This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft File: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft (raw, json) Hash identifier: RQo/duuJ2bBoCJm3jVGSbd8pSwa0w6mwMg7wT0nfdRQ= Subject key identifier: E8:18:1F:16:31:21:AE:B1:F5:22:DF:4C:B8:00:C7:F7:1B:13:77:55 Authority key identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 Certificate issuer: /CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Certificate serial: 45A5590C0422991AC25FBE67778A282CF1FE0626 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft Manifest number: 01AC Signing time: Thu 18 Dec 2025 17:52:56 +0000 Manifest this update: Thu 18 Dec 2025 17:47:56 +0000 Manifest next update: Sun 21 Dec 2025 20:15:56 +0000 Files and hashes: 1: 323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa (hash: b4NjxQmSbJ+wk760b/yGVrpvatI7XP4yXIQB6LdeYtw=) 2: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl (hash: Vcid0iP/qqjfrR+jQpoEd4OHpNM7k1k1nX3axsSvRGM=) 3: 3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa (hash: ty2A/+XUIZKKt+5K+zVnVNMiG2s1JjDQEBRNkGaNrQE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 20:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a5:59:0c:04:22:99:1a:c2:5f:be:67:77:8a:28:2c:f1:fe:06:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Validity Not Before: Dec 18 17:47:56 2025 GMT Not After : Dec 21 20:15:56 2025 GMT Subject: CN=E8181F163121AEB1F522DF4CB800C7F71B137755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a2:8d:0f:bc:c5:83:8d:88:f3:26:d4:e7:e6: 62:91:df:0d:73:31:1c:b1:d4:e6:79:a1:51:84:94: e5:ac:0d:da:82:e1:56:c0:06:d4:17:fb:5f:68:ed: f1:a7:ca:5c:4f:5c:5c:79:25:a6:e0:e0:da:7e:2d: 57:41:e5:d9:5b:ae:9f:64:fa:f2:a8:b6:f5:d3:3e: ee:fb:85:83:df:88:3a:e8:ba:16:1f:4e:39:0d:24: 09:60:62:cd:6b:2c:4d:12:d5:e7:b8:bf:21:44:4b: 9f:a3:87:0b:54:0e:6e:3d:fe:59:de:62:63:3c:19: 18:7e:b0:e8:94:67:62:d6:11:a3:f5:8f:93:2a:f3: 9b:32:7f:ef:6c:fa:57:88:1e:2f:8a:fc:13:44:1f: e2:c6:d7:6c:8b:6e:54:de:a8:48:97:38:7c:a7:1a: ec:68:80:1d:6c:ff:e9:a2:1a:08:bb:da:3b:93:65: 4a:68:02:39:3b:fb:59:b1:20:d7:2b:7d:52:9b:cd: 3c:2d:03:8e:b5:cf:69:5a:94:df:18:e5:3a:94:3a: ea:a4:15:72:7d:73:f5:d5:40:12:8a:5d:a3:92:b5: b1:eb:0b:11:e3:e0:c5:f7:b5:3e:79:6e:6c:86:2f: a6:f9:5d:0a:20:4b:c1:47:32:e8:57:56:83:e4:4a: 5e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:18:1F:16:31:21:AE:B1:F5:22:DF:4C:B8:00:C7:F7:1B:13:77:55 X509v3 Authority Key Identifier: