This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: 8qloTCS5E1BwHMW/ewKDELBBVYJCahwSTuPFWyNlzNw= Subject key identifier: 61:0B:0C:B7:BC:F5:7B:9F:6E:BE:FC:F1:7F:70:90:38:5E:1C:15:DD Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 33A00635F7416DC52DB7E1E00CB6BE856BC89FE9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 0536 Signing time: Thu 18 Dec 2025 08:14:18 +0000 Manifest this update: Thu 18 Dec 2025 08:09:18 +0000 Manifest next update: Sun 21 Dec 2025 11:37:18 +0000 Files and hashes: 1: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: ctlL63La/nA2o80IyG4Gn5yERO9Svxh3VS6Tj8PS2Bk=) 2: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: mAHS4RhjFlyuuj4wSTCANOzW1BtppaUwbd4+LpgqV3A=) 3: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: 6QGojOQyFw/ivYbptxieT95ZPedaQnA/rMN21p2j3O8=) 4: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 6P/MnisWmadZujdf0MdzBBem1MXVl8xw/vKYXqNcxoU=) 5: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c=) 6: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: Y6tvd+1XtHiukr4Lnc++EG2e4/MBcfeHFg9Xd0kGFMg=) 7: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: E6oSwKyWxejOo/v5HHitngqUwJ84vi0WR9s9o+kQ4qc=) 8: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM=) 9: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 11:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a0:06:35:f7:41:6d:c5:2d:b7:e1:e0:0c:b6:be:85:6b:c8:9f:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Dec 18 08:09:18 2025 GMT Not After : Dec 21 11:37:18 2025 GMT Subject: CN=610B0CB7BCF57B9F6EBEFCF17F7090385E1C15DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:f2:1a:47:69:c4:8b:9c:6c:5c:99:6d:af: 1f:b9:12:4c:db:e3:64:88:7b:bc:8e:4c:8d:72:5b: fb:eb:20:30:a5:c8:e9:f8:ba:39:c1:6a:e5:39:f8: 49:68:e9:bd:a0:2b:e1:e6:c6:37:93:c0:33:43:4f: 0f:dd:80:da:f1:11:46:01:9c:30:f1:5c:a9:75:a8: 92:02:f1:79:90:6c:04:25:ec:b2:6c:b2:5c:47:e9: 8b:13:e9:c9:af:72:ea:dc:f4:78:85:ef:ef:9a:41: eb:58:01:bb:75:2f:4e:63:0b:a2:ab:3a:87:65:9f: 2c:55:80:c2:46:0d:7b:4b:ff:54:0d:de:e0:76:f4: 10:72:b1:97:1e:7d:cb:41:d5:e5:6d:26:57:74:16: f8:b8:ec:f6:50:e8:5e:45:75:e0:bf:5a:02:d1:e7: 9a:f2:06:bb:b3:80:51:f3:e4:19:37:68:2e:a9:44: 2d:1d:be:c6:18:5b:e8:c9:e7:9c:6f:d6:53:01:46: 36:9b:fd:84:1a:62:11:98:f9:4d:b0:5a:14:c9:fd: 70:e7:4a:ed:c9:f4:ca:86:03:14:8f:f1:44:cb:1a: 0b:63:5a:1c:96:d6:64:5d:14:f4:5e:30:5d:16:18: f6:20:11:b8:64:77:46:f3:63:b6:0a:b8:0b:d6:ba: b1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:0B:0C:B7:BC:F5:7B:9F:6E:BE:FC:F1:7F:70:90:38:5E:1C:15:DD X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e4:43:7a:7c:78:ae:87:eb:2a:9b:a7:cd:f7:61:82:ff:7e: 57:00:8c:f2:08:7b:17:56:e1:28:33:ca:09:63:9f:a8:4f:46: 19:7b:4e:ee:27:db:83:ce:31:e3:10:f4:33:88:d7:89:cb:af: 51:c2:d7:15:50:c1:a2:51:d0:8e:98:1f:aa:70:d2:a4:bf:a7: bc:fe:36:58:02:e8:c6:0f:d6:cf:e2:16:da:02:dd:db:11:e4: ce:03:3e:36:b9:cd:2a:fe:a8:54:ce:35:2a:ed:b3:31:76:9c: 1e:e8:2d:28:6a:bf:b0:b6:d6:61:2c:9f:c9:81:70:e4:a3:0d: 3d:7a:7f:3b:8d:df:37:50:df:42:3e:01:61:3e:e5:7f:3d:99: ed:de:35:71:77:d0:eb:56:05:56:43:22:b0:61:9d:80:8f:48: 09:11:03:59:94:01:48:b5:50:3f:4f:e9:f2:96:16:31:65:ab: 5b:a6:4d:4b:5d:04:0b:4f:32:6c:cd:1d:26:1b:39:26:bb:c4: bf:c8:bc:40:46:38:b4:5c:a4:12:ba:54:f3:82:6e:a7:fd:c3: 7c:79:87:5b:7b:f4:42:fa:2c:40:3a:74:fa:54:ef:09:5b:02: a5:a3:c7:71:72:b7:fc:27:6a:61:f2:69:51:25:5a:20:ca:30: 78:e6:c0:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUM6AGNfdBbcUtt+HgDLa+hWvIn+kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTEyMTgwODA5MThaFw0yNTEyMjExMTM3MThaMDMxMTAvBgNV BAMTKDYxMEIwQ0I3QkNGNTdCOUY2RUJFRkNGMTdGNzA5MDM4NUUxQzE1REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnCfIaR2nEi5xsXJltrx+5Ekzb 42SIe7yOTI1yW/vrIDClyOn4ujnBauU5+Elo6b2gK+HmxjeTwDNDTw/dgNrxEUYB nDDxXKl1qJIC8XmQbAQl7LJsslxH6YsT6cmvcurc9HiF7++aQetYAbt1L05jC6Kr OodlnyxVgMJGDXtL/1QN3uB29BBysZcefctB1eVtJld0Fvi47PZQ6F5FdeC/WgLR 55ryBruzgFHz5Bk3aC6pRC0dvsYYW+jJ55xv1lMBRjab/YQaYhGY+U2wWhTJ/XDn Su3J9MqGAxSP8UTLGgtjWhyW1mRdFPReMF0WGPYgEbhkd0bzY7YKuAvWurF3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYQsMt7z1e59uvvzxf3CQOF4cFd0wHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIrkQ3p8eK6H6yqbp833YYL/flcAjPIIexdW 4Sgzygljn6hPRhl7Tu4n24POMeMQ9DOI14nLr1HC1xVQwaJR0I6YH6pw0qS/p7z+ NlgC6MYP1s/iFtoC3dsR5M4DPja5zSr+qFTONSrtszF2nB7oLShqv7C21mEsn8mB cOSjDT16fzuN3zdQ30I+AWE+5X89me3eNXF30OtWBVZDIrBhnYCPSAkRA1mUAUi1 UD9P6fKWFjFlq1umTUtdBAtPMmzNHSYbOSa7xL/IvEBGOLRcpBK6VPOCbqf9w3x5 h1t79EL6LEA6dPpU7wlbAqWjx3Fyt/wnamHyaVElWiDKMHjmwKQ= -----END CERTIFICATE-----Generated at Sat Dec 20 16:15:36 2025 by rpki-client