This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft File: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft (raw, json) Hash identifier: JzMYTLO9C+kKGABY5TZt4uDuoHcY+uwSs7kk9d4Wdv0= Subject key identifier: 0D:C7:9C:79:EE:0F:20:05:D3:64:9C:FA:7E:3E:00:F2:21:98:BB:C6 Authority key identifier: 2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 Certificate issuer: /CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Certificate serial: 0715335AA895791B113FBD4E06F7C8D55BC5FA78 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft Manifest number: 0363 Signing time: Thu 18 Dec 2025 03:32:05 +0000 Manifest this update: Thu 18 Dec 2025 03:27:05 +0000 Manifest next update: Sun 21 Dec 2025 15:19:05 +0000 Files and hashes: 1: 2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl (hash: pqnaLT8SFUB4hjJeU9rzik1/YlO69vxseHcSqpvx+KE=) 2: 3130332e3136302e31322e302f32332d3234203d3e20313331313131.roa (hash: 2TjUbAwclmvFhuQfA5b8APF/xfL7qfTm8NzkksHu4ng=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 15:19:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:15:33:5a:a8:95:79:1b:11:3f:bd:4e:06:f7:c8:d5:5b:c5:fa:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CB21EF336B6AB4640E4619601E0F6488CB8FD52 Validity Not Before: Dec 18 03:27:05 2025 GMT Not After : Dec 21 15:19:05 2025 GMT Subject: CN=0DC79C79EE0F2005D3649CFA7E3E00F22198BBC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0f:51:d0:c7:76:96:84:8f:c5:4c:db:64:14: b7:3a:e7:98:60:82:59:50:23:73:51:10:ec:ef:b6: 4d:8e:a0:c4:6b:ca:94:b7:f2:d1:b9:5d:89:54:f4: 22:d0:5b:69:06:66:0f:3b:04:de:4e:e3:2c:4a:b4: 81:1a:c1:0e:6e:b4:ce:24:02:cb:2e:66:26:42:3c: d5:22:4e:2c:b3:f0:16:8a:f6:f8:5d:f4:e6:41:ff: 27:e2:9a:cf:eb:2d:c1:a2:d2:77:3b:49:89:5a:1c: 1d:54:c3:8a:98:03:79:f1:1c:91:1a:0d:83:23:9b: b2:b4:94:bb:51:ce:b0:97:4d:0d:f4:09:91:63:a8: 87:5b:75:48:d3:68:5c:27:eb:67:f0:fd:fb:6a:99: f5:f7:de:11:c8:da:4f:32:ad:00:c0:64:73:01:d2: 76:3a:b5:b2:61:aa:53:f6:f6:6a:ef:02:aa:b7:0d: 04:bd:b0:95:ea:7d:ad:f1:7c:70:ed:58:41:af:99: a8:ef:14:cf:8f:98:59:69:aa:e3:8a:82:f5:f1:9f: da:16:98:d6:f7:46:80:1f:97:77:3f:91:68:60:c9: 72:6b:1f:d7:b4:28:99:4b:15:f4:15:05:2f:00:49: 29:6e:67:8d:1d:e7:65:99:26:5e:30:00:6a:2c:e5: 04:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C7:9C:79:EE:0F:20:05:D3:64:9C:FA:7E:3E:00:F2:21:98:BB:C6 X509v3 Authority Key Identifier: keyid:2C:B2:1E:F3:36:B6:AB:46:40:E4:61:96:01:E0:F6:48:8C:B8:FD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4c6f770-686a-45ef-8dfb-0c3a87d3d8da/0/2CB21EF336B6AB4640E4619601E0F6488CB8FD52.