This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft File: AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft (raw, json) Hash identifier: ahv4RpbUqekviUyd/9ac0Pps5g4CAMEkURjlSwF+1Lk= Subject key identifier: 5E:AF:F2:2C:0A:76:1C:B0:7F:B0:DE:82:F2:D5:DC:98:A5:69:0E:FE Authority key identifier: AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE Certificate issuer: /CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Certificate serial: 44BF50062A7D0B54D221FB54402B44BD644A1C06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft Manifest number: 028C Signing time: Mon 15 Dec 2025 00:21:44 +0000 Manifest this update: Mon 15 Dec 2025 00:16:44 +0000 Manifest next update: Thu 18 Dec 2025 05:14:44 +0000 Files and hashes: 1: AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl (hash: 1ISOmNkzvxfGGL5zqJ++4kYwI+mBGqBrqoYVrLM3Bc0=) 2: 3130332e3137392e37322e302f32342d3234203d3e2039333431.roa (hash: cvr2rock59oqaJDiE9arMS+Z9L88+lzn8zN5bKyApVs=) 3: 3130332e3137392e37332e302f32342d3234203d3e2039333431.roa (hash: 36hFp4MNqRDgFjqepz99CP3U7evoSejJQb+GMWj9djo=) 4: 3130332e3137392e37322e302f32332d3233203d3e2039333431.roa (hash: K4U8d+sUzMLgrI4fy436tf9syDLx6SvZlYhSkGTWcb8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 05:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:bf:50:06:2a:7d:0b:54:d2:21:fb:54:40:2b:44:bd:64:4a:1c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Validity Not Before: Dec 15 00:16:44 2025 GMT Not After : Dec 18 05:14:44 2025 GMT Subject: CN=5EAFF22C0A761CB07FB0DE82F2D5DC98A5690EFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:09:22:59:05:ea:81:d1:a5:5c:f8:1b:fa:4b: a4:48:53:b9:42:6b:d1:ec:fd:0a:5e:91:02:7a:1f: 01:f3:23:36:40:b3:e7:41:ad:79:54:85:29:11:e7: 11:de:6f:ec:51:a3:3b:a7:e3:8c:70:9a:ca:3e:8e: 2a:bf:be:ed:94:ad:85:ec:eb:cf:90:0c:2e:95:72: d9:3c:be:af:74:58:ec:9e:6a:89:0b:f5:8f:42:a1: 70:99:b8:07:bf:2d:ca:49:2e:bb:f8:5b:90:ea:2c: 88:e7:f1:02:6f:63:58:f5:04:32:78:b9:4a:e3:51: c2:eb:7d:e5:c4:24:8e:9b:2d:c5:02:4b:b1:e2:ee: fd:66:06:26:a0:6e:6f:07:7a:7a:5e:d4:3c:ef:7f: 03:d1:5b:1d:17:65:80:aa:fb:8b:02:c5:60:37:40: a7:0d:8f:2b:10:c8:8b:78:da:1f:73:75:08:f9:87: 60:29:88:63:5e:b7:2c:6a:48:47:04:34:31:97:55: 06:fa:13:65:5d:df:da:11:e6:25:f9:b4:2f:d6:8b: 0a:c5:44:16:8c:84:1a:4c:ab:ef:bf:85:89:ef:e4: 17:96:3c:e5:aa:f8:ba:e3:3e:11:de:a1:e4:c1:03: 24:d0:dc:a7:02:ba:af:de:0f:f8:a4:5d:98:39:b2: 3b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AF:F2:2C:0A:76:1C:B0:7F:B0:DE:82:F2:D5:DC:98:A5:69:0E:FE X509v3 Authority