This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: WkvTZEeh7HrgkCsZOir5e/FC2aYsXHDIUEXTz8nYSck= Subject key identifier: 43:C8:75:CB:53:2C:F2:6A:EE:C0:84:5B:9B:0E:53:8C:47:42:AB:E0 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 0C34A9230ADBFBEDDE522E99A0F03C34433FD533 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 0104 Signing time: Tue 02 Dec 2025 03:41:07 +0000 Manifest this update: Tue 02 Dec 2025 03:36:07 +0000 Manifest next update: Fri 05 Dec 2025 14:11:07 +0000 Files and hashes: 1: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: pDUs45bC1vCo3vha46peFf4O/MIZ5cipqRsEv6R0Csg=) 2: 3135372e32302e34352e302f32342d3234203d3e20323035343232.roa (hash: 0BKZVYiTiHtgjZEUGoDI40NlGQFEUeOEKE+t8AaJ1+k=) 3: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 14:11:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:34:a9:23:0a:db:fb:ed:de:52:2e:99:a0:f0:3c:34:43:3f:d5:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Dec 2 03:36:07 2025 GMT Not After : Dec 5 14:11:07 2025 GMT Subject: CN=43C875CB532CF26AEEC0845B9B0E538C4742ABE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:52:f2:42:1b:dd:6b:49:88:80:41:e3:b7:78: 7f:f9:93:68:81:59:df:51:a4:1c:b2:59:cc:1b:41: 18:aa:d6:d5:64:a5:6d:77:fe:fe:f3:b5:c6:b3:20: 97:06:6b:73:ac:7c:df:56:e2:57:e6:44:6e:f1:ed: 7a:bd:bf:b2:2f:bf:6f:f2:a6:fc:93:62:10:15:3d: 84:80:e1:7e:53:7f:cc:77:3e:8e:c0:e0:d1:31:d1: 9f:c4:15:ea:02:cf:ec:e5:71:c2:82:cd:3b:73:82: 83:dc:ef:e2:96:b9:98:7d:58:8c:bd:b7:53:6b:8c: 94:ce:5f:55:ec:2b:da:66:b0:05:27:09:d6:1c:91: 9b:de:3c:fd:a2:d2:95:46:fc:75:08:6c:48:4c:f6: ec:ff:fc:b7:88:9e:c5:56:7b:ae:94:d0:a0:c1:55: 9f:71:a9:8d:4d:1c:9b:3f:23:eb:08:30:02:e9:4d: 80:ac:a8:9e:06:72:0a:7b:8c:af:a4:08:7c:de:24: 07:66:6c:75:5e:23:30:96:09:04:a0:ac:a2:2e:c2: f0:c7:de:48:68:db:76:6c:8e:f4:5a:99:fd:6c:92: 6f:5d:76:88:43:6f:da:27:52:ee:3b:6c:8c:6b:16: b5:49:26:17:53:ca:6f:0d:1e:ac:7f:4e:1b:ed:38: 1e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C8:75:CB:53:2C:F2:6A:EE:C0:84:5B:9B:0E:53:8C:47:42:AB:E0 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:9c:dc:28:4c:9d:c1:b6:0b:cb:1b:c2:f5:04:02:1f:cd:6c: 4a:a7:e6:bd:dc:5a:85:a5:ed:7d:5c:64:9c:ba:93:70:19:f8: de:2b:d4:b9:2a:70:81:ab:bd:55:b3:8f:0a:8c:cf:97:23:8b: 19:7d:85:cf:34:78:25:ff:b0:a3:17:51:76:24:69:7c:31:5a: a8:f1:28:28:49:f9:ca:a7:81:a2:c3:ae:9e:a9:e3:c7:27:e5: 8f:b4:3f:5b:c7:d2:f8:0c:91:0c:55:65:9b:97:31:ff:0a:51: 88:0d:11:9d:0e:38:5f:72:1c:64:76:45:a2:c4:39:70:ab:01: 58:21:93:67:1d:e6:8c:0e:31:e6:e2:25:f9:26:88:70:33:99: 3c:02:f4:bf:57:26:a3:4b:38:e2:fd:e8:b2:1c:6d:48:d2:24: 3e:59:bd:92:7f:2d:28:3c:33:76:3b:13:5e:03:38:63:49:17: d2:e1:b7:da:57:af:9b:c5:28:84:39:33:a4:27:d4:79:92:75: 35:bd:64:c1:45:5b:d5:d1:5d:78:c0:31:ee:e7:7b:ff:57:bc: 8b:5f:70:18:be:3e:61:b2:bb:50:4b:53:8d:7d:f1:a8:1f:a7: 62:e1:94:df:a6:45:df:0d:a1:c3:7c:30:f5:22:26:ec:15:a1: fd:63:90:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDDSpIwrb++3eUi6ZoPA8NEM/1TMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTEyMDIwMzM2MDdaFw0yNTEyMDUxNDExMDdaMDMxMTAvBgNV BAMTKDQzQzg3NUNCNTMyQ0YyNkFFRUMwODQ1QjlCMEU1MzhDNDc0MkFCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoUvJCG91rSYiAQeO3eH/5k2iB Wd9RpByyWcwbQRiq1tVkpW13/v7ztcazIJcGa3OsfN9W4lfmRG7x7Xq9v7Ivv2/y pvyTYhAVPYSA4X5Tf8x3Po7A4NEx0Z/EFeoCz+zlccKCzTtzgoPc7+KWuZh9WIy9 t1NrjJTOX1XsK9pmsAUnCdYckZvePP2i0pVG/HUIbEhM9uz//LeInsVWe66U0KDB VZ9xqY1NHJs/I+sIMALpTYCsqJ4Gcgp7jK+kCHzeJAdmbHVeIzCWCQSgrKIuwvDH 3kho23ZsjvRamf1skm9ddohDb9onUu47bIxrFrVJJhdTym8NHqx/ThvtOB5rAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQ8h1y1Ms8mruwIRbmw5TjEdCq+AwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAuc3ChMncG2C8sbwvUEAh/NbEqn5r3cWoWl 7X1cZJy6k3AZ+N4r1LkqcIGrvVWzjwqMz5cjixl9hc80eCX/sKMXUXYkaXwxWqjx KChJ+cqngaLDrp6p48cn5Y+0P1vH0vgMkQxVZZuXMf8KUYgNEZ0OOF9yHGR2RaLE OXCrAVghk2cd5owOMebiJfkmiHAzmTwC9L9XJqNLOOL96LIcbUjSJD5ZvZJ/LSg8 M3Y7E14DOGNJF9Lht9pXr5vFKIQ5M6Qn1HmSdTW9ZMFFW9XRXXjAMe7ne/9XvItf cBi+PmGyu1BLU4198agfp2LhlN+mRd8NocN8MPUiJuwVof1jkFs= -----END CERTIFICATE-----Generated at Wed Dec 3 18:54:59 2025 by rpki-client