This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: o8B+DcArz6dh5Cao2DAwb6ispvb64xzkCr/3fmzNd0c= Subject key identifier: F7:46:F6:7E:AE:A6:DE:CF:22:30:B9:F8:B4:88:A7:63:78:D1:D2:BC Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 0F0E3FA01EDEF9E901601CA58D4AEBF0FBB42396 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: E5 Signing time: Wed 24 Dec 2025 07:43:16 +0000 Manifest this update: Wed 24 Dec 2025 07:38:16 +0000 Manifest next update: Sat 27 Dec 2025 11:50:16 +0000 Files and hashes: 1: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 2: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: Ov78IWUQ1zmR3/3ynOKnNVjaXhPxCsG5j/P3+Vk3IxQ=) 3: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) 4: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 5: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 11:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:0e:3f:a0:1e:de:f9:e9:01:60:1c:a5:8d:4a:eb:f0:fb:b4:23:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Dec 24 07:38:16 2025 GMT Not After : Dec 27 11:50:16 2025 GMT Subject: CN=F746F67EAEA6DECF2230B9F8B488A76378D1D2BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a0:a2:cb:52:ab:85:06:32:1f:67:37:d2:49: 7e:10:ec:b5:6a:b3:38:df:b9:ad:69:90:73:85:3f: a4:95:d5:16:56:a6:49:d2:7b:c7:85:28:20:6a:05: 36:63:bc:62:16:06:94:9a:c6:88:89:30:62:b4:75: 5b:5d:4e:58:70:04:65:13:1b:07:e8:be:90:e2:05: 98:29:91:ee:11:a2:57:c4:a9:9b:9a:bf:c3:44:36: fb:49:ef:c0:c4:a6:f3:0f:0a:51:b9:b7:6c:be:01: e2:17:8b:fc:a9:cb:e3:c0:f9:32:0c:e3:d5:35:af: ae:a5:a7:4e:b6:81:8a:aa:c3:04:af:16:cf:ea:69: 22:71:a5:26:d8:b8:ab:78:44:7b:f0:a1:09:5b:29: 04:05:91:d0:14:22:7f:8d:6c:77:11:c4:59:85:7b: 03:e6:84:12:be:0a:e6:cd:64:8b:5b:4e:8f:22:19: c9:b2:72:dd:04:bb:7b:1e:63:8e:e8:6d:00:4b:50: 21:23:e2:ad:b5:57:c8:b0:3f:33:49:ab:0f:56:7f: 34:db:c2:b5:ef:f4:4c:37:c3:78:4e:e9:c6:3b:07: 8b:b5:a6:93:a2:76:5f:b6:42:f5:f1:36:11:9f:b3: 78:cd:37:5f:41:c2:b0:9a:33:cb:55:49:d7:03:4b: 98:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:46:F6:7E:AE:A6:DE:CF:22:30:B9:F8:B4:88:A7:63:78:D1:D2:BC X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:1d:1c:0b:f5:c1:cb:66:6e:91:c1:e2:2d:20:6a:75:27:c0: 29:e4:db:66:55:34:15:72:1e:8f:43:f7:6b:86:5c:65:1a:09: 66:91:0e:88:4c:ba:40:d6:67:18:75:88:30:1d:04:e6:3c:93: 63:9d:e7:86:f1:92:fc:75:5e:9c:0a:43:7e:d0:ce:99:fc:14: 87:ad:80:22:7e:86:75:09:9d:d2:da:cf:9b:3c:8d:88:25:85: 56:ea:17:e7:91:1b:a0:9c:d4:21:1a:2f:61:a0:ae:d7:77:de: 4f:94:e4:f9:c2:71:9a:0d:72:f9:ed:54:93:7f:9d:0e:81:29: 9f:59:7d:c2:8c:7a:5e:6d:46:23:21:7e:54:07:ca:2c:b7:50: dd:77:9c:71:56:35:34:5c:fe:20:94:81:29:87:6f:e1:aa:d5: 24:7e:aa:2e:e4:12:32:36:12:73:10:e5:00:c9:2f:77:35:f5: 4e:6a:10:fe:fb:eb:1a:02:d6:61:65:af:83:7c:70:e4:70:10: 4d:b1:99:02:a7:86:39:fc:2f:2d:4a:95:e6:01:17:85:08:8e: 9f:4a:dc:18:4c:74:50:04:65:da:1d:39:b0:6c:24:41:d4:32: b4:59:61:c9:07:92:74:9f:49:ef:c6:e9:89:00:0d:10:76:49: 0e:55:dc:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDw4/oB7e+ekBYByljUrr8Pu0I5YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTEyMjQwNzM4MTZaFw0yNTEyMjcxMTUwMTZaMDMxMTAvBgNV BAMTKEY3NDZGNjdFQUVBNkRFQ0YyMjMwQjlGOEI0ODhBNzYzNzhEMUQyQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdoKLLUquFBjIfZzfSSX4Q7LVq szjfua1pkHOFP6SV1RZWpknSe8eFKCBqBTZjvGIWBpSaxoiJMGK0dVtdTlhwBGUT GwfovpDiBZgpke4RolfEqZuav8NENvtJ78DEpvMPClG5t2y+AeIXi/ypy+PA+TIM 49U1r66lp062gYqqwwSvFs/qaSJxpSbYuKt4RHvwoQlbKQQFkdAUIn+NbHcRxFmF ewPmhBK+CubNZItbTo8iGcmyct0Eu3seY47obQBLUCEj4q21V8iwPzNJqw9WfzTb wrXv9Ew3w3hO6cY7B4u1ppOidl+2QvXxNhGfs3jNN19BwrCaM8tVSdcDS5jPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU90b2fq6m3s8iMLn4tIinY3jR0rwwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFsdHAv1wctmbpHB4i0ganUnwCnk22ZVNBVy Ho9D92uGXGUaCWaRDohMukDWZxh1iDAdBOY8k2Od54bxkvx1XpwKQ37Qzpn8FIet gCJ+hnUJndLaz5s8jYglhVbqF+eRG6Cc1CEaL2Ggrtd33k+U5PnCcZoNcvntVJN/ nQ6BKZ9ZfcKMel5tRiMhflQHyiy3UN13nHFWNTRc/iCUgSmHb+Gq1SR+qi7kEjI2 EnMQ5QDJL3c19U5qEP776xoC1mFlr4N8cORwEE2xmQKnhjn8Ly1KleYBF4UIjp9K 3BhMdFAEZdodObBsJEHUMrRZYckHknSfSe/G6YkADRB2SQ5V3NQ= -----END CERTIFICATE-----Generated at Thu Dec 25 03:00:48 2025 by rpki-client