This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: Xfj/hust06YulEPqFvxq1KFRhMQeOIot0+zTAEKPO3s= Subject key identifier: 15:D2:12:59:FA:95:A4:E1:EF:6C:48:71:41:38:A7:89:66:66:65:85 Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 76506C32CC1450CB5E102CC1913BD3F34968E864 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 83 Signing time: Mon 15 Dec 2025 11:41:49 +0000 Manifest this update: Mon 15 Dec 2025 11:36:49 +0000 Manifest next update: Thu 18 Dec 2025 20:17:49 +0000 Files and hashes: 1: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: Dwlh1ddqTi+Jsl6Pdy73YsxK/XkUvaCFGglf+3IH3bY=) 2: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 10:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:50:6c:32:cc:14:50:cb:5e:10:2c:c1:91:3b:d3:f3:49:68:e8:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Dec 15 11:36:49 2025 GMT Not After : Dec 18 20:17:49 2025 GMT Subject: CN=15D21259FA95A4E1EF6C48714138A78966666585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:69:ad:da:67:7d:d7:2e:74:fa:d7:2f:75: 68:4a:bc:85:48:dc:71:a1:c2:aa:09:cc:ba:93:0f: df:73:99:7b:55:02:e3:cd:c8:c2:55:33:3c:21:c1: f7:65:32:9d:11:cd:43:56:32:0e:72:b7:85:8e:b7: 5a:12:e2:34:fb:8f:63:96:89:29:dc:28:bc:ec:88: 75:97:ac:5e:24:27:25:28:e7:48:d5:7c:b3:bf:4b: d0:bb:12:d4:96:22:a3:03:9f:ce:36:a1:0b:4f:23: 21:b3:80:28:a7:91:e6:cb:0d:8a:70:37:7e:f2:dc: 8b:14:ac:1d:65:a3:77:eb:2d:ee:09:bd:55:52:52: 60:1c:01:b7:df:59:a6:71:20:cc:75:36:b5:15:7d: ea:c4:46:c1:3b:80:23:38:c5:de:36:74:29:97:ed: 76:e0:4a:24:3e:14:50:f3:72:25:92:b7:7e:eb:36: 08:33:19:7d:ed:e8:55:db:4a:02:d1:7c:46:76:0c: ec:a5:f9:c8:43:c5:bd:5c:20:70:2a:a8:43:10:58: fc:5d:0b:f8:b7:cf:1e:c8:e9:f2:72:1d:5c:fa:32: 6b:33:7f:60:8b:d6:6d:c8:8d:97:dc:f7:f3:56:0b: 9a:1b:d8:36:73:12:91:1c:50:13:75:3f:29:09:b4: 36:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D2:12:59:FA:95:A4:E1:EF:6C:48:71:41:38:A7:89:66:66:65:85 X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:6d:d7:d8:dc:76:bd:0e:2a:7a:99:5e:fc:39:50:f5:fd:18: 8b:bd:90:ad:d5:b2:6b:02:b2:9c:88:9d:df:a4:89:ae:b7:e7: c9:2b:8b:b1:99:50:d1:be:e7:97:d9:ab:06:e2:5e:4a:53:41: 26:01:c6:3c:16:9f:30:b9:29:53:0a:1e:0b:61:da:db:65:f7: 07:a7:92:15:cf:90:fe:1e:19:d7:13:14:6b:1e:36:1f:29:78: 36:71:df:9c:14:f0:26:42:be:1c:8e:5d:80:7c:d7:cc:2a:53: b3:eb:cf:83:ac:26:10:35:31:a4:17:ae:36:85:86:1a:ba:49: 27:ee:e3:7b:dc:61:00:f0:30:85:db:1f:a7:9f:5a:bb:61:ee: 1c:c5:fe:74:20:07:0d:b7:d1:7c:9b:5d:bf:ee:b5:bf:18:4f: d7:81:5d:36:43:53:94:f1:d7:a2:86:ac:68:95:66:12:89:23: 85:ef:19:2f:d6:a4:17:aa:37:94:ab:9c:b6:7c:fb:cf:f4:6b: 89:b2:4c:95:d4:95:59:73:9b:b0:98:7d:fe:75:cc:72:8c:8e: 96:d2:cf:ba:d5:60:52:60:58:5a:da:f2:80:bf:ce:05:4b:0d: 0d:47:5c:aa:f4:f9:1b:53:dc:7f:c3:10:69:eb:e5:c2:2d:79: ea:a6:d2:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdlBsMswUUMteECzBkTvT80lo6GQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTEyMTUxMTM2NDlaFw0yNTEyMTgyMDE3NDlaMDMxMTAvBgNV BAMTKDE1RDIxMjU5RkE5NUE0RTFFRjZDNDg3MTQxMzhBNzg5NjY2NjY1ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIF2mt2md91y50+tcvdWhKvIVI 3HGhwqoJzLqTD99zmXtVAuPNyMJVMzwhwfdlMp0RzUNWMg5yt4WOt1oS4jT7j2OW iSncKLzsiHWXrF4kJyUo50jVfLO/S9C7EtSWIqMDn842oQtPIyGzgCinkebLDYpw N37y3IsUrB1lo3frLe4JvVVSUmAcAbffWaZxIMx1NrUVferERsE7gCM4xd42dCmX 7XbgSiQ+FFDzciWSt37rNggzGX3t6FXbSgLRfEZ2DOyl+chDxb1cIHAqqEMQWPxd C/i3zx7I6fJyHVz6Mmszf2CL1m3IjZfc9/NWC5ob2DZzEpEcUBN1PykJtDaJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFdISWfqVpOHvbEhxQTiniWZmZYUwHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKNt19jcdr0OKnqZXvw5UPX9GIu9kK3VsmsC spyInd+kia6358kri7GZUNG+55fZqwbiXkpTQSYBxjwWnzC5KVMKHgth2ttl9wen khXPkP4eGdcTFGseNh8peDZx35wU8CZCvhyOXYB818wqU7Prz4OsJhA1MaQXrjaF hhq6SSfu43vcYQDwMIXbH6efWrth7hzF/nQgBw230XybXb/utb8YT9eBXTZDU5Tx 16KGrGiVZhKJI4XvGS/WpBeqN5SrnLZ8+8/0a4myTJXUlVlzm7CYff51zHKMjpbS z7rVYFJgWFra8oC/zgVLDQ1HXKr0+RtT3H/DEGnr5cIteeqm0oc= -----END CERTIFICATE-----Generated at Tue Dec 16 06:26:48 2025 by rpki-client