This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft File: 20EF9BB996F984E995F9FF0658F0B90CB903B897.mft (raw, json) Hash identifier: IY6BY0PxLph0aPhCCM4aFtfTXKabtgE4mBQaZAV6lnU= Subject key identifier: 65:96:8D:3A:69:04:83:C8:3C:BA:27:6F:5D:83:E7:5D:AF:B2:69:6B Authority key identifier: 20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 Certificate issuer: /CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Certificate serial: 1D58E361A144D68960BBF66D9AAB749FF6E79D11 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft Manifest number: 023E Signing time: Thu 18 Dec 2025 03:32:01 +0000 Manifest this update: Thu 18 Dec 2025 03:27:01 +0000 Manifest next update: Sun 21 Dec 2025 12:32:01 +0000 Files and hashes: 1: 3130332e3138392e3131302e302f32332d3233203d3e20313439373439.roa (hash: iDioe3jjxT7o8WJUfZMX4dcAtJo9aoi+lZoEhp66IbU=) 2: 3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa (hash: gtfNgouP3xqwRZMc2rLq5YYKkcJUcC8NmXsS5NHSV5Y=) 3: 20EF9BB996F984E995F9FF0658F0B90CB903B897.crl (hash: HcUrvCR6zugQX5eOELA0jDOmwVGJDOy2ZqSUnwBHVaI=) 4: 3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa (hash: vEIWSBdkXeXYMMZ1JkgEqdYq9VUkjPtTYb4B2b9jIwo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 12:32:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:58:e3:61:a1:44:d6:89:60:bb:f6:6d:9a:ab:74:9f:f6:e7:9d:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Validity Not Before: Dec 18 03:27:01 2025 GMT Not After : Dec 21 12:32:01 2025 GMT Subject: CN=65968D3A690483C83CBA276F5D83E75DAFB2696B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:96:ae:01:9c:22:eb:34:0d:ec:7e:ec:0e:61: d7:28:37:a0:4c:f2:36:28:c5:c2:9b:f3:ef:47:01: 90:d4:6c:a7:71:bc:cb:e9:32:c1:47:15:f3:d5:5c: 46:d4:97:be:5d:30:47:20:b6:cc:0e:88:e2:86:cc: 9e:d1:c5:7f:be:68:b7:48:ac:53:0d:22:50:76:bf: 95:1d:82:f7:52:6b:94:9e:10:cb:ca:b3:df:94:56: 10:b4:c4:86:a8:1b:bd:61:97:8f:92:fe:b9:8e:b7: 12:52:76:58:00:dd:a2:1b:a3:1d:26:12:23:12:37: ba:7f:15:de:d0:94:21:99:61:a6:20:21:2f:3b:e4: 7b:bb:2a:10:46:22:b9:7b:94:ab:43:66:75:b8:3b: 3a:a4:66:5a:da:45:dc:72:8a:38:38:83:ca:2e:72: c6:1e:b1:ea:30:d5:20:6a:60:1d:9b:23:18:3a:4e: a6:94:bb:87:d7:5f:2a:3e:90:c3:78:ce:4c:47:a5: 9c:f8:b8:f6:64:a0:9f:94:a7:e6:7c:bf:96:a0:79: ee:f4:8b:65:94:f6:42:70:df:2a:82:40:2f:e9:42: 47:29:32:27:b1:92:2b:2d:98:c7:95:b6:87:f4:e4: cb:3e:aa:bb:a9:08:75:eb:2f:64:18:df:82:a8:47: 09:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:96:8D:3A:69:04:83:C8:3C:BA:27:6F:5D:83:E7:5D:AF:B2:69:6B X509v3 Authority Key