This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft File: 2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft (raw, json) Hash identifier: 0gxVUT1GFhTbh0CcsIoKY4KlaKmynGa98t4mfApnmPw= Subject key identifier: 69:21:E9:9B:33:63:C1:05:04:16:62:A1:B5:AF:B2:8F:11:B1:2B:F5 Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 138563781A7D577098F8D501F500AA071282C165 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft Manifest number: 0505 Signing time: Mon 15 Dec 2025 23:42:07 +0000 Manifest this update: Mon 15 Dec 2025 23:37:07 +0000 Manifest next update: Fri 19 Dec 2025 01:13:07 +0000 Files and hashes: 1: 323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa (hash: D6GCo3ceVvJhAX1b+afxEUHTBD9rmTcpfSp7SCURViA=) 2: 3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa (hash: pAsXLpsnvtFY9CiLQfO4MgBTQXdXjfq9fjmjjZL7V7Y=) 3: 323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa (hash: Cf4F1dHsLMAEwRXj/sLvggNAyN9aUktmarNyz8vl8uk=) 4: 3130332e35382e3136302e302f32322d3234203d3e203539323738.roa (hash: 3p6KpA6/uKsXu1iiVTHxP1H1aKBvRxURT7LJ3HzRuNw=) 5: 323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa (hash: LrRa5/YbMQIirnwavEqQmjlSXIv4GPDAL8XSH/RPz2k=) 6: 323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa (hash: 1MuWl4R2LfAc9czxG6/QjtCE9g5QKK5BETiXC4FMLHs=) 7: 2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl (hash: ovEvZUH6jfPt8D+zO7FWn1GB01n+Qbh8F89QeXjpHoU=) 8: 323430323a363938303a3a2f33322d3438203d3e203539323738.roa (hash: KRbdEJvKURW+VgG7P6m8/xbRP6/xVRqHAh+GE/ZxmJg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 01:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:85:63:78:1a:7d:57:70:98:f8:d5:01:f5:00:aa:07:12:82:c1:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Dec 15 23:37:07 2025 GMT Not After : Dec 19 01:13:07 2025 GMT Subject: CN=6921E99B3363C105041662A1B5AFB28F11B12BF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:c3:63:e2:7e:bd:21:a4:7d:cd:38:51:22: 95:5d:1b:5a:53:2d:be:69:2e:25:50:42:4f:14:04: f8:b8:a6:d0:f8:dd:9a:39:01:ae:73:57:15:0f:68: c0:a5:a2:4c:b7:9d:8e:df:97:d5:c3:0f:66:2b:83: ec:53:af:d7:04:b5:fc:57:00:3f:65:7b:95:b5:70: 79:59:68:8d:47:c4:5d:69:19:42:b3:aa:9c:81:a6: 23:37:bc:05:b7:a4:7c:1f:74:a5:dc:e8:be:fe:ab: 1d:c4:ec:56:59:f0:79:e8:1b:53:b7:fa:28:77:a7: 5c:2b:44:6d:98:e9:ae:e9:2a:1e:f5:0a:0a:82:bc: 8a:7f:39:96:79:ae:67:5f:b3:24:aa:ee:e4:36:38: ed:c2:a3:3e:31:a8:bd:14:c4:a9:16:e0:c3:8f:26: 53:91:c2:f5:3a:29:d3:2e:79:6a:70:9f:45:19:ee: f0:93:91:9c:d3:c3:82:95:f2:4b:84:af:58:31:11: 