This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft File: 8659BE8500DEBB314448F1412FA1E264025A4148.mft (raw, json) Hash identifier: o9i+jOQz5xhs4UZgdaVmdDdAg4WLbmTNmpz7HHCV1i4= Subject key identifier: 60:4E:62:FD:52:09:E7:94:5A:B2:AD:BF:9E:AB:8F:BB:F3:F8:5A:48 Authority key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Certificate issuer: /CN=8659BE8500DEBB314448F1412FA1E264025A4148 Certificate serial: 594B06A8B0C0532F08F89E6D5ABA0D2ABEA16192 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft Manifest number: 0200 Signing time: Sat 20 Dec 2025 23:01:07 +0000 Manifest this update: Sat 20 Dec 2025 22:56:07 +0000 Manifest next update: Wed 24 Dec 2025 07:10:07 +0000 Files and hashes: 1: 3130332e3136342e3139322e302f32342d3234203d3e20313431393339.roa (hash: V8FXW6i5FhDhWnneEy9JcwyRx6grWMlQZ/xTqZlJefU=) 2: 3130332e3136342e3139332e302f32342d3234203d3e20313431393339.roa (hash: o1EC2V3xudD67YQ4ezVJUlO4R22GwhC3UT5xp118BUc=) 3: 8659BE8500DEBB314448F1412FA1E264025A4148.crl (hash: nPbv6bZG880HEkr44enZcZ3lAU3f0eXKeZzX6IJmd4I=) 4: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (hash: DGmbIbAAoCUymOY6DDh+0S4rcPuhCP+BlaH232+y3TY=) 5: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (hash: E8NUcaKWe3ABHFVxNWSSIkp1m8C7YtMxKMRA2hg1NmI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 07:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:4b:06:a8:b0:c0:53:2f:08:f8:9e:6d:5a:ba:0d:2a:be:a1:61:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Validity Not Before: Dec 20 22:56:07 2025 GMT Not After : Dec 24 07:10:07 2025 GMT Subject: CN=604E62FD5209E7945AB2ADBF9EAB8FBBF3F85A48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ef:8a:d9:9d:87:75:b6:6e:0b:1d:26:c4:81: 33:2c:fb:8d:d3:7c:4a:39:74:2d:51:4f:44:51:81: 89:85:34:15:85:20:79:bd:76:18:27:24:01:4b:b8: 1d:fc:af:67:94:de:e1:68:07:70:17:c1:c8:c5:30: 74:9b:f3:65:39:3e:d9:f2:53:91:49:76:47:ee:23: a1:0d:9c:a9:5a:58:c6:a4:92:b1:12:5d:9d:e1:d1: 9d:4a:0a:7d:69:cd:d1:4e:5c:3f:42:e6:53:b0:c8: 09:f0:fb:20:ee:35:94:c5:dd:b5:f2:3e:36:e3:a7: ac:45:16:b9:90:9a:d3:61:06:2e:6c:3d:44:1e:6c: ec:f9:20:f9:00:5c:13:8c:f3:d7:65:3f:c2:06:16: 64:82:4f:39:16:d7:2b:03:dd:32:4d:4f:2d:4b:c0: 66:0b:07:c8:eb:9a:1a:eb:bd:c7:71:97:f5:8a:c3: 69:7f:a8:a6:2a:92:33:b6:c6:da:d7:0d:bf:2b:02: f3:b1:c0:79:e0:09:da:50:dc:94:24:42:eb:c9:3a: e7:c0:6a:bd:a0:09:f7:ad:22:f1:7f:c1:60:bc:56: 4e:30:8e:3a:af:60:b0:6a:bb:af:15:91:0c:ab:a6: 10:c1:18:15:48:d4:fc:51:75:26:f1:49:c0:3c:a2: 5c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:4E:62:FD:52:09:E7:94:5A:B2:AD:BF:9E:AB:8F:BB:F3:F8:5A:48 