Identifier: keyid:20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:a3:61:c8:00:38:03:59:eb:02:db:09:a8:55:a5:33:b4:b1: 7f:1f:34:b3:7a:9b:02:10:eb:ea:3a:70:94:1e:9a:31:67:e6: a0:94:a5:a0:cf:03:86:66:4d:0f:eb:8d:05:66:f4:c5:41:1d: 36:e2:c5:ff:54:df:02:5f:ff:dd:af:3e:42:26:07:e6:48:07: 9d:dc:b7:51:0b:17:26:1c:29:2c:8d:dc:07:52:cc:c1:99:2e: 2c:17:9a:f9:f5:bc:ca:54:ff:cd:33:cd:5c:18:fd:dd:30:93: ae:6c:ad:cf:ed:f6:53:34:c2:9f:42:24:18:ac:7d:e3:1a:28: 95:d1:db:b9:ba:74:bc:af:0d:ae:56:0d:df:5c:ec:0b:38:de: 73:48:1a:05:f7:e5:bc:0d:f5:7f:34:2b:8a:99:56:95:7c:76: 0f:55:54:d2:9f:d6:9a:69:2f:90:4e:91:dd:38:f6:f0:97:97: 04:ea:3f:92:be:a0:91:a4:01:25:a9:11:7e:f2:7b:82:8e:c5: b0:fd:f8:1b:e6:fd:9a:1b:d8:38:c2:f1:c9:ad:05:d1:7a:77: 4c:7b:4c:fa:c2:b8:21:4b:13:e8:62:f8:a0:d4:4f:1b:06:0b: 76:58:1f:c5:c4:78:d4:22:cd:66:bc:3b:e0:9f:a8:d9:48:51: 9e:fd:a0:7f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHVjjYaFE1olgu/Ztmqt0n/bnnREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENC OTAzQjg5NzAeFw0yNTEyMTgwMzI3MDFaFw0yNTEyMjExMjMyMDFaMDMxMTAvBgNV BAMTKDY1OTY4RDNBNjkwNDgzQzgzQ0JBMjc2RjVEODNFNzVEQUZCMjY5NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtlq4BnCLrNA3sfuwOYdcoN6BM 8jYoxcKb8+9HAZDUbKdxvMvpMsFHFfPVXEbUl75dMEcgtswOiOKGzJ7RxX++aLdI rFMNIlB2v5UdgvdSa5SeEMvKs9+UVhC0xIaoG71hl4+S/rmOtxJSdlgA3aIbox0m EiMSN7p/Fd7QlCGZYaYgIS875Hu7KhBGIrl7lKtDZnW4OzqkZlraRdxyijg4g8ou csYeseow1SBqYB2bIxg6TqaUu4fXXyo+kMN4zkxHpZz4uPZkoJ+Up+Z8v5agee70 i2WU9kJw3yqCQC/pQkcpMiexkistmMeVtof05Ms+qrupCHXrL2QY34KoRwmvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZZaNOmkEg8g8uidvXYPnXa+yaWswHwYDVR0j BBgwFoAUIO+buZb5hOmV+f8GWPC5DLkDuJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDVlNWEzMC0wODAyLTRjNWMtOTQ3ZS05OGVmMjg1ZjRmNmIvMC8yMEVGOUJCOTk2 Rjk4NEU5OTVGOUZGMDY1OEYwQjkwQ0I5MDNCODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENCOTAz Qjg5Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA1ZTVhMzAtMDgwMi00YzVjLTk0 N2UtOThlZjI4NWY0ZjZiLzAvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5 MENCOTAzQjg5Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEOjYcgAOANZ6wLbCahVpTO0sX8fNLN6mwIQ 6+o6cJQemjFn5qCUpaDPA4ZmTQ/rjQVm9MVBHTbixf9U3wJf/92vPkImB+ZIB53c t1ELFyYcKSyN3AdSzMGZLiwXmvn1vMpU/80zzVwY/d0wk65src/t9lM0wp9CJBis feMaKJXR27m6dLyvDa5WDd9c7As43nNIGgX35bwN9X80K4qZVpV8dg9VVNKf1ppp L5BOkd049vCXlwTqP5K+oJGkASWpEX7ye4KOxbD9+Bvm/Zob2DjC8cmtBdF6d0x7 TPrCuCFLE+hi+KDUTxsGC3ZYH8XEeNQizWa8O+CfqNlIUZ79oH8= -----END CERTIFICATE-----Generated at Sat Dec 20 12:08:03 2025 by rpki-client