This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft File: AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft (raw, json) Hash identifier: aotDUbOzl3GcHqZNgdmtW4zZQWM2pRsWSZPLr5raSVI= Subject key identifier: 73:2A:3E:6E:83:18:EA:DB:1F:9E:9D:62:9F:8B:65:6A:20:53:71:90 Authority key identifier: AF:DF:D5:D1:C4:B3:9F:2F:AA:BB:A5:BC:15:23:4C:2B:12:43:BF:FB Certificate issuer: /CN=AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB Certificate serial: 63F0714EF1E0C34CF74181D197F4DBE58C3FF6A4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft Manifest number: 03E3 Signing time: Wed 24 Dec 2025 10:51:37 +0000 Manifest this update: Wed 24 Dec 2025 10:46:37 +0000 Manifest next update: Sat 27 Dec 2025 18:22:37 +0000 Files and hashes: 1: AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.crl (hash: je57go2qxGMMuCMUUliIV/1YDHI9ZrBSnFWUd2AGp2o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.crl rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:f0:71:4e:f1:e0:c3:4c:f7:41:81:d1:97:f4:db:e5:8c:3f:f6:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB Validity Not Before: Dec 24 10:46:37 2025 GMT Not After : Dec 27 18:22:37 2025 GMT Subject: CN=732A3E6E8318EADB1F9E9D629F8B656A20537190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:36:36:3a:98:27:95:67:83:e4:28:e9:92:f3: fc:6d:6a:52:6e:53:a5:16:ff:98:bc:85:25:a0:39: 10:3a:20:54:bf:6f:5e:7f:e5:03:16:97:0c:2e:1a: b8:a4:7b:89:f7:9e:12:32:ae:b5:a1:1d:3d:26:26: b4:50:12:98:79:8a:6a:c5:82:49:ea:d8:85:48:a7: d0:a5:e6:8f:30:68:23:56:d4:9e:20:92:fa:c2:c3: 0c:9d:39:86:89:12:b9:4e:25:b3:90:27:92:a9:6b: 64:07:54:6c:04:d2:e1:65:23:de:c2:0d:05:b2:43: 67:c8:83:4b:b2:dc:4d:8c:03:2c:68:94:d5:ea:35: 83:13:70:82:ad:dd:96:0f:44:ce:ec:13:ed:c3:92: 9b:cf:a8:85:3f:1d:3c:b0:61:63:14:e7:26:0e:7d: fc:e7:47:c9:9d:2b:e3:ab:fc:8e:b4:c8:74:5e:07: a9:09:1b:37:15:d8:23:7f:4e:28:89:ea:e9:5a:44: 00:ec:1b:49:2e:88:b5:ef:48:fc:92:d1:01:26:aa: 68:9b:29:5f:c1:14:b8:5e:5a:34:f5:a7:b6:b1:71: d0:21:eb:78:98:ea:99:35:1b:46:4b:49:ec:9e:31: be:35:60:1b:97:b8:0f:8c:07:20:63:3f:47:7a:b9: 48:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2A:3E:6E:83:18:EA:DB:1F:9E:9D:62:9F:8B:65:6A:20:53:71:90 X509v3 Authority Key Identifier: keyid:AF:DF:D5:D1:C4:B3:9F:2F:AA:BB:A5:BC:15:23:4C:2B:12:43:BF:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a4fe1811-c03f-49d8-9217-13ff22a31ebe/0/AFDFD5D1C4B39F2FAABBA5BC15234C2B1243BFFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:32:ee:fe:4e:06:b8:0d:71:a0:22:99:93:db:a9:34:2c:c3: 