This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft File: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft (raw, json) Hash identifier: iM/SvGyaYSzYZvHlCMvaK3s+jP3nhPRJNx67QFIHWV8= Subject key identifier: 9A:5D:CC:D2:90:AB:85:96:13:18:97:53:7E:A1:A9:2D:AD:BB:C2:44 Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 0ECBCB3C9FF08F49605C3578421FF238F2CA8105 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft Manifest number: 0333 Signing time: Tue 02 Dec 2025 09:51:48 +0000 Manifest this update: Tue 02 Dec 2025 09:46:48 +0000 Manifest next update: Fri 05 Dec 2025 14:52:48 +0000 Files and hashes: 1: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl (hash: 6ehVxe4iop54kcXrLT8Wg5et7nsNS6hLkn7akITNjps=) 2: 3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa (hash: SPW5Gl3BeUVHO5fIh7gLc9Co4QXzBznSK3/ByXd6mfU=) 3: 3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa (hash: kkQvEgsJeO+CrA3Ye9kDXGk01vieQEZNvkHA4XJOOhQ=) 4: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (hash: 9s1ITUmg2kGqf5Jx5LPfpxTxCb9voDIi9IZi6C1ddpU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 14:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:cb:cb:3c:9f:f0:8f:49:60:5c:35:78:42:1f:f2:38:f2:ca:81:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Dec 2 09:46:48 2025 GMT Not After : Dec 5 14:52:48 2025 GMT Subject: CN=9A5DCCD290AB8596131897537EA1A92DADBBC244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:80:e5:ef:c3:fa:d1:8a:02:2b:2f:9b:06: 5c:f2:8d:55:b3:9b:8c:45:1d:6f:33:92:56:56:4e: 32:d1:14:73:1f:09:98:da:79:fe:3c:29:92:8e:29: e5:1a:8f:77:bc:ce:5e:d4:c7:c4:e8:1b:30:c0:0e: bc:2d:bd:4d:5d:62:38:88:84:b5:f0:ae:9c:48:5e: 4c:29:3f:2f:a2:22:b2:ef:2d:33:9a:6f:32:ea:33: 88:40:7b:34:17:9e:21:8d:1f:5c:d5:74:b7:44:17: 54:e6:99:56:43:b2:a9:ee:71:c9:2e:16:87:04:4b: 5a:23:db:99:0e:e3:e1:5b:23:d9:fe:c1:96:f4:93: 98:d3:17:38:a3:7a:68:df:c3:80:a2:62:4f:ca:fb: 68:d3:09:43:2d:ab:ab:24:e8:9e:d7:91:46:2c:3d: 58:de:26:c6:76:a6:c1:d7:b8:74:5b:df:06:07:a0: d3:2f:f3:5b:45:1a:b4:f0:32:79:12:7e:e1:7f:49: 01:89:d0:54:c7:e3:3a:21:21:d5:b5:9e:36:10:25: b8:25:1a:70:65:9b:32:45:cb:ac:b5:c2:c0:b6:b2: 5c:75:d6:80:ca:89:10:33:d0:bc:1b:38:23:85:fb: ac:0b:d7:de:5b:1f:3f:2d:8d:2b:8c:51:6a:e5:3f: 30:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:5D:CC:D2:90:AB:85:96:13:18:97:53:7E:A1:A9:2D:AD:BB:C2:44 X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b5:6b:a6:8f:ef:52:aa:da:c3:5f:8f:0d:df:fa:52:5c:c2: b3:49:a4:3c:7e:37:be:77:a1:af:b1:df:b1:e2:b3:21:6b:02: 29:22:88:b8:11:5e:44:f2:10:31:9e:1d:79:e3:64:75:01:a7: 54:f6:77:b8:16:8d:8a:68:a9:b9:25:c5:04:1e:62:90:f0:c1: 90:e3:12:69:5b:3a:7a:ef:91:a6:45:b3:11:ce:bc:c3:b1:71: b3:39:39:04:b6:b9:d9:fa:d2:93:58:28:e9:f8:58:96:91:6a: 81:c6:cb:b4:99:83:61:22:19:09:d8:e5:6e:03:fd:ec:df:f9: cb:2b:8f:9a:1a:a4:7f:ea:25:fa:ce:18:01:15:48:2f:05:10: ff:c9:2d:b5:50:e0:56:ca:54:08:22:01:53:04:bc:5c:38:1d: dd:00:2c:6e:86:77:a1:58:3a:b1:f4:08:d4:77:db:e2:a4:9d: a0:95:93:6c:eb:10:4f:62:da:4b:84:57:d9:ca:dd:3a:a7:8c: bc:78:93:d5:58:7c:03:bd:ee:72:46:98:dc:31:d6:db:14:0f: 48:72:a5:ee:7f:56:25:31:5c:00:64:c1:4a:99:50:62:e9:90: 43:c9:06:07:ff:63:56:c9:dc:a6:1a:81:c1:0f:30:23:ce:cb: 0b:ee:90:aa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDsvLPJ/wj0lgXDV4Qh/yOPLKgQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNTEyMDIwOTQ2NDhaFw0yNTEyMDUxNDUyNDhaMDMxMTAvBgNV BAMTKDlBNURDQ0QyOTBBQjg1OTYxMzE4OTc1MzdFQTFBOTJEQURCQkMyNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1/oDl78P60YoCKy+bBlzyjVWz m4xFHW8zklZWTjLRFHMfCZjaef48KZKOKeUaj3e8zl7Ux8ToGzDADrwtvU1dYjiI hLXwrpxIXkwpPy+iIrLvLTOabzLqM4hAezQXniGNH1zVdLdEF1TmmVZDsqnuccku FocES1oj25kO4+FbI9n+wZb0k5jTFzijemjfw4CiYk/K+2jTCUMtq6sk6J7XkUYs PVjeJsZ2psHXuHRb3wYHoNMv81tFGrTwMnkSfuF/SQGJ0FTH4zohIdW1njYQJbgl GnBlmzJFy6y1wsC2slx11oDKiRAz0LwbOCOF+6wL195bHz8tjSuMUWrlPzAdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUml3M0pCrhZYTGJdTfqGpLa27wkQwHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjFkYjZjOWItZDhmYy00ZDhjLTgw Y2ItZmQyMjQxMjA4ZGRlLzAvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2 OUYwNTZERjA5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADu1a6aP71Kq2sNfjw3f+lJcwrNJpDx+N753 oa+x37HisyFrAikiiLgRXkTyEDGeHXnjZHUBp1T2d7gWjYpoqbklxQQeYpDwwZDj EmlbOnrvkaZFsxHOvMOxcbM5OQS2udn60pNYKOn4WJaRaoHGy7SZg2EiGQnY5W4D /ezf+csrj5oapH/qJfrOGAEVSC8FEP/JLbVQ4FbKVAgiAVMEvFw4Hd0ALG6Gd6FY OrH0CNR32+KknaCVk2zrEE9i2kuEV9nK3TqnjLx4k9VYfAO97nJGmNwx1tsUD0hy pe5/ViUxXABkwUqZUGLpkEPJBgf/Y1bJ3KYagcEPMCPOywvukKo= -----END CERTIFICATE-----Generated at Wed Dec 3 16:37:20 2025 by rpki-client