This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft File: 821049BBD22C335A50850F16AB159C0C6BCC28E5.mft (raw, json) Hash identifier: 343Qp3yBBtKbLB09GdtToGXVtF4N2OKgvT7deI0Pkiw= Subject key identifier: 9C:8B:77:DA:5D:DB:8B:4A:29:C8:22:94:67:01:B4:F6:E2:D4:2B:B3 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 098AFEFB3EC8D021EA88D01155B9954FFF244DE4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft Manifest number: 0269 Signing time: Thu 18 Dec 2025 23:12:34 +0000 Manifest this update: Thu 18 Dec 2025 23:07:34 +0000 Manifest next update: Mon 22 Dec 2025 06:14:34 +0000 Files and hashes: 1: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (hash: KCUnGn0DyBychM59+lv18yYznYr1wdm5Tf5W0sYTxbE=) 2: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (hash: ndyvXGLmi+s4jvx/l0C4JrK1SIn52emjpfzG2w+2lsw=) 3: 3130332e32312e39352e302f32342d3234203d3e203435323935.roa (hash: WHp6+633q2Em0ghmTjJeCMByUXIoDLeS8IvSNmEh0gE=) 4: 821049BBD22C335A50850F16AB159C0C6BCC28E5.crl (hash: eSObk2yl/udMOvEcUSlyWDX5XN8UP7SMi/pQqKauRVY=) 5: 3130332e32312e39332e302f32342d3234203d3e20313331373338.roa (hash: Hx5e9eX/0MDiWg+S8NREaCwOHPQ1Onm3jq45DAvThoc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 06:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:8a:fe:fb:3e:c8:d0:21:ea:88:d0:11:55:b9:95:4f:ff:24:4d:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Dec 18 23:07:34 2025 GMT Not After : Dec 22 06:14:34 2025 GMT Subject: CN=9C8B77DA5DDB8B4A29C822946701B4F6E2D42BB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c5:de:76:ec:43:c6:0f:8c:f6:6d:ab:cf:9b: 16:97:cd:f3:31:e3:10:bd:80:58:e7:cd:ec:45:c0: 68:58:2d:e0:54:a7:dc:66:39:13:27:b2:2c:20:03: 51:69:fc:dc:c9:20:bb:2c:e0:09:42:82:13:d2:95: 14:9e:17:3c:fd:c4:80:3b:2e:ed:84:c0:31:b0:20: 68:b6:1f:6f:73:9f:46:8d:70:18:2d:2c:cf:6b:28: 98:c8:76:87:9c:fc:9e:8f:14:e7:8f:ae:83:9f:5d: 3f:9d:66:bc:72:ae:ae:4b:43:51:59:88:a3:de:d0: 40:be:ab:3f:2f:09:f8:35:83:e1:d3:fc:6d:19:32: 6a:41:6b:7b:27:97:36:ea:3a:1f:14:a5:06:d9:b4: eb:66:83:dd:e9:1d:84:55:e6:fa:57:e9:5d:22:82: 9e:bf:71:2a:41:6c:39:85:b4:39:c8:a5:c5:7d:49: f4:30:c8:d9:e9:64:aa:d8:b4:fa:c7:cb:89:5c:a7: d4:c7:ff:0d:c9:60:54:e1:c5:14:54:f1:93:3c:1c: c5:98:61:81:aa:88:84:cc:bc:2c:6d:21:87:ed:dc: c8:1b:8a:b0:f5:9d:94:d5:8d:ac:41:13:c3:df:a0: a8:a7:70:fc:8c:84:a1:05:3f:e6:10:36:7b:7c:c7: 4d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:8B:77:DA:5D:DB:8B:4A:29:C8:22:94:67:01:B4:F6:E2:D4:2B:B3 X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:40:18:c7:75:c1:46:77:5a:4b:1e:8b:49:0d:34:02:81:b3: 85:78:a3:60:b8:b4:47:0e:99:9a:86:69:b7:d7:9d:44:77:7f: 77:36:15:75:b6:4a:68:66:be:2d:63:4e:ba:0f:bb:64:8d:d2: c3:32:75:9d:71:30:e6:d7:bb:25:cb:13:8c:93:c2:8d:cd:ec: 92:26:f5:64:c4:fd:83:f8:08:5a:8b:bb:3c:ec:23:c0:8b:ac: ee:03:87:58:b3:f4:7e:ff:a1:38:83:d7:96:2c:2c:c4:f0:6e: ad:59:8e:9d:ce:d7:1b:20:34:c3:86:97:1c:01:a2:b1:f8:b1: 77:32:69:6d:84:6e:a7:26:2c:04:99:4f:5e:72:74:30:5c:c0: 17:db:88:29:f9:97:7d:4e:9c:94:78:ba:58:35:a7:6e:66:56: 48:75:b0:10:38:53:09:2b:6c:d7:61:cf:eb:a4:0f:ea:c3:d3: a3:fa:d7:ec:5b:c1:53:00:df:21:b5:ee:e8:34:b8:43:53:de: b9:17:94:82:63:78:2f:f0:11:65:9b:b7:1e:67:05:34:30:4e: 1c:97:96:24:66:c1:c3:19:33:1b:fe:85:03:b1:1b:ab:ac:f1: d2:3c:4a:e7:8b:fe:e1:57:21:43:0a:b0:2b:ba:a1:62:92:f1: 98:44:19:7c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCYr++z7I0CHqiNARVbmVT/8kTeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNTEyMTgyMzA3MzRaFw0yNTEyMjIwNjE0MzRaMDMxMTAvBgNV BAMTKDlDOEI3N0RBNUREQjhCNEEyOUM4MjI5NDY3MDFCNEY2RTJENDJCQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbxd527EPGD4z2bavPmxaXzfMx 4xC9gFjnzexFwGhYLeBUp9xmORMnsiwgA1Fp/NzJILss4AlCghPSlRSeFzz9xIA7 Lu2EwDGwIGi2H29zn0aNcBgtLM9rKJjIdoec/J6PFOeProOfXT+dZrxyrq5LQ1FZ iKPe0EC+qz8vCfg1g+HT/G0ZMmpBa3snlzbqOh8UpQbZtOtmg93pHYRV5vpX6V0i gp6/cSpBbDmFtDnIpcV9SfQwyNnpZKrYtPrHy4lcp9TH/w3JYFThxRRU8ZM8HMWY YYGqiITMvCxtIYft3MgbirD1nZTVjaxBE8PfoKincPyMhKEFP+YQNnt8x021AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnIt32l3bi0opyCKUZwG09uLUK7MwHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGUxOGQtYTA0Ny00NTkwLTll NTYtNDY0YTczZTIzYzZjLzAvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlD MEM2QkNDMjhFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFRAGMd1wUZ3Wksei0kNNAKBs4V4o2C4tEcO mZqGabfXnUR3f3c2FXW2Smhmvi1jTroPu2SN0sMydZ1xMObXuyXLE4yTwo3N7JIm 9WTE/YP4CFqLuzzsI8CLrO4Dh1iz9H7/oTiD15YsLMTwbq1Zjp3O1xsgNMOGlxwB orH4sXcyaW2EbqcmLASZT15ydDBcwBfbiCn5l31OnJR4ulg1p25mVkh1sBA4Uwkr bNdhz+ukD+rD06P61+xbwVMA3yG17ug0uENT3rkXlIJjeC/wEWWbtx5nBTQwThyX liRmwcMZMxv+hQOxG6us8dI8SueL/uFXIUMKsCu6oWKS8ZhEGXw= -----END CERTIFICATE-----Generated at Sun Dec 21 08:59:59 2025 by rpki-client