8f:fe:c0:0b:48:ae:26:1d:13:a6:fb:06:5d:31:57:96:15:ef: aa:23:b2:60:3e:2f:30:62:a5:8a:f1:8f:10:58:46:a1:5d:c0: c7:bd:a1:30:86:d2:97:69:0d:16:6b:ec:97:11:88:c1:ab:88: 50:b9:9b:f8:bd:2d:72:02:77:bb:b1:fb:d4:25:8a:d3:0e:ba: 3b:bd:ec:b4:ec:a5:12:97:49:2b:9f:8f:4b:c3:26:89:bb:73: 81:2c:c6:66:0d:78:8f:27:df:dc:3f:fa:5b:c1:53:1d:ff:8a: 6f:19:3d:23:ce:ba:5f:7b:31:fe:d3:97:59:09:79:6d:66:09: e0:9e:4f:ed:4e:a6:a9:31:e9:d5:0f:20:8d:0e:72:80:26:8e: 93:14:7d:93:81:1c:9e:53:4d:b3:70:05:ac:c7:99:cd:64:3d: db:7a:59:33:31:da:cc:cc:79:05:bf:3d:41:d5:de:72:c0:94: 22:5f:38:04:40:e5:dc:9f:d4:6b:8d:12:48:a9:c7:b6:6a:ac: 42:8c:0b:cd:a8:81:4f:f8:79:36:0f:77:6a:2d:85:6d:36:0d: 21:1c:c6:d7:20:bb:93:99:f6:2e:00:0c:44:03:8f:2a:fe:e1: 97:b6:fa:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY/BxTvHgw0z3QYHRl/Tb5Yw/9qQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZERkQ1RDFDNEIzOUYyRkFBQkJBNUJDMTUyMzRDMkIx MjQzQkZGQjAeFw0yNTEyMjQxMDQ2MzdaFw0yNTEyMjcxODIyMzdaMDMxMTAvBgNV BAMTKDczMkEzRTZFODMxOEVBREIxRjlFOUQ2MjlGOEI2NTZBMjA1MzcxOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxNjY6mCeVZ4PkKOmS8/xtalJu U6UW/5i8hSWgORA6IFS/b15/5QMWlwwuGrike4n3nhIyrrWhHT0mJrRQEph5imrF gknq2IVIp9Cl5o8waCNW1J4gkvrCwwydOYaJErlOJbOQJ5Kpa2QHVGwE0uFlI97C DQWyQ2fIg0uy3E2MAyxolNXqNYMTcIKt3ZYPRM7sE+3DkpvPqIU/HTywYWMU5yYO ffznR8mdK+Or/I60yHReB6kJGzcV2CN/TiiJ6ulaRADsG0kuiLXvSPyS0QEmqmib KV/BFLheWjT1p7axcdAh63iY6pk1G0ZLSeyeMb41YBuXuA+MByBjP0d6uUg/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcyo+boMY6tsfnp1in4tlaiBTcZAwHwYDVR0j BBgwFoAUr9/V0cSzny+qu6W8FSNMKxJDv/swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NGZlMTgxMS1jMDNmLTQ5ZDgtOTIxNy0xM2ZmMjJhMzFlYmUvMC9BRkRGRDVEMUM0 QjM5RjJGQUFCQkE1QkMxNTIzNEMyQjEyNDNCRkZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZERkQ1RDFDNEIzOUYyRkFBQkJBNUJDMTUyMzRDMkIxMjQz QkZGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTRmZTE4MTEtYzAzZi00OWQ4LTky MTctMTNmZjIyYTMxZWJlLzAvQUZERkQ1RDFDNEIzOUYyRkFBQkJBNUJDMTUyMzRD MkIxMjQzQkZGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADwy7v5OBrgNcaAimZPbqTQsw4/+wAtIriYd E6b7Bl0xV5YV76ojsmA+LzBipYrxjxBYRqFdwMe9oTCG0pdpDRZr7JcRiMGriFC5 m/i9LXICd7ux+9QlitMOuju97LTspRKXSSufj0vDJom7c4EsxmYNeI8n39w/+lvB Ux3/im8ZPSPOul97Mf7Tl1kJeW1mCeCeT+1Opqkx6dUPII0OcoAmjpMUfZOBHJ5T TbNwBazHmc1kPdt6WTMx2szMeQW/PUHV3nLAlCJfOARA5dyf1GuNEkipx7ZqrEKM C82ogU/4eTYPd2othW02DSEcxtcgu5OZ9i4ADEQDjyr+4Ze2+jU= -----END CERTIFICATE-----Generated at Wed Dec 24 22:07:20 2025 by rpki-client