This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: jZ9GOq224BRUisCs69fDjSpDmHYChixLrfw91FtboaE= Subject key identifier: 38:3C:86:29:59:2B:95:C4:3E:78:85:4F:78:4C:D5:89:B3:C8:0C:8C Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 180085F0CE3613AC89E6494CD0237425CD0FC63B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 028E Signing time: Wed 17 Dec 2025 11:42:11 +0000 Manifest this update: Wed 17 Dec 2025 11:37:11 +0000 Manifest next update: Sat 20 Dec 2025 12:39:11 +0000 Files and hashes: 1: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: Y0QuciRTpFDwvV/OBPdTjgLcEkiudatiiHEhsbTutWI=) 2: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: kzF5yTng2nsAricqtS3yvK+w9DfNlAwfQFzAL4v5DWA=) 3: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: G0y3tssGsefR1ItOMtc1BYHuZ0hgATuC18s9snklT+E=) 4: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: t1OWN6gm90SvImzwws28CQ53gTfOaLXKxfqrgXh94Y4=) 5: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 6: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: g6JykGSCyvPJN6suwP4pksfv3CU4McJpDF6g+WQNj7o=) 7: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: FyCE3LyMNMrGnPbdrpK5+sH4y62xX8bxVpZUT6w7BJU=) 8: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: R6+9/1xEHbjnIPv9zkaFZGwCOgiTpaugUkK/c7uH4oo=) 9: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: 2PpG67/Hif4l3pFwRCwEQ7HNcb5HgHsPLTC3ZJMlI9c=) 10: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: btn366wZk5X/LbhkknHgrSEj+dlkWgK4+w6HiC3XS9g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 12:39:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:00:85:f0:ce:36:13:ac:89:e6:49:4c:d0:23:74:25:cd:0f:c6:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Dec 17 11:37:11 2025 GMT Not After : Dec 20 12:39:11 2025 GMT Subject: CN=383C8629592B95C43E78854F784CD589B3C80C8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ff:30:a4:53:89:97:fc:4f:f4:78:0e:1a:6e: 2b:62:88:a8:2a:88:82:f4:99:48:db:a9:3a:21:5b: 2c:0e:10:db:46:1b:d0:0e:55:a1:96:ad:60:26:b8: 28:74:2c:f7:08:f3:d5:08:ce:4b:b2:ba:d2:2a:0f: ba:c6:b0:bb:74:ea:3e:41:fa:96:36:c5:08:1b:c0: c3:45:18:ce:32:cb:71:44:fe:cb:40:ba:aa:1c:dc: 76:9b:f2:6e:e3:39:a8:d5:a8:e9:3f:e1:00:7c:2c: b1:cb:02:1f:e8:84:c7:c1:c6:8f:f5:f2:8f:5f:14: 93:f7:94:78:2a:9c:be:8e:02:26:aa:de:46:15:aa: 24:1c:72:6b:ca:c0:51:ac:a6:6e:31:ff:d8:a1:4d: f5:08:4a:56:f7:aa:77:df:3d:53:be:ed:a4:d6:be: fc:25:5d:fb:95:70:17:6a:55:86:39:34:07:c5:7a: 37:9d:1a:0c:69:11:f7:d4:41:2f:9d:b2:e2:f7:3b: cd:d7:3d:e1:22:7c:4a:15:d5:42:71:1f:c1:d9:0d: f9:5e:7e:83:b7:e9:4a:bd:4c:73:be:31:f4:47:3e: c8:46:6e:94:2c:3c:2c:3a:44:2d:f4:85:95:28:16: 2e:39:7e:60:a5:3f:13:69:13:75:64:6b:7b:2c:9b: 74:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3C:86:29:59:2B:95:C4:3E:78:85:4F:78:4C:D5:89:B3:C8:0C:8C X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:87:94:97:cd:f7:84:7f:93:f5:12:08:ab:9c:fb:b7:10:c7: fb:fa:c2:de:53:ec:97:8c:b1:29:27:5c:70:27:a6:61:d9:7a: b3:2e:4d:80:0a:0b:19:29:8f:a7:69:30:6f:71:2e:15:bb:de: b3:81:db:3c:89:12:77:3d:b7:b0:36:90:c8:38:8a:e8:6f:5d: 13:de:d0:ad:71:05:06:fe:a2:8e:6c:c4:ef:c8:2a:a7:1e:8c: 73:30:14:43:c4:d3:06:5f:05:a5:11:1c:fb:e3:75:62:86:e0: 6e:32:4f:c0:6b:63:8d:1b:96:78:1f:b8:1e:9b:19:ed:ea:fc: 43:2b:55:8a:ff:77:d7:31:62:2f:2b:78:55:82:05:11:3e:74: fa:f7:2c:f1:f8:60:e8:fb:b2:78:19:37:b5:fd:89:16:f7:83: fa:77:51:b4:44:44:e1:f0:cc:56:ab:74:af:c7:28:64:ca:e8: 31:ce:17:cf:df:ea:ee:5b:b7:ed:ba:db:9d:af:e4:d4:a3:09: 1a:ce:16:52:56:78:61:ef:2c:09:03:1b:4d:ed:01:5c:b1:bc: 37:22:e1:9e:2b:dc:33:5b:86:8c:e8:08:35:66:be:7b:8d:8c: 06:f1:55:39:ea:c0:4e:16:1a:11:62:09:3f:4a:13:53:50:56: d3:49:6e:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGACF8M42E6yJ5klM0CN0Jc0PxjswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTEyMTcxMTM3MTFaFw0yNTEyMjAxMjM5MTFaMDMxMTAvBgNV BAMTKDM4M0M4NjI5NTkyQjk1QzQzRTc4ODU0Rjc4NENENTg5QjNDODBDOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq/zCkU4mX/E/0eA4abitiiKgq iIL0mUjbqTohWywOENtGG9AOVaGWrWAmuCh0LPcI89UIzkuyutIqD7rGsLt06j5B +pY2xQgbwMNFGM4yy3FE/stAuqoc3Hab8m7jOajVqOk/4QB8LLHLAh/ohMfBxo/1 8o9fFJP3lHgqnL6OAiaq3kYVqiQccmvKwFGspm4x/9ihTfUISlb3qnffPVO+7aTW vvwlXfuVcBdqVYY5NAfFejedGgxpEffUQS+dsuL3O83XPeEifEoV1UJxH8HZDfle foO36Uq9THO+MfRHPshGbpQsPCw6RC30hZUoFi45fmClPxNpE3Vka3ssm3S7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUODyGKVkrlcQ+eIVPeEzVibPIDIwwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHCHlJfN94R/k/USCKuc+7cQx/v6wt5T7JeM sSknXHAnpmHZerMuTYAKCxkpj6dpMG9xLhW73rOB2zyJEnc9t7A2kMg4iuhvXRPe 0K1xBQb+oo5sxO/IKqcejHMwFEPE0wZfBaURHPvjdWKG4G4yT8BrY40blngfuB6b Ge3q/EMrVYr/d9cxYi8reFWCBRE+dPr3LPH4YOj7sngZN7X9iRb3g/p3UbREROHw zFardK/HKGTK6DHOF8/f6u5bt+26252v5NSjCRrOFlJWeGHvLAkDG03tAVyxvDci 4Z4r3DNbhozoCDVmvnuNjAbxVTnqwE4WGhFiCT9KE1NQVtNJbpg= -----END CERTIFICATE-----Generated at Thu Dec 18 06:55:19 2025 by rpki-client