59:37:e2:4d:14:21:8d:ad:d2:66:3f:c6:19:d3:d4: 18:6e:8f:1f:3a:4c:33:5a:fe:35:83:c8:99:7c:e0: c0:06:9d:8e:43:74:59:27:1f:06:b4:54:d8:74:36: 37:bd:b0:4c:97:83:99:01:be:c5:32:b5:1c:2c:c4: 0e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:21:E9:9B:33:63:C1:05:04:16:62:A1:B5:AF:B2:8F:11:B1:2B:F5 X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:da:83:9d:fe:2d:2f:a4:29:f8:dc:d7:59:75:43:39:64:8c: 14:0f:0b:07:5c:5b:1a:64:c1:80:ac:ab:71:45:c6:11:fa:67: 91:27:ef:71:52:7e:8e:61:78:41:cf:b6:14:ba:42:d3:4b:9c: 8f:e9:b1:da:c8:43:d2:24:a1:4d:18:a9:7e:ff:c4:fe:66:b5: 24:ca:c7:c3:3b:f1:cc:b9:d0:38:9f:2a:04:ac:c3:da:a4:0c: 0d:3d:59:a0:a0:44:c9:8a:e4:37:61:be:61:69:f9:1b:ba:7d: bf:e4:21:54:e8:f4:6c:a3:aa:5e:b1:5f:e5:ec:80:e4:db:a0: 73:76:df:56:ab:e7:02:59:bd:83:7c:92:2b:3e:7f:bd:7e:92: b8:dd:18:e5:19:6d:a2:77:31:37:64:e1:cd:b6:31:19:cb:af: 2f:77:2b:3c:3b:12:b8:33:be:bb:fd:a8:a3:c2:6d:5a:46:31: 09:4f:56:90:9d:11:e4:a4:b8:29:3d:2f:b0:ac:48:32:da:f3: 1e:45:1e:0c:46:a7:74:93:81:c4:3e:48:8c:0c:a3:75:d1:fb: 27:64:35:c6:50:83:91:db:17:ff:e6:62:5f:a0:7e:9d:1f:74: 8c:79:91:5e:87:62:64:d4:19:ed:55:3d:4c:25:9f:b2:54:11: 73:65:3a:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE4VjeBp9V3CY+NUB9QCqBxKCwWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNTEyMTUyMzM3MDdaFw0yNTEyMTkwMTEzMDdaMDMxMTAvBgNV BAMTKDY5MjFFOTlCMzM2M0MxMDUwNDE2NjJBMUI1QUZCMjhGMTFCMTJCRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/sNj4n69IaR9zThRIpVdG1pT Lb5pLiVQQk8UBPi4ptD43Zo5Aa5zVxUPaMCloky3nY7fl9XDD2Yrg+xTr9cEtfxX AD9le5W1cHlZaI1HxF1pGUKzqpyBpiM3vAW3pHwfdKXc6L7+qx3E7FZZ8HnoG1O3 +ih3p1wrRG2Y6a7pKh71CgqCvIp/OZZ5rmdfsySq7uQ2OO3Coz4xqL0UxKkW4MOP JlORwvU6KdMueWpwn0UZ7vCTkZzTw4KV8kuEr1gxEVk34k0UIY2t0mY/xhnT1Bhu jx86TDNa/jWDyJl84MAGnY5DdFknHwa0VNh0Nje9sEyXg5kBvsUytRwsxA4HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaSHpmzNjwQUEFmKhta+yjxGxK/UwHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWYxYzc5ZjEtMjY0ZS00MjNmLTll MDgtMGIyOTAwZGE2OTQ5LzAvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2 QjVERDc4QzVCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD7ag53+LS+kKfjc11l1QzlkjBQPCwdcWxpk wYCsq3FFxhH6Z5En73FSfo5heEHPthS6QtNLnI/psdrIQ9IkoU0YqX7/xP5mtSTK x8M78cy50DifKgSsw9qkDA09WaCgRMmK5DdhvmFp+Ru6fb/kIVTo9Gyjql6xX+Xs gOTboHN231ar5wJZvYN8kis+f71+krjdGOUZbaJ3MTdk4c22MRnLry93Kzw7Ergz vrv9qKPCbVpGMQlPVpCdEeSkuCk9L7CsSDLa8x5FHgxGp3STgcQ+SIwMo3XR+ydk NcZQg5HbF//mYl+gfp0fdIx5kV6HYmTUGe1VPUwln7JUEXNlOiI= -----END CERTIFICATE-----Generated at Wed Dec 17 20:47:13 2025 by rpki-client