X509v3 Authority Key Identifier: keyid:86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:f6:4e:5e:4b:5a:dc:60:b2:af:fb:66:3f:58:93:4c:ad:3d: b2:6b:f4:df:e1:3e:5a:45:ac:ee:23:48:75:5f:ae:68:5d:2b: c0:13:db:1b:4e:58:fe:a5:cf:64:f0:32:cc:3f:94:dc:44:db: 0e:aa:c6:59:9a:77:2a:3d:58:03:49:70:5e:18:fc:b6:5b:8b: 51:a3:0e:28:ca:86:cf:64:57:a7:ca:4e:b5:70:58:31:15:42: bc:dc:d0:9f:0a:a5:53:02:7a:77:0d:14:da:9f:a8:85:a8:d7: 71:34:4a:2e:ec:a5:73:2f:7b:f9:eb:b8:10:30:70:9f:57:29: 18:d7:8a:6d:3e:b0:28:06:32:88:f6:89:a4:14:e5:6c:08:c0: 35:60:58:89:2e:73:5d:e9:a9:72:2a:3d:32:23:e2:c2:47:4e: 14:6a:6d:9f:bf:a2:c3:e8:d9:33:f6:e3:5f:93:7a:ed:b9:4c: ad:24:f1:4d:c2:30:7f:a9:da:b3:21:3f:8a:b3:f0:11:3d:91: 78:37:3b:fb:05:6f:f4:c4:ca:07:cc:50:aa:01:dd:c1:cf:5a: 2c:74:11:75:34:50:f2:89:6b:0b:53:ed:22:69:42:be:fa:ca: c2:c6:a5:a7:61:a3:29:3e:20:46:d0:76:db:b8:25:e0:ad:c2: 31:61:63:af -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWUsGqLDAUy8I+J5tWroNKr6hYZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQw MjVBNDE0ODAeFw0yNTEyMjAyMjU2MDdaFw0yNTEyMjQwNzEwMDdaMDMxMTAvBgNV BAMTKDYwNEU2MkZENTIwOUU3OTQ1QUIyQURCRjlFQUI4RkJCRjNGODVBNDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC74rZnYd1tm4LHSbEgTMs+43T fEo5dC1RT0RRgYmFNBWFIHm9dhgnJAFLuB38r2eU3uFoB3AXwcjFMHSb82U5Ptny U5FJdkfuI6ENnKlaWMakkrESXZ3h0Z1KCn1pzdFOXD9C5lOwyAnw+yDuNZTF3bXy Pjbjp6xFFrmQmtNhBi5sPUQebOz5IPkAXBOM89dlP8IGFmSCTzkW1ysD3TJNTy1L wGYLB8jrmhrrvcdxl/WKw2l/qKYqkjO2xtrXDb8rAvOxwHngCdpQ3JQkQuvJOufA ar2gCfetIvF/wWC8Vk4wjjqvYLBqu68VkQyrphDBGBVI1PxRdSbxScA8olzPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYE5i/VIJ55Rasq2/nquPu/P4WkgwHwYDVR0j BBgwFoAUhlm+hQDeuzFESPFBL6HiZAJaQUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMC84NjU5QkU4NTAw REVCQjMxNDQ0OEYxNDEyRkExRTI2NDAyNUE0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQwMjVB NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJhNDhlNGUtZmM5NS00YWNmLWJl YWMtZDkzYTBmNjk0NDIxLzAvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUy NjQwMjVBNDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJr2Tl5LWtxgsq/7Zj9Yk0ytPbJr9N/hPlpF rO4jSHVfrmhdK8AT2xtOWP6lz2TwMsw/lNxE2w6qxlmadyo9WANJcF4Y/LZbi1Gj DijKhs9kV6fKTrVwWDEVQrzc0J8KpVMCencNFNqfqIWo13E0Si7spXMve/nruBAw cJ9XKRjXim0+sCgGMoj2iaQU5WwIwDVgWIkuc13pqXIqPTIj4sJHThRqbZ+/osPo 2TP241+Teu25TK0k8U3CMH+p2rMhP4qz8BE9kXg3O/sFb/TEygfMUKoB3cHPWix0 EXU0UPKJawtT7SJpQr76ysLGpadhoyk+IEbQdtu4JeCtwjFhY68= -----END CERTIFICATE-----Generated at Mon Dec 22 04:19:11 2025 by rpki-client