This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft File: 4AA76DED689FD4420809D0962087A03BCF018FEA.mft (raw, json) Hash identifier: oZkLtDWOIM4AgJczyP4v7V2btv6i4Dv7jGprFX6Zv/I= Subject key identifier: B3:6B:D1:4F:9F:86:F4:A4:0A:DD:AB:16:81:4E:DA:CA:A4:36:A2:5F Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 6386212785D220BB14C5DA0167F50950F3E561B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft Manifest number: EA Signing time: Tue 02 Dec 2025 20:21:48 +0000 Manifest this update: Tue 02 Dec 2025 20:16:48 +0000 Manifest next update: Sat 06 Dec 2025 00:31:48 +0000 Files and hashes: 1: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (hash: 2CpAucK+rvU21eAZmyDV5IqqR6dCAIafzExn8g2LOMw=) 2: 4AA76DED689FD4420809D0962087A03BCF018FEA.crl (hash: 9lpSpPs/gYggNThJShRwcPp1AgRZcPGZtr3e9Gp8g38=) 3: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (hash: bYo0zSG/Y+l/kRQWqzhvCy7R5Romzqih1iDCz89t3mk=) 4: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (hash: khEVLFQtH+a45cc9yGf67pi2XkwhJ0LBpc+mc2azWiQ=) 5: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (hash: qGUv354O5bgjhTMZ45JMcvyFGWQg1EdVxERPegJoKCQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 00:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:86:21:27:85:d2:20:bb:14:c5:da:01:67:f5:09:50:f3:e5:61:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Dec 2 20:16:48 2025 GMT Not After : Dec 6 00:31:48 2025 GMT Subject: CN=B36BD14F9F86F4A40ADDAB16814EDACAA436A25F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:33:86:bc:b4:7b:c2:50:95:7f:75:98:12:74: a4:0a:ad:d2:3f:8f:63:62:62:c6:1e:80:b1:de:01: f6:12:bb:cb:a9:1a:c2:c7:28:99:25:54:2a:ac:1c: 49:96:f5:ca:55:de:68:12:da:05:33:31:76:f6:87: 14:9b:f1:1e:b5:bc:ea:93:fd:63:f4:85:0b:61:4d: f1:e9:64:90:18:f9:32:6f:a6:e5:26:dd:61:dc:d3: 31:e5:98:0f:15:62:d3:ae:77:d3:b4:d9:6d:da:0c: dc:c3:bc:b7:5f:1c:e8:c5:c8:db:97:a2:e1:09:92: 23:fe:00:b9:74:4c:c4:3f:34:fe:e9:8e:e3:be:d2: ee:57:57:09:12:17:f8:7d:a2:c1:c3:2a:31:7a:de: 63:d5:3b:31:ba:b9:df:46:77:a2:03:83:66:16:7d: fa:30:da:f8:94:f2:33:a5:d4:2a:97:fb:af:22:2b: 85:31:e8:7a:12:b7:a0:95:a0:3d:24:a4:51:56:1a: 33:bf:94:46:64:21:23:5f:30:71:56:8a:ff:2f:4a: 21:2c:2e:ab:58:ce:c5:0f:21:1d:d9:18:07:79:64: 4d:56:9e:9e:32:59:27:b0:67:4d:af:07:6c:ce:0e: 87:b2:f6:a7:ee:68:77:b5:99:14:82:4e:b8:04:54: 5b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:6B:D1:4F:9F:86:F4:A4:0A:DD:AB:16:81:4E:DA:CA:A4:36:A2:5F X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:d0:93:01:bc:02:8d:56:fd:05:10:b4:bc:1b:33:2b:d5:cd: 68:39:d6:b4:f9:17:37:18:d8:44:17:05:c8:85:ea:40:20:16: 99:80:ed:ba:df:42:a4:ab:5c:11:a4:36:5a:c0:a0:3b:f9:06: 3f:06:2c:0d:0f:58:d8:bf:a3:5d:cf:8e:e2:2d:96:3f:48:54: db:7f:7d:ce:2f:9d:65:7c:63:14:66:0a:6b:a4:42:ce:31:81: bc:1f:45:3b:40:df:01:a8:03:3e:4b:48:85:1c:e9:10:c5:36: 7d:96:39:e6:2b:8d:38:39:ed:66:53:69:e1:b3:57:a7:58:5b: e7:f1:01:3f:56:f5:d9:96:99:3a:41:29:32:82:95:e7:6a:1d: 08:78:43:5b:ee:1e:ad:6e:bd:16:04:42:3f:92:be:d3:6c:a5: 6a:0a:64:19:b5:d2:50:3f:37:b6:85:c1:34:ee:d9:98:c6:59: ea:98:50:28:1e:de:6e:2d:87:cd:dc:29:69:25:5e:b5:ed:93: be:c0:d1:e6:63:16:c9:49:15:1a:99:2e:74:b2:86:63:61:47: 62:a2:d8:ce:9d:1b:50:45:fe:a1:9f:0e:83:5e:bf:bd:14:75: 31:7a:4a:01:d5:3d:81:ab:3e:46:9e:63:47:7f:9b:a9:a0:35: 74:5f:1d:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY4YhJ4XSILsUxdoBZ/UJUPPlYbYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNTEyMDIyMDE2NDhaFw0yNTEyMDYwMDMxNDhaMDMxMTAvBgNV BAMTKEIzNkJEMTRGOUY4NkY0QTQwQUREQUIxNjgxNEVEQUNBQTQzNkEyNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlM4a8tHvCUJV/dZgSdKQKrdI/ j2NiYsYegLHeAfYSu8upGsLHKJklVCqsHEmW9cpV3mgS2gUzMXb2hxSb8R61vOqT /WP0hQthTfHpZJAY+TJvpuUm3WHc0zHlmA8VYtOud9O02W3aDNzDvLdfHOjFyNuX ouEJkiP+ALl0TMQ/NP7pjuO+0u5XVwkSF/h9osHDKjF63mPVOzG6ud9Gd6IDg2YW ffow2viU8jOl1CqX+68iK4Ux6HoSt6CVoD0kpFFWGjO/lEZkISNfMHFWiv8vSiEs LqtYzsUPIR3ZGAd5ZE1Wnp4yWSewZ02vB2zODoey9qfuaHe1mRSCTrgEVFtBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs2vRT5+G9KQK3asWgU7ayqQ2ol8wHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMyODBhZjMtYWExZC00MjcxLThj MDYtYTNmYTI4ODk4NDI2LzAvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0Ew M0JDRjAxOEZFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAnQkwG8Ao1W/QUQtLwbMyvVzWg51rT5FzcY 2EQXBciF6kAgFpmA7brfQqSrXBGkNlrAoDv5Bj8GLA0PWNi/o13PjuItlj9IVNt/ fc4vnWV8YxRmCmukQs4xgbwfRTtA3wGoAz5LSIUc6RDFNn2WOeYrjTg57WZTaeGz V6dYW+fxAT9W9dmWmTpBKTKCledqHQh4Q1vuHq1uvRYEQj+SvtNspWoKZBm10lA/ N7aFwTTu2ZjGWeqYUCge3m4th83cKWklXrXtk77A0eZjFslJFRqZLnSyhmNhR2Ki 2M6dG1BF/qGfDoNev70UdTF6SgHVPYGrPkaeY0d/m6mgNXRfHRI= -----END CERTIFICATE-----Generated at Wed Dec 3 13:55:14 2025 by rpki-client