keyid:82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:f6:43:2e:41:0a:2e:e1:c2:a1:95:87:d2:69:87:14:c4:c7: 3d:97:bd:6a:1f:35:fe:77:31:15:41:68:5d:bd:b5:cd:b0:03: 20:d1:72:bb:d5:7c:59:ac:40:50:dd:fd:8f:b2:f6:46:b9:b7: 9e:11:bd:dd:52:d9:c9:f7:e6:e4:5c:4b:44:1f:57:d8:2f:16: b3:2b:98:0d:86:f9:c4:55:fe:21:b6:87:97:e2:55:0b:fe:ea: f8:ee:42:00:5a:a0:8e:27:c0:af:95:a7:fc:39:08:8d:00:99: ce:a8:12:45:c3:ef:8b:68:43:3c:89:3a:66:b6:2f:f5:d8:91: a9:72:bf:50:5c:70:e8:a4:a5:bc:7f:30:bf:d7:5b:15:28:cb: 5a:ad:eb:24:5d:e8:8c:ab:8a:77:10:23:22:09:4d:62:f5:d1: a8:02:57:70:a9:86:03:56:fb:1c:36:08:de:aa:3f:c8:cd:64: d5:22:d0:8c:6a:a4:88:55:8a:9d:fa:81:c9:d3:4f:5e:10:a1: ca:14:fb:15:1f:80:3c:bd:37:c3:e8:2d:47:9d:f4:c5:e2:71: 84:4b:c2:e9:c4:e0:13:88:b3:57:65:36:94:51:47:9e:29:21: 91:8c:00:c3:8b:6b:fa:a6:e8:3f:46:f2:76:32:8b:a0:88:27: 85:42:c3:10 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURaVZDAQimRrCX75nd4ooLPH+BiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJC NTNDQzY4MTAeFw0yNTEyMTgxNzQ3NTZaFw0yNTEyMjEyMDE1NTZaMDMxMTAvBgNV BAMTKEU4MTgxRjE2MzEyMUFFQjFGNTIyREY0Q0I4MDBDN0Y3MUIxMzc3NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfoo0PvMWDjYjzJtTn5mKR3w1z MRyx1OZ5oVGElOWsDdqC4VbABtQX+19o7fGnylxPXFx5Jabg4Np+LVdB5dlbrp9k +vKotvXTPu77hYPfiDrouhYfTjkNJAlgYs1rLE0S1ee4vyFES5+jhwtUDm49/lne YmM8GRh+sOiUZ2LWEaP1j5Mq85syf+9s+leIHi+K/BNEH+LG12yLblTeqEiXOHyn GuxogB1s/+miGgi72juTZUpoAjk7+1mxINcrfVKbzTwtA461z2lalN8Y5TqUOuqk FXJ9c/XVQBKKXaOStbHrCxHj4MX3tT55bmyGL6b5XQogS8FHMuhXVoPkSl73AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6BgfFjEhrrH1It9MuADH9xsTd1UwHwYDVR0j BBgwFoAUgggxeiSrTNgozYhV+B8+8rU8xoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ODc4OGE4Yi01NDFiLTRjYmYtYmFiOS04ZGMzNzdiYzEyODQvMC84MjA4MzE3QTI0 QUI0Q0Q4MjhDRDg4NTVGODFGM0VGMkI1M0NDNjgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJCNTND QzY4MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODg3ODhhOGItNTQxYi00Y2JmLWJh YjktOGRjMzc3YmMxMjg0LzAvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNF RjJCNTNDQzY4MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABb2Qy5BCi7hwqGVh9JphxTExz2XvWofNf53 MRVBaF29tc2wAyDRcrvVfFmsQFDd/Y+y9ka5t54Rvd1S2cn35uRcS0QfV9gvFrMr mA2G+cRV/iG2h5fiVQv+6vjuQgBaoI4nwK+Vp/w5CI0Amc6oEkXD74toQzyJOma2 L/XYkalyv1BccOikpbx/ML/XWxUoy1qt6yRd6IyrincQIyIJTWL10agCV3CphgNW +xw2CN6qP8jNZNUi0IxqpIhVip36gcnTT14QocoU+xUfgDy9N8PoLUed9MXicYRL wunE4BOIs1dlNpRRR54pIZGMAMOLa/qm6D9G8nYyi6CIJ4VCwxA= -----END CERTIFICATE-----Generated at Fri Dec 19 11:18:41 2025 by rpki-client