This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: b2ziyQumBIagTLR8BVaBslELNiWich96HGJ3yp1OZYE= Subject key identifier: 64:72:80:B2:0D:6A:1B:A3:0A:60:0C:8F:BC:B8:46:F2:72:92:11:A7 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 2602B27CACBD6B84559D5B0751C0417EC622F3FA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 0285 Signing time: Fri 19 Dec 2025 18:31:34 +0000 Manifest this update: Fri 19 Dec 2025 18:26:34 +0000 Manifest next update: Mon 22 Dec 2025 22:15:34 +0000 Files and hashes: 1: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: vJ0JThPWN5z9ya3yGVitmhJSsuKICvURyRQCb1oSUaA=) 2: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: TW2RLqGqp5GMVEosRG1Cl0owKGLEGJyPDYB2l9dTN4E=) 3: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: LV0F6O0JrtgL58ARC8h1flo+UOdpKwAYXIa3PEvRfFg=) 4: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: jxDUC78HNLOA8L6CZjmD4AuXB6cD/K4Sj1UxaeosfRs=) 5: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: BmTBKF81iqbHECVQY3Ck/WKC+nTPpzrh6SVPoZTsvD4=) 6: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: VWdyOYYTifudfSUwEVWa9ANGPIHpQabnls++DgVxljE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 22:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:02:b2:7c:ac:bd:6b:84:55:9d:5b:07:51:c0:41:7e:c6:22:f3:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Dec 19 18:26:34 2025 GMT Not After : Dec 22 22:15:34 2025 GMT Subject: CN=647280B20D6A1BA30A600C8FBCB846F2729211A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b1:78:5e:17:7f:1e:6c:86:6c:f3:2a:20:ab: 63:24:33:e3:4c:a1:4e:84:b2:56:da:d5:f4:cf:68: 0e:36:f7:2a:15:e3:20:44:6e:2f:67:3e:f7:99:ad: c0:7f:3b:4f:c2:ac:3f:03:da:d1:79:19:1a:11:0f: f2:40:92:3d:bb:1d:7c:75:c7:5f:04:f5:6d:57:a5: 8d:cf:0b:a9:ae:a2:ce:e4:d1:93:69:92:ce:4e:f1: 88:89:49:87:b2:b7:80:7c:ba:f6:2c:1d:d1:5d:f8: b7:08:e9:0e:d0:86:45:6d:12:3b:dd:f8:c8:91:04: 92:e7:09:16:4d:24:83:03:8c:fd:70:c1:49:20:cc: 72:50:aa:08:20:28:70:f6:44:0e:05:43:49:c8:e5: c1:6a:4f:34:a8:a6:f2:1d:04:f0:c7:f9:32:96:5e: 49:d6:05:02:15:52:05:9d:5c:01:ac:1a:b8:15:d0: 7d:9a:a5:62:29:04:b6:12:98:86:5e:7f:4b:83:e3: 1c:ff:93:a9:30:86:c9:38:39:46:8c:e9:53:e9:37: 9b:8e:7f:eb:25:cf:c7:da:56:8c:b6:1e:62:5d:2e: 31:00:bb:b9:ec:bb:17:b5:4f:39:24:ab:3d:ba:b4: 51:73:4d:59:a9:94:fd:8d:88:58:de:29:5a:07:dc: 75:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:72:80:B2:0D:6A:1B:A3:0A:60:0C:8F:BC:B8:46:F2:72:92:11:A7 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:e5:af:3d:5a:d1:e2:03:7c:55:d0:f4:b2:0d:65:f2:29:08: 5a:90:cb:d8:06:43:df:b7:43:d6:97:32:5c:8d:6e:6a:eb:16: 7d:fe:24:1b:03:64:ec:c1:43:52:62:b5:98:de:2d:45:35:1c: 73:88:04:83:77:97:ce:e2:37:78:c8:5b:fd:1f:b0:0e:1f:67: 84:7e:da:d9:1d:5d:ed:0e:49:c2:54:c6:f2:a6:ed:d9:98:9c: 01:70:5c:25:fa:ec:58:65:6a:7a:4f:d8:db:fb:f0:d1:58:b4: 8f:b7:38:ca:5a:08:d4:21:04:45:9e:5b:94:bd:88:6c:00:3c: 8f:4b:e5:2e:57:45:b1:a6:1b:4e:a6:d1:a0:c9:ce:b0:fc:4c: bb:76:bf:74:ab:b2:87:c0:42:81:9a:da:77:89:2d:26:b0:b1: 10:ab:73:de:4e:3d:db:2f:41:9b:6d:13:98:3a:79:ad:3c:34: ab:d1:41:3e:60:2d:45:d9:b7:ca:0d:67:3d:70:f5:fd:27:f7: 7d:23:6b:9a:57:1b:87:2c:2a:e0:a1:45:b6:07:bd:1b:f2:d6: 14:09:81:87:b9:9a:de:02:bf:df:5e:51:48:19:7d:3a:c8:00: 9b:af:29:9d:c0:64:bb:29:cc:26:14:5a:8c:68:1f:c1:c0:e7: 86:35:e2:96 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJgKyfKy9a4RVnVsHUcBBfsYi8/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTEyMTkxODI2MzRaFw0yNTEyMjIyMjE1MzRaMDMxMTAvBgNV BAMTKDY0NzI4MEIyMEQ2QTFCQTMwQTYwMEM4RkJDQjg0NkYyNzI5MjExQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6sXheF38ebIZs8yogq2MkM+NM oU6Eslba1fTPaA429yoV4yBEbi9nPveZrcB/O0/CrD8D2tF5GRoRD/JAkj27HXx1 x18E9W1XpY3PC6muos7k0ZNpks5O8YiJSYeyt4B8uvYsHdFd+LcI6Q7QhkVtEjvd +MiRBJLnCRZNJIMDjP1wwUkgzHJQqgggKHD2RA4FQ0nI5cFqTzSopvIdBPDH+TKW XknWBQIVUgWdXAGsGrgV0H2apWIpBLYSmIZef0uD4xz/k6kwhsk4OUaM6VPpN5uO f+slz8faVoy2HmJdLjEAu7nsuxe1Tzkkqz26tFFzTVmplP2NiFjeKVoH3HVFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZHKAsg1qG6MKYAyPvLhG8nKSEacwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL7lrz1a0eIDfFXQ9LINZfIpCFqQy9gGQ9+3 Q9aXMlyNbmrrFn3+JBsDZOzBQ1JitZjeLUU1HHOIBIN3l87iN3jIW/0fsA4fZ4R+ 2tkdXe0OScJUxvKm7dmYnAFwXCX67FhlanpP2Nv78NFYtI+3OMpaCNQhBEWeW5S9 iGwAPI9L5S5XRbGmG06m0aDJzrD8TLt2v3SrsofAQoGa2neJLSawsRCrc95OPdsv QZttE5g6ea08NKvRQT5gLUXZt8oNZz1w9f0n930ja5pXG4csKuChRbYHvRvy1hQJ gYe5mt4Cv99eUUgZfTrIAJuvKZ3AZLspzCYUWoxoH8HA54Y14pY= -----END CERTIFICATE-----Generated at Sun Dec 21 11:40:19 2025 by rpki-client