This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: +Vcy224ERRErt2egAPkD16rrY00aE4hSaQlNT/reb8s= Subject key identifier: 01:96:39:CE:05:49:D5:85:2F:4A:E1:7D:BD:0E:8F:8A:DB:29:2E:FE Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 370755D0EA4AF40B244E8F69FA2C8F3F8BAF5ED4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01FC Signing time: Thu 18 Dec 2025 13:31:52 +0000 Manifest this update: Thu 18 Dec 2025 13:26:52 +0000 Manifest next update: Sun 21 Dec 2025 14:25:52 +0000 Files and hashes: 1: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw=) 2: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU=) 3: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: pcQCkrXyzp5UJvfE8x9k7Y6ZvQ2pbY0lisvG3lupbrA=) 4: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: 9XabV5C+bxTzwQpxWRFJ2J0ODxVlFWpwxY4ZIRRll5s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 14:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:07:55:d0:ea:4a:f4:0b:24:4e:8f:69:fa:2c:8f:3f:8b:af:5e:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Dec 18 13:26:52 2025 GMT Not After : Dec 21 14:25:52 2025 GMT Subject: CN=019639CE0549D5852F4AE17DBD0E8F8ADB292EFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e5:df:a7:cf:fb:3d:ae:7f:ca:84:8d:59:d0: 01:ce:b8:27:a4:77:b3:11:d8:d6:e2:ab:32:12:0b: 2b:85:1d:1f:3e:bd:0c:41:b3:49:4d:60:c7:85:c4: 1c:35:47:cc:87:ae:24:e0:ec:40:8a:dc:52:c1:fd: c0:01:30:0c:2d:f7:6f:a5:19:af:6c:9d:3b:2d:eb: 7f:14:43:5d:0e:41:25:00:53:c8:04:f7:8b:e0:bb: 62:71:ac:81:48:68:9b:a0:83:cd:66:cb:6a:73:9c: fc:1f:58:a5:de:01:88:a4:0e:06:2f:c8:a9:ac:9c: 0d:39:13:25:ff:9e:67:b8:1f:fe:5e:4f:70:de:17: 46:5f:a8:2c:a8:1b:9f:d7:5f:c9:7b:8e:f2:42:7f: 8c:3f:d7:d6:e0:f9:8a:28:57:e4:03:99:31:64:04: 8c:fc:14:21:5c:86:d1:54:b8:31:98:53:5e:cf:ab: 04:a4:46:d6:60:45:7b:d1:35:5d:0f:34:61:c8:43: 97:81:bb:d4:a6:96:48:3a:35:8a:77:89:53:3f:2d: 32:e3:55:2c:81:47:ab:e7:3b:7b:7c:65:ea:c5:9e: 06:6b:9c:24:f1:ac:eb:0c:32:1f:41:84:a5:b1:86: 62:69:75:41:ed:1c:34:46:3d:5e:83:a0:ba:e8:00: 05:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:96:39:CE:05:49:D5:85:2F:4A:E1:7D:BD:0E:8F:8A:DB:29:2E:FE X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:7b:59:d4:5c:db:96:d7:c4:14:68:d8:de:b2:aa:8e:10:a6: 86:c6:2b:32:c5:d3:c1:09:5e:36:7a:2c:e5:a8:2e:7a:76:de: a8:61:02:22:70:74:b2:78:1a:b8:85:e2:64:eb:fa:da:54:f1: 7d:00:35:51:2b:06:25:30:8f:08:f2:eb:12:c2:f9:36:51:df: 1e:d8:0d:c2:4e:79:0a:a4:4c:3a:5e:3e:9c:e2:fa:fd:26:c4: 28:a8:36:45:ad:68:a5:e9:3f:c3:0d:ae:13:ca:30:e9:a4:97: c2:15:31:45:a8:0d:63:b7:6c:b6:cf:fd:24:44:3f:ff:c8:d9: 44:9f:c5:2b:2f:9f:f7:6d:59:d8:df:ae:b0:8b:a5:08:36:9c: 6e:e0:f6:78:9c:0e:c1:69:ff:ef:9e:75:84:9b:cc:87:c5:18: 75:2c:0e:c8:d1:bf:24:22:23:b5:94:b6:be:ee:77:e2:e4:59: bd:fd:1d:40:fd:6f:ff:f4:b8:78:df:27:86:e3:87:fc:17:8e: 96:7e:51:34:76:be:ff:55:3f:37:c2:a0:34:44:33:5e:e2:25: 46:5d:6c:89:68:36:5f:cd:d0:a0:a1:b2:d2:78:09:ec:a5:0c: cf:2d:87:79:bd:76:89:a8:a7:70:46:da:ca:68:32:11:68:ea: dd:f4:32:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNwdV0OpK9AskTo9p+iyPP4uvXtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTEyMTgxMzI2NTJaFw0yNTEyMjExNDI1NTJaMDMxMTAvBgNV BAMTKDAxOTYzOUNFMDU0OUQ1ODUyRjRBRTE3REJEMEU4RjhBREIyOTJFRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF5d+nz/s9rn/KhI1Z0AHOuCek d7MR2NbiqzISCyuFHR8+vQxBs0lNYMeFxBw1R8yHriTg7ECK3FLB/cABMAwt92+l Ga9snTst638UQ10OQSUAU8gE94vgu2JxrIFIaJugg81my2pznPwfWKXeAYikDgYv yKmsnA05EyX/nme4H/5eT3DeF0ZfqCyoG5/XX8l7jvJCf4w/19bg+YooV+QDmTFk BIz8FCFchtFUuDGYU17PqwSkRtZgRXvRNV0PNGHIQ5eBu9Smlkg6NYp3iVM/LTLj VSyBR6vnO3t8ZerFngZrnCTxrOsMMh9BhKWxhmJpdUHtHDRGPV6DoLroAAVdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAZY5zgVJ1YUvSuF9vQ6PitspLv4wHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACN7WdRc25bXxBRo2N6yqo4QpobGKzLF08EJ XjZ6LOWoLnp23qhhAiJwdLJ4GriF4mTr+tpU8X0ANVErBiUwjwjy6xLC+TZR3x7Y DcJOeQqkTDpePpzi+v0mxCioNkWtaKXpP8MNrhPKMOmkl8IVMUWoDWO3bLbP/SRE P//I2USfxSsvn/dtWdjfrrCLpQg2nG7g9nicDsFp/++edYSbzIfFGHUsDsjRvyQi I7WUtr7ud+LkWb39HUD9b//0uHjfJ4bjh/wXjpZ+UTR2vv9VPzfCoDREM17iJUZd bIloNl/N0KChstJ4CeylDM8th3m9domop3BG2spoMhFo6t30MnU= -----END CERTIFICATE-----Generated at Fri Dec 19 18:12:17 2025 by rpki-client