This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: Al1RweJ3Df+5ohhU8Tq2xzI4LrLVMfFMRsWc0n6jkGw= Subject key identifier: 6C:67:F3:25:70:00:FA:EE:D1:60:5C:60:07:2E:11:22:EA:1D:13:4A Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 75639A423D95A551D0E6AF6EAE99AA04F072E89B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: EF Signing time: Fri 19 Dec 2025 02:21:16 +0000 Manifest this update: Fri 19 Dec 2025 02:16:16 +0000 Manifest next update: Mon 22 Dec 2025 05:38:16 +0000 Files and hashes: 1: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: eXtQ2tG8CT8PJq2yr6fu5tQcg1dl+ot3Skyv+Wqd/yE=) 2: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 3: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=) 4: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 05:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:63:9a:42:3d:95:a5:51:d0:e6:af:6e:ae:99:aa:04:f0:72:e8:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Dec 19 02:16:16 2025 GMT Not After : Dec 22 05:38:16 2025 GMT Subject: CN=6C67F3257000FAEED1605C60072E1122EA1D134A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:aa:9a:b1:87:dc:16:1d:0b:41:c4:21:6c:4e: 7f:34:a9:ba:9d:b0:b5:63:c0:db:59:96:ab:31:c2: 37:21:b8:27:f3:04:28:8d:25:f9:2e:6a:17:6e:13: 58:20:e4:09:24:dd:01:28:1d:45:07:c5:d6:52:c5: 84:23:22:e7:26:55:d3:b5:3e:41:53:03:5f:97:d1: 95:01:6a:89:21:b1:46:67:fd:fc:16:8a:f7:e6:d1: 23:da:0e:c6:8e:ca:db:42:26:86:65:aa:9d:e0:f3: 81:3c:d7:2a:e1:3c:7e:d6:68:ba:d1:c5:a9:2a:b6: a7:3f:60:2c:7e:2a:86:f3:ec:3e:57:cb:c6:93:2d: 42:d8:50:ed:0b:ec:9a:e6:a1:46:91:02:ad:55:89: f8:60:41:9b:1a:57:56:74:fb:4f:fb:9b:92:85:2c: fe:59:94:88:07:11:eb:34:c3:c4:b8:df:b4:12:cd: dc:da:61:af:1f:ba:e0:22:96:6e:cc:9f:28:04:ca: fd:7b:5f:1b:43:fc:1b:89:91:06:dc:be:80:21:ff: 94:6a:bd:52:07:d4:30:2a:75:e9:67:9d:8c:7f:df: 24:7a:19:28:fd:fc:20:c1:3b:cb:ca:fe:41:65:e9: ba:41:22:e9:e3:42:e5:83:f1:53:93:46:bc:ac:36: b8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:67:F3:25:70:00:FA:EE:D1:60:5C:60:07:2E:11:22:EA:1D:13:4A X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:fd:c1:64:09:49:8a:6d:21:f3:d2:51:df:d9:fe:e0:54:8d: 27:e4:86:c3:a7:8b:03:fe:cf:b3:7c:75:e2:5d:44:b6:fb:58: 37:d1:45:88:60:77:ea:11:29:27:81:1a:88:71:7c:8e:9a:9a: 32:35:5a:13:2a:6d:4f:05:66:fc:01:f9:7b:d2:c2:1f:f1:c8: 4a:84:52:71:e8:f7:db:65:00:9d:2b:22:32:17:54:22:50:44: 64:13:e6:bc:2f:2e:65:e1:1f:32:d0:16:d6:76:dc:1d:c5:0e: 57:e9:58:8f:1f:e5:2d:37:01:f9:73:8c:cb:0b:18:44:11:4b: 15:a4:da:40:11:02:d7:89:92:1b:2e:80:70:07:f2:e2:83:85: a4:4b:0b:f4:33:bc:e0:b5:97:ce:40:2b:1b:25:3e:b4:15:71: 9d:ee:55:c6:e4:25:d3:6f:16:e5:32:74:09:94:b2:91:71:ec: fa:46:57:a3:71:fb:05:ca:8b:ae:98:9f:28:7a:72:21:68:80: 39:68:78:3c:a0:9f:65:95:61:c2:ce:32:c1:c2:4b:f0:eb:06: a3:18:65:20:c4:09:a2:ad:12:13:9e:32:f5:30:38:8a:3a:e1: a6:31:8b:3b:d7:e1:11:58:28:10:0d:84:df:15:a8:f3:b9:66: 9d:38:40:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdWOaQj2VpVHQ5q9urpmqBPBy6JswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTEyMTkwMjE2MTZaFw0yNTEyMjIwNTM4MTZaMDMxMTAvBgNV BAMTKDZDNjdGMzI1NzAwMEZBRUVEMTYwNUM2MDA3MkUxMTIyRUExRDEzNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4qpqxh9wWHQtBxCFsTn80qbqd sLVjwNtZlqsxwjchuCfzBCiNJfkuahduE1gg5Akk3QEoHUUHxdZSxYQjIucmVdO1 PkFTA1+X0ZUBaokhsUZn/fwWivfm0SPaDsaOyttCJoZlqp3g84E81yrhPH7WaLrR xakqtqc/YCx+Kobz7D5Xy8aTLULYUO0L7JrmoUaRAq1VifhgQZsaV1Z0+0/7m5KF LP5ZlIgHEes0w8S437QSzdzaYa8fuuAilm7MnygEyv17XxtD/BuJkQbcvoAh/5Rq vVIH1DAqdelnnYx/3yR6GSj9/CDBO8vK/kFl6bpBIunjQuWD8VOTRrysNrhPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbGfzJXAA+u7RYFxgBy4RIuodE0owHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC39wWQJSYptIfPSUd/Z/uBUjSfkhsOniwP+ z7N8deJdRLb7WDfRRYhgd+oRKSeBGohxfI6amjI1WhMqbU8FZvwB+XvSwh/xyEqE UnHo99tlAJ0rIjIXVCJQRGQT5rwvLmXhHzLQFtZ23B3FDlfpWI8f5S03AflzjMsL GEQRSxWk2kARAteJkhsugHAH8uKDhaRLC/QzvOC1l85AKxslPrQVcZ3uVcbkJdNv FuUydAmUspFx7PpGV6Nx+wXKi66Ynyh6ciFogDloeDygn2WVYcLOMsHCS/DrBqMY ZSDECaKtEhOeMvUwOIo64aYxizvX4RFYKBANhN8VqPO5Zp04QKA= -----END CERTIFICATE-----Generated at Sat Dec 20 12:15:03 2025 by rpki-client