This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft File: 4A688B72A804A426A9096ECA60105A4D831C5FA8.mft (raw, json) Hash identifier: NBG7i3CyEP6XmXJ5XIBKpeJe12N/kZQ9IqEs3SQRtx8= Subject key identifier: 80:47:11:64:48:49:9D:DA:7D:76:11:5E:51:77:12:35:C8:D7:3B:B6 Authority key identifier: 4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 Certificate issuer: /CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Certificate serial: 5C07E7F14F9B3214FCA553DCF058977CB38FDFF1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft Manifest number: 0314 Signing time: Tue 23 Dec 2025 21:52:54 +0000 Manifest this update: Tue 23 Dec 2025 21:47:54 +0000 Manifest next update: Sat 27 Dec 2025 02:15:54 +0000 Files and hashes: 1: 3130332e3137352e3230362e302f32342d3234203d3e20313437313234.roa (hash: eQ2W59Sl25b9+tbhRBYK+eiWkdxaKDr4YfWFXlk9jXI=) 2: 3130332e3137352e3230362e302f32332d3234203d3e20313437313234.roa (hash: eGEsrGBto/hQncn3YcGePX27GH/UT48OX+sETIcZ17o=) 3: 3130332e3137352e3230372e302f32342d3234203d3e20313437313234.roa (hash: aQ3bZ8U/53lOgq6IbJ4jaeEks7cypqeVb0bEi+y+Pus=) 4: 4A688B72A804A426A9096ECA60105A4D831C5FA8.crl (hash: /Vau1LFiHJPXlj1inVlW/q2HHDXVQur2r5S6WLTX4pg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 02:15:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:07:e7:f1:4f:9b:32:14:fc:a5:53:dc:f0:58:97:7c:b3:8f:df:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4A688B72A804A426A9096ECA60105A4D831C5FA8 Validity Not Before: Dec 23 21:47:54 2025 GMT Not After : Dec 27 02:15:54 2025 GMT Subject: CN=8047116448499DDA7D76115E51771235C8D73BB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e3:62:6a:17:1a:be:c5:5a:a4:93:87:5b:fa: bc:e5:52:a7:6c:0b:16:cf:f6:c8:2a:1e:af:e4:79: c4:ff:2a:e2:18:85:14:77:61:ca:6f:aa:98:85:63: 17:76:e9:ed:c0:9b:ed:5d:03:96:11:99:bc:5e:ff: 4c:11:58:94:9f:9b:89:fb:9f:ed:aa:ef:ff:ba:f2: f3:20:1f:fa:50:54:2a:c2:e5:2f:7b:41:ce:56:e6: 75:a5:00:dd:63:1c:0c:bb:7f:4f:98:9e:10:27:f3: 3c:11:02:ff:04:51:38:3c:fb:f0:db:29:09:8a:26: 4e:e3:22:5f:cc:ec:94:f6:f1:37:7a:f8:48:c0:24: 72:ed:93:41:28:56:e8:4b:26:88:a4:84:6a:cf:4f: 94:60:b7:59:ab:6a:45:8f:e5:68:a8:09:44:1a:88: 2d:e3:fb:12:dd:05:e2:de:29:af:5b:e5:58:19:60: f6:3a:6c:02:ad:74:b8:49:4b:9f:f3:37:e4:d1:1d: 5f:e6:33:d9:b3:63:14:b4:f3:ef:bb:13:40:7a:f8: de:15:ef:24:90:17:95:a9:9d:ab:dc:47:01:af:1d: 62:4c:c5:be:b8:2d:49:c4:e9:8b:1b:1c:e9:36:f4: 28:63:ef:13:c1:c7:df:a0:dc:33:59:93:2b:06:47: 30:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:47:11:64:48:49:9D:DA:7D:76:11:5E:51:77:12:35:C8:D7:3B:B6 X509v3 Authority Key Identifier: