This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: zdLiPOy0Ah2VLNd3MWar3Z5Ebp1s2bBR9+R4kBXiLIM= Subject key identifier: 90:A3:8B:91:29:62:98:D1:08:3A:05:76:E2:7F:56:44:58:0B:13:D7 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 72A9B7E59B84A172FC43AD2D26328D17B4D509A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 053C Signing time: Thu 18 Dec 2025 03:51:25 +0000 Manifest this update: Thu 18 Dec 2025 03:46:25 +0000 Manifest next update: Sun 21 Dec 2025 07:44:25 +0000 Files and hashes: 1: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw=) 2: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: lE9s+BoEY5gwrvlaGT630nudod/SJ6QnowFtOuZG/F8=) 3: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=) 4: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: T+xAmOcrpikrQh6BNR+E6JFDb4uNhHPoQy2Ve9WHYks=) 5: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=) 6: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: ifILYerUDcpRe223pMC/3xtPqhg84IovzTQC0ym+UNg=) 7: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: 2/e1df75ZuB0mlztIUau/nvIcUBCoLK27iXCpZBorYA=) 8: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: gB/Q187la6gm8qsp2Yv6/zuENtxXbTAl8b+QHinNe0w=) 9: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: H0bfxmckX/T6BLZWVNPsiHGpUkaJP95VADlXtkBSuBg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 07:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a9:b7:e5:9b:84:a1:72:fc:43:ad:2d:26:32:8d:17:b4:d5:09:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Dec 18 03:46:25 2025 GMT Not After : Dec 21 07:44:25 2025 GMT Subject: CN=90A38B91296298D1083A0576E27F5644580B13D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:8d:2c:1b:8b:bc:08:1b:68:e5:5c:29:28:0c: 46:4b:aa:57:65:4b:60:e0:a4:e8:e4:e8:c6:6d:0d: a5:2f:f7:e3:3f:aa:40:91:44:40:5c:e9:54:13:57: ce:b3:5b:05:07:d4:a9:85:8f:e5:fa:7d:74:60:03: b9:be:f2:36:c4:2c:ae:be:9a:07:ad:fb:3e:d0:d6: f0:f3:1c:ed:08:65:a9:11:ee:bf:f8:3b:13:7c:e0: ec:24:4a:fa:79:0e:f3:bf:c8:0c:17:47:c1:51:e3: 4e:10:d4:82:e8:01:61:f3:2e:21:14:fd:a4:dd:97: c1:ab:31:be:a2:3d:5f:0d:ef:27:58:2b:57:c2:59: 80:37:a2:fa:e6:32:d9:e3:b2:9f:33:8b:b6:84:6f: a3:63:cc:a7:b1:5b:52:5d:ec:73:15:cf:fa:e9:12: 0c:47:ed:ab:a5:61:b1:5a:49:69:d7:9f:e7:99:7e: 87:e8:2b:99:99:3e:d2:59:b5:bd:2f:9e:0b:a8:34: 39:09:9e:ec:d6:e0:14:b8:64:df:f9:cc:a3:ac:8b: 49:80:02:f4:ab:27:f4:6e:65:fa:9b:c3:5e:ab:5b: f7:52:e6:bb:f7:f6:c3:53:a4:e0:67:2d:e2:57:f6: 15:51:1a:ab:71:9b:e9:bf:2a:33:f0:4c:4b:3c:2d: e2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:A3:8B:91:29:62:98:D1:08:3A:05:76:E2:7F:56:44:58:0B:13:D7 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:42:0b:ec:93:52:c9:b1:96:2a:90:51:9b:bf:06:ba:19:d0: 7d:a6:4f:28:db:ae:06:2c:6f:92:28:40:5e:d4:68:4d:99:42: e9:25:02:3a:3f:f9:c3:14:f7:f0:67:0a:87:39:0c:76:6e:6b: d5:ca:73:3e:eb:65:ea:23:b6:47:66:04:b2:0b:7a:ff:a1:c3: fa:cd:1d:9f:55:0f:7c:49:3f:a5:01:c1:0b:6a:90:40:6c:e4: 6e:c5:ce:06:cd:06:22:cb:43:d0:9c:d9:aa:29:9f:93:11:6c: bd:fd:9d:26:9d:29:5c:5d:83:30:7a:39:fa:c2:60:31:1d:9e: e0:6d:e3:1a:46:20:d0:be:af:7c:ed:25:19:de:0d:d7:42:4f: 04:9f:62:d0:46:de:43:b2:85:2b:c5:96:af:37:98:9d:1f:34: a1:42:91:89:bf:91:99:bd:4a:d9:90:c9:a5:7e:8c:31:c2:fe: 78:d0:7a:98:0c:d3:a6:dc:39:81:32:40:a5:ee:eb:97:4f:f1: 5f:c8:f1:26:5c:1b:38:cd:7d:c5:94:7f:b6:78:ad:24:64:39: d3:d0:ff:5c:f0:70:d5:18:df:37:62:f0:da:ad:3a:aa:a0:8a: b1:97:4a:c1:d7:25:eb:22:e1:8e:cd:71:1f:1c:17:a5:9a:c6: ae:44:53:c9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcqm35ZuEoXL8Q60tJjKNF7TVCagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTEyMTgwMzQ2MjVaFw0yNTEyMjEwNzQ0MjVaMDMxMTAvBgNV BAMTKDkwQTM4QjkxMjk2Mjk4RDEwODNBMDU3NkUyN0Y1NjQ0NTgwQjEzRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCujSwbi7wIG2jlXCkoDEZLqldl S2DgpOjk6MZtDaUv9+M/qkCRREBc6VQTV86zWwUH1KmFj+X6fXRgA7m+8jbELK6+ mget+z7Q1vDzHO0IZakR7r/4OxN84OwkSvp5DvO/yAwXR8FR404Q1ILoAWHzLiEU /aTdl8GrMb6iPV8N7ydYK1fCWYA3ovrmMtnjsp8zi7aEb6NjzKexW1Jd7HMVz/rp EgxH7aulYbFaSWnXn+eZfofoK5mZPtJZtb0vnguoNDkJnuzW4BS4ZN/5zKOsi0mA AvSrJ/RuZfqbw16rW/dS5rv39sNTpOBnLeJX9hVRGqtxm+m/KjPwTEs8LeJXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkKOLkSlimNEIOgV24n9WRFgLE9cwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF5CC+yTUsmxliqQUZu/BroZ0H2mTyjbrgYs b5IoQF7UaE2ZQuklAjo/+cMU9/BnCoc5DHZua9XKcz7rZeojtkdmBLILev+hw/rN HZ9VD3xJP6UBwQtqkEBs5G7FzgbNBiLLQ9Cc2aopn5MRbL39nSadKVxdgzB6OfrC YDEdnuBt4xpGINC+r3ztJRneDddCTwSfYtBG3kOyhSvFlq83mJ0fNKFCkYm/kZm9 StmQyaV+jDHC/njQepgM06bcOYEyQKXu65dP8V/I8SZcGzjNfcWUf7Z4rSRkOdPQ /1zwcNUY3zdi8NqtOqqgirGXSsHXJesi4Y7NcR8cF6Waxq5EU8k= -----END CERTIFICATE-----Generated at Thu Dec 18 20:04:17 2025 by rpki-client