This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: HyS8Z4idxXQgXPd859a2xgsMSXBOA/CpZZxtbDvdNt0= Subject key identifier: 87:22:D9:42:05:27:DE:1D:F2:EB:A6:87:7F:DB:AE:AF:2B:86:D1:EF Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 51CA35084F63D556BB5A95930444687D307AA8A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0537 Signing time: Thu 18 Dec 2025 14:30:43 +0000 Manifest this update: Thu 18 Dec 2025 14:25:43 +0000 Manifest next update: Mon 22 Dec 2025 00:55:43 +0000 Files and hashes: 1: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 2: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 3: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 4: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 5: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 6: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 7: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 8: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) 9: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 10: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: BBwbU9o8ZUXx5tBknPWJeNRRWgpM7OHEaCgvVvLFNNQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 13:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ca:35:08:4f:63:d5:56:bb:5a:95:93:04:44:68:7d:30:7a:a8:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Dec 18 14:25:43 2025 GMT Not After : Dec 22 00:55:43 2025 GMT Subject: CN=8722D9420527DE1DF2EBA6877FDBAEAF2B86D1EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:0e:aa:71:e1:22:84:98:25:5d:d5:cf:be:3b: 49:5e:f4:6c:9d:f8:91:b6:78:28:14:b2:ca:ef:7a: 4d:c8:e4:35:46:bc:ce:62:e1:db:e2:00:eb:52:8c: 1e:ef:d0:7c:62:50:ff:56:d1:ca:6a:8e:2c:4c:e7: e1:70:9e:e2:34:a4:4c:59:ba:95:16:09:37:01:55: 9d:b3:b4:9f:5c:97:52:84:92:53:a1:f8:b9:df:d8: 14:a9:f1:15:fe:b6:d7:0c:45:67:71:e0:49:45:e9: af:cd:53:27:fa:6e:30:f4:d6:73:b4:72:5e:95:9f: e2:59:72:eb:89:1c:6e:33:4c:91:9a:b0:4b:86:af: 26:d7:32:0f:18:76:67:8f:d2:51:2c:6b:86:f4:56: 56:2c:9d:d2:63:95:63:28:2e:e3:e1:ca:1b:ac:87: 4a:4e:1b:f6:46:b3:69:09:9f:e9:b2:42:a7:3a:27: 3f:65:b4:2d:0c:54:2c:82:d2:7b:e6:b1:66:51:53: ba:a0:c3:20:27:05:ca:d1:90:38:26:b5:2d:df:d4: 10:7a:77:33:fc:88:74:b1:0e:c2:07:2c:ae:fb:93: 33:e5:a0:02:a4:80:c5:f4:62:18:75:82:dd:21:51: eb:69:78:13:2e:22:3d:63:fc:f2:74:4b:9a:d6:e2: e1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:22:D9:42:05:27:DE:1D:F2:EB:A6:87:7F:DB:AE:AF:2B:86:D1:EF X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:64:41:04:f6:bd:f6:79:17:73:39:44:f2:1e:5e:ba:d8:d9: 9c:34:be:c0:fb:c8:3d:92:92:3d:53:a6:c9:32:65:54:d3:29: b2:d1:44:3b:42:4b:90:da:65:50:8b:ac:c6:7f:b3:28:8c:4c: 49:ed:61:38:87:4e:67:7a:4b:28:6a:b4:5a:8c:3a:36:ba:77: 04:ef:5c:b1:ed:56:df:c1:6e:c1:7a:15:8e:fc:f5:80:93:fe: 9a:94:6f:57:ec:60:9e:0d:95:20:fe:52:d6:10:fe:82:bc:ea: fe:4b:e1:12:dd:8a:a1:b8:80:32:f0:59:5f:46:4f:c6:c4:50: 32:b9:c7:41:85:98:c1:75:c7:55:b7:6e:4e:c6:40:61:3e:0e: 82:4e:fe:12:88:e7:28:cc:07:64:8c:96:6c:77:05:9e:78:f7: 9c:33:f9:69:ce:7e:1d:62:d3:28:8e:27:95:a9:bc:7a:e4:e6: 70:df:82:d1:6d:6c:e0:8f:b9:99:f4:21:1b:bc:b4:93:79:a5: 38:b2:7d:aa:9a:f0:ba:18:4a:fb:06:29:f1:b4:0c:20:b0:3e: d9:49:c7:99:b3:5b:26:54:cc:0b:32:4c:21:ab:02:19:45:45: 64:8b:00:6f:6a:ca:37:e9:8f:26:a9:98:52:35:18:7e:d4:b0: a5:42:5b:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUco1CE9j1Va7WpWTBERofTB6qKUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTEyMTgxNDI1NDNaFw0yNTEyMjIwMDU1NDNaMDMxMTAvBgNV BAMTKDg3MjJEOTQyMDUyN0RFMURGMkVCQTY4NzdGREJBRUFGMkI4NkQxRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD8Dqpx4SKEmCVd1c++O0le9Gyd +JG2eCgUssrvek3I5DVGvM5i4dviAOtSjB7v0HxiUP9W0cpqjixM5+FwnuI0pExZ upUWCTcBVZ2ztJ9cl1KEklOh+Lnf2BSp8RX+ttcMRWdx4ElF6a/NUyf6bjD01nO0 cl6Vn+JZcuuJHG4zTJGasEuGrybXMg8YdmeP0lEsa4b0VlYsndJjlWMoLuPhyhus h0pOG/ZGs2kJn+myQqc6Jz9ltC0MVCyC0nvmsWZRU7qgwyAnBcrRkDgmtS3f1BB6 dzP8iHSxDsIHLK77kzPloAKkgMX0Yhh1gt0hUetpeBMuIj1j/PJ0S5rW4uGxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhyLZQgUn3h3y66aHf9uuryuG0e8wHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACpkQQT2vfZ5F3M5RPIeXrrY2Zw0vsD7yD2S kj1TpskyZVTTKbLRRDtCS5DaZVCLrMZ/syiMTEntYTiHTmd6SyhqtFqMOja6dwTv XLHtVt/BbsF6FY789YCT/pqUb1fsYJ4NlSD+UtYQ/oK86v5L4RLdiqG4gDLwWV9G T8bEUDK5x0GFmMF1x1W3bk7GQGE+DoJO/hKI5yjMB2SMlmx3BZ5495wz+WnOfh1i 0yiOJ5WpvHrk5nDfgtFtbOCPuZn0IRu8tJN5pTiyfaqa8LoYSvsGKfG0DCCwPtlJ x5mzWyZUzAsyTCGrAhlFRWSLAG9qyjfpjyapmFI1GH7UsKVCWw8= -----END CERTIFICATE-----Generated at Thu Dec 18 18:18:02 2025 by rpki-client