This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: ARbvzkmIHiwVDTFzF+SKdf07bukSxfgkd8nHKURekyg= Subject key identifier: 2A:22:80:F7:32:FA:D9:35:6D:7C:58:7F:67:40:9C:57:C4:1E:D3:2C Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 1882B0A985506BCF83E89DB6B29751D512000262 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0203 Signing time: Thu 18 Dec 2025 12:31:52 +0000 Manifest this update: Thu 18 Dec 2025 12:26:52 +0000 Manifest next update: Sun 21 Dec 2025 19:48:52 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: 2xPvIqwObkzesvRKnRgxk1rT7+Xogy6rp/0eYvJ+0Rg=) 2: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 3: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 4: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 19:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:82:b0:a9:85:50:6b:cf:83:e8:9d:b6:b2:97:51:d5:12:00:02:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Dec 18 12:26:52 2025 GMT Not After : Dec 21 19:48:52 2025 GMT Subject: CN=2A2280F732FAD9356D7C587F67409C57C41ED32C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:b8:aa:c6:8b:4e:d4:dc:6d:3c:8e:ce:c6: 36:ff:79:5f:c2:59:f0:cb:65:d0:2c:11:24:08:22: e4:c2:5d:30:0b:95:e7:28:96:09:df:0b:97:7a:21: 5b:b4:0a:2d:6a:fb:25:db:d7:26:ba:b8:6b:81:49: 07:d6:92:63:52:e4:4a:4d:a1:6a:a8:eb:fe:29:b3: ae:06:86:27:ec:46:92:e9:9f:b6:26:98:c3:b5:92: 7c:d7:30:d8:dc:36:df:d9:b5:ac:17:be:b8:c4:40: a3:70:ca:90:ec:6d:30:0e:b7:40:12:56:c5:94:69: 10:05:52:b2:de:15:0f:e5:36:56:d8:56:58:03:e3: bf:23:82:8c:7c:9a:6a:dd:d8:06:28:74:3b:1a:c3: 49:c1:07:3f:e2:40:b9:83:b4:92:4a:70:e3:0e:75: 5b:08:ae:6e:30:fc:db:6a:ee:cb:86:f1:db:f0:04: a7:4a:d3:0c:07:52:6f:7d:cc:6e:54:04:a0:e9:4b: 79:75:e3:e9:e4:ef:3c:61:97:1d:2b:d4:d2:e8:c6: 0c:f1:1a:48:0c:73:e8:c2:b1:25:3b:df:5c:ef:9d: 21:e9:3f:3d:e5:96:50:2e:fa:0a:7b:f1:cd:32:6b: a5:ca:74:cf:b8:59:9e:07:bb:85:5a:6a:76:50:44: 6b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:22:80:F7:32:FA:D9:35:6D:7C:58:7F:67:40:9C:57:C4:1E:D3:2C X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:48:6f:16:5d:4d:1c:bd:e3:29:a1:9b:d7:93:a4:6e:fa:74: 1d:8a:73:de:4e:1e:1b:0e:c1:0f:3f:38:95:05:cf:46:fc:cc: 82:17:e5:96:ad:4e:d8:25:09:0b:e6:53:60:fe:08:64:85:eb: 62:88:a1:7c:a2:ea:08:87:e5:6a:a8:89:80:57:0f:d9:5b:5e: 96:ae:07:e9:5c:c8:70:80:a8:f5:e5:86:40:e5:0d:25:53:26: 50:48:0e:ca:9f:a5:d3:3e:94:be:d9:ec:ff:c7:26:4c:4c:4b: 9e:ac:3e:b2:cd:18:de:49:ed:e8:30:3e:f8:85:98:e2:9b:16: 97:36:cb:04:c4:0e:31:9b:53:27:40:85:c6:10:62:79:f9:ac: df:68:7a:35:1d:5f:2a:57:de:98:e5:5c:6f:cc:8a:25:3b:18: 76:91:89:7f:0b:00:8d:a6:91:79:b2:9f:d2:0c:3b:6a:73:f4: 33:a6:44:25:c6:3d:0c:4a:2d:45:f7:ec:c9:e6:45:34:f0:4b: ef:30:25:03:92:8d:0a:b6:bd:b0:fe:9b:97:35:30:3b:e7:8a: 9b:17:20:b4:90:a2:4d:0b:53:14:fa:bf:ef:71:9a:df:61:5b: ef:91:91:32:7d:e8:51:ca:a1:34:2a:c1:c2:f2:9d:09:64:54: 0f:d1:e1:8a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGIKwqYVQa8+D6J22spdR1RIAAmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTEyMTgxMjI2NTJaFw0yNTEyMjExOTQ4NTJaMDMxMTAvBgNV BAMTKDJBMjI4MEY3MzJGQUQ5MzU2RDdDNTg3RjY3NDA5QzU3QzQxRUQzMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMeLiqxotO1NxtPI7Oxjb/eV/C WfDLZdAsESQIIuTCXTALlecolgnfC5d6IVu0Ci1q+yXb1ya6uGuBSQfWkmNS5EpN oWqo6/4ps64GhifsRpLpn7YmmMO1knzXMNjcNt/ZtawXvrjEQKNwypDsbTAOt0AS VsWUaRAFUrLeFQ/lNlbYVlgD478jgox8mmrd2AYodDsaw0nBBz/iQLmDtJJKcOMO dVsIrm4w/Ntq7suG8dvwBKdK0wwHUm99zG5UBKDpS3l14+nk7zxhlx0r1NLoxgzx GkgMc+jCsSU731zvnSHpPz3lllAu+gp78c0ya6XKdM+4WZ4Hu4VaanZQRGs5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKiKA9zL62TVtfFh/Z0CcV8Qe0ywwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAABIbxZdTRy94ymhm9eTpG76dB2Kc95OHhsO wQ8/OJUFz0b8zIIX5ZatTtglCQvmU2D+CGSF62KIoXyi6giH5WqoiYBXD9lbXpau B+lcyHCAqPXlhkDlDSVTJlBIDsqfpdM+lL7Z7P/HJkxMS56sPrLNGN5J7egwPviF mOKbFpc2ywTEDjGbUydAhcYQYnn5rN9oejUdXypX3pjlXG/MiiU7GHaRiX8LAI2m kXmyn9IMO2pz9DOmRCXGPQxKLUX37MnmRTTwS+8wJQOSjQq2vbD+m5c1MDvnipsX ILSQok0LUxT6v+9xmt9hW++RkTJ96FHKoTQqwcLynQlkVA/R4Yo= -----END CERTIFICATE-----Generated at Sat Dec 20 23:07:57 2025 by rpki-client