keyid:4A:68:8B:72:A8:04:A4:26:A9:09:6E:CA:60:10:5A:4D:83:1C:5F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4A688B72A804A426A9096ECA60105A4D831C5FA8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/faa6a67d-cba3-427b-9055-5f528f2d232f/0/4A688B72A804A426A9096ECA60105A4D831C5FA8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:f5:04:ee:87:f4:db:59:85:2f:b3:e7:b0:9d:5a:d7:1e:7f: 37:59:cd:77:6d:3e:47:aa:b8:03:83:3c:31:b4:ee:1c:93:23: c7:ba:27:e7:80:d0:b6:ec:c6:42:e1:4c:23:95:14:82:2e:77: 3a:89:26:4d:19:a1:f8:dc:d3:76:d6:c1:44:f6:48:29:13:49: 1c:b2:9d:b3:42:e8:6d:b4:01:e9:c4:21:81:8c:43:6c:3d:b0: cf:47:12:71:4d:fb:e4:0c:b7:88:30:e5:1c:80:fd:0e:f6:2e: 56:b9:bc:b5:20:9c:1e:2f:9e:72:94:0b:97:11:e8:b9:86:b9: 09:b5:fa:14:de:d8:be:49:cc:16:68:1f:67:a5:30:6c:8e:d0: 32:08:08:23:11:f8:fb:88:e1:d5:90:58:14:80:6a:72:68:c1: 82:c0:09:64:8a:90:b8:de:df:6e:34:0a:a8:06:21:0a:2f:1c: f6:4e:bd:ee:8b:18:a8:ea:b1:27:93:d1:c8:0b:59:30:08:b9: 35:d3:ec:f1:83:c6:92:05:cf:60:b5:a4:06:7e:0b:72:8a:31: f4:82:a2:b2:81:20:3c:86:9b:59:f4:67:5c:64:66:83:a2:8a: 25:4d:41:2d:06:a8:0e:f2:14:e4:92:57:2b:f8:06:91:6e:8b: 8b:04:ae:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXAfn8U+bMhT8pVPc8FiXfLOP3/EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4 MzFDNUZBODAeFw0yNTEyMjMyMTQ3NTRaFw0yNTEyMjcwMjE1NTRaMDMxMTAvBgNV BAMTKDgwNDcxMTY0NDg0OTlEREE3RDc2MTE1RTUxNzcxMjM1QzhENzNCQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL42JqFxq+xVqkk4db+rzlUqds CxbP9sgqHq/kecT/KuIYhRR3YcpvqpiFYxd26e3Am+1dA5YRmbxe/0wRWJSfm4n7 n+2q7/+68vMgH/pQVCrC5S97Qc5W5nWlAN1jHAy7f0+YnhAn8zwRAv8EUTg8+/Db KQmKJk7jIl/M7JT28Td6+EjAJHLtk0EoVuhLJoikhGrPT5Rgt1mrakWP5WioCUQa iC3j+xLdBeLeKa9b5VgZYPY6bAKtdLhJS5/zN+TRHV/mM9mzYxS08++7E0B6+N4V 7ySQF5WpnavcRwGvHWJMxb64LUnE6YsbHOk29Chj7xPBx9+g3DNZkysGRzD1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgEcRZEhJndp9dhFeUXcSNcjXO7YwHwYDVR0j BBgwFoAUSmiLcqgEpCapCW7KYBBaTYMcX6gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWE2YTY3ZC1jYmEzLTQyN2ItOTA1NS01ZjUyOGYyZDIzMmYvMC80QTY4OEI3MkE4 MDRBNDI2QTkwOTZFQ0E2MDEwNUE0RDgzMUM1RkE4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVBNEQ4MzFD NUZBOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFhNmE2N2QtY2JhMy00MjdiLTkw NTUtNWY1MjhmMmQyMzJmLzAvNEE2ODhCNzJBODA0QTQyNkE5MDk2RUNBNjAxMDVB NEQ4MzFDNUZBOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALX1BO6H9NtZhS+z57CdWtcefzdZzXdtPkeq uAODPDG07hyTI8e6J+eA0LbsxkLhTCOVFIIudzqJJk0Zofjc03bWwUT2SCkTSRyy nbNC6G20AenEIYGMQ2w9sM9HEnFN++QMt4gw5RyA/Q72Lla5vLUgnB4vnnKUC5cR 6LmGuQm1+hTe2L5JzBZoH2elMGyO0DIICCMR+PuI4dWQWBSAanJowYLACWSKkLje 3240CqgGIQovHPZOve6LGKjqsSeT0cgLWTAIuTXT7PGDxpIFz2C1pAZ+C3KKMfSC orKBIDyGm1n0Z1xkZoOiiiVNQS0GqA7yFOSSVyv4BpFui4sErl0= -----END CERTIFICATE-----Generated at Wed Dec 24 22:08:39 2025 by rpki-client