This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft (raw, json) Hash identifier: TkHlcSfvGkvFK06HWN5FjL1HRQFUsyt2XVIwtbHt3qI= Subject key identifier: 79:D4:AF:5C:21:3C:EF:BA:52:49:4A:39:19:1D:05:3F:2C:93:EF:86 Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 786E4C8903D958361C3F36773C35B8440F30BEE6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft Manifest number: 0505 Signing time: Fri 19 Dec 2025 14:02:30 +0000 Manifest this update: Fri 19 Dec 2025 13:57:30 +0000 Manifest next update: Mon 22 Dec 2025 21:31:30 +0000 Files and hashes: 1: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (hash: 01o8IIdEBMNVP2rARnAtQNMxpIRvEPCoH/cFEbdvFjA=) 2: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (hash: lbqLm4gtIn2PpfyD5NIDm37sX2MwPhaC2Wn66mlRkRA=) 3: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl (hash: bgW05IbSafFtmT5CJWWFqRruhwKR1v2euYh+df5QUO8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 21:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:6e:4c:89:03:d9:58:36:1c:3f:36:77:3c:35:b8:44:0f:30:be:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Dec 19 13:57:30 2025 GMT Not After : Dec 22 21:31:30 2025 GMT Subject: CN=79D4AF5C213CEFBA52494A39191D053F2C93EF86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bc:27:1e:a6:16:de:4d:4f:39:bc:94:af:e3: 30:b2:c5:c1:97:84:eb:22:e6:46:83:19:4b:7b:e1: aa:81:e9:65:db:6d:d1:34:82:66:cf:11:ee:d8:a2: 3b:e9:f1:21:9f:03:a3:d5:20:40:dd:e9:08:01:86: b9:5d:ab:08:26:ad:ef:58:8d:a6:2b:17:e8:1b:21: c8:e7:23:85:c9:c2:75:88:34:3b:53:28:3d:03:e4: 01:d7:8c:06:d5:8c:dd:8a:67:c8:48:1f:cd:8e:05: 4a:b2:90:cf:ef:67:3d:b2:45:cd:a1:ce:80:f6:21: 86:85:ee:7f:b5:51:35:ee:10:99:8d:37:79:73:64: 1a:42:8f:a2:3d:c0:5c:9d:d2:88:87:a1:c6:c2:dc: 86:37:3f:6e:26:3a:28:c9:fc:bc:f9:d2:03:0f:61: e9:28:98:b7:e4:2a:b9:3c:2f:7f:58:ba:e6:57:b7: 63:15:eb:70:b1:04:a3:f3:19:12:31:ef:54:a6:d1: 2f:34:da:16:06:fb:d0:73:ab:bf:32:58:f2:59:2a: 30:74:4a:3e:fd:7d:65:7e:a4:88:90:b3:75:c3:be: 64:0c:35:28:9b:5a:e5:43:ef:dc:15:5a:b3:21:89: 8f:f4:16:48:68:78:69:92:91:7a:1e:6c:cc:ca:1a: fb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D4:AF:5C:21:3C:EF:BA:52:49:4A:39:19:1D:05:3F:2C:93:EF:86 X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:ac:78:d3:86:67:dc:4e:58:e4:5b:63:5c:8c:a6:09:57:c9: 3e:02:03:7a:49:9e:12:f6:b8:0d:aa:a5:2f:7f:87:2b:5d:c8: 58:b8:bf:59:f3:91:c8:eb:ee:93:17:3d:cd:3d:79:12:cc:3d: e5:4f:00:fe:3f:30:26:a8:82:16:1f:5d:09:a9:57:fd:ae:d5: 8d:70:9e:18:28:75:23:19:05:48:6e:c4:fe:ed:3d:ae:b3:15: 1e:90:35:b9:cd:58:0a:97:8c:fd:ec:98:54:f7:b8:02:b8:13: 3b:5b:80:1c:f0:67:ae:c7:e5:96:82:25:65:64:2d:d3:57:e0: ed:78:20:46:2c:f9:b1:0d:41:ed:a9:b1:5f:42:eb:bb:dc:65: 84:31:00:06:f8:dd:a3:62:25:a5:f7:8e:ea:44:2a:84:c3:5d: 81:10:d0:a8:5a:34:17:f4:fc:57:ed:cb:1b:94:4f:d4:f0:d5: 95:de:45:65:a7:8e:f4:26:ef:72:5b:9d:86:b2:bf:ab:d7:f2: 90:4a:10:db:bb:94:75:22:ff:9c:8e:a4:af:4f:52:6a:6e:e0: 9b:ca:da:36:9d:9c:d1:1d:36:20:07:f0:ef:00:0c:f9:18:90: 0f:04:71:e7:17:a0:18:e3:60:75:93:0a:76:28:3e:65:8b:a2: 26:a1:d6:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeG5MiQPZWDYcPzZ3PDW4RA8wvuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNTEyMTkxMzU3MzBaFw0yNTEyMjIyMTMxMzBaMDMxMTAvBgNV BAMTKDc5RDRBRjVDMjEzQ0VGQkE1MjQ5NEEzOTE5MUQwNTNGMkM5M0VGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjvCcephbeTU85vJSv4zCyxcGX hOsi5kaDGUt74aqB6WXbbdE0gmbPEe7Yojvp8SGfA6PVIEDd6QgBhrldqwgmre9Y jaYrF+gbIcjnI4XJwnWINDtTKD0D5AHXjAbVjN2KZ8hIH82OBUqykM/vZz2yRc2h zoD2IYaF7n+1UTXuEJmNN3lzZBpCj6I9wFyd0oiHocbC3IY3P24mOijJ/Lz50gMP YekomLfkKrk8L39YuuZXt2MV63CxBKPzGRIx71Sm0S802hYG+9Bzq78yWPJZKjB0 Sj79fWV+pIiQs3XDvmQMNSibWuVD79wVWrMhiY/0FkhoeGmSkXoebMzKGvtxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUedSvXCE877pSSUo5GR0FPyyT74YwHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2UxZWE1MTMtYWM2ZS00YTVmLWIz ZWItZDUzNTJjYWY0ODZiLzAvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2 QTM2OEY4MDQxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKqseNOGZ9xOWORbY1yMpglXyT4CA3pJnhL2 uA2qpS9/hytdyFi4v1nzkcjr7pMXPc09eRLMPeVPAP4/MCaoghYfXQmpV/2u1Y1w nhgodSMZBUhuxP7tPa6zFR6QNbnNWAqXjP3smFT3uAK4EztbgBzwZ67H5ZaCJWVk LdNX4O14IEYs+bENQe2psV9C67vcZYQxAAb43aNiJaX3jupEKoTDXYEQ0KhaNBf0 /FftyxuUT9Tw1ZXeRWWnjvQm73JbnYayv6vX8pBKENu7lHUi/5yOpK9PUmpu4JvK 2jadnNEdNiAH8O8ADPkYkA8EcecXoBjjYHWTCnYoPmWLoiah1s8= -----END CERTIFICATE-----Generated at Sun Dec 21 05:50:50 2025 by rpki-client