This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft File: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft (raw, json) Hash identifier: 85LiUJf1A+6LCFMNj6hhk0dCfuLRD1PI3jkfr2cgSEg= Subject key identifier: 78:68:98:F2:EE:58:62:43:CE:DC:52:99:64:3C:84:65:A4:F7:9C:8B Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 02225B7351CE8151A7DF812DBBAC7AE26C3B2EB5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft Manifest number: 0338 Signing time: Sat 13 Dec 2025 14:51:51 +0000 Manifest this update: Sat 13 Dec 2025 14:46:51 +0000 Manifest next update: Tue 16 Dec 2025 19:34:51 +0000 Files and hashes: 1: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (hash: 9s1ITUmg2kGqf5Jx5LPfpxTxCb9voDIi9IZi6C1ddpU=) 2: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl (hash: gUQ6Ks/AwlWCN5/j3envVpNgFSLgPah0pmXXjjeruig=) 3: 3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa (hash: kkQvEgsJeO+CrA3Ye9kDXGk01vieQEZNvkHA4XJOOhQ=) 4: 3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa (hash: SPW5Gl3BeUVHO5fIh7gLc9Co4QXzBznSK3/ByXd6mfU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 13:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:22:5b:73:51:ce:81:51:a7:df:81:2d:bb:ac:7a:e2:6c:3b:2e:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: Dec 13 14:46:51 2025 GMT Not After : Dec 16 19:34:51 2025 GMT Subject: CN=786898F2EE586243CEDC5299643C8465A4F79C8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:68:fb:c5:72:9c:ab:a5:91:d1:f9:5c:6e:50: c2:d8:0e:52:a6:19:73:2a:9f:03:3f:68:37:0c:60: 11:a9:c5:31:2c:31:68:1e:21:2b:e8:e9:cf:8f:95: b9:2e:d8:12:af:3d:d6:a9:fd:27:7b:17:97:0b:02: 3e:c1:f1:ab:c6:88:65:d2:24:00:48:b8:d7:e5:db: 75:17:4b:fa:bf:7c:c5:15:70:69:b9:92:44:ae:9a: b0:0d:50:6f:f7:a1:0d:f0:e1:41:b1:6d:3b:67:fb: e0:34:60:5e:19:d1:09:4a:24:db:1e:c4:bb:f0:bd: 7a:34:04:62:05:19:49:48:07:0c:87:7f:79:8e:65: b2:9f:74:43:56:cc:08:2b:65:89:80:37:88:9d:d3: 42:b0:e1:14:36:e6:f9:68:b2:8d:03:e3:b1:31:5c: 07:1d:a7:ad:63:9e:a7:d7:ac:be:10:e7:23:22:e3: a5:4e:ca:05:32:2b:6a:51:65:75:c4:58:eb:38:c8: cf:5f:7f:18:4b:1c:0b:64:5f:8b:dd:58:45:86:78: 71:37:e8:34:e3:92:83:9b:30:eb:17:5c:c0:93:74: f2:ad:ca:92:00:92:35:fa:af:aa:66:a9:5f:f0:bf: 4d:22:f3:37:49:dd:1e:d2:ce:2a:68:53:5d:cb:d2: ae:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:68:98:F2:EE:58:62:43:CE:DC:52:99:64:3C:84:65:A4:F7:9C:8B X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:1c:aa:00:e5:14:16:26:a2:bf:90:f5:c5:4c:ef:0e:51:8e: ca:8e:8b:56:b5:dc:4c:9e:a0:51:ee:26:02:5c:99:55:10:49: a9:8e:fe:59:98:b6:e5:a9:79:dc:bc:18:7f:bd:a8:3e:95:41: 1d:d5:a4:52:82:63:80:9f:5e:0a:64:cc:9b:ee:95:7d:39:5d: e7:ac:51:f1:21:da:4a:e5:11:44:00:12:71:d1:1c:3f:4c:79: 1f:de:c3:5c:b9:d4:07:db:27:5b:96:80:ed:a7:44:20:50:17: 76:52:2b:75:7c:09:71:0d:a1:9a:d5:0f:30:03:19:22:81:ca: 4d:c2:0c:3a:45:30:4a:b5:8a:cb:de:f0:4d:da:79:bc:76:f1: 6c:55:0f:89:9f:dc:1c:3d:f3:c9:5c:06:3d:85:81:4b:b6:3d: 99:8f:66:96:f7:48:83:d5:ce:f5:8a:79:fd:1f:31:c3:17:3b: e4:fc:08:b4:b4:61:55:4d:0e:d2:aa:c9:a4:d1:8d:b3:4e:f1: 3a:23:8b:dd:f7:b5:c1:36:77:ca:4d:26:aa:e6:fa:f4:cd:ca: c4:b6:7c:9e:b5:19:c2:45:d0:ea:d4:57:60:f0:d8:20:c0:49: d8:1d:0f:36:4d:c2:8c:3a:46:97:21:52:2c:1a:0a:39:83:00: 47:04:fc:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAiJbc1HOgVGn34Etu6x64mw7LrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNTEyMTMxNDQ2NTFaFw0yNTEyMTYxOTM0NTFaMDMxMTAvBgNV BAMTKDc4Njg5OEYyRUU1ODYyNDNDRURDNTI5OTY0M0M4NDY1QTRGNzlDOEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQaPvFcpyrpZHR+VxuUMLYDlKm GXMqnwM/aDcMYBGpxTEsMWgeISvo6c+Plbku2BKvPdap/Sd7F5cLAj7B8avGiGXS JABIuNfl23UXS/q/fMUVcGm5kkSumrANUG/3oQ3w4UGxbTtn++A0YF4Z0QlKJNse xLvwvXo0BGIFGUlIBwyHf3mOZbKfdENWzAgrZYmAN4id00Kw4RQ25vloso0D47Ex XAcdp61jnqfXrL4Q5yMi46VOygUyK2pRZXXEWOs4yM9ffxhLHAtkX4vdWEWGeHE3 6DTjkoObMOsXXMCTdPKtypIAkjX6r6pmqV/wv00i8zdJ3R7SzipoU13L0q41AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeGiY8u5YYkPO3FKZZDyEZaT3nIswHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjFkYjZjOWItZDhmYy00ZDhjLTgw Y2ItZmQyMjQxMjA4ZGRlLzAvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2 OUYwNTZERjA5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALIcqgDlFBYmor+Q9cVM7w5RjsqOi1a13Eye oFHuJgJcmVUQSamO/lmYtuWpedy8GH+9qD6VQR3VpFKCY4CfXgpkzJvulX05Xees UfEh2krlEUQAEnHRHD9MeR/ew1y51AfbJ1uWgO2nRCBQF3ZSK3V8CXENoZrVDzAD GSKByk3CDDpFMEq1isve8E3aebx28WxVD4mf3Bw988lcBj2FgUu2PZmPZpb3SIPV zvWKef0fMcMXO+T8CLS0YVVNDtKqyaTRjbNO8Toji933tcE2d8pNJqrm+vTNysS2 fJ61GcJF0OrUV2Dw2CDASdgdDzZNwow6RpchUiwaCjmDAEcE/B4= -----END CERTIFICATE-----Generated at Sun Dec 14 01:55:17 2025 by rpki-client