This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft File: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft (raw, json) Hash identifier: EoGygvM/SuuJ0OSmGACgXThSOmdJA4jQXLoqYrgz30M= Subject key identifier: 47:33:50:8E:F9:70:42:BA:EC:F3:61:3D:3B:5F:9F:5F:FB:FA:2D:2C Authority key identifier: D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 Certificate issuer: /CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Certificate serial: 3791AC5F10B3A6F758D2C3113D28CB3C1915BE04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft Manifest number: 0164 Signing time: Thu 18 Dec 2025 10:31:09 +0000 Manifest this update: Thu 18 Dec 2025 10:26:09 +0000 Manifest next update: Sun 21 Dec 2025 15:03:09 +0000 Files and hashes: 1: 3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa (hash: gY0MYBLnrNGMInBtjBk2fVW/5Y8HTuVN7KMpfZNbvwM=) 2: 3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa (hash: dJaS59sTNR5P0zfWxcM9Q8SeRwLPq4ilnHYQElEDNMo=) 3: 3130332e3138322e37382e302f32342d3234203d3e20313439363635.roa (hash: LAATNsnHcnoJWKciQROoRwDYWcBiokYiUiwzyLuS2UY=) 4: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl (hash: XwkpjtEILPuAPFT4bJOV+PVa6JUMqOcyCbUYfQSgEZI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 15:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:91:ac:5f:10:b3:a6:f7:58:d2:c3:11:3d:28:cb:3c:19:15:be:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Validity Not Before: Dec 18 10:26:09 2025 GMT Not After : Dec 21 15:03:09 2025 GMT Subject: CN=4733508EF97042BAECF3613D3B5F9F5FFBFA2D2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:98:aa:41:fd:42:63:bc:50:71:9a:23:90:e2: e8:00:2c:f8:4d:f4:87:7e:7d:2b:51:0d:42:be:a4: 76:55:b0:db:6f:50:06:17:87:36:de:17:ea:f3:ce: 1e:09:56:47:54:67:0f:c9:d1:97:7d:75:10:2c:e4: f6:39:68:29:b7:cb:29:86:44:66:2e:1f:47:ae:a6: 69:72:fe:a0:7c:d1:17:3c:1e:be:74:cc:5e:06:01: a8:86:bc:d9:c7:f3:2c:c7:8e:82:b2:19:8d:e2:2c: ec:92:55:2d:ab:16:df:3d:3d:b3:f0:92:c3:d4:d7: bf:84:84:13:71:04:9f:e6:47:3a:3e:c5:96:c4:9a: aa:4a:bc:82:10:bc:82:22:0d:fc:a4:ee:97:db:89: 98:2a:c0:5b:0b:08:23:2d:51:7f:8b:56:81:9a:4f: cb:6e:52:13:4c:79:5b:84:71:79:bf:0d:a5:47:0e: 24:4b:47:a5:ed:42:ab:bd:15:85:fa:6e:6b:d7:14: 1c:c6:11:af:30:72:cc:0a:ea:15:fe:46:a5:9e:66: 5f:7a:64:ba:28:bd:f0:e4:e7:af:8f:0f:7e:0f:e8: 58:22:ab:09:f1:06:59:89:52:ed:bf:39:0b:41:a7: f0:07:79:76:af:e9:75:0b:76:8d:5e:6a:b5:9f:7a: 8b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:33:50:8E:F9:70:42:BA:EC:F3:61:3D:3B:5F:9F:5F:FB:FA:2D:2C X509v3 Authority