This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: QJpWF0Syoj3C8N3lwjAUF5DVWRHUR7J2XnWDrAib7Ko= Subject key identifier: 67:6F:DF:99:AA:93:7A:42:71:46:16:80:9A:FC:4D:5B:AF:A1:D2:5E Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 5363CAB3304E1A07D8975F6A0CD8CABE9A9A0CC2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01FE Signing time: Tue 23 Dec 2025 00:12:27 +0000 Manifest this update: Tue 23 Dec 2025 00:07:27 +0000 Manifest next update: Fri 26 Dec 2025 09:04:27 +0000 Files and hashes: 1: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: 4dUh7D907EDxxw3ZehkEAjL6ZRpVr+CqleS47vGI9AI=) 2: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: 9XabV5C+bxTzwQpxWRFJ2J0ODxVlFWpwxY4ZIRRll5s=) 3: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU=) 4: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 09:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:63:ca:b3:30:4e:1a:07:d8:97:5f:6a:0c:d8:ca:be:9a:9a:0c:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Dec 23 00:07:27 2025 GMT Not After : Dec 26 09:04:27 2025 GMT Subject: CN=676FDF99AA937A42714616809AFC4D5BAFA1D25E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d3:35:d5:f5:08:81:16:a7:83:bd:a8:85:df: 63:61:24:28:10:e5:e3:14:6c:d8:08:79:bf:7b:f4: 02:2d:15:fb:5e:45:d2:fa:2a:fd:f4:00:7d:1b:60: 95:8e:ea:f5:16:49:c3:33:76:88:33:82:25:b5:f9: fa:3c:f3:b9:a9:b5:14:e2:7e:4a:03:1c:80:6c:23: 7f:ab:3a:b8:cc:f9:fb:f3:f1:d1:41:6b:30:65:76: d8:1d:fd:97:3e:64:5c:56:a6:a8:42:04:78:55:56: 49:5b:65:98:21:dc:07:dc:97:18:c4:e3:64:4b:30: 4d:d7:14:46:f8:e4:de:c0:41:ee:52:3b:55:91:78: a0:ef:32:c9:bb:d4:e9:f2:1f:16:9d:3c:eb:3d:36: aa:3f:6a:03:8e:f8:59:a4:d2:1c:8c:d8:02:6a:ee: 08:07:7d:ce:11:61:2a:7e:0f:5d:bd:8f:25:88:5b: 7a:38:29:f9:9c:02:f8:cf:dd:23:ec:11:7d:3e:5c: 8e:89:73:3e:33:6e:6f:7a:05:ed:eb:31:22:f8:70: e0:c8:96:f5:a7:8a:8f:7f:b2:1b:02:63:e1:f3:ac: 5a:ee:43:21:ad:bf:f1:d6:0d:e2:08:7f:45:57:aa: d6:0d:f8:84:8a:63:8f:68:e7:00:33:9d:ce:21:84: b3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6F:DF:99:AA:93:7A:42:71:46:16:80:9A:FC:4D:5B:AF:A1:D2:5E X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:77:e3:14:1a:48:17:3f:72:de:54:29:32:eb:20:df:5e:9c: 47:e8:33:e7:a8:e6:f6:f0:f0:6c:85:f9:6b:1c:3a:48:14:ec: df:03:9c:ea:85:16:9f:97:40:a6:8a:1b:0c:77:9c:80:ea:b1: f7:37:a1:cc:0a:05:a0:4f:b9:ed:0d:e5:4c:a8:46:28:77:93: d5:91:f7:cc:29:c6:9c:3f:02:b8:d9:dc:4b:54:a6:b0:3b:19: 35:f0:df:34:a2:b1:36:e2:57:07:1e:33:c8:23:a7:1a:08:78: a5:b9:dc:de:07:24:8d:56:23:f1:d7:9b:48:fe:d6:43:0c:b5: 52:b4:44:7f:81:4f:04:8e:f4:d4:83:5d:c9:33:ed:9b:7a:7c: d1:4b:58:bb:2c:26:91:b1:e8:e6:b4:9a:df:ce:cf:64:81:4f: f6:a8:10:2f:55:ca:4f:1f:14:f8:38:e6:e2:d3:90:8e:5b:80: 1b:d4:cb:74:b5:43:c2:6c:e6:14:66:ad:f9:f2:35:b2:06:1f: 6a:8c:ee:6e:f7:09:d3:98:d1:9c:33:12:8f:37:c0:b3:97:08: fc:e5:70:57:a8:50:c3:99:c0:5c:4d:84:16:76:31:43:7d:b4: 07:e6:95:c0:32:fc:8b:8a:f0:67:93:a2:a9:00:e7:93:68:dc: e8:71:af:3f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU2PKszBOGgfYl19qDNjKvpqaDMIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTEyMjMwMDA3MjdaFw0yNTEyMjYwOTA0MjdaMDMxMTAvBgNV BAMTKDY3NkZERjk5QUE5MzdBNDI3MTQ2MTY4MDlBRkM0RDVCQUZBMUQyNUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC50zXV9QiBFqeDvaiF32NhJCgQ 5eMUbNgIeb979AItFfteRdL6Kv30AH0bYJWO6vUWScMzdogzgiW1+fo887mptRTi fkoDHIBsI3+rOrjM+fvz8dFBazBldtgd/Zc+ZFxWpqhCBHhVVklbZZgh3AfclxjE 42RLME3XFEb45N7AQe5SO1WReKDvMsm71OnyHxadPOs9Nqo/agOO+Fmk0hyM2AJq 7ggHfc4RYSp+D129jyWIW3o4KfmcAvjP3SPsEX0+XI6Jcz4zbm96Be3rMSL4cODI lvWnio9/shsCY+HzrFruQyGtv/HWDeIIf0VXqtYN+ISKY49o5wAznc4hhLNxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZ2/fmaqTekJxRhaAmvxNW6+h0l4wHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALZ34xQaSBc/ct5UKTLrIN9enEfoM+eo5vbw 8GyF+WscOkgU7N8DnOqFFp+XQKaKGwx3nIDqsfc3ocwKBaBPue0N5UyoRih3k9WR 98wpxpw/ArjZ3EtUprA7GTXw3zSisTbiVwceM8gjpxoIeKW53N4HJI1WI/HXm0j+ 1kMMtVK0RH+BTwSO9NSDXckz7Zt6fNFLWLssJpGx6Oa0mt/Oz2SBT/aoEC9Vyk8f FPg45uLTkI5bgBvUy3S1Q8Js5hRmrfnyNbIGH2qM7m73CdOY0ZwzEo83wLOXCPzl cFeoUMOZwFxNhBZ2MUN9tAfmlcAy/IuK8GeToqkA55No3Ohxrz8= -----END CERTIFICATE-----Generated at Wed Dec 24 14:52:52 2025 by rpki-client