This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft File: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft (raw, json) Hash identifier: SI+gA7O132NsSyG92eoKpmtrJSNnmszY/2bXj5AiCaU= Subject key identifier: 28:4B:5F:94:15:01:E1:3B:73:D3:4E:BE:59:77:2A:10:8C:DD:A2:ED Authority key identifier: 14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B Certificate issuer: /CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Certificate serial: 63BC2139D4BB175ED7F43B0C91A208A4F9B9E428 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft Manifest number: CA Signing time: Tue 02 Dec 2025 06:31:06 +0000 Manifest this update: Tue 02 Dec 2025 06:26:06 +0000 Manifest next update: Fri 05 Dec 2025 09:45:06 +0000 Files and hashes: 1: 3230322e34372e3137352e302f32342d3234203d3e20313532303333.roa (hash: XksCWCwCEfjKtaahou1lG189rxAz7b8EI9jL1IweY6M=) 2: 14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl (hash: oEokgeBpYw3AloeSktijmhMmVfkQgkVT0rnxkXp6zZQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 09:45:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:bc:21:39:d4:bb:17:5e:d7:f4:3b:0c:91:a2:08:a4:f9:b9:e4:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=14CF99DEFA1B9276EBEE61180DF4770177957E3B Validity Not Before: Dec 2 06:26:06 2025 GMT Not After : Dec 5 09:45:06 2025 GMT Subject: CN=284B5F941501E13B73D34EBE59772A108CDDA2ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6c:cb:a0:cb:90:13:c2:97:be:1b:98:63:00: 7d:13:19:7e:e9:f7:08:66:35:7e:d3:f0:bd:cc:b1: ac:75:cc:69:50:d9:31:b4:a4:fc:c5:fa:18:2a:9c: 07:59:1b:5a:3c:16:32:13:90:c2:56:90:c7:05:95: 37:40:59:42:8a:c4:2f:c7:7c:2f:f4:7c:d6:3f:f6: 5e:c8:d7:90:91:55:ec:1f:f1:3f:cc:ad:91:a7:1b: f3:fc:93:27:8a:ad:1b:22:ff:db:76:f9:aa:91:e5: 11:b4:01:14:e3:de:a8:58:d4:07:f8:97:03:b6:30: 01:b4:c0:df:07:71:37:82:51:33:8e:e4:88:fa:04: 4e:1e:eb:a0:1c:6f:fb:f5:4d:f5:03:8d:1b:07:71: 55:04:e8:f2:58:54:18:41:8a:08:8b:a4:57:fa:43: 3c:d1:d1:02:9c:99:f4:4f:07:61:da:e0:90:1b:6d: cf:aa:21:9e:00:26:50:02:30:4b:c1:c6:15:2d:7a: 5b:35:48:6e:bc:e6:00:4a:88:97:af:62:f1:17:f7: 18:96:09:1b:a6:b2:e1:25:56:5a:19:d2:e5:35:6d: 98:80:a9:f9:31:c6:3e:71:c6:d9:eb:43:3a:18:ee: 0b:75:2b:5e:22:4c:05:52:95:63:9a:3a:a7:54:b7: e4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4B:5F:94:15:01:E1:3B:73:D3:4E:BE:59:77:2A:10:8C:DD:A2:ED X509v3 Authority Key Identifier: keyid:14:CF:99:DE:FA:1B:92:76:EB:EE:61:18:0D:F4:77:01:77:95:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/14CF99DEFA1B9276EBEE61180DF4770177957E3B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/097f5161-070f-4339-af4e-bc33fdfb67b8/0/14CF99DEFA1B9276EBEE61180DF4770177957E3B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:40:71:b9:71:9d:c9:52:e5:7c:5b:8a:81:b2:3c:28:b9:95: 