This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft File: D2EF21DBD545255BED30EEC34623F204A3E12D23.mft (raw, json) Hash identifier: JFUfy86BwJ8A19UmkTLPLy7dCnr402iCWG2OIJId7po= Subject key identifier: B3:1D:73:A4:07:29:29:BD:44:78:E4:26:E2:9C:A5:E9:28:C1:FE:D9 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 17E55B7EEBE340B8F0F13749778D0E045CB24D1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft Manifest number: 052F Signing time: Thu 18 Dec 2025 01:51:16 +0000 Manifest this update: Thu 18 Dec 2025 01:46:16 +0000 Manifest next update: Sun 21 Dec 2025 04:24:16 +0000 Files and hashes: 1: 3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa (hash: 2COjLCJ4YEuRoqvYvSrj9dQC5huF+G+dAbpMe2HpJLo=) 2: D2EF21DBD545255BED30EEC34623F204A3E12D23.crl (hash: QxpasimFL7zXQrBGVv07W2C4dQy9iIcpYDBoeZJkbkc=) 3: 3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa (hash: W2IYXy+JkbGpp85/sS2UKLUazxQpNz2N8iZifbHeJpI=) 4: 3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa (hash: w7Chi4gZxBYt1ZeGb/YO7tH8OTI2H/0aS5PoiZEPc/Y=) 5: 323430323a316134303a3a2f33322d3332203d3e20313336383639.roa (hash: HI0hJJXTQDhzD7pTczCRmyIdw4yYJFsaIwjzSTbxsrY=) 6: 3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa (hash: iReeweCReiVdyDxdcHaFTjeSzHc3cSR3SFaF6DPJP8s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 04:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:e5:5b:7e:eb:e3:40:b8:f0:f1:37:49:77:8d:0e:04:5c:b2:4d:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Dec 18 01:46:16 2025 GMT Not After : Dec 21 04:24:16 2025 GMT Subject: CN=B31D73A4072929BD4478E426E29CA5E928C1FED9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:61:30:3f:0f:2c:66:14:ea:2d:0e:d9:87:f8: 21:fb:07:f1:a3:ff:0b:42:fa:37:70:b5:58:6a:8e: 82:a8:e6:bc:b5:4a:64:48:d9:7c:44:06:d5:a8:17: 7d:89:50:82:cd:dc:56:fe:a7:06:ce:97:e5:09:4a: 9d:7f:f0:9c:0e:8e:fa:3f:ed:14:e6:31:b9:90:b6: 9f:37:d3:5e:5a:2d:d4:3d:ce:a9:f3:e0:17:2c:a7: c4:a5:c0:58:5a:ac:ba:92:f0:c5:47:c2:53:44:c5: 28:42:42:1b:df:e7:6a:e4:2c:d1:d9:4f:52:ef:bc: 42:40:39:ab:d4:ea:b6:2c:86:61:68:59:88:3c:83: 53:f7:bd:1b:45:da:b4:6c:b2:1b:6a:05:d1:6a:ab: 7f:6b:55:3e:0a:cf:d2:46:bd:dd:0b:2f:30:63:a5: 4a:5f:dc:b6:85:ba:fe:fa:5f:2e:77:bb:a8:dd:ee: d6:58:31:d8:0b:05:f3:4a:79:42:76:36:80:64:1e: 3a:a4:e3:25:0b:af:87:b3:40:55:8d:65:18:06:5a: a4:fc:d4:be:5b:24:29:04:9d:d0:46:cb:fc:6f:95: 16:be:59:bf:3b:b9:e7:c0:fb:d9:18:ae:2d:60:d6: 