This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft File: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft (raw, json) Hash identifier: Rao5vt1H/lDLH8ClPFOWCVG1N7h9iLdpCMB9stCnwks= Subject key identifier: D7:85:20:9E:1C:22:E4:5A:ED:36:A8:D7:AF:E7:57:C2:14:FC:53:14 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 7F5D1D906B7569D55BD816BEB4F320B68C021DF0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft Manifest number: 01CA Signing time: Tue 16 Dec 2025 17:51:32 +0000 Manifest this update: Tue 16 Dec 2025 17:46:32 +0000 Manifest next update: Sat 20 Dec 2025 01:30:32 +0000 Files and hashes: 1: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (hash: C3HGpl1ThenH4EorAZEJtVKi4KUYV7opK2C6bqklYfw=) 2: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl (hash: hjpu4jB6RUliSRDuvV+Yi5o4aE7A+X7Crmx3vBfsGL4=) 3: 3130332e39362e35322e302f32342d3234203d3e20323135373237.roa (hash: 0krbsaRXLF7hhh/0+kJdsVsdN97iwgE+irNWTCAqAI8=) 4: 3130332e39362e35332e302f32342d3234203d3e20323135373237.roa (hash: I1eMGkofitxFBUkKIJAAEKHOmSas6t5BDo8K12fS+ps=) 5: 3130332e39362e35322e302f32332d3233203d3e20323135373237.roa (hash: 1aKuOLZIAFfW1+Cqdr1xm8xWMdWqMvn5lk2N7M8OzCk=) 6: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (hash: gP7psFKFA2RfBnHhdOuG7ZGFzw3Cq/MLVUDPQT38lCM=) 7: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (hash: 2ugfUbs5cJ20pMlsi1Lpn48hHyXGtkrzKxCtrqkovSE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 01:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:5d:1d:90:6b:75:69:d5:5b:d8:16:be:b4:f3:20:b6:8c:02:1d:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Dec 16 17:46:32 2025 GMT Not After : Dec 20 01:30:32 2025 GMT Subject: CN=D785209E1C22E45AED36A8D7AFE757C214FC5314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:91:99:cf:0e:51:50:d8:7f:6d:ff:7b:b1:ef: 03:8d:52:4a:97:f1:15:ae:6a:85:7b:ca:19:ee:77: 33:2a:ab:1c:b5:8c:dd:9f:5d:23:60:6d:8a:9e:6e: a7:b0:ce:4e:8f:b7:22:38:c4:0b:68:46:7b:b3:51: 75:56:2f:06:40:c0:94:45:d0:08:cf:e3:e3:d2:11: ed:4c:09:b1:92:82:92:63:0d:ef:b1:fd:a1:28:5f: a2:b2:3d:9f:a9:17:81:76:70:a7:96:a7:3c:61:49: bc:c9:35:1d:1f:da:0d:7b:98:e6:b8:06:47:81:41: c7:af:95:58:39:97:90:99:5f:6b:6c:72:49:27:0e: ed:27:a9:72:92:8f:48:ba:0f:a7:64:1d:24:a5:57: e7:b7:c7:07:9f:b0:b1:44:fa:e0:44:c8:fb:49:6a: ee:13:be:89:2b:4a:10:a2:f2:53:78:6c:8f:cd:5a: ca:33:d3:cb:07:ca:72:9c:68:20:b1:f5:63:c5:50: 05:a3:48:17:25:2e:1e:dc:47:97:38:96:1d:f0:f8: