This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft File: DD29F5E4CE561760A0212F0448987AFBE75263D7.mft (raw, json) Hash identifier: bcFSiIcDfV5FdrG4+Rvu3oxUML7mafH03aKdRD+hOP8= Subject key identifier: 50:C6:1E:6C:7E:6B:B7:A6:52:0A:12:2E:DF:17:0E:EA:D0:28:93:15 Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 75371217932EDEFF8646B9D1C1C335BD96943F6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft Manifest number: 034F Signing time: Thu 18 Dec 2025 12:42:13 +0000 Manifest this update: Thu 18 Dec 2025 12:37:13 +0000 Manifest next update: Sun 21 Dec 2025 20:54:13 +0000 Files and hashes: 1: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (hash: R+HBHXL62WCqMu+S9XZ2lfDd7q3jJVRrizTgz3Qq4sM=) 2: 35382e3134372e3138362e302f32342d3234203d3e203234353334.roa (hash: X9EKF8Z1uFLJC9IzjlT1aPQkzE/clRuy5X9NkdqNVow=) 3: 3130332e34322e3132322e302f32342d3234203d3e203234353334.roa (hash: XqcXXJVRLAigakZzITIJ9WqM9shB4JwPgUNXZenmspo=) 4: 323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa (hash: 47GvXgllqrS1MxJptUYHVOsa05orn3J0qbEjvOU+c+c=) 5: 3130332e34322e3132302e302f32342d3234203d3e203234353334.roa (hash: wWYceKo3HVUOMgRcN2/P197TAtHkoSlPkbBqfdmOb58=) 6: 35382e3134372e3139302e302f32342d3234203d3e203234353334.roa (hash: hfJYX7IXK2yRsIkXzTXumWYWspYzmgD5u1H3fLVubkc=) 7: 323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa (hash: 1Jp8cCDyjncp4Wpa0IwwHsbMLezQ3Rf5CCYJ9Uaw69A=) 8: 35382e3134372e3138352e302f32342d3234203d3e203234353334.roa (hash: 0+6+N7y7+z5+GZ0LUn4in9mnEACESucH1zgQmC9xHAA=) 9: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (hash: yHFhz7s9vTM+0GwcewjykllWnmywdIchHv+vwnUyUtQ=) 10: 35382e3134372e3138342e302f32342d3234203d3e203234353334.roa (hash: x2jz47JNdTLcNfT8vbEKIJnVX3m/vRvrmqpmvqODREA=) 11: 35382e3134372e3138382e302f32342d3234203d3e203234353334.roa (hash: s32Asfb0Vk2AoqdXXpuFo/1b1Jpm9sVE9gF86xInAZ8=) 12: DD29F5E4CE561760A0212F0448987AFBE75263D7.crl (hash: CBqDo2LEImnzx+CIB2MMq09BrdhRyiAMpyJtyicxEQE=) 13: 35382e3134372e3139312e302f32342d3234203d3e203234353334.roa (hash: 8qZ2PfVPSW4Gale+B6XAN2CyhRmIb70LvF4xop7XFFw=) 14: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (hash: +h69YPXoiC31k13cSEzWyv6wTFkos1CLOZsQnIEiGv0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 20:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:37:12:17:93:2e:de:ff:86:46:b9:d1:c1:c3:35:bd:96:94:3f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Dec 18 12:37:13 2025 GMT Not After : Dec 21 20:54:13 2025 GMT Subject: CN=50C61E6C7E6BB7A6520A122EDF170EEAD0289315 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b1:bd:a3:c8:bb:e4:ee:1c:3b:c7:c8:a5:a4: 71:fe:ef:e1:b0:6a:2b:92:5b:9f:ba:21:1a:bf:25: ea:bd:10:51:b8:53:a1:65:3f:f7:6c:eb:2f:50:a7: db:00:7f:48:2f:90:35:6d:ee:eb:dc:f9:87:97:6a: 88:e8:3b:d3:ee:1d:4b:83:87:fc:a2:2f:2a:15:a9: ca:8d:60:2f:f9:03:b5:f4:fe:21:fa:1d:1e:9b:e5: 