This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft File: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft (raw, json) Hash identifier: 2nsvLWxbiPXgK1BtzIMqpn1ohjOf05obMsnHEhFVhk8= Subject key identifier: A6:0B:CE:0D:69:64:97:F1:B1:96:13:33:AF:E9:B0:53:79:53:32:50 Authority key identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 Certificate issuer: /CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Certificate serial: 297C15B604F406E8FFE0C81A8461B7D048ADA272 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject info access: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft Manifest number: 01AD Signing time: Sat 20 Dec 2025 20:22:26 +0000 Manifest this update: Sat 20 Dec 2025 20:17:26 +0000 Manifest next update: Wed 24 Dec 2025 07:14:26 +0000 Files and hashes: 1: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl (hash: d+Hr60MaQ3YGQhxcerooKP0DR3nJcNvscLdt8xpb6Nw=) 2: 3130332e3131342e3134342e302f32342d3234203d3e20313337333531.roa (hash: ty2A/+XUIZKKt+5K+zVnVNMiG2s1JjDQEBRNkGaNrQE=) 3: 323030313a6466343a663930303a3a2f34382d3438203d3e20313337333531.roa (hash: b4NjxQmSbJ+wk760b/yGVrpvatI7XP4yXIQB6LdeYtw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 07:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:7c:15:b6:04:f4:06:e8:ff:e0:c8:1a:84:61:b7:d0:48:ad:a2:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Validity Not Before: Dec 20 20:17:26 2025 GMT Not After : Dec 24 07:14:26 2025 GMT Subject: CN=A60BCE0D696497F1B1961333AFE9B05379533250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ef:2a:43:59:57:9e:43:21:14:29:04:bf:07: 7a:61:3f:7b:a7:54:8b:60:24:2f:70:31:35:b7:15: c1:18:bb:66:f8:6d:43:87:c8:65:6d:2c:d2:de:c8: 2e:c7:d1:c9:a5:1f:ac:c1:af:06:c5:9d:44:cc:a2: e9:f1:f2:09:ba:56:ca:4c:c6:13:dd:1d:c4:ba:1f: c8:8a:e6:a9:df:6f:5d:49:20:48:d5:7e:d6:85:4e: 4c:c4:04:d5:c6:90:d1:d4:1b:1e:e0:4e:f8:8d:dd: 14:64:27:a2:ba:08:fd:0b:49:78:2c:af:a4:a3:62: 8e:cd:e6:4d:32:f7:f9:32:e4:42:e9:2c:40:96:a7: d6:a3:6e:4f:6c:26:77:77:1d:47:48:ae:6d:6a:c5: bc:aa:7e:91:32:dc:95:bf:17:29:3e:4e:2b:52:00: 8d:f1:86:44:13:b7:ff:3e:1f:8e:9c:43:3e:0e:26: 94:33:9f:67:1d:eb:7b:fb:a9:05:0e:23:ac:2d:5e: 4f:71:5c:14:b7:ed:c2:74:ca:ec:2e:56:4e:6b:2e: 70:e7:2d:c7:80:e5:54:a9:b1:8a:2d:24:a1:5c:9a: 6b:53:d6:0c:80:12:4e:d3:36:39:f4:90:37:f0:bf: 56:b7:67:28:04:1c:36:03:22:03:29:bc:ed:25:c8: f5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:0B:CE:0D:69:64:97:F1:B1:96:13:33:AF:E9:B0:53:79:53:32:50 X509v3 Authority Key Identifier: