This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft File: 25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json) Hash identifier: WHKzqp4SG+wz1Y1eUiElwUEmBxpJWDlg1wDvLWmxYLU= Subject key identifier: 6C:2E:70:11:BD:D7:D4:A7:E1:42:42:13:96:2F:2B:71:E6:9C:A1:08 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 4620E561EE3384AC4E0BE30EB181D2E5163F164A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft Manifest number: 0383 Signing time: Thu 18 Dec 2025 21:51:40 +0000 Manifest this update: Thu 18 Dec 2025 21:46:40 +0000 Manifest next update: Mon 22 Dec 2025 03:03:40 +0000 Files and hashes: 1: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: g29pf8GRD5KEsQ3xMiXcjqqLaCsv5cRFguqUqUNSeQU=) 2: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: AU2BjjxLKOB7x1afsJypIVoDqfBt5Pa++/i1Uy3JBXs=) 3: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: RBuNBvbt7idAQ2/X0+nVvx/j4MNL2HHsfjjSbeB7gyk=) 4: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: T9vPzFVrVbtfkOIbIR0gBtReDHG4KgAtDeHT2T3EGwQ=) 5: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: BfvR/So226bitOLhPr9CHxhxgb1Q7qOXOhbe2UXDXlU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:20:e5:61:ee:33:84:ac:4e:0b:e3:0e:b1:81:d2:e5:16:3f:16:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Dec 18 21:46:40 2025 GMT Not After : Dec 22 03:03:40 2025 GMT Subject: CN=6C2E7011BDD7D4A7E1424213962F2B71E69CA108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:01:4b:74:bf:ef:c3:f3:9c:df:01:20:5c:8f: 6b:88:bf:18:a1:43:43:91:8d:8c:bc:23:d0:d4:ea: 78:75:25:ca:3f:15:f9:f5:d8:6d:9b:41:18:4e:b9: 65:25:8e:b0:a8:f0:ce:40:a4:73:c1:1b:06:f1:55: 2f:07:9e:ca:7e:cb:c4:b2:e2:23:0e:da:4a:18:d0: d8:25:e5:e2:9e:91:2a:19:a3:98:a0:cd:5c:8d:cb: f0:0c:2a:0e:01:fb:d1:82:ce:b5:aa:0b:32:c8:e4: f6:1d:65:7c:83:a3:80:ea:d6:4e:60:4e:b7:93:c4: 0d:7c:3f:14:24:ac:5e:68:09:6b:8c:2a:9d:1d:3d: 85:05:4a:a7:9e:1b:6a:e9:4c:dd:45:63:b2:7b:78: 92:06:1f:53:8e:a9:49:c4:2f:8f:f3:97:52:68:38: fe:8d:57:bc:19:b5:25:ec:3d:07:f3:91:85:be:de: 42:35:8f:55:75:14:5d:e1:93:01:3d:11:7a:1a:7c: 72:d6:2a:db:60:9b:7f:93:6c:09:ec:70:89:4f:81: f5:77:6f:07:15:e4:78:6b:87:f1:88:ec:3f:d3:f5: 12:d7:c7:0d:34:08:5a:ae:59:90:24:91:76:d0:49: ec:01:3e:ad:92:2b:7f:5f:1f:1d:32:7e:fc:af:6c: fb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2E:70:11:BD:D7:D4:A7:E1:42:42:13:96:2F:2B:71:E6:9C:A1:08 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:4b:7b:a7:b2:a0:32:7e:cf:5a:3e:4c:ad:a8:6e:39:a0:17: ca:a2:87:62:0d:f9:25:de:70:9f:6b:bb:f2:d1:f9:d7:2e:52: 88:ac:29:35:5b:74:cb:99:92:f2:27:57:50:91:41:36:b4:fc: 12:be:7f:1f:00:00:dc:ea:11:95:e1:a3:cb:49:25:7c:9b:f1: 5b:a1:85:c2:78:af:c8:35:b5:20:5b:f4:22:cd:ba:82:53:5e: fc:aa:f1:62:0a:21:2f:5c:25:01:7b:79:77:0d:0f:5d:b1:e0: 7b:4d:d7:9e:11:dd:4b:69:7e:af:f7:7a:78:99:12:1a:3c:4a: fa:65:56:16:c1:7c:fe:63:5a:f5:19:7e:b4:cc:04:7b:0d:fc: c4:85:2a:e9:9a:50:9c:96:86:c6:91:9c:4b:c5:50:96:82:2b: 28:5e:a1:18:4c:7d:a9:8e:d3:5d:2d:31:c2:b6:e3:bf:b3:40: 7d:6a:cf:7c:97:c0:07:27:97:f1:24:7c:fa:ea:92:a1:e4:6c: c6:45:0f:33:83:fa:fc:48:12:d7:f2:f7:04:7b:32:ca:4e:3e: a1:18:f5:38:ac:bc:30:83:83:d6:5c:56:ce:0b:d3:f0:06:16: f9:24:5a:c4:e9:6f:50:d3:a5:bf:f2:d2:9a:ff:09:4e:d7:ba: a1:8a:d9:c6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURiDlYe4zhKxOC+MOsYHS5RY/FkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNTEyMTgyMTQ2NDBaFw0yNTEyMjIwMzAzNDBaMDMxMTAvBgNV BAMTKDZDMkU3MDExQkREN0Q0QTdFMTQyNDIxMzk2MkYyQjcxRTY5Q0ExMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVAUt0v+/D85zfASBcj2uIvxih Q0ORjYy8I9DU6nh1Jco/Ffn12G2bQRhOuWUljrCo8M5ApHPBGwbxVS8Hnsp+y8Sy 4iMO2koY0Ngl5eKekSoZo5igzVyNy/AMKg4B+9GCzrWqCzLI5PYdZXyDo4Dq1k5g TreTxA18PxQkrF5oCWuMKp0dPYUFSqeeG2rpTN1FY7J7eJIGH1OOqUnEL4/zl1Jo OP6NV7wZtSXsPQfzkYW+3kI1j1V1FF3hkwE9EXoafHLWKttgm3+TbAnscIlPgfV3 bwcV5Hhrh/GI7D/T9RLXxw00CFquWZAkkXbQSewBPq2SK39fHx0yfvyvbPtTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbC5wEb3X1KfhQkITli8rceacoQgwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZhNzY2NWEtYjUwYi00YTQ1LWE4 ZjktMGQ2OWJkN2Q3NDNkLzAvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5 NUZERkY1NjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFxLe6eyoDJ+z1o+TK2objmgF8qih2IN+SXe cJ9ru/LR+dcuUoisKTVbdMuZkvInV1CRQTa0/BK+fx8AANzqEZXho8tJJXyb8Vuh hcJ4r8g1tSBb9CLNuoJTXvyq8WIKIS9cJQF7eXcND12x4HtN154R3Utpfq/3eniZ Eho8SvplVhbBfP5jWvUZfrTMBHsN/MSFKumaUJyWhsaRnEvFUJaCKyheoRhMfamO 010tMcK247+zQH1qz3yXwAcnl/EkfPrqkqHkbMZFDzOD+vxIEtfy9wR7MspOPqEY 9TisvDCDg9ZcVs4L0/AGFvkkWsTpb1DTpb/y0pr/CU7XuqGK2cY= -----END CERTIFICATE-----Generated at Fri Dec 19 09:41:57 2025 by rpki-client