18:64:de:c8:51:73:ff:b0:5d:17:1c:61:e7:63:e2: 35:12:66:39:0e:4a:a5:df:66:4d:0d:13:a9:3f:32: 9f:f2:01:d9:3e:c7:38:99:13:96:35:7e:29:9f:c9: 1c:1a:32:ea:a8:53:ae:dd:fe:88:e0:ff:1d:87:51: 88:0d:b3:a6:ba:79:72:40:df:b4:06:74:8a:a6:7e: c9:fd:70:f7:3d:e4:e9:44:2c:87:53:93:f5:c1:93: 5c:cf:01:fd:9c:33:cc:bd:24:7f:ba:cc:4d:32:e1: 9d:73:b6:5c:7b:5d:76:53:78:81:7f:f9:78:a3:cf: 90:5f:8b:38:6f:f2:45:12:c6:51:6a:27:00:ff:17: 42:82:ca:d1:b6:39:fa:09:b9:85:ca:7f:0a:5e:fd: 9f:22:d2:51:c6:ab:d3:7c:71:de:f1:5f:1a:b1:f4: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C6:1E:6C:7E:6B:B7:A6:52:0A:12:2E:DF:17:0E:EA:D0:28:93:15 X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:ac:c6:14:89:c0:5a:7f:b4:8e:6c:fd:a4:a5:29:46:f6:01: d2:2c:b2:ce:91:5d:6b:d0:2d:ed:d5:6f:89:f4:a5:be:62:51: 19:a5:c7:ec:5d:f5:40:6d:6a:66:ee:51:40:e4:03:46:75:a3: ff:01:f0:a9:18:ba:0a:db:63:26:92:3d:e8:35:c6:9c:b7:2f: 72:62:3e:47:ff:37:cb:65:89:da:07:9d:e3:dd:40:1b:60:38: e9:9f:75:e8:41:00:3d:03:aa:0b:d4:a5:d2:9d:76:05:25:fd: 1c:de:a2:8e:a0:4d:08:e9:a8:47:19:4a:af:c7:c0:bd:4c:2f: f7:05:6e:b3:3c:7c:cb:38:d1:73:81:23:a1:b0:49:10:4a:ee: 4d:08:87:b2:fc:29:1c:16:43:f8:13:1d:48:08:8a:51:f1:ec: 5b:98:78:04:18:a6:63:71:3b:70:a4:a1:56:a5:68:a8:ba:89: 8f:9b:15:6a:e0:1c:35:da:69:85:0a:14:07:50:06:4c:ea:bf: 74:50:fb:d3:4e:0f:91:0f:57:a1:fb:92:74:80:d6:49:55:1c: 68:81:c9:f7:18:69:fb:67:28:ee:63:ff:05:1b:0e:42:a7:96: f9:fe:53:9e:b4:b5:2e:f0:65:2d:38:dd:d2:0a:98:d1:f2:97: 46:0f:1a:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdTcSF5Mu3v+GRrnRwcM1vZaUP24wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTEyMTgxMjM3MTNaFw0yNTEyMjEyMDU0MTNaMDMxMTAvBgNV BAMTKDUwQzYxRTZDN0U2QkI3QTY1MjBBMTIyRURGMTcwRUVBRDAyODkzMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFsb2jyLvk7hw7x8ilpHH+7+Gw aiuSW5+6IRq/Jeq9EFG4U6FlP/ds6y9Qp9sAf0gvkDVt7uvc+YeXaojoO9PuHUuD h/yiLyoVqcqNYC/5A7X0/iH6HR6b5Rhk3shRc/+wXRccYedj4jUSZjkOSqXfZk0N E6k/Mp/yAdk+xziZE5Y1fimfyRwaMuqoU67d/ojg/x2HUYgNs6a6eXJA37QGdIqm fsn9cPc95OlELIdTk/XBk1zPAf2cM8y9JH+6zE0y4Z1ztlx7XXZTeIF/+Xijz5Bf izhv8kUSxlFqJwD/F0KCytG2OfoJuYXKfwpe/Z8i0lHGq9N8cd7xXxqx9G5bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUMYebH5rt6ZSChIu3xcO6tAokxUwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDYyNDA1MmUtMjIwNS00OGYzLWEz Y2ItY2U4YjMyNmI4ZjcxLzAvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdB RkJFNzUyNjNENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABisxhSJwFp/tI5s/aSlKUb2AdIsss6RXWvQ Le3Vb4n0pb5iURmlx+xd9UBtambuUUDkA0Z1o/8B8KkYugrbYyaSPeg1xpy3L3Ji Pkf/N8tlidoHnePdQBtgOOmfdehBAD0DqgvUpdKddgUl/Rzeoo6gTQjpqEcZSq/H wL1ML/cFbrM8fMs40XOBI6GwSRBK7k0Ih7L8KRwWQ/gTHUgIilHx7FuYeAQYpmNx O3CkoValaKi6iY+bFWrgHDXaaYUKFAdQBkzqv3RQ+9NOD5EPV6H7knSA1klVHGiB yfcYaftnKO5j/wUbDkKnlvn+U560tS7wZS043dIKmNHyl0YPGrs= -----END CERTIFICATE-----Generated at Fri Dec 19 23:44:56 2025 by rpki-client