This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: YyuJ5SVJdIPDxxPz52vqkkHuC/3ztwA4UlCUWSMxT4I= Subject key identifier: 73:BC:4C:14:BB:C3:78:3D:ED:76:3A:50:EC:B1:B5:7D:2E:9C:49:80 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 2DBE2F322A2E7022D3C0C9E2EE40DCE4C59970FC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0205 Signing time: Tue 23 Dec 2025 05:02:28 +0000 Manifest this update: Tue 23 Dec 2025 04:57:28 +0000 Manifest next update: Fri 26 Dec 2025 08:52:28 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: pLYz4UsWBHo6OdqfZ8gWAPYtzam2GTZ8c2lFtt/ERfo=) 2: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 3: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 4: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 08:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:be:2f:32:2a:2e:70:22:d3:c0:c9:e2:ee:40:dc:e4:c5:99:70:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Dec 23 04:57:28 2025 GMT Not After : Dec 26 08:52:28 2025 GMT Subject: CN=73BC4C14BBC3783DED763A50ECB1B57D2E9C4980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3f:cf:9a:7a:b1:35:a9:f9:2b:31:54:5b:f6: 96:30:7f:ad:59:d7:b1:12:7b:d9:52:65:e7:ea:a4: dd:b1:ec:23:85:e8:64:92:08:9f:9f:ef:2d:84:14: 69:21:cb:f9:e2:93:02:15:bb:ae:c5:38:fd:36:62: f4:51:52:2f:b2:f2:68:96:25:30:f6:a0:86:b8:c7: 4e:c3:ba:b9:24:22:fb:3f:d0:57:c2:08:6c:af:81: 3e:32:1a:98:8a:86:67:90:fb:6e:25:fa:ea:05:6f: 36:55:7a:07:0b:c5:18:1b:f9:a3:65:b7:33:f2:6a: 97:90:37:b3:83:cb:b6:ab:2b:35:8e:f2:75:c9:f5: 51:ad:7a:38:38:99:7b:ad:ff:b9:c6:f3:cc:88:d2: 8e:cb:95:da:19:2d:f9:ef:ca:52:03:a2:9c:95:17: 3a:9f:4e:14:9c:08:5b:a9:f1:cf:76:c0:af:33:d6: d1:05:ba:d5:ce:91:71:68:b1:b4:10:f6:05:69:3a: 28:a9:d1:c9:12:0e:ff:17:f2:ed:35:ac:98:26:da: b1:91:fd:64:d0:f1:c9:66:dd:3e:9a:6c:a6:5f:94: b9:9f:79:a6:23:e9:cd:3f:92:8f:74:69:28:7f:a0: 30:90:a9:c2:55:56:f9:e1:01:1d:f3:54:74:db:d0: 38:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BC:4C:14:BB:C3:78:3D:ED:76:3A:50:EC:B1:B5:7D:2E:9C:49:80 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:ca:37:b9:93:c9:7b:8a:7e:75:53:90:bf:94:3c:c7:85:77: 04:0b:5b:16:d7:dc:47:71:b1:5f:bd:5c:19:5f:e3:23:83:ec: d1:2c:1f:f3:2f:e5:ea:f9:a5:3e:ff:0f:ab:dd:59:ca:32:fd: f3:87:2e:43:82:0c:3f:35:c3:d9:c4:db:a8:57:d2:35:ef:8b: 50:2c:dc:15:07:8e:cd:18:a5:87:ba:2d:d1:19:91:f2:8e:2d: ec:7f:04:ce:5f:8b:e0:9b:8e:c8:ab:8b:ea:8b:ee:cf:24:52: 0a:f7:e5:96:b9:a6:2f:02:32:bb:13:bd:a8:25:6b:23:cb:e6: 1d:de:50:12:ba:58:69:5d:14:9d:a3:ae:96:05:5e:a6:95:7c: 55:ee:2b:05:85:15:64:13:93:e5:ef:8d:c0:65:d1:16:ec:6f: c6:53:6a:1e:82:58:c1:e5:32:e0:c7:c5:17:2b:7f:0a:6c:b9: 6c:f9:6a:36:13:4a:40:82:31:96:b7:87:59:42:d9:b6:2f:8f: 40:17:79:8d:46:e8:6c:47:b7:33:5f:2e:a6:77:93:96:9a:e1: 29:c2:27:b8:52:fc:f9:fc:cb:c0:ba:7d:9a:48:23:89:5a:3d: 62:f2:9a:ee:30:ad:18:f4:ba:22:c6:b2:cc:87:89:c1:a8:cd: fd:31:7f:ea -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULb4vMioucCLTwMni7kDc5MWZcPwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTEyMjMwNDU3MjhaFw0yNTEyMjYwODUyMjhaMDMxMTAvBgNV BAMTKDczQkM0QzE0QkJDMzc4M0RFRDc2M0E1MEVDQjFCNTdEMkU5QzQ5ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrP8+aerE1qfkrMVRb9pYwf61Z 17ESe9lSZefqpN2x7COF6GSSCJ+f7y2EFGkhy/nikwIVu67FOP02YvRRUi+y8miW JTD2oIa4x07DurkkIvs/0FfCCGyvgT4yGpiKhmeQ+24l+uoFbzZVegcLxRgb+aNl tzPyapeQN7ODy7arKzWO8nXJ9VGtejg4mXut/7nG88yI0o7LldoZLfnvylIDopyV FzqfThScCFup8c92wK8z1tEFutXOkXFosbQQ9gVpOiip0ckSDv8X8u01rJgm2rGR /WTQ8clm3T6abKZflLmfeaYj6c0/ko90aSh/oDCQqcJVVvnhAR3zVHTb0Dh/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUc7xMFLvDeD3tdjpQ7LG1fS6cSYAwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKfKN7mTyXuKfnVTkL+UPMeFdwQLWxbX3Edx sV+9XBlf4yOD7NEsH/Mv5er5pT7/D6vdWcoy/fOHLkOCDD81w9nE26hX0jXvi1As 3BUHjs0YpYe6LdEZkfKOLex/BM5fi+Cbjsiri+qL7s8kUgr35Za5pi8CMrsTvagl ayPL5h3eUBK6WGldFJ2jrpYFXqaVfFXuKwWFFWQTk+XvjcBl0Rbsb8ZTah6CWMHl MuDHxRcrfwpsuWz5ajYTSkCCMZa3h1lC2bYvj0AXeY1G6GxHtzNfLqZ3k5aa4SnC J7hS/Pn8y8C6fZpII4laPWLymu4wrRj0uiLGssyHicGozf0xf+o= -----END CERTIFICATE-----Generated at Wed Dec 24 18:08:56 2025 by rpki-client