This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft File: 0FA41B65D1881666013C9683E40575E68E5DC0A5.mft (raw, json) Hash identifier: zi/FYs2rAR9NY1UhVWK85f/FCSc/Bk0U4Svkm/6j3kw= Subject key identifier: 1C:83:EA:C1:32:AA:76:43:98:A3:1B:0F:B6:F4:BB:17:97:21:F2:34 Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 5DC806369FB0AD69284B1580D95C2BCC8F8F44B7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft Manifest number: 0543 Signing time: Thu 18 Dec 2025 00:01:08 +0000 Manifest this update: Wed 17 Dec 2025 23:56:08 +0000 Manifest next update: Sun 21 Dec 2025 08:32:08 +0000 Files and hashes: 1: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (hash: ArGX3GK83LFApxV4uLSs4kfPXNu12xplyTp4FBzO9Nw=) 2: 3130332e3231362e3138382e302f32342d3234203d3e20313431313037.roa (hash: 1h7fo52sVm4cJACJ1QTb5QR43dKEDAqoDnfictr7I+U=) 3: 0FA41B65D1881666013C9683E40575E68E5DC0A5.crl (hash: FQm7y93ZflKimrenHIy0QvW4JiEZCuIOKzL0yUdRM1Q=) 4: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (hash: tHhLDdHHbsCkG+UHT3p88TUY2+W5e4f+3agioxt0A6g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 08:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c8:06:36:9f:b0:ad:69:28:4b:15:80:d9:5c:2b:cc:8f:8f:44:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Dec 17 23:56:08 2025 GMT Not After : Dec 21 08:32:08 2025 GMT Subject: CN=1C83EAC132AA764398A31B0FB6F4BB179721F234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7e:86:03:e3:08:a5:80:d3:93:4b:9c:d6:ca: 90:e3:be:80:8b:a5:1e:88:8e:a3:ce:5a:a8:5a:c7: 64:8d:ba:36:ca:7f:0d:ec:62:5b:9c:07:82:4d:93: 23:c0:0c:22:a3:bf:0b:d8:7e:76:98:01:a7:49:05: 33:a5:f7:66:4e:70:48:27:5d:af:d3:ac:22:9c:e0: 01:5a:1a:bc:45:61:97:0c:0d:de:a7:c0:b7:bb:7a: 06:19:cf:15:e7:80:45:e7:e0:a8:8c:57:7f:31:79: f6:7b:8e:76:1d:1b:c2:d8:2d:1e:d7:9e:c5:43:0f: 8a:63:0e:34:6c:9a:b4:fc:7f:5f:49:1c:9e:93:f2: cd:97:74:48:b6:26:f6:0c:87:5b:22:09:b5:48:98: 81:75:ca:2f:46:7c:be:f0:d5:34:09:56:56:f8:c1: 85:f2:09:f9:ae:c8:f4:ec:e7:e7:e7:14:8c:7f:a7: 13:e1:6d:57:01:a1:84:f8:18:fb:a4:62:1c:95:16: db:28:27:7d:9f:11:5c:e6:7b:cb:fc:a9:d0:c6:8b: e6:8a:fa:75:a7:d9:87:21:c0:ed:9f:89:f5:c3:54: 50:b0:d6:d1:23:df:fa:1d:84:17:ee:20:d2:d2:1a: 42:79:d4:7f:ec:52:2e:84:04:3e:aa:ab:93:e0:cb: 77:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:83:EA:C1:32:AA:76:43:98:A3:1B:0F:B6:F4:BB:17:97:21:F2:34 X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:00:fd:d3:27:68:aa:eb:6d:29:f4:9a:ba:d0:d3:f3:97:ef: c8:6a:db:1e:64:65:7f:04:1a:cd:d8:0b:44:20:7e:0b:0f:a6: 67:2a:1a:01:ae:a8:8f:51:90:22:a9:14:b7:42:58:81:ea:5d: c7:89:d5:f1:6e:5f:e9:ff:7e:95:86:ea:ea:e4:70:a5:42:2e: bd:e4:c2:01:e8:3a:e2:3f:73:9b:a2:fb:e3:c1:c9:1c:1a:c8: da:23:17:26:22:4c:fb:43:82:b4:e3:5a:64:5d:e8:bd:fa:06: e1:78:e9:70:3b:0b:fd:2a:ab:ea:8d:bf:a9:43:e9:90:6b:98: 0c:7a:33:dc:f7:91:83:3d:90:84:db:7e:79:8d:ef:2c:eb:99: 12:e9:a7:1b:21:f0:46:59:a1:4c:4e:c4:8e:fa:a3:db:8f:1f: db:90:1c:fe:f6:90:f5:05:3a:3e:59:9a:55:b8:42:d5:de:8f: a6:f1:0c:78:6b:cf:41:35:01:3a:a2:1c:23:25:c8:4e:93:5f: 00:66:c4:82:bd:0a:49:26:bb:1e:9e:62:b2:06:5e:6a:5b:47: 0f:31:5e:8d:8f:72:0c:bc:3f:f2:fc:6f:ea:a2:c9:81:6a:61: c8:b9:89:c0:17:82:ef:53:cd:17:c4:e5:23:fb:e9:7f:88:e9: 65:d8:1c:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXcgGNp+wrWkoSxWA2VwrzI+PRLcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNTEyMTcyMzU2MDhaFw0yNTEyMjEwODMyMDhaMDMxMTAvBgNV BAMTKDFDODNFQUMxMzJBQTc2NDM5OEEzMUIwRkI2RjRCQjE3OTcyMUYyMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpfoYD4wilgNOTS5zWypDjvoCL pR6IjqPOWqhax2SNujbKfw3sYlucB4JNkyPADCKjvwvYfnaYAadJBTOl92ZOcEgn Xa/TrCKc4AFaGrxFYZcMDd6nwLe7egYZzxXngEXn4KiMV38xefZ7jnYdG8LYLR7X nsVDD4pjDjRsmrT8f19JHJ6T8s2XdEi2JvYMh1siCbVImIF1yi9GfL7w1TQJVlb4 wYXyCfmuyPTs5+fnFIx/pxPhbVcBoYT4GPukYhyVFtsoJ32fEVzme8v8qdDGi+aK +nWn2YchwO2fifXDVFCw1tEj3/odhBfuINLSGkJ51H/sUi6EBD6qq5Pgy3fvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHIPqwTKqdkOYoxsPtvS7F5ch8jQwHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzk5NGQzNzUtZmM3ZC00ZGM3LWEx ZjEtZTBiM2E1OWZkZjc4LzAvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1 RTY4RTVEQzBBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADQA/dMnaKrrbSn0mrrQ0/OX78hq2x5kZX8E Gs3YC0QgfgsPpmcqGgGuqI9RkCKpFLdCWIHqXceJ1fFuX+n/fpWG6urkcKVCLr3k wgHoOuI/c5ui++PByRwayNojFyYiTPtDgrTjWmRd6L36BuF46XA7C/0qq+qNv6lD 6ZBrmAx6M9z3kYM9kITbfnmN7yzrmRLppxsh8EZZoUxOxI76o9uPH9uQHP72kPUF Oj5ZmlW4QtXej6bxDHhrz0E1ATqiHCMlyE6TXwBmxIK9Ckkmux6eYrIGXmpbRw8x Xo2Pcgy8P/L8b+qiyYFqYci5icAXgu9TzRfE5SP76X+I6WXYHKU= -----END CERTIFICATE-----Generated at Sun Dec 21 00:54:47 2025 by rpki-client