 +0000 Manifest next update: Sun 21 Dec 2025 12:43:44 +0000 Files and hashes: 1: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (hash: +2/fO8INW6MBjsIr2MpsMr5pDS/07SU3AZAKJ801ins=) 2: 323430323a353538303a3a2f33322d3438203d3e20313333383137.roa (hash: dttoTx4BQRFnMAvnuJnvYcnCQ5YOgtytig0qE7CIy64=) 3: 651790FFFC1688AFA384D136FC4792AD18879019.crl (hash: DFYnPnx5SbaWDbR/CLFZo4AS19LVc3jhgMrN1o8c3sY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 12:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:f5:de:fd:c8:20:11:be:48:93:aa:13:ba:42:34:06:5f:6f:10:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Dec 18 06:48:44 2025 GMT Not After : Dec 21 12:43:44 2025 GMT Subject: CN=F48A1F47FEF5940ECBC843BA95FFCB0D010F0B5D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:5b:c8:6a:ba:40:c6:e5:e7:13:b9:24:11: 72:a6:89:91:75:8a:81:71:9c:f1:d1:46:e8:ed:31: ab:6f:bd:f6:41:58:cd:0e:e5:25:a8:15:a8:47:c3: 0d:e3:4b:60:a7:ea:2c:c7:60:04:48:ee:5e:81:41: 91:84:50:ef:af:9a:9f:3a:84:76:80:5f:a1:26:ce: 0d:19:f7:4d:0f:2a:10:a8:ec:67:c8:9c:92:89:fb: e9:13:43:f8:0d:f8:5c:a7:96:67:8d:10:d5:42:7d: a7:b1:ba:aa:19:cf:87:c5:f0:e5:b8:7d:61:2c:71: 3b:7b:36:b6:04:77:ef:4a:2a:07:3d:0f:79:4e:26: 68:38:1e:fd:04:36:ae:8e:1b:15:a9:ae:2e:3a:3c: 15:e9:9d:87:cd:2a:1c:61:4d:bd:2f:fa:1c:41:80: 76:5f:9e:66:71:fc:cd:43:dd:d8:4c:15:78:8e:15: ea:98:45:b7:7d:5e:34:65:f1:d5:81:61:dc:6c:40: b7:c3:6b:21:8c:2f:10:4e:e5:09:71:2d:a8:38:a6: 7a:71:a0:67:4a:df:fc:f0:8a:50:68:81:aa:e1:11: be:d3:97:54:bb:d0:f3:d9:b0:81:5c:27:c6:f6:3d: bc:54:f1:8e:98:55:23:29:59:ac:e5:c5:e5:d2:d3: 8a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:8A:1F:47:FE:F5:94:0E:CB:C8:43:BA:95:FF:CB:0D:01:0F:0B:5D X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:ce:34:89:57:91:19:a6:67:42:6c:7e:a7:db:9a:27:c6:ea: 20:5b:53:5c:39:77:78:1c:d3:f5:e6:17:44:93:7c:8d:15:05: 6d:b3:9d:9c:61:1a:7e:36:be:fa:52:b6:ac:94:3d:db:63:d5: eb:d1:0b:b9:33:cf:57:40:72:84:17:b7:97:51:46:13:1f:8b: 12:26:62:89:e9:e6:3c:26:27:c7:a2:00:cb:5e:4e:9f:f8:a9: b6:6b:f7:bc:81:e3:a9:3c:6e:e3:da:80:ca:9a:3b:f2:d5:7b: 68:90:23:6d:c0:e2:89:7f:f8:d2:9a:9f:fc:1f:8f:2f:14:fb: 10:39:ae:40:a9:d3:4d:d4:2a:7f:0b:d1:78:74:50:ad:09:f6: f5:a6:ea:d4:ec:22:3f:2a:d0:99:7f:3a:c7:95:88:f8:8e:8d: ed:b5:9b:7c:fe:0b:69:65:e1:3e:95:48:7c:d9:61:8e:d6:b9: b1:d1:5d:82:56:b0:d8:13:31:e3:4b:b3:44:b8:09:ac:32:26: 23:64:7b:f3:cf:7c:bf:62:ec:8c:e9:7f:46:2a:f9:1a:6a:8a: 44:51:78:3f:e7:0b:7d:9f:c1:47:52:1e:f4:e7:d7:83:cc:e9: 0e:33:30:b7:c2:e8:cf:32:b8:03:d1:69:b7:2f:0a:0e:45:df: 33:b2:70:5f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUc/Xe/cggEb5Ik6oTukI0Bl9vEHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNTEyMTgwNjQ4NDRaFw0yNTEyMjExMjQzNDRaMDMxMTAvBgNV BAMTKEY0OEExRjQ3RkVGNTk0MEVDQkM4NDNCQTk1RkZDQjBEMDEwRjBCNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJS1vIarpAxuXnE7kkEXKmiZF1 ioFxnPHRRujtMatvvfZBWM0O5SWoFahHww3jS2Cn6izHYARI7l6BQZGEUO+vmp86 hHaAX6Emzg0Z900PKhCo7GfInJKJ++kTQ/gN+FynlmeNENVCfaexuqoZz4fF8OW4 fWEscTt7NrYEd+9KKgc9D3lOJmg4Hv0ENq6OGxWpri46PBXpnYfNKhxhTb0v+hxB gHZfnmZx/M1D3dhMFXiOFeqYRbd9XjRl8dWBYdxsQLfDayGMLxBO5QlxLag4pnpx oGdK3/zwilBogarhEb7Tl1S70PPZsIFcJ8b2PbxU8Y6YVSMpWazlxeXS04qnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9IofR/71lA7LyEO6lf/LDQEPC10wHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZmN2VmMzQtNDk5MS00YmIxLTk2 YjQtYmU0M2YxZWNhYmI0LzAvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0Nzky QUQxODg3OTAxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHnONIlXkRmmZ0JsfqfbmifG6iBbU1w5d3gc 0/XmF0STfI0VBW2znZxhGn42vvpStqyUPdtj1evRC7kzz1dAcoQXt5dRRhMfixIm Yonp5jwmJ8eiAMteTp/4qbZr97yB46k8buPagMqaO/LVe2iQI23A4ol/+NKan/wf jy8U+xA5rkCp003UKn8L0Xh0UK0J9vWm6tTsIj8q0Jl/OseViPiOje21m3z+C2ll 4T6VSHzZYY7WubHRXYJWsNgTMeNLs0S4CawyJiNke/PPfL9i7Izpf0Yq+RpqikRR eD/nC32fwUdSHvTn14PM6Q4zMLfC6M8yuAPRabcvCg5F3zOycF8= -----END CERTIFICATE-----Generated at Fri Dec 19 11:35:11 2025 by rpki-client