This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft File: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft (raw, json) Hash identifier: QS/WZf3q3dD1X1puxuP9ke465qUVUjgMVsulfuaXLzw= Subject key identifier: D2:2D:93:C1:AC:9F:2C:CA:43:99:F8:B1:13:93:91:B1:E5:DB:13:54 Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 394DEEF3E9DD4EE2376AB049406669BCAC87EFD4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft Manifest number: 0243 Signing time: Tue 23 Dec 2025 06:21:43 +0000 Manifest this update: Tue 23 Dec 2025 06:16:43 +0000 Manifest next update: Fri 26 Dec 2025 09:37:43 +0000 Files and hashes: 1: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl (hash: BCZAQnczqWur/kNYfaaVv34zUWMvf6gkNSS7SfbrWjE=) 2: 3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa (hash: NBMvMFdbSgV8YLztOs5et7qKnLsGThNMzle3TvV2a2Y=) 3: 3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa (hash: Tv+weNKfZV3vLvtIURyDMLx5ol7dILJ4RL8AQ9yiukI=) 4: 3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa (hash: xhHGbTeP6u0WbPe8ByZkxSsIh3tMuqCvY/m/R9Bd6uM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 09:37:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:4d:ee:f3:e9:dd:4e:e2:37:6a:b0:49:40:66:69:bc:ac:87:ef:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Dec 23 06:16:43 2025 GMT Not After : Dec 26 09:37:43 2025 GMT Subject: CN=D22D93C1AC9F2CCA4399F8B1139391B1E5DB1354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:29:2b:ce:89:72:72:94:ea:83:c3:49:41: 08:e5:6c:db:42:f1:51:ca:f5:68:48:4f:65:f8:f2: 6a:97:c8:28:ce:6d:d0:02:de:8c:d8:9a:18:5a:40: ff:39:5b:71:90:03:88:b5:90:d9:de:b5:5d:ce:c4: 30:8e:ca:60:29:4f:4d:0c:9c:d7:ec:02:5a:db:e3: d8:57:7c:d2:bc:34:10:4d:98:01:ef:8c:2c:ac:2c: 7b:b7:b2:92:a6:f6:5b:d6:5b:55:84:2f:19:9d:2f: 22:3c:d0:b2:76:4e:37:d5:10:66:da:01:c1:9d:55: 0c:5b:36:e9:c5:0f:be:80:7b:93:a8:17:30:f6:0a: 81:b7:6c:1b:c4:55:bc:27:90:ef:a1:0f:b3:3b:05: 15:d1:a0:b4:b2:9f:6f:e2:28:a4:02:f0:82:e0:54: f7:73:16:68:5c:dd:30:68:b8:1b:f6:60:c5:c9:96: 3b:31:b6:28:aa:52:db:61:08:35:7d:d9:bb:cb:a5: 2b:ae:42:17:ac:4b:a9:ac:82:cc:5a:dc:df:9b:3a: f8:6c:7c:58:57:4d:45:e4:95:ab:82:bc:1b:1c:da: 33:27:53:2e:fb:e4:bc:6d:0c:35:9a:dd:c0:ff:4f: 86:04:b2:cb:00:10:67:15:87:8e:df:94:21:c3:4e: 43:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2D:93:C1:AC:9F:2C:CA:43:99:F8:B1:13:93:91:B1:E5:DB:13:54 X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:b5:e1:72:1c:9b:88:cc:d3:b5:d2:85:5e:00:c8:1a:2d:6f: 32:6b:75:ff:59:64:13:79:17:7d:a1:bf:ba:2e:3f:53:10:75: 7c:31:0a:e2:41:b2:34:58:6d:63:99:44:1c:28:46:18:22:16: ff:61:a5:ef:b3:42:69:a9:a5:b9:02:59:7d:b2:a8:bd:46:e2: ab:bf:d8:3c:65:30:52:d5:aa:f9:2e:36:20:62:5c:60:97:f3: 81:f9:4a:24:c2:0f:be:2f:03:39:51:53:7f:f9:8f:7c:6e:2d: bd:11:e5:f9:79:7a:8c:a6:2c:1a:53:39:26:5a:e7:a7:f1:ba: 17:55:1d:d2:47:e9:64:09:fd:2b:4c:ac:4c:9c:7b:bf:37:84: 29:a6:23:c8:41:23:57:6d:b9:68:97:35:12:ed:33:dc:b9:e3: 68:19:6b:a7:0f:0e:f5:14:30:20:60:86:81:3e:4a:d7:f6:fb: 9a:4c:fe:ba:50:66:51:4b:80:3c:68:46:e5:fd:e1:e8:19:9e: 63:9a:94:1b:da:ec:02:5b:a0:8a:a3:7b:29:04:74:3a:60:7a: bf:1c:ef:c0:5f:55:f3:08:16:2e:de:24:42:11:99:c3:b5:e0: 2a:55:d8:d7:63:fd:27:69:16:ff:23:45:23:ff:0b:03:d7:6c: f1:33:9f:4c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOU3u8+ndTuI3arBJQGZpvKyH79QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNTEyMjMwNjE2NDNaFw0yNTEyMjYwOTM3NDNaMDMxMTAvBgNV BAMTKEQyMkQ5M0MxQUM5RjJDQ0E0Mzk5RjhCMTEzOTM5MUIxRTVEQjEzNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqPykrzolycpTqg8NJQQjlbNtC 8VHK9WhIT2X48mqXyCjObdAC3ozYmhhaQP85W3GQA4i1kNnetV3OxDCOymApT00M nNfsAlrb49hXfNK8NBBNmAHvjCysLHu3spKm9lvWW1WELxmdLyI80LJ2TjfVEGba AcGdVQxbNunFD76Ae5OoFzD2CoG3bBvEVbwnkO+hD7M7BRXRoLSyn2/iKKQC8ILg VPdzFmhc3TBouBv2YMXJljsxtiiqUtthCDV92bvLpSuuQhesS6msgsxa3N+bOvhs fFhXTUXklauCvBsc2jMnUy775LxtDDWa3cD/T4YEsssAEGcVh47flCHDTkPZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0i2TwayfLMpDmfixE5ORseXbE1QwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjI1YzdlMWQtODJlOC00MTAwLWI0 MzUtOTk1NDI3MmZiN2E4LzAvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFC QzgyNzdCOTlEMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKO14XIcm4jM07XShV4AyBotbzJrdf9ZZBN5 F32hv7ouP1MQdXwxCuJBsjRYbWOZRBwoRhgiFv9hpe+zQmmppbkCWX2yqL1G4qu/ 2DxlMFLVqvkuNiBiXGCX84H5SiTCD74vAzlRU3/5j3xuLb0R5fl5eoymLBpTOSZa 56fxuhdVHdJH6WQJ/StMrEyce783hCmmI8hBI1dtuWiXNRLtM9y542gZa6cPDvUU MCBghoE+Stf2+5pM/rpQZlFLgDxoRuX94egZnmOalBva7AJboIqjeykEdDpger8c 78BfVfMIFi7eJEIRmcO14CpV2Ndj/SdpFv8jRSP/CwPXbPEzn0w= -----END CERTIFICATE-----Generated at Wed Dec 24 22:06:24 2025 by rpki-client