8f:8e:01:be:a8:08:9b:dd:05:d2:ad:36:53:97:a1:cc:4e:cb: 4b:5b:18:91:34:33:3b:8b:f1:5f:26:65:7d:8a:ee:ad:01:70: e7:16:4e:00:7c:d7:ed:11:50:1e:1a:8e:ba:b8:88:e0:5a:17: dc:db:5e:f7:d8:3d:80:e8:09:32:bd:e2:08:13:b3:de:5b:a8: fa:a1:e0:eb:e6:5a:33:80:89:7f:2f:da:ff:33:f0:7b:79:3b: 56:57:92:de:47:84:e5:81:da:aa:53:3d:bf:6a:80:fb:a4:4f: 15:3d:97:33:b7:4d:ec:6c:64:41:c2:f8:97:d9:0f:ef:52:06: 01:b2:67:83:30:ca:dc:61:ab:13:b2:ed:69:19:98:34:05:3a: d0:5f:1d:1c:51:ad:8d:8c:45:be:ff:03:5f:e2:71:e9:56:36: cb:f8:e1:91:55:f7:8b:79:4e:f1:c2:5e:19:74:85:71:95:51: 04:72:cb:f6:bf:62:10:a9:25:57:0c:fb:55:1c:5c:5b:0f:08: 2a:1a:10:38:46:df:45:de:1b:9c:2f:42:e2:03:a6:8a:18:cf: 2c:99:76:7f:51:f6:f9:1d:88:a6:81:ee:f0:de:4d:81:c7:4b: 57:b7:52:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY7whOdS7F17X9DsMkaIIpPm55CgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3 Nzk1N0UzQjAeFw0yNTEyMDIwNjI2MDZaFw0yNTEyMDUwOTQ1MDZaMDMxMTAvBgNV BAMTKDI4NEI1Rjk0MTUwMUUxM0I3M0QzNEVCRTU5NzcyQTEwOENEREEyRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXbMugy5ATwpe+G5hjAH0TGX7p 9whmNX7T8L3Msax1zGlQ2TG0pPzF+hgqnAdZG1o8FjITkMJWkMcFlTdAWUKKxC/H fC/0fNY/9l7I15CRVewf8T/MrZGnG/P8kyeKrRsi/9t2+aqR5RG0ARTj3qhY1Af4 lwO2MAG0wN8HcTeCUTOO5Ij6BE4e66Acb/v1TfUDjRsHcVUE6PJYVBhBigiLpFf6 QzzR0QKcmfRPB2Ha4JAbbc+qIZ4AJlACMEvBxhUtels1SG685gBKiJevYvEX9xiW CRumsuElVloZ0uU1bZiAqfkxxj5xxtnrQzoY7gt1K14iTAVSlWOaOqdUt+R/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKEtflBUB4Ttz006+WXcqEIzdou0wHwYDVR0j BBgwFoAUFM+Z3vobknbr7mEYDfR3AXeVfjswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OTdmNTE2MS0wNzBmLTQzMzktYWY0ZS1iYzMzZmRmYjY3YjgvMC8xNENGOTlERUZB MUI5Mjc2RUJFRTYxMTgwREY0NzcwMTc3OTU3RTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3MDE3Nzk1 N0UzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDk3ZjUxNjEtMDcwZi00MzM5LWFm NGUtYmMzM2ZkZmI2N2I4LzAvMTRDRjk5REVGQTFCOTI3NkVCRUU2MTE4MERGNDc3 MDE3Nzk1N0UzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGJAcblxnclS5XxbioGyPCi5lY+OAb6oCJvd BdKtNlOXocxOy0tbGJE0MzuL8V8mZX2K7q0BcOcWTgB81+0RUB4ajrq4iOBaF9zb XvfYPYDoCTK94ggTs95bqPqh4OvmWjOAiX8v2v8z8Ht5O1ZXkt5HhOWB2qpTPb9q gPukTxU9lzO3TexsZEHC+JfZD+9SBgGyZ4MwytxhqxOy7WkZmDQFOtBfHRxRrY2M Rb7/A1/icelWNsv44ZFV94t5TvHCXhl0hXGVUQRyy/a/YhCpJVcM+1UcXFsPCCoa EDhG30XeG5wvQuIDpooYzyyZdn9R9vkdiKaB7vDeTYHHS1e3Ug8= -----END CERTIFICATE-----Generated at Wed Dec 3 14:44:33 2025 by rpki-client