Key Identifier: keyid:AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:9c:3c:60:43:15:a2:25:10:fc:0a:16:44:e6:87:8e:7c:11: 3c:76:d2:93:4c:e4:68:7f:66:bb:58:00:be:f6:ed:fc:0a:c4: c9:93:73:f1:49:eb:ef:74:10:60:d3:8c:7f:9c:37:eb:4e:63: 2c:0d:c3:29:f4:bc:69:d0:f6:51:9c:fc:93:59:c7:a8:68:19: 09:af:38:fe:c7:6e:db:b5:22:bd:c6:18:e5:59:27:2c:c9:92: a9:1b:24:b4:27:dd:4c:8d:78:48:07:7d:32:3f:87:1f:7e:ba: 7d:7c:5a:26:06:2c:e3:4b:44:8e:52:6e:8f:86:a6:aa:38:27: c5:7e:de:97:fd:bd:a1:bb:aa:c5:1c:a2:ac:e1:c9:e0:35:19: 38:1a:d8:7e:58:9f:54:f4:cf:fe:75:3d:f3:f6:ce:37:ba:e3: 7f:70:97:a9:00:53:8a:4d:43:1f:2f:0c:40:6f:f8:d4:7b:89: 21:f1:0c:58:6a:3b:65:4b:b9:63:db:ef:85:da:8d:e5:0c:56: 1f:ee:79:74:e1:15:92:9d:02:0d:59:9a:dd:02:cc:9b:8a:10: b6:58:67:e3:2e:77:cc:26:42:7c:4a:d1:76:86:f2:03:95:c8: cc:c1:4d:54:eb:e5:43:74:79:ac:ba:5d:65:89:a8:b2:67:a2: 29:65:e0:7f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURL9QBip9C1TSIftUQCtEvWRKHAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUx QkJCNjNCRTAeFw0yNTEyMTUwMDE2NDRaFw0yNTEyMTgwNTE0NDRaMDMxMTAvBgNV BAMTKDVFQUZGMjJDMEE3NjFDQjA3RkIwREU4MkYyRDVEQzk4QTU2OTBFRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3CSJZBeqB0aVc+Bv6S6RIU7lC a9Hs/QpekQJ6HwHzIzZAs+dBrXlUhSkR5xHeb+xRozun44xwmso+jiq/vu2UrYXs 68+QDC6Vctk8vq90WOyeaokL9Y9CoXCZuAe/LcpJLrv4W5DqLIjn8QJvY1j1BDJ4 uUrjUcLrfeXEJI6bLcUCS7Hi7v1mBiagbm8Henpe1DzvfwPRWx0XZYCq+4sCxWA3 QKcNjysQyIt42h9zdQj5h2ApiGNetyxqSEcENDGXVQb6E2Vd39oR5iX5tC/WiwrF RBaMhBpMq++/hYnv5BeWPOWq+LrjPhHeoeTBAyTQ3KcCuq/eD/ikXZg5sjsNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXq/yLAp2HLB/sN6C8tXcmKVpDv4wHwYDVR0j BBgwFoAUr+4cewFmKEgilOPYlM/GhRu7Y74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWFiOGE1OC1mMTNmLTRmNzEtOWRkZS1hZWQ1N2VhNmRjYTcvMC9BRkVFMUM3QjAx NjYyODQ4MjI5NEUzRDg5NENGQzY4NTFCQkI2M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUxQkJC NjNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzFhYjhhNTgtZjEzZi00ZjcxLTlk ZGUtYWVkNTdlYTZkY2E3LzAvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2 ODUxQkJCNjNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGGcPGBDFaIlEPwKFkTmh458ETx20pNM5Gh/ ZrtYAL727fwKxMmTc/FJ6+90EGDTjH+cN+tOYywNwyn0vGnQ9lGc/JNZx6hoGQmv OP7Hbtu1Ir3GGOVZJyzJkqkbJLQn3UyNeEgHfTI/hx9+un18WiYGLONLRI5Sbo+G pqo4J8V+3pf9vaG7qsUcoqzhyeA1GTga2H5Yn1T0z/51PfP2zje6439wl6kAU4pN Qx8vDEBv+NR7iSHxDFhqO2VLuWPb74XajeUMVh/ueXThFZKdAg1Zmt0CzJuKELZY Z+Mud8wmQnxK0XaG8gOVyMzBTVTr5UN0eay6XWWJqLJnoill4H8= -----END CERTIFICATE-----Generated at Mon Dec 15 21:52:09 2025 by rpki-client