This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: 1FDpeEqyaOwtmsXm2gTJvGbZHkZVmreuHoUGO+ZQ3a8= Subject key identifier: 40:5E:8E:D0:18:83:E7:ED:9A:0F:09:98:C7:60:54:D4:CD:1D:07:AD Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: B24CE501506E38F77024042F06C0993F945AB3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 04B7 Signing time: Wed 17 Dec 2025 15:40:52 +0000 Manifest this update: Wed 17 Dec 2025 15:35:52 +0000 Manifest next update: Sat 20 Dec 2025 20:55:52 +0000 Files and hashes: 1: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: 10ZellooBgcQK8QozvQ/hAZzixHHosv4QHlj9GIWSVc=) 2: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: mrVcWkYKkNNL+5Z0dua06HvGJVSXAbMBn3dbcArjm/g=) 3: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: fzXYj+/Wlk2+pHJ1gJZrQ6X0Tnu8HMMmPoocnHTOJ8E=) 4: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: BUWXw4dtky6u3IS1OVmdebvECXrPIBW5iPpOPegzgSU=) 5: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: qNe08ONmrtJrbqnJHhzOzL4yLMKznA4CGtzFIsSxWok=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 20:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: b2:4c:e5:01:50:6e:38:f7:70:24:04:2f:06:c0:99:3f:94:5a:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Dec 17 15:35:52 2025 GMT Not After : Dec 20 20:55:52 2025 GMT Subject: CN=405E8ED01883E7ED9A0F0998C76054D4CD1D07AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e8:1d:fc:93:40:c3:ce:e5:10:62:5b:77:ce: fb:77:33:72:13:65:e6:d9:c5:5d:18:b9:21:8e:54: d6:fc:ba:45:96:39:d9:1c:cd:24:33:9b:91:c6:ec: 74:4a:08:87:2a:4b:90:cd:57:6a:9c:32:c8:45:3b: 67:26:ed:52:9d:46:b7:c9:b7:31:a5:fc:15:a5:1d: b6:44:34:b0:ff:b1:c4:76:34:dd:82:54:9f:36:0c: 32:80:ac:95:31:11:4f:ab:e7:d3:bd:ce:12:d8:3f: 5e:9a:f7:9c:47:49:c1:79:12:57:41:07:21:07:38: 8e:fc:bd:70:5d:01:5b:d4:c4:33:5e:f3:11:75:bb: 16:e8:62:00:a3:86:29:4b:56:a9:9e:37:53:cf:43: 59:41:75:20:27:af:4b:81:06:b6:a8:50:32:60:0b: 40:45:1b:91:79:90:0e:90:c7:b9:2f:70:2d:fa:7f: 51:4a:cf:f4:00:38:40:c1:77:5a:4e:77:e9:98:99: 86:8b:46:9e:47:45:cb:36:60:0c:46:99:40:9a:ba: b4:1c:b5:25:f5:06:85:ce:74:cf:61:b0:42:de:8e: 8f:d3:7c:30:00:9a:9e:1b:bb:dc:d4:0b:fc:32:48: f1:44:e9:18:cf:05:9d:3e:c5:d8:01:38:a0:a3:28: 16:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5E:8E:D0:18:83:E7:ED:9A:0F:09:98:C7:60:54:D4:CD:1D:07:AD X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:1e:92:11:90:d8:1c:76:66:66:08:9e:59:ed:3c:a1:06:55: f2:0f:e2:05:28:16:85:41:83:62:77:62:44:57:43:46:22:be: 5a:57:6b:7d:43:a1:1e:77:90:13:af:69:27:e9:b9:02:a5:e0: 56:2d:7f:ba:a2:43:7f:7f:e7:c7:ee:09:f0:39:85:1f:c4:79: 11:9c:93:b2:53:0a:2c:69:86:48:08:b0:eb:1e:81:18:e8:2a: d9:07:fb:2d:0b:96:3f:16:4c:a2:d7:0b:17:1f:a3:e0:84:1c: 16:3d:48:2c:29:4e:82:d5:c7:f9:23:ff:22:58:00:13:0e:87: 92:a9:05:36:9e:8a:e2:ea:a5:97:12:c4:76:61:07:d0:95:ae: 1b:50:46:09:d2:03:f2:05:80:5c:a9:7f:cb:9b:81:4b:df:6d: 04:df:ae:54:5a:18:b9:47:44:d6:cd:11:ae:d4:5c:c5:59:a4: 3c:49:ad:1b:e2:6b:0b:1a:ac:0e:c5:2e:9e:15:65:fc:2d:22: 5b:54:7f:40:07:46:69:e8:2e:91:3d:7c:09:35:35:31:e0:b5: 43:0d:c8:c1:c9:b7:48:b4:ab:bf:10:d2:0c:29:2d:2a:15:f8: b1:7a:97:a0:6c:eb:29:d1:d2:65:fc:33:1f:1d:39:8c:68:0e: 5b:4a:40:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUALJM5QFQbjj3cCQELwbAmT+UWrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTEyMTcxNTM1NTJaFw0yNTEyMjAyMDU1NTJaMDMxMTAvBgNV BAMTKDQwNUU4RUQwMTg4M0U3RUQ5QTBGMDk5OEM3NjA1NEQ0Q0QxRDA3QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv6B38k0DDzuUQYlt3zvt3M3IT ZebZxV0YuSGOVNb8ukWWOdkczSQzm5HG7HRKCIcqS5DNV2qcMshFO2cm7VKdRrfJ tzGl/BWlHbZENLD/scR2NN2CVJ82DDKArJUxEU+r59O9zhLYP16a95xHScF5EldB ByEHOI78vXBdAVvUxDNe8xF1uxboYgCjhilLVqmeN1PPQ1lBdSAnr0uBBraoUDJg C0BFG5F5kA6Qx7kvcC36f1FKz/QAOEDBd1pOd+mYmYaLRp5HRcs2YAxGmUCaurQc tSX1BoXOdM9hsELejo/TfDAAmp4bu9zUC/wySPFE6RjPBZ0+xdgBOKCjKBZJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQF6O0BiD5+2aDwmYx2BU1M0dB60wHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABUekhGQ2Bx2ZmYInlntPKEGVfIP4gUoFoVB g2J3YkRXQ0YivlpXa31DoR53kBOvaSfpuQKl4FYtf7qiQ39/58fuCfA5hR/EeRGc k7JTCixphkgIsOsegRjoKtkH+y0Llj8WTKLXCxcfo+CEHBY9SCwpToLVx/kj/yJY ABMOh5KpBTaeiuLqpZcSxHZhB9CVrhtQRgnSA/IFgFypf8ubgUvfbQTfrlRaGLlH RNbNEa7UXMVZpDxJrRviawsarA7FLp4VZfwtIltUf0AHRmnoLpE9fAk1NTHgtUMN yMHJt0i0q78Q0gwpLSoV+LF6l6Bs6ynR0mX8Mx8dOYxoDltKQBI= -----END CERTIFICATE-----Generated at Fri Dec 19 11:16:58 2025 by rpki-client