This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft File: 95966A8DB250307CF9852483F96922EE520F6E2A.mft (raw, json) Hash identifier: ujdBAkYWDJMTe8hA5GFJrS5DOjWPb+wGfYVcljiv2yg= Subject key identifier: 36:8F:E4:D7:1A:14:03:8D:F9:A7:C8:FB:02:2B:88:D2:34:26:16:25 Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 3ABB546BCC4DD900D69D5D3D47745513753A0AFC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft Manifest number: 0320 Signing time: Thu 18 Dec 2025 03:10:00 +0000 Manifest this update: Thu 18 Dec 2025 03:05:00 +0000 Manifest next update: Sun 21 Dec 2025 04:33:00 +0000 Files and hashes: 1: 95966A8DB250307CF9852483F96922EE520F6E2A.crl (hash: bYVT/N21SnEcsksp6e/65OGJ5Vuk2ZOl4M4R7in1Ags=) 2: 3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa (hash: lJA11B888lTAIORO0k9rdft4p7t0vrr4FyWBG++arwA=) 3: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (hash: MitWmX3yxsYyPd+sKi7YcLOVm2fefPu2Qs/7NDCXxb8=) 4: 3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa (hash: xt2DiIsS1Hm+P8ldmkaqq+Mf+LiIX+U17UKLw/Y34Uk=) 5: 3130332e31392e3233302e302f32342d3234203d3e20313332363638.roa (hash: QAndsMLECtqgWCCHyuYe9oOyMMkwnZ8QhtRk2OHf9FQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 04:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bb:54:6b:cc:4d:d9:00:d6:9d:5d:3d:47:74:55:13:75:3a:0a:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Dec 18 03:05:00 2025 GMT Not After : Dec 21 04:33:00 2025 GMT Subject: CN=368FE4D71A14038DF9A7C8FB022B88D234261625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1f:45:44:21:51:af:39:b0:f9:3c:5f:64:50: 62:d9:b9:4b:5b:b0:30:b1:4f:34:b7:2e:12:fa:47: 7c:d3:84:75:a7:3a:ae:41:8b:c5:eb:d5:42:2d:a4: db:93:d8:79:a7:38:a9:ad:5c:c5:23:69:19:b8:75: 29:ce:06:dc:39:6d:12:22:36:54:05:13:6a:74:f9: c3:46:d9:ec:16:04:f2:9d:3a:a4:2e:80:02:da:7d: 7f:29:56:a9:aa:b1:1e:0f:15:39:3f:a1:98:49:0e: 64:ee:7a:11:3c:23:22:a7:d2:cf:06:a4:f1:a4:19: 2a:51:03:bd:2f:ad:1c:85:a0:a8:e5:95:a8:26:39: a6:83:c2:ff:c1:4c:9c:22:ff:da:cf:f9:1d:36:b6: 77:57:ca:d7:a5:fc:35:8d:d0:5b:af:96:d2:e7:cf: 55:ab:68:fc:22:a0:7b:7c:32:14:be:14:99:b5:7d: bf:c2:da:5f:28:b7:84:37:f2:5b:24:64:07:4c:88: 52:a0:ac:0b:41:aa:b0:e3:be:31:a1:30:2b:2c:46: 2c:0f:42:61:c9:57:5a:cb:b9:b2:c4:2e:30:7d:c2: ea:76:92:79:3b:cf:04:1f:3d:f7:e7:f1:27:9e:6d: b5:78:0f:ee:af:29:b1:f1:68:5d:89:cb:5d:83:f8: 7a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8F:E4:D7:1A:14:03:8D:F9:A7:C8:FB:02:2B:88:D2:34:26:16:25 X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:a9:95:b1:bc:79:c2:e3:a9:57:cd:59:dd:97:c2:3d:60:72: 43:f1:fb:ee:1d:25:17:77:5c:39:29:76:a4:e3:d2:43:be:e2: a0:fe:5a:1e:8e:43:c1:d6:d2:35:01:a6:84:bf:39:e4:96:25: 02:18:b4:a2:11:b0:24:17:27:ed:96:10:8c:0c:36:78:ab:b3: 9a:8e:29:b4:e1:83:13:6e:b7:5f:7b:06:36:71:78:dd:44:9f: 54:6a:75:22:c7:ab:84:00:31:f3:ea:f1:e9:cf:82:60:c4:a9: 3b:01:ae:bb:3c:14:f0:3b:f9:72:c4:d0:4b:bc:ac:93:6a:ce: a3:b2:9b:92:0d:bd:2d:d2:ca:2e:ba:7b:67:f8:20:26:76:fd: 69:07:1e:25:e7:b3:b8:d8:09:85:31:fe:dc:fa:ed:78:ac:07: eb:7f:81:b6:b8:e4:e3:1a:dd:7d:1d:81:24:81:0b:19:7c:a2: 56:cf:eb:bf:64:0e:c6:7d:7e:7d:26:d4:ea:bb:bf:7a:5b:ba: d9:8e:1d:9f:d9:79:9c:ca:c1:37:1c:77:9c:4b:fd:6a:10:47: 66:54:07:64:bc:f1:dc:92:5b:23:83:58:06:9c:bc:e8:d2:0d: 70:7e:82:ab:75:b6:d2:91:4a:81:2c:f7:40:c4:0a:9c:f3:78: 30:a7:88:52 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOrtUa8xN2QDWnV09R3RVE3U6CvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yNTEyMTgwMzA1MDBaFw0yNTEyMjEwNDMzMDBaMDMxMTAvBgNV BAMTKDM2OEZFNEQ3MUExNDAzOERGOUE3QzhGQjAyMkI4OEQyMzQyNjE2MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgH0VEIVGvObD5PF9kUGLZuUtb sDCxTzS3LhL6R3zThHWnOq5Bi8Xr1UItpNuT2HmnOKmtXMUjaRm4dSnOBtw5bRIi NlQFE2p0+cNG2ewWBPKdOqQugALafX8pVqmqsR4PFTk/oZhJDmTuehE8IyKn0s8G pPGkGSpRA70vrRyFoKjllagmOaaDwv/BTJwi/9rP+R02tndXytel/DWN0FuvltLn z1WraPwioHt8MhS+FJm1fb/C2l8ot4Q38lskZAdMiFKgrAtBqrDjvjGhMCssRiwP QmHJV1rLubLELjB9wup2knk7zwQfPffn8SeebbV4D+6vKbHxaF2Jy12D+HpZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNo/k1xoUA435p8j7AiuI0jQmFiUwHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDJmMTQxN2EtNTcxOC00MDcxLTlm MzUtYzEyMjU1NWRhYzdhLzAvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIy RUU1MjBGNkUyQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACGplbG8ecLjqVfNWd2Xwj1gckPx++4dJRd3 XDkpdqTj0kO+4qD+Wh6OQ8HW0jUBpoS/OeSWJQIYtKIRsCQXJ+2WEIwMNnirs5qO KbThgxNut197BjZxeN1En1RqdSLHq4QAMfPq8enPgmDEqTsBrrs8FPA7+XLE0Eu8 rJNqzqOym5INvS3Syi66e2f4ICZ2/WkHHiXns7jYCYUx/tz67XisB+t/gba45OMa 3X0dgSSBCxl8olbP679kDsZ9fn0m1Oq7v3pbutmOHZ/ZeZzKwTccd5xL/WoQR2ZU B2S88dySWyODWAacvOjSDXB+gqt1ttKRSoEs90DECpzzeDCniFI= -----END CERTIFICATE-----Generated at Fri Dec 19 11:35:03 2025 by rpki-client