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:68:78:7c:6c:f8:a0:06:d0:09:2d:64:a4:e1:e6:02:eb:d7: b2:f3:c6:b5:50:e3:58:19:cb:23:a0:d3:5b:e9:05:bc:35:0b: d3:3f:8f:78:a3:50:e7:a7:fe:38:2f:4e:8f:f2:79:c6:1d:a8: 17:fe:37:37:e3:f1:ec:bd:0c:0a:b6:83:b7:7a:6e:80:fc:b4: a6:03:22:9e:1b:98:9f:21:cc:62:d7:89:4f:1e:a3:21:48:6d: db:fb:9f:7f:fd:52:74:ed:80:1d:5d:c7:64:30:55:d0:91:36: 90:02:e2:04:41:82:6a:85:d1:9a:45:b7:f9:86:6d:00:18:db: 9f:c4:25:46:7f:25:6e:5f:11:12:25:ce:41:39:49:d5:8f:5d: 7e:a6:59:ea:72:a1:2e:66:41:15:b9:f8:14:88:12:47:1b:d4: cb:8b:51:60:66:19:77:bc:63:d8:2e:08:aa:26:37:4b:ee:a3: e5:29:4e:43:e9:6c:d5:a4:1e:0c:9b:9f:d5:b0:c0:79:7d:d6: b9:02:11:90:81:6e:dd:75:be:7f:5f:0a:58:af:b8:96:f9:77: 1c:47:6b:d3:b5:4a:8f:7a:ab:92:5b:ae:77:4a:30:45:67:9b: 9c:63:18:c5:63:72:65:0f:7b:ec:bd:47:a5:4d:6a:48:b7:1e: 23:51:0d:6d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBxUzWqiVeRsRP71OBvfI1VvF+ngwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4 Q0I4RkQ1MjAeFw0yNTEyMTgwMzI3MDVaFw0yNTEyMjExNTE5MDVaMDMxMTAvBgNV BAMTKDBEQzc5Qzc5RUUwRjIwMDVEMzY0OUNGQTdFM0UwMEYyMjE5OEJCQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDND1HQx3aWhI/FTNtkFLc655hg gllQI3NREOzvtk2OoMRrypS38tG5XYlU9CLQW2kGZg87BN5O4yxKtIEawQ5utM4k AssuZiZCPNUiTiyz8BaK9vhd9OZB/yfims/rLcGi0nc7SYlaHB1Uw4qYA3nxHJEa DYMjm7K0lLtRzrCXTQ30CZFjqIdbdUjTaFwn62fw/ftqmfX33hHI2k8yrQDAZHMB 0nY6tbJhqlP29mrvAqq3DQS9sJXqfa3xfHDtWEGvmajvFM+PmFlpquOKgvXxn9oW mNb3RoAfl3c/kWhgyXJrH9e0KJlLFfQVBS8ASSluZ40d52WZJl4wAGos5QSbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDcecee4PIAXTZJz6fj4A8iGYu8YwHwYDVR0j BBgwFoAULLIe8za2q0ZA5GGWAeD2SIy4/VIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGM2Zjc3MC02ODZhLTQ1ZWYtOGRmYi0wYzNhODdkM2Q4ZGEvMC8yQ0IyMUVGMzM2 QjZBQjQ2NDBFNDYxOTYwMUUwRjY0ODhDQjhGRDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2NDg4Q0I4 RkQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjRjNmY3NzAtNjg2YS00NWVmLThk ZmItMGMzYTg3ZDNkOGRhLzAvMkNCMjFFRjMzNkI2QUI0NjQwRTQ2MTk2MDFFMEY2 NDg4Q0I4RkQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAItoeHxs+KAG0AktZKTh5gLr17LzxrVQ41gZ yyOg01vpBbw1C9M/j3ijUOen/jgvTo/yecYdqBf+Nzfj8ey9DAq2g7d6boD8tKYD Ip4bmJ8hzGLXiU8eoyFIbdv7n3/9UnTtgB1dx2QwVdCRNpAC4gRBgmqF0ZpFt/mG bQAY25/EJUZ/JW5fERIlzkE5SdWPXX6mWepyoS5mQRW5+BSIEkcb1MuLUWBmGXe8 Y9guCKomN0vuo+UpTkPpbNWkHgybn9WwwHl91rkCEZCBbt11vn9fClivuJb5dxxH a9O1So96q5JbrndKMEVnm5xjGMVjcmUPe+y9R6VNaki3HiNRDW0= -----END CERTIFICATE-----Generated at Sun Dec 21 00:41:46 2025 by rpki-client