fa:17:63:a9:35:fd:81:d5:66:49:b9:89:6b:33:5b: 12:1a:72:6d:d0:21:e2:81:4e:3d:d2:d4:11:62:2d: a5:d6:5f:a6:7b:c8:4f:e9:89:1d:ba:5e:cc:27:f0: c2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:85:20:9E:1C:22:E4:5A:ED:36:A8:D7:AF:E7:57:C2:14:FC:53:14 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:ec:56:18:21:9a:ab:fe:b0:b4:c8:73:2f:cc:30:52:cf:39: ea:6f:15:d6:c7:63:7f:03:ee:e7:73:df:de:8c:a7:0a:0c:4b: 5d:f5:2d:d2:d0:3b:99:33:fd:3d:a4:39:7e:82:e2:af:5b:ae: b5:bb:bd:06:46:d2:5d:64:98:c1:29:da:2a:c0:42:e8:ae:4a: 28:df:80:e0:45:7a:04:56:b3:17:88:7a:63:8a:a0:9b:c3:d7: 6b:aa:8d:39:ed:24:e1:dd:df:5a:fd:14:3d:56:e0:d2:ab:bd: ed:d7:d6:9a:85:14:4a:9c:e0:49:14:18:34:a4:36:ea:d2:a6: 86:42:f8:20:2a:2b:98:d4:2c:77:49:88:6d:8d:1e:4a:8f:c3: 65:49:1b:46:25:37:72:9b:06:97:15:54:9f:67:14:18:90:b3: a2:0c:88:60:aa:8f:7f:d2:49:34:f4:c4:ec:b0:f0:7b:63:db: 95:58:e5:db:cb:6c:4e:d0:f6:b6:3f:aa:f3:4e:38:fa:83:f1: f3:aa:d0:da:a9:75:d1:a9:2f:51:95:e5:f7:bc:1b:d7:d3:95: 5c:55:ba:dc:2d:67:6c:17:ea:4a:e8:ca:01:58:41:fb:cd:14: 7c:52:b2:20:72:59:60:25:bb:70:08:44:60:85:9b:13:a3:a7: 8d:f4:0a:41 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf10dkGt1adVb2Ba+tPMgtowCHfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNTEyMTYxNzQ2MzJaFw0yNTEyMjAwMTMwMzJaMDMxMTAvBgNV BAMTKEQ3ODUyMDlFMUMyMkU0NUFFRDM2QThEN0FGRTc1N0MyMTRGQzUzMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCekZnPDlFQ2H9t/3ux7wONUkqX 8RWuaoV7yhnudzMqqxy1jN2fXSNgbYqebqewzk6PtyI4xAtoRnuzUXVWLwZAwJRF 0AjP4+PSEe1MCbGSgpJjDe+x/aEoX6KyPZ+pF4F2cKeWpzxhSbzJNR0f2g17mOa4 BkeBQcevlVg5l5CZX2tsckknDu0nqXKSj0i6D6dkHSSlV+e3xwefsLFE+uBEyPtJ au4TvokrShCi8lN4bI/NWsoz08sHynKcaCCx9WPFUAWjSBclLh7cR5c4lh3w+PoX Y6k1/YHVZkm5iWszWxIacm3QIeKBTj3S1BFiLaXWX6Z7yE/piR26Xswn8MLBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU14Ugnhwi5FrtNqjXr+dXwhT8UxQwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ExYzRjMWYtNzE0MS00N2Q2LWE3 ZjgtZTM1ZmZlMTE3NDA0LzAvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2 QkM2ODY3QkY3OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADXsVhghmqv+sLTIcy/MMFLPOepvFdbHY38D 7udz396MpwoMS131LdLQO5kz/T2kOX6C4q9brrW7vQZG0l1kmMEp2irAQuiuSijf gOBFegRWsxeIemOKoJvD12uqjTntJOHd31r9FD1W4NKrve3X1pqFFEqc4EkUGDSk NurSpoZC+CAqK5jULHdJiG2NHkqPw2VJG0YlN3KbBpcVVJ9nFBiQs6IMiGCqj3/S STT0xOyw8Htj25VY5dvLbE7Q9rY/qvNOOPqD8fOq0NqpddGpL1GV5fe8G9fTlVxV utwtZ2wX6kroygFYQfvNFHxSsiByWWAlu3AIRGCFmxOjp430CkE= -----END CERTIFICATE-----Generated at Fri Dec 19 11:19:53 2025 by rpki-client