78:fb:a9:de:94:7e:51:9b:97:6d:2d:78:0d:78:e0: fd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:1D:73:A4:07:29:29:BD:44:78:E4:26:E2:9C:A5:E9:28:C1:FE:D9 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:8f:f7:f8:e2:8b:a2:c9:68:36:f8:7a:e5:0d:56:1c:08:33: e7:5b:b9:0e:5a:66:15:c1:e8:96:ff:ea:08:2e:e4:f9:a5:61: 52:be:fe:28:4a:51:7b:03:c0:54:00:eb:1a:32:d7:db:22:3e: 51:9b:28:02:b6:a3:88:72:02:60:80:e2:1e:8d:7b:0d:fc:b8: 45:7d:51:60:ad:54:8e:37:3a:6f:df:af:3e:75:af:d3:c5:dc: 6e:e9:73:ef:d1:5b:75:39:33:18:80:20:90:41:57:08:6b:49: 76:8a:b8:5c:22:f7:f6:54:64:ce:a6:22:06:91:90:7d:bc:f1: 84:60:e7:7d:ad:65:ac:2f:06:e4:c5:92:21:33:06:e9:89:13: 8d:9f:73:82:72:fd:26:cc:af:e5:0c:fe:15:77:a1:18:1e:18: 34:8e:20:c2:be:4f:1e:b3:bd:df:82:c1:7e:07:14:1c:68:01: 5c:bd:8a:4e:e2:2c:f3:53:48:96:71:70:92:91:c6:f3:67:0f: 0b:88:46:45:24:e3:6b:39:be:68:8f:f3:a2:d3:fd:a2:e1:ad: 4e:4b:0a:aa:c2:54:73:0a:4e:e4:62:c1:2c:8f:d7:a6:0e:b3: 50:88:96:4c:95:51:d2:ca:ad:e1:c7:c8:94:ab:f0:bc:4c:6d: 61:0f:94:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF+VbfuvjQLjw8TdJd40OBFyyTR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNTEyMTgwMTQ2MTZaFw0yNTEyMjEwNDI0MTZaMDMxMTAvBgNV BAMTKEIzMUQ3M0E0MDcyOTI5QkQ0NDc4RTQyNkUyOUNBNUU5MjhDMUZFRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoYTA/DyxmFOotDtmH+CH7B/Gj /wtC+jdwtVhqjoKo5ry1SmRI2XxEBtWoF32JUILN3Fb+pwbOl+UJSp1/8JwOjvo/ 7RTmMbmQtp83015aLdQ9zqnz4Bcsp8SlwFharLqS8MVHwlNExShCQhvf52rkLNHZ T1LvvEJAOavU6rYshmFoWYg8g1P3vRtF2rRsshtqBdFqq39rVT4Kz9JGvd0LLzBj pUpf3LaFuv76Xy53u6jd7tZYMdgLBfNKeUJ2NoBkHjqk4yULr4ezQFWNZRgGWqT8 1L5bJCkEndBGy/xvlRa+Wb87uefA+9kYri1g1nj7qd6UflGbl20teA144P2RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsx1zpAcpKb1EeOQm4pyl6SjB/tkwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDIzMWU2YjEtMTg0MS00NzZkLWI0 NmItYjQ0YjljYjk2OGIwLzAvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0Yy MDRBM0UxMkQyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGSP9/jii6LJaDb4euUNVhwIM+dbuQ5aZhXB 6Jb/6ggu5PmlYVK+/ihKUXsDwFQA6xoy19siPlGbKAK2o4hyAmCA4h6New38uEV9 UWCtVI43Om/frz51r9PF3G7pc+/RW3U5MxiAIJBBVwhrSXaKuFwi9/ZUZM6mIgaR kH288YRg532tZawvBuTFkiEzBumJE42fc4Jy/SbMr+UM/hV3oRgeGDSOIMK+Tx6z vd+CwX4HFBxoAVy9ik7iLPNTSJZxcJKRxvNnDwuIRkUk42s5vmiP86LT/aLhrU5L CqrCVHMKTuRiwSyP16YOs1CIlkyVUdLKreHHyJSr8LxMbWEPlBc= -----END CERTIFICATE-----Generated at Fri Dec 19 18:10:34 2025 by rpki-client