This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: RAj0c248CaAL4v+T2o+OCr0bcdhH0xoiGSn4qnH/c1k= Subject key identifier: B9:FB:B6:51:BE:36:34:4B:C3:3A:3A:B3:4A:4C:AB:C0:82:FF:F0:78 Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 6A1351D534D8F68F1716E57C23F96F923BF71F62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 013F Signing time: Fri 19 Dec 2025 04:43:30 +0000 Manifest this update: Fri 19 Dec 2025 04:38:30 +0000 Manifest next update: Mon 22 Dec 2025 08:34:30 +0000 Files and hashes: 1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xTPoIlaNmn7dCA4oz4xbGajx7u9U25QUsQJawDHmNA8=) 2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: +QutVKb9IaDKf4QPXv5GIAEFbBXDjNtxBOuGVyWeLw8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 08:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:13:51:d5:34:d8:f6:8f:17:16:e5:7c:23:f9:6f:92:3b:f7:1f:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Dec 19 04:38:30 2025 GMT Not After : Dec 22 08:34:30 2025 GMT Subject: CN=B9FBB651BE36344BC33A3AB34A4CABC082FFF078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ab:94:5c:cc:55:b5:9f:b6:4d:30:a1:c8:f4: b6:e7:df:7e:bb:b3:83:75:98:f9:59:b8:a7:b9:01: c8:3c:d0:8b:27:7c:36:2a:7f:33:19:dc:27:f0:b5: 56:72:84:89:e2:8a:b8:35:51:47:6a:a2:9e:bc:1a: 67:63:eb:90:c7:d9:d2:65:6a:13:58:8b:1c:d7:b3: 65:37:9c:dd:84:1c:d3:c3:f4:2f:b9:cb:d4:49:6a: a5:9e:9b:95:6c:d6:29:87:04:8f:34:c5:42:09:d6: 3d:74:14:71:16:27:9e:cc:02:9e:d8:e7:fa:27:32: 93:7d:9d:c8:11:30:d5:e7:8b:51:d0:a6:10:e0:33: 9e:6a:97:61:68:3b:74:84:6e:fb:42:84:d5:49:0e: a2:bd:82:74:3c:a2:62:2c:15:3b:3d:67:ea:62:19: 75:57:de:27:84:c6:90:90:25:12:ac:4d:1d:52:66: e4:27:a8:51:d7:90:3b:d7:16:6a:ca:94:75:4f:ac: f2:27:8d:e2:ef:da:80:d0:99:78:c7:e0:e2:d9:44: 24:85:46:98:f7:77:35:69:63:40:3b:29:c6:79:48: b7:88:61:ff:0c:cc:9d:b8:54:67:69:02:09:e0:de: 1a:2a:e6:15:42:a8:09:ff:b6:47:51:63:87:76:34: 04:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:FB:B6:51:BE:36:34:4B:C3:3A:3A:B3:4A:4C:AB:C0:82:FF:F0:78 X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:75:fd:59:61:d7:c2:36:3b:3d:d6:c7:71:d5:2e:8b:2f:ba: a6:f1:98:57:e2:6f:92:41:c5:b6:ee:4a:88:33:93:38:91:74: 39:c9:08:59:56:10:b6:ca:11:bc:09:a6:a7:b3:86:c7:27:c8: 6e:c7:76:e5:02:a9:91:c0:a4:fd:1b:fb:49:a5:9d:a6:49:74: 95:39:d3:35:e0:46:2e:e5:7b:66:62:9d:c3:43:1b:c3:a8:9b: 3c:ba:1d:da:38:dd:bb:bb:93:21:13:6a:97:ad:8b:4f:62:1e: e2:2e:46:35:6a:ab:2e:d7:05:5e:13:c6:04:7c:e8:ed:2d:54: a0:84:97:5f:60:d8:b4:06:75:32:ae:69:5d:72:8c:a3:64:56: 02:a0:ec:41:ec:b0:c2:40:c9:16:70:bc:29:05:bf:8a:d7:3d: 22:c8:c2:1e:83:d2:ef:a6:e7:a1:5c:66:ac:ef:76:9c:91:fc: 3a:1d:af:48:c5:e8:55:ae:6e:6e:a7:07:8a:8d:d5:a8:b1:b7: c9:47:b3:d6:c5:82:73:82:88:c8:6b:2b:24:68:28:cc:4f:d1: 0b:2d:ad:1f:b7:c4:52:be:9f:d4:ae:07:c5:16:b5:2f:9f:74: b2:5d:ac:07:72:9b:f3:91:48:7e:2c:53:b6:ca:07:27:e0:58: 2a:e2:d7:ea -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUahNR1TTY9o8XFuV8I/lvkjv3H2IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNTEyMTkwNDM4MzBaFw0yNTEyMjIwODM0MzBaMDMxMTAvBgNV BAMTKEI5RkJCNjUxQkUzNjM0NEJDMzNBM0FCMzRBNENBQkMwODJGRkYwNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNq5RczFW1n7ZNMKHI9Lbn3367 s4N1mPlZuKe5Acg80IsnfDYqfzMZ3CfwtVZyhIniirg1UUdqop68Gmdj65DH2dJl ahNYixzXs2U3nN2EHNPD9C+5y9RJaqWem5Vs1imHBI80xUIJ1j10FHEWJ57MAp7Y 5/onMpN9ncgRMNXni1HQphDgM55ql2FoO3SEbvtChNVJDqK9gnQ8omIsFTs9Z+pi GXVX3ieExpCQJRKsTR1SZuQnqFHXkDvXFmrKlHVPrPInjeLv2oDQmXjH4OLZRCSF Rpj3dzVpY0A7KcZ5SLeIYf8MzJ24VGdpAgng3hoq5hVCqAn/tkdRY4d2NARpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUufu2Ub42NEvDOjqzSkyrwIL/8HgwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALN1/Vlh18I2Oz3Wx3HVLosvuqbxmFfib5JB xbbuSogzkziRdDnJCFlWELbKEbwJpqezhscnyG7HduUCqZHApP0b+0mlnaZJdJU5 0zXgRi7le2ZincNDG8Oomzy6Hdo43bu7kyETapeti09iHuIuRjVqqy7XBV4TxgR8 6O0tVKCEl19g2LQGdTKuaV1yjKNkVgKg7EHssMJAyRZwvCkFv4rXPSLIwh6D0u+m 56FcZqzvdpyR/Dodr0jF6FWubm6nB4qN1aixt8lHs9bFgnOCiMhrKyRoKMxP0Qst rR+3xFK+n9SuB8UWtS+fdLJdrAdym/ORSH4sU7bKByfgWCri1+o= -----END CERTIFICATE-----Generated at Sun Dec 21 17:27:34 2025 by rpki-client