This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft File: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft (raw, json) Hash identifier: R81JNhNIuE8gHT5n+4CQ5vj5XCXThjHO4+K3VYvrpps= Subject key identifier: BE:81:0E:5F:69:31:1F:80:1A:E6:20:22:F0:2C:63:AC:E0:83:88:09 Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 268DB9E2C451A084BAC4891CA204A779B8CD1894 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft Manifest number: 0233 Signing time: Fri 19 Dec 2025 14:02:38 +0000 Manifest this update: Fri 19 Dec 2025 13:57:38 +0000 Manifest next update: Mon 22 Dec 2025 16:35:38 +0000 Files and hashes: 1: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl (hash: 80BFrTs5XllO2qR+oYw/2atBVmMreGZmnA5f3/hNOxU=) 2: 323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa (hash: VaGZ2rtQiVhlvvEqhey8VuIsjUW/H1CymqkYlv2nCyM=) 3: 3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa (hash: q3nnfuFQ9fllwu5vaDMWKT58tFIU7r2iWutM+FFs7uM=) 4: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (hash: D6ZQ1Nszopc+tjvvlk9LxeInARJoQa1nF2ZqxR2uBQM=) 5: 3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa (hash: u/HGXTKlzUVzN3BHvIbNac6O5D491LLOLOhh0HKRChM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 16:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:8d:b9:e2:c4:51:a0:84:ba:c4:89:1c:a2:04:a7:79:b8:cd:18:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Dec 19 13:57:38 2025 GMT Not After : Dec 22 16:35:38 2025 GMT Subject: CN=BE810E5F69311F801AE62022F02C63ACE0838809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8c:0f:41:a3:e9:29:b0:04:11:e7:17:53:1f: a6:ca:2b:8e:d1:09:a8:30:0c:fb:50:cf:3a:20:f7: f5:55:f6:a8:64:7f:7a:97:9d:c8:34:11:0a:c7:de: bf:02:f4:0a:ed:a6:08:86:39:f0:c2:50:32:0c:cc: 90:9f:be:8f:58:dd:0b:e3:ca:2c:5f:6d:5a:f6:83: 58:22:f6:ef:bf:9c:fe:36:a3:c4:87:78:32:fc:87: 64:03:92:00:45:07:a0:bc:ab:b5:b1:1b:19:d2:bc: e5:c0:2b:f9:0b:cb:c7:07:3b:26:13:45:1f:22:65: 0f:8d:fb:6b:28:0d:95:0f:a3:02:4a:f8:e8:ca:47: 3a:34:e3:51:b3:47:8b:51:bf:7f:89:35:e5:c7:3f: 4d:23:31:7e:59:80:a8:6a:6a:78:34:4d:72:58:9c: 7a:0f:e5:9e:3f:2b:56:1d:84:18:73:da:46:31:72: 9b:00:15:ab:0b:6c:a7:9d:4c:50:00:88:9c:73:55: e2:df:03:6c:d3:c9:aa:84:af:79:0e:61:da:dd:b8: 05:45:c1:08:ee:7f:50:fd:ce:40:13:a6:15:52:ea: 9c:9e:dc:9d:ad:e9:62:e7:70:6e:dc:95:24:75:fa: 0b:66:8e:7c:8f:be:08:f9:61:2e:46:79:42:37:42: 9c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:81:0E:5F:69:31:1F:80:1A:E6:20:22:F0:2C:63:AC:E0:83:88:09 X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:5e:6c:6c:6b:74:97:ec:d2:e1:c7:d4:78:8b:36:28:d8:1f: d0:41:79:49:f5:29:30:2a:af:bc:5b:79:3f:26:3f:2c:2c:98: 4d:42:63:a2:60:29:a1:3c:8d:67:02:f8:1d:77:23:8b:de:4f: 8f:a4:5c:90:1e:9a:74:eb:fe:5e:cd:9a:01:bf:a9:62:bc:17: 89:4e:9c:91:ba:17:c6:dd:11:f4:77:3f:53:29:48:b7:dc:08: 92:bb:ed:7c:7a:6a:eb:44:9b:be:bd:9c:64:5a:12:d9:7c:97: 1a:89:31:3f:2b:f2:b0:4b:fd:18:71:0d:2e:f2:ce:0b:23:76: c7:b4:6f:8d:c3:4b:3e:67:15:e2:55:25:bf:87:ec:15:0f:65: 8c:80:64:9d:f6:8d:87:14:5e:fa:f7:b4:ad:ed:e2:76:ba:be: 55:ac:41:85:c6:0c:d1:eb:50:a8:03:a3:d0:85:33:ff:da:ba: fe:c3:6c:de:b6:ec:13:7c:43:9c:95:31:7f:4e:ac:2f:5b:5e: 13:1b:fd:13:c1:12:bf:a6:be:9e:cd:fc:9c:d4:02:ce:e2:47: 25:62:8c:27:a2:c5:fc:a6:db:9d:be:5a:fc:cb:11:ba:03:86: 96:2e:d8:2d:65:3f:21:c7:d9:80:96:25:64:ca:14:0b:71:f6: af:45:63:28 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJo254sRRoIS6xIkcogSnebjNGJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNTEyMTkxMzU3MzhaFw0yNTEyMjIxNjM1MzhaMDMxMTAvBgNV BAMTKEJFODEwRTVGNjkzMTFGODAxQUU2MjAyMkYwMkM2M0FDRTA4Mzg4MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMjA9Bo+kpsAQR5xdTH6bKK47R CagwDPtQzzog9/VV9qhkf3qXncg0EQrH3r8C9ArtpgiGOfDCUDIMzJCfvo9Y3Qvj yixfbVr2g1gi9u+/nP42o8SHeDL8h2QDkgBFB6C8q7WxGxnSvOXAK/kLy8cHOyYT RR8iZQ+N+2soDZUPowJK+OjKRzo041GzR4tRv3+JNeXHP00jMX5ZgKhqang0TXJY nHoP5Z4/K1YdhBhz2kYxcpsAFasLbKedTFAAiJxzVeLfA2zTyaqEr3kOYdrduAVF wQjuf1D9zkATphVS6pye3J2t6WLncG7clSR1+gtmjnyPvgj5YS5GeUI3QpwLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvoEOX2kxH4Aa5iAi8CxjrOCDiAkwHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFlOGRiMzgtNjNhOC00MTNjLWE5 ZjYtY2MyMjNhZmE0YTc1LzAvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVD RDNFQTI3NjM1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK5ebGxrdJfs0uHH1HiLNijYH9BBeUn1KTAq r7xbeT8mPywsmE1CY6JgKaE8jWcC+B13I4veT4+kXJAemnTr/l7NmgG/qWK8F4lO nJG6F8bdEfR3P1MpSLfcCJK77Xx6autEm769nGRaEtl8lxqJMT8r8rBL/RhxDS7y zgsjdse0b43DSz5nFeJVJb+H7BUPZYyAZJ32jYcUXvr3tK3t4na6vlWsQYXGDNHr UKgDo9CFM//auv7DbN627BN8Q5yVMX9OrC9bXhMb/RPBEr+mvp7N/JzUAs7iRyVi jCeixfym252+WvzLEboDhpYu2C1lPyHH2YCWJWTKFAtx9q9FYyg= -----END CERTIFICATE-----Generated at Sun Dec 21 23:12:54 2025 by rpki-client