This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: gmdFUsxPBgi2FH61f7027iE2AzBE/O5QncnaqnXMB20= Subject key identifier: F7:D2:91:EC:30:70:86:5A:EB:41:64:9E:43:47:53:E6:F2:7C:86:A9 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 49E024A1E07549FF1602F01F6B184A41912AF6A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 0543 Signing time: Wed 17 Dec 2025 23:21:27 +0000 Manifest this update: Wed 17 Dec 2025 23:16:27 +0000 Manifest next update: Sun 21 Dec 2025 02:47:27 +0000 Files and hashes: 1: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: Gss2BFwCvkYMrYmTDPR8XZwGfdbzMzVTFBRvuPZp/uA=) 2: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: 8ExtxRoYXeBibp8RWKZL90KwoSxWN56jqphwCfoSzPo=) 3: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: e9uiS3KNGlZ+EQjSXY4m6NwJ9lRr8aifmafZU96mQ7k=) 4: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 5: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: lz/aRA5xwGbvGMSgXL70n8EEkKYV5RNTgznI5gnec7Q=) 6: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo=) 7: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 02:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:e0:24:a1:e0:75:49:ff:16:02:f0:1f:6b:18:4a:41:91:2a:f6:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Dec 17 23:16:27 2025 GMT Not After : Dec 21 02:47:27 2025 GMT Subject: CN=F7D291EC3070865AEB41649E434753E6F27C86A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:9a:d1:ab:98:74:f7:f1:62:a5:38:bc:e4:dd: 2d:7f:4b:11:f0:1f:37:81:23:49:82:ba:ad:d2:b0: 54:a1:fe:22:ca:f8:3d:dc:20:f1:ff:38:84:b0:8d: 4c:8b:ed:9d:fa:32:66:3e:0b:bc:42:81:7a:e8:10: 16:a8:a0:67:2c:8e:9e:92:e8:af:a2:f8:f4:68:7b: 02:04:f3:9e:7d:7f:18:24:20:c8:dc:a9:10:9c:26: b8:cd:52:fb:ee:36:11:f9:03:2f:d2:4d:7a:db:4f: 03:89:c8:4b:53:a3:f7:9b:08:d3:0d:6a:ac:e3:85: de:f1:d3:81:be:4b:77:1d:7f:c6:5e:56:97:4b:e1: 03:ce:54:e9:23:bd:59:32:9f:b8:90:eb:07:90:f1: c6:cc:19:ca:3d:ca:cc:21:2d:00:03:ad:1d:11:0a: 1b:38:c2:e2:70:de:04:9a:5e:7f:9f:3d:dd:8a:1d: ac:09:8e:b2:4d:c2:ff:b5:17:2f:eb:d5:50:d1:61: 3f:60:38:31:2b:2e:e4:3e:c6:0c:f3:8b:23:c0:79: f3:71:25:2e:df:8b:68:ef:0b:c7:32:c5:91:2b:a4: 5d:9c:9c:97:88:f4:e0:96:93:0b:06:b3:c2:ac:db: 8c:d8:16:18:7d:8b:0d:dd:aa:45:ed:8c:da:d4:2e: 80:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D2:91:EC:30:70:86:5A:EB:41:64:9E:43:47:53:E6:F2:7C:86:A9 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:a5:c8:c2:b4:5d:54:27:5a:b1:4b:a1:e6:58:29:87:af:48: e9:b6:86:0b:a8:3b:8f:9c:21:c0:d3:a5:c4:a2:2f:5e:b6:91: f1:16:94:e5:be:5a:22:e0:d5:6b:20:63:6f:4b:63:65:87:8c: 7a:72:fc:a8:7c:cf:6b:88:cb:63:04:76:d3:d7:ea:11:82:33: f1:da:86:0f:3e:95:aa:4e:d7:ec:7b:85:c7:ab:ea:02:0a:68: 47:a7:b4:9b:2d:29:e6:24:96:2c:37:30:4f:28:8f:25:c8:4b: c9:66:0c:bb:cf:47:be:3d:62:25:fc:f9:08:f8:b6:b2:de:4c: b7:f1:a0:43:88:eb:30:07:b5:d5:6f:08:54:e2:43:f4:e4:a6: 25:4c:a0:f0:35:80:d6:aa:70:61:06:9a:2b:e6:47:2f:f0:1b: 01:ff:3c:74:0b:fe:41:38:45:75:10:48:b8:4d:99:53:04:5b: f1:34:ad:25:64:75:ca:2b:73:1b:c8:67:cf:de:4e:37:7d:69: 4c:c4:09:db:60:b2:c9:d7:70:1e:e9:cc:97:1d:4b:c0:6f:79: 1c:86:d6:09:ec:6b:a1:c1:16:65:ab:bb:5b:2e:73:8e:14:8f: ce:56:d5:1a:c7:3d:cc:aa:48:47:87:b2:1c:f6:97:b8:74:4a: f9:55:d5:e5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSeAkoeB1Sf8WAvAfaxhKQZEq9qUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTEyMTcyMzE2MjdaFw0yNTEyMjEwMjQ3MjdaMDMxMTAvBgNV BAMTKEY3RDI5MUVDMzA3MDg2NUFFQjQxNjQ5RTQzNDc1M0U2RjI3Qzg2QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTmtGrmHT38WKlOLzk3S1/SxHw HzeBI0mCuq3SsFSh/iLK+D3cIPH/OISwjUyL7Z36MmY+C7xCgXroEBaooGcsjp6S 6K+i+PRoewIE8559fxgkIMjcqRCcJrjNUvvuNhH5Ay/STXrbTwOJyEtTo/ebCNMN aqzjhd7x04G+S3cdf8ZeVpdL4QPOVOkjvVkyn7iQ6weQ8cbMGco9yswhLQADrR0R Chs4wuJw3gSaXn+fPd2KHawJjrJNwv+1Fy/r1VDRYT9gODErLuQ+xgzziyPAefNx JS7fi2jvC8cyxZErpF2cnJeI9OCWkwsGs8Ks24zYFhh9iw3dqkXtjNrULoDVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU99KR7DBwhlrrQWSeQ0dT5vJ8hqkwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGGlyMK0XVQnWrFLoeZYKYevSOm2hguoO4+c IcDTpcSiL162kfEWlOW+WiLg1WsgY29LY2WHjHpy/Kh8z2uIy2MEdtPX6hGCM/Ha hg8+lapO1+x7hcer6gIKaEentJstKeYkliw3ME8ojyXIS8lmDLvPR749YiX8+Qj4 trLeTLfxoEOI6zAHtdVvCFTiQ/TkpiVMoPA1gNaqcGEGmivmRy/wGwH/PHQL/kE4 RXUQSLhNmVMEW/E0rSVkdcorcxvIZ8/eTjd9aUzECdtgssnXcB7pzJcdS8BveRyG 1gnsa6HBFmWru1suc44Uj85W1RrHPcyqSEeHshz2l7h0SvlV1eU= -----END CERTIFICATE-----Generated at Fri Dec 19 11:33:12 2025 by rpki-client