Key Identifier: keyid:D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:f7:8b:39:97:72:6e:ab:ff:b7:a6:8d:45:8b:be:11:50:95: 8a:95:c6:17:9e:12:b2:45:ac:3b:ec:4e:22:4f:bf:b2:d5:df: ed:10:5e:f2:be:2c:b8:91:a4:11:8a:84:d2:14:8c:43:9d:2e: d7:50:c1:10:6f:2a:d9:0c:56:2c:d5:8e:9b:a8:05:f6:cf:67: 12:b9:c4:6b:fe:db:f2:6b:b1:25:9d:3b:28:bd:7b:72:6f:bb: bd:1a:22:5e:66:d6:2f:91:cb:fd:e5:9d:ab:e1:f5:09:01:80: e2:dd:ec:0e:1a:e1:76:e4:43:24:13:3f:27:72:e0:af:62:af: 62:b3:94:63:ee:3d:41:de:73:ad:80:56:4f:c3:8c:dd:60:fa: 96:57:c9:51:4a:7f:67:77:0a:b9:46:aa:7b:a7:25:94:63:0a: 86:80:15:71:b5:77:2c:cb:92:16:8f:34:bf:18:8f:f0:52:c6: ad:14:5b:9d:9d:ea:a7:08:bb:f1:f1:d4:5e:14:46:a4:cf:36: f8:a8:97:7f:64:fb:d6:76:45:1c:42:b6:21:01:e6:28:5f:39: 3c:67:1d:97:da:91:bf:7b:a3:b5:da:25:76:17:89:43:06:47: 61:fa:ed:c8:95:d3:b3:30:3f:3b:e7:9e:e0:d2:6f:4d:e8:03: e0:e4:30:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN5GsXxCzpvdY0sMRPSjLPBkVvgQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5 M0QxOTZENjAeFw0yNTEyMTgxMDI2MDlaFw0yNTEyMjExNTAzMDlaMDMxMTAvBgNV BAMTKDQ3MzM1MDhFRjk3MDQyQkFFQ0YzNjEzRDNCNUY5RjVGRkJGQTJEMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPmKpB/UJjvFBxmiOQ4ugALPhN 9Id+fStRDUK+pHZVsNtvUAYXhzbeF+rzzh4JVkdUZw/J0Zd9dRAs5PY5aCm3yymG RGYuH0eupmly/qB80Rc8Hr50zF4GAaiGvNnH8yzHjoKyGY3iLOySVS2rFt89PbPw ksPU17+EhBNxBJ/mRzo+xZbEmqpKvIIQvIIiDfyk7pfbiZgqwFsLCCMtUX+LVoGa T8tuUhNMeVuEcXm/DaVHDiRLR6XtQqu9FYX6bmvXFBzGEa8wcswK6hX+RqWeZl96 ZLoovfDk56+PD34P6FgiqwnxBlmJUu2/OQtBp/AHeXav6XULdo1earWfeotjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURzNQjvlwQrrs82E9O1+fX/v6LSwwHwYDVR0j BBgwFoAU0fcuZ9qczgkET6QgTqmTrpPRltYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRjMzNiOC05ZDQyLTQyMDgtOGFjNC1mMTcyYTE0NGQ4NjgvMC9EMUY3MkU2N0RB OUNDRTA5MDQ0RkE0MjA0RUE5OTNBRTkzRDE5NkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5M0Qx OTZENi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0YzMzYjgtOWQ0Mi00MjA4LThh YzQtZjE3MmExNDRkODY4LzAvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkz QUU5M0QxOTZENi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFP3izmXcm6r/7emjUWLvhFQlYqVxheeErJF rDvsTiJPv7LV3+0QXvK+LLiRpBGKhNIUjEOdLtdQwRBvKtkMVizVjpuoBfbPZxK5 xGv+2/JrsSWdOyi9e3Jvu70aIl5m1i+Ry/3lnavh9QkBgOLd7A4a4XbkQyQTPydy 4K9ir2KzlGPuPUHec62AVk/DjN1g+pZXyVFKf2d3CrlGqnunJZRjCoaAFXG1dyzL khaPNL8Yj/BSxq0UW52d6qcIu/Hx1F4URqTPNviol39k+9Z2RRxCtiEB5ihfOTxn HZfakb97o7XaJXYXiUMGR2H67ciV07MwPzvnnuDSb03oA+DkMJM= -----END CERTIFICATE-----Generated at Fri Dec 19 11:19:00 2025 by rpki-client