This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: A+RM2OidWX1Tqx/avqpSz7rnA5ebjff1I/NOji9AflU= Subject key identifier: 99:76:F7:9F:BA:9D:42:1D:01:82:4B:71:DD:10:25:01:4F:B4:83:E6 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 3CD08667F5F78896119B6CEBFEFB22EA361EA6CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 04BE Signing time: Wed 17 Dec 2025 13:12:23 +0000 Manifest this update: Wed 17 Dec 2025 13:07:23 +0000 Manifest next update: Sat 20 Dec 2025 22:19:23 +0000 Files and hashes: 1: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0yCL5KXTraWL90iq30pQr9XlRbIvmMrP24hOvDxVdWE=) 2: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: dIrq7dmaS/X9OQU5IUZQEwTmSK3Q4SNh7EQtqRE4aRQ=) 3: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: QKBrvi0RsDMYjSNqwszDPfOesbOlEOIHdE8u3xcyVKM=) 4: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: q/CV3YIPQOm1aZYip5fIR1K9i7bDSVO+nIFF+ycG0Go=) 5: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: rkHE7dCGWjwiXKSo5AmkFhmGB4j/W88po8KuTJD9fS0=) 6: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: zCUg4ypvv2GlwnHN93OEr6YWYy+0fl7UKwqXyrw+mYs=) 7: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: ceA/XjkZTjtckNNE+B0y8t16H7RYtmT+yFrD+MsXpYk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 22:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:d0:86:67:f5:f7:88:96:11:9b:6c:eb:fe:fb:22:ea:36:1e:a6:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Dec 17 13:07:23 2025 GMT Not After : Dec 20 22:19:23 2025 GMT Subject: CN=9976F79FBA9D421D01824B71DD1025014FB483E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:09:2d:1d:b9:52:3d:a7:41:50:f6:73:9a:71: 8c:b1:a6:bb:16:d3:c0:84:1e:83:d9:6c:19:8e:58: 1e:b8:3f:9d:46:ba:7e:44:90:c0:14:b9:33:dc:8f: 39:07:e9:7b:70:22:cf:66:28:c8:ae:d3:1a:08:3f: 10:a2:4c:86:a9:cf:5a:6d:9f:af:0b:71:be:1f:61: ee:eb:41:5e:55:92:37:34:09:0e:1d:7c:93:fd:a2: df:79:29:74:60:3c:1c:b7:fb:20:25:07:10:a2:ff: 36:3b:3f:86:1f:fb:b4:3f:fb:41:c5:f2:99:4c:eb: b0:42:fc:36:1b:28:f3:26:00:0e:3a:71:94:eb:97: a1:80:9e:81:7a:71:05:20:6b:63:ea:97:aa:47:b1: 59:18:ab:79:da:b4:b2:4b:0b:9a:d6:e0:f9:c2:2e: ca:8d:57:6a:0c:e6:83:58:62:ad:f8:95:70:dc:73: bf:ee:f7:f6:ef:93:af:ce:a8:9f:da:4e:56:da:ab: 25:20:2f:ee:0b:51:f5:b7:b1:cb:43:44:6b:56:2b: ce:f7:ab:b9:63:66:02:d9:a1:df:62:c5:0b:47:3f: 03:ab:de:a7:6d:dd:d7:72:12:1e:0e:6f:92:f4:ce: a9:bf:e8:48:5f:ca:f1:23:00:9b:3f:09:80:75:f0: 04:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:76:F7:9F:BA:9D:42:1D:01:82:4B:71:DD:10:25:01:4F:B4:83:E6 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:69:c9:2f:e3:83:31:fe:5a:ac:89:90:a9:b9:d3:b7:93:e0: f4:c2:87:b7:59:38:e2:08:08:5f:ce:41:22:d0:bd:b5:af:a3: d0:86:85:4c:9d:af:79:e0:d3:9e:83:f6:4a:38:91:b0:01:c9: 8d:c1:5d:a4:c2:1e:af:b9:b2:9e:45:67:1c:19:fb:54:b9:41: 7b:3e:b5:0b:59:fd:94:cf:bd:89:dd:9e:7d:f1:0d:7a:74:62: e2:c6:53:71:dc:b8:fe:4f:46:62:c9:d4:63:34:17:7c:d1:c4: 36:2e:a1:60:62:1e:97:61:bc:47:c7:94:e7:ea:ad:c6:a7:5b: 7e:f0:1c:47:1c:be:24:cd:d6:79:ef:4b:54:39:1c:4c:f3:1a: b7:6c:9c:21:2e:7a:a9:de:d3:80:90:20:b4:63:25:79:d8:43: 91:99:60:46:b7:7b:fe:46:cc:fa:3b:ae:80:9d:f5:d3:9e:e2: 8b:a4:21:d9:4d:7c:99:d7:4b:2c:27:4a:5f:fc:c1:81:71:3f: 98:91:77:a6:5f:63:14:26:0d:b1:64:8e:4c:32:e4:0b:1c:25: a3:36:60:51:83:2b:1a:36:cd:03:f2:ee:88:a1:ba:26:04:cb: 91:7d:15:44:16:50:1c:31:1f:b0:f1:0b:60:1f:f3:25:e2:aa: 0a:56:29:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPNCGZ/X3iJYRm2zr/vsi6jYepswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTEyMTcxMzA3MjNaFw0yNTEyMjAyMjE5MjNaMDMxMTAvBgNV BAMTKDk5NzZGNzlGQkE5RDQyMUQwMTgyNEI3MUREMTAyNTAxNEZCNDgzRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6CS0duVI9p0FQ9nOacYyxprsW 08CEHoPZbBmOWB64P51Gun5EkMAUuTPcjzkH6XtwIs9mKMiu0xoIPxCiTIapz1pt n68Lcb4fYe7rQV5Vkjc0CQ4dfJP9ot95KXRgPBy3+yAlBxCi/zY7P4Yf+7Q/+0HF 8plM67BC/DYbKPMmAA46cZTrl6GAnoF6cQUga2Pql6pHsVkYq3natLJLC5rW4PnC LsqNV2oM5oNYYq34lXDcc7/u9/bvk6/OqJ/aTlbaqyUgL+4LUfW3sctDRGtWK873 q7ljZgLZod9ixQtHPwOr3qdt3ddyEh4Ob5L0zqm/6EhfyvEjAJs/CYB18ATxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmXb3n7qdQh0Bgktx3RAlAU+0g+YwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA9pyS/jgzH+WqyJkKm507eT4PTCh7dZOOII CF/OQSLQvbWvo9CGhUydr3ng056D9ko4kbAByY3BXaTCHq+5sp5FZxwZ+1S5QXs+ tQtZ/ZTPvYndnn3xDXp0YuLGU3HcuP5PRmLJ1GM0F3zRxDYuoWBiHpdhvEfHlOfq rcanW37wHEccviTN1nnvS1Q5HEzzGrdsnCEueqne04CQILRjJXnYQ5GZYEa3e/5G zPo7roCd9dOe4oukIdlNfJnXSywnSl/8wYFxP5iRd6ZfYxQmDbFkjkwy5AscJaM2 YFGDKxo2zQPy7oihuiYEy5F9FUQWUBwxH7DxC2Af8yXiqgpWKRE= -----END CERTIFICATE-----Generated at Fri Dec 19 11:18:41 2025 by rpki-client