This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft File: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft (raw, json) Hash identifier: OfObdmHCNB/mXa1wqMH9YzT1wSDfWyaB4GbKvelYx0E= Subject key identifier: 93:90:DA:A5:18:C3:55:8C:C5:01:25:F6:2A:8F:DC:A3:74:B2:04:DD Authority key identifier: D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 Certificate issuer: /CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Certificate serial: 437C706E928C943F80B34A742793E69CB4A8C744 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft Manifest number: 022D Signing time: Thu 18 Dec 2025 00:32:01 +0000 Manifest this update: Thu 18 Dec 2025 00:27:01 +0000 Manifest next update: Sun 21 Dec 2025 10:32:01 +0000 Files and hashes: 1: 3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa (hash: BdsS4s7jPHig7lZYR1kjJB8vTutisx05tJ8qnuC/vHI=) 2: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl (hash: czQvLxsLuJTj1dxTfnCGm+iuE57r4drTL9fZ05q2zuo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 10:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7c:70:6e:92:8c:94:3f:80:b3:4a:74:27:93:e6:9c:b4:a8:c7:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Validity Not Before: Dec 18 00:27:01 2025 GMT Not After : Dec 21 10:32:01 2025 GMT Subject: CN=9390DAA518C3558CC50125F62A8FDCA374B204DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:20:34:67:14:9e:9f:68:85:fa:ce:64:24: 73:e4:bc:ac:3d:dc:f0:95:14:c3:c7:43:1d:dc:42: 25:f6:93:ad:07:a9:a0:a4:7e:7f:a3:d7:ea:7b:34: 8e:6d:1c:02:ff:cc:d9:33:15:c6:7e:56:df:22:36: 3d:f7:e0:77:cc:f7:e2:a9:18:77:f8:b6:49:10:01: 2a:9c:88:f0:73:2f:d0:db:55:74:71:a1:04:d7:9a: 15:99:6f:45:de:c5:a0:11:c7:d7:45:3a:fd:fa:0d: 1c:b6:d6:ac:fd:6b:5c:bc:83:28:c3:62:93:a7:66: 85:78:6b:56:d9:cd:a7:52:8b:36:ca:30:7d:ae:24: e3:b8:e7:fb:b1:05:51:0d:65:da:b3:58:81:4e:5b: 22:7e:e2:91:75:08:9f:32:bb:75:6b:39:d6:bf:f6: d2:f6:4a:13:9e:72:53:e6:42:52:1c:e2:04:8e:88: d4:b9:b1:86:23:80:12:d3:a3:05:c3:7f:8e:78:34: 5e:0d:a1:9d:4c:71:f6:85:7e:14:24:aa:49:db:be: e5:9a:02:a1:ee:4f:00:da:45:b0:ff:65:4e:5f:2c: a0:1f:0c:8d:20:2f:1f:c0:5a:44:5b:d4:b5:03:6a: 4f:de:c8:66:6c:81:87:2a:7a:66:00:f2:fa:3a:e5: 11:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:90:DA:A5:18:C3:55:8C:C5:01:25:F6:2A:8F:DC:A3:74:B2:04:DD X509v3 Authority Key Identifier: keyid:D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:46:a6:70:6f:ff:c3:c7:ba:4c:c8:4e:76:91:03:ff:99:3d: 6b:a7:b1:71:7d:39:fb:57:ba:41:63:c0:14:35:42:41:08:89: 82:cb:e3:d4:fd:85:84:22:33:55:b4:58:9e:05:16:0b:92:de: 61:0f:c4:5f:76:ac:f8:80:d9:95:93:a8:21:69:4f:49:ff:89: 8a:75:8e:86:0a:05:e6:d0:6e:87:ad:27:83:0a:17:c8:52:46: 73:73:3e:91:8a:f2:38:4f:84:37:e4:88:e1:13:3a:26:41:de: 5e:0d:ba:8d:4c:cd:a5:79:2a:38:c5:dc:db:08:44:3e:e8:0c: eb:1d:c7:2d:42:b7:be:93:c3:ce:20:88:94:cb:db:8d:6c:77: ef:04:54:7d:ca:33:07:01:d2:3d:c4:9d:e1:05:0b:2a:22:97: a5:d7:fa:87:be:19:05:18:f1:f2:34:ad:15:23:d0:f0:d6:eb: 17:c8:08:07:99:b2:55:f5:f9:d1:3d:22:4b:2f:dc:c2:e7:27: 60:ea:0e:14:80:ad:60:8c:08:54:eb:19:38:b4:33:04:19:83: e5:ce:57:69:55:32:24:31:8b:05:8f:41:34:4f:60:45:6c:47: d5:09:ed:dc:47:d4:75:d4:da:16:42:08:e7:69:d7:b3:9e:21: 65:33:e9:96 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ3xwbpKMlD+As0p0J5PmnLSox0QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlD OTAzRUFDMDAeFw0yNTEyMTgwMDI3MDFaFw0yNTEyMjExMDMyMDFaMDMxMTAvBgNV BAMTKDkzOTBEQUE1MThDMzU1OENDNTAxMjVGNjJBOEZEQ0EzNzRCMjA0REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+cCA0ZxSen2iF+s5kJHPkvKw9 3PCVFMPHQx3cQiX2k60HqaCkfn+j1+p7NI5tHAL/zNkzFcZ+Vt8iNj334HfM9+Kp GHf4tkkQASqciPBzL9DbVXRxoQTXmhWZb0XexaARx9dFOv36DRy21qz9a1y8gyjD YpOnZoV4a1bZzadSizbKMH2uJOO45/uxBVENZdqzWIFOWyJ+4pF1CJ8yu3VrOda/ 9tL2ShOeclPmQlIc4gSOiNS5sYYjgBLTowXDf454NF4NoZ1McfaFfhQkqknbvuWa AqHuTwDaRbD/ZU5fLKAfDI0gLx/AWkRb1LUDak/eyGZsgYcqemYA8vo65RFxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUk5DapRjDVYzFASX2Ko/co3SyBN0wHwYDVR0j BBgwFoAU0P9vCT0N6vtctCqTQz+iOckD6sAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2Y5ZjU2Mi03MjkyLTQ0ZjEtOGUyYy00NDBhMDUzMWMzOTYvMC9EMEZGNkYwOTNE MERFQUZCNUNCNDJBOTM0MzNGQTIzOUM5MDNFQUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlDOTAz RUFDMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdmOWY1NjItNzI5Mi00NGYxLThl MmMtNDQwYTA1MzFjMzk2LzAvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEy MzlDOTAzRUFDMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD1GpnBv/8PHukzITnaRA/+ZPWunsXF9OftX ukFjwBQ1QkEIiYLL49T9hYQiM1W0WJ4FFguS3mEPxF92rPiA2ZWTqCFpT0n/iYp1 joYKBebQboetJ4MKF8hSRnNzPpGK8jhPhDfkiOETOiZB3l4Nuo1MzaV5KjjF3NsI RD7oDOsdxy1Ct76Tw84giJTL241sd+8EVH3KMwcB0j3EneEFCyoil6XX+oe+GQUY 8fI0rRUj0PDW6xfICAeZslX1+dE9Iksv3MLnJ2DqDhSArWCMCFTrGTi0MwQZg+XO V2lVMiQxiwWPQTRPYEVsR9UJ7dxH1HXU2hZCCOdp17OeIWUz6ZY= -----END CERTIFICATE-----Generated at Fri Dec 19 10:53:43 2025 by rpki-client