keyid:82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:83:c8:6f:7d:f2:8c:04:c5:c2:0c:df:9c:03:97:29:ee:2f: fc:83:bd:b1:12:34:aa:ff:4b:08:e7:c0:2f:2c:3f:61:d2:6b: be:a6:90:23:26:6c:e6:2c:0a:28:9f:df:2c:58:6e:ab:b2:c6: df:11:b1:66:89:71:5a:5e:0e:6c:53:85:6f:ed:ad:db:71:52: c1:61:95:88:49:d0:49:3f:b9:b4:2c:fe:fe:29:42:83:66:cc: 1e:3d:ef:7e:b5:1a:59:37:9c:04:a7:b3:5c:a1:eb:0e:f3:d3: 11:41:38:1c:04:89:e5:e9:17:5d:26:db:24:a1:04:95:11:ed: 21:e8:e5:eb:0a:31:e6:fc:73:99:2f:da:87:52:6e:2d:0e:63: a8:de:72:b7:ca:2b:d1:15:58:d3:71:7b:65:df:e6:39:0b:d4: 8c:cf:ee:35:26:e8:b4:bb:47:21:48:c3:53:83:5b:a4:4a:fd: bf:2f:7d:5f:b8:24:16:42:0c:e8:b4:34:27:ad:fc:64:98:a4: 18:b5:83:e3:3c:aa:cb:8d:08:a7:28:e8:9f:86:77:ad:2c:c6: f5:22:3d:c4:8f:b8:87:ba:6d:d2:8a:ca:be:2f:fb:96:04:21: 32:2a:b6:f8:0e:c0:e1:b6:d8:9c:7c:65:ab:ac:34:d1:e1:9b: 49:45:e8:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKXwVtgT0Buj/4MgahGG30EitonIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJC NTNDQzY4MTAeFw0yNTEyMjAyMDE3MjZaFw0yNTEyMjQwNzE0MjZaMDMxMTAvBgNV BAMTKEE2MEJDRTBENjk2NDk3RjFCMTk2MTMzM0FGRTlCMDUzNzk1MzMyNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq7ypDWVeeQyEUKQS/B3phP3un VItgJC9wMTW3FcEYu2b4bUOHyGVtLNLeyC7H0cmlH6zBrwbFnUTMounx8gm6VspM xhPdHcS6H8iK5qnfb11JIEjVftaFTkzEBNXGkNHUGx7gTviN3RRkJ6K6CP0LSXgs r6SjYo7N5k0y9/ky5ELpLECWp9ajbk9sJnd3HUdIrm1qxbyqfpEy3JW/Fyk+TitS AI3xhkQTt/8+H46cQz4OJpQzn2cd63v7qQUOI6wtXk9xXBS37cJ0yuwuVk5rLnDn LceA5VSpsYotJKFcmmtT1gyAEk7TNjn0kDfwv1a3ZygEHDYDIgMpvO0lyPU3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpgvODWlkl/GxlhMzr+mwU3lTMlAwHwYDVR0j BBgwFoAUgggxeiSrTNgozYhV+B8+8rU8xoEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ODc4OGE4Yi01NDFiLTRjYmYtYmFiOS04ZGMzNzdiYzEyODQvMC84MjA4MzE3QTI0 QUI0Q0Q4MjhDRDg4NTVGODFGM0VGMkI1M0NDNjgxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNFRjJCNTND QzY4MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODg3ODhhOGItNTQxYi00Y2JmLWJh YjktOGRjMzc3YmMxMjg0LzAvODIwODMxN0EyNEFCNENEODI4Q0Q4ODU1RjgxRjNF RjJCNTNDQzY4MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHKDyG998owExcIM35wDlynuL/yDvbESNKr/ SwjnwC8sP2HSa76mkCMmbOYsCiif3yxYbquyxt8RsWaJcVpeDmxThW/trdtxUsFh lYhJ0Ek/ubQs/v4pQoNmzB497361Glk3nASns1yh6w7z0xFBOBwEieXpF10m2ySh BJUR7SHo5esKMeb8c5kv2odSbi0OY6jecrfKK9EVWNNxe2Xf5jkL1IzP7jUm6LS7 RyFIw1ODW6RK/b8vfV+4JBZCDOi0NCet/GSYpBi1g+M8qsuNCKco6J+Gd60sxvUi PcSPuIe6bdKKyr4v+5YEITIqtvgOwOG22Jx8ZausNNHhm0lF6Mg= -----END CERTIFICATE-----Generated at Sun Dec 21 15:51:57 2025 by rpki-client