This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: 9tP7T4eIfbZkKxdY4puv13s2IzQ1FMOOT84kgZugeoA= Subject key identifier: 8B:F0:01:2D:FA:3F:48:40:74:A9:2A:35:49:FE:B9:40:DF:F5:9C:AF Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 0D5B8276673EC2DAE15E361F4BBDD2216CD86211 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0206 Signing time: Thu 25 Dec 2025 08:54:29 +0000 Manifest this update: Thu 25 Dec 2025 08:49:29 +0000 Manifest next update: Sun 28 Dec 2025 20:11:29 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: 5l5rl68QwB/3KiW6MOhfL3uExuQtwobFp+8Fn04ubQc=) 2: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 3: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 4: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 20:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:5b:82:76:67:3e:c2:da:e1:5e:36:1f:4b:bd:d2:21:6c:d8:62:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Dec 25 08:49:29 2025 GMT Not After : Dec 28 20:11:29 2025 GMT Subject: CN=8BF0012DFA3F484074A92A3549FEB940DFF59CAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:76:35:10:a3:13:58:5c:91:b0:a8:d0:f1:6c: 40:bc:0c:cc:1b:76:bd:8d:5b:fd:68:99:b9:42:49: 18:79:8b:59:03:34:3e:1e:23:03:a3:28:f0:25:cd: 43:e6:62:f5:9f:9a:05:a0:9a:e0:6e:77:72:4c:91: f3:6b:f6:4b:0b:53:34:3e:ba:21:dc:77:e1:49:71: b1:e1:bd:61:d7:a3:4e:10:2b:35:a7:bc:7b:ce:5b: 49:c3:44:0a:e5:35:34:44:be:b7:93:85:03:49:71: 90:5a:f6:12:cc:59:b9:86:46:ea:7b:3c:99:c0:4f: 99:92:d0:ad:8b:35:ff:54:e8:9c:28:06:01:3c:f2: a7:20:2b:ba:df:8d:18:97:5a:0f:3e:33:84:fe:76: c7:ec:e8:a0:c2:2f:11:3a:f4:77:99:cd:a1:ec:41: 13:58:5d:3b:77:95:e5:59:03:63:6c:ee:2b:61:47: 89:f2:fc:04:89:55:7d:30:c2:63:e2:af:30:1a:28: 4d:25:9e:b1:88:59:57:28:ea:e0:b4:c5:0b:37:b6: 3f:51:0d:83:96:af:49:24:5a:64:0f:a0:80:42:2c: ed:8b:5d:af:03:30:4d:93:59:0b:90:5a:5b:c5:2e: bc:c0:f8:59:65:3f:70:df:da:88:0b:41:1c:64:aa: f3:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F0:01:2D:FA:3F:48:40:74:A9:2A:35:49:FE:B9:40:DF:F5:9C:AF X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption dd:4b:37:eb:bb:fa:e7:8e:aa:7d:4b:65:ba:fc:ff:9b:26:92: fe:5b:c5:4d:68:ce:0a:d8:59:f6:c2:89:76:1f:b5:9d:89:f2: 6f:9f:e1:b0:2a:c9:71:ea:f3:8f:8b:24:66:2f:06:50:cd:48: 2d:42:1c:c2:ee:0b:3d:a3:89:d1:dd:20:95:b8:2a:9c:72:df: ea:af:e7:38:d7:dc:d4:66:2d:e8:ef:98:8f:aa:82:ae:d7:9a: 67:76:f7:39:94:dd:dd:da:3b:92:a1:36:9c:6f:f3:43:6e:0d: b2:f5:12:f6:d2:1e:78:42:4a:c8:29:2c:1a:4e:05:8c:45:18: 59:da:6f:5d:ac:02:f1:d1:35:ff:6a:fd:0a:b8:13:cf:7e:06: 8a:f4:ca:24:fd:94:81:64:ca:c6:89:6e:76:26:61:ac:9e:cc: e8:ea:51:e6:d7:d5:ed:e1:fc:49:7d:50:38:e2:70:f4:09:13: 11:36:2d:11:b9:eb:ea:19:3b:d2:6b:a7:95:04:d2:0c:b0:a5: 89:67:37:73:96:dc:c7:8b:92:22:0d:4e:2e:0c:8d:54:1f:2b: 9d:93:9e:60:0f:1f:62:e1:13:da:fd:17:fc:71:ec:75:38:6b: c9:ef:f6:94:6b:f8:76:14:74:94:91:ec:58:1c:34:0e:29:db: 96:2a:18:9c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDVuCdmc+wtrhXjYfS73SIWzYYhEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTEyMjUwODQ5MjlaFw0yNTEyMjgyMDExMjlaMDMxMTAvBgNV BAMTKDhCRjAwMTJERkEzRjQ4NDA3NEE5MkEzNTQ5RkVCOTQwREZGNTlDQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJdjUQoxNYXJGwqNDxbEC8DMwb dr2NW/1omblCSRh5i1kDND4eIwOjKPAlzUPmYvWfmgWgmuBud3JMkfNr9ksLUzQ+ uiHcd+FJcbHhvWHXo04QKzWnvHvOW0nDRArlNTREvreThQNJcZBa9hLMWbmGRup7 PJnAT5mS0K2LNf9U6JwoBgE88qcgK7rfjRiXWg8+M4T+dsfs6KDCLxE69HeZzaHs QRNYXTt3leVZA2Ns7ithR4ny/ASJVX0wwmPirzAaKE0lnrGIWVco6uC0xQs3tj9R DYOWr0kkWmQPoIBCLO2LXa8DME2TWQuQWlvFLrzA+FllP3Df2ogLQRxkqvPPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUi/ABLfo/SEB0qSo1Sf65QN/1nK8wHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAN1LN+u7+ueOqn1LZbr8/5smkv5bxU1ozgrY WfbCiXYftZ2J8m+f4bAqyXHq84+LJGYvBlDNSC1CHMLuCz2jidHdIJW4Kpxy3+qv 5zjX3NRmLejvmI+qgq7Xmmd29zmU3d3aO5KhNpxv80NuDbL1EvbSHnhCSsgpLBpO BYxFGFnab12sAvHRNf9q/Qq4E89+Bor0yiT9lIFkysaJbnYmYayezOjqUebX1e3h /El9UDjicPQJExE2LRG56+oZO9Jrp5UE0gywpYlnN3OW3MeLkiINTi4MjVQfK52T nmAPH2LhE9r9F/xx7HU4a8nv9pRr+HYUdJSR7FgcNA4p25YqGJw= -----END CERTIFICATE-----Generated at Sat Dec 27 00:44:47 2025 by rpki-client