This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: ylwIAN7zPaV/JvPu3P+1whbIIOE0Aq0fS3LYum2/Upw= Subject key identifier: 98:D9:41:CA:9F:99:00:9C:3A:EB:6B:07:E1:19:ED:31:46:95:10:B0 Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 05EBB54D0C2042F7031DED2926EA3520BA8CE11A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 7D Signing time: Tue 02 Dec 2025 02:11:25 +0000 Manifest this update: Tue 02 Dec 2025 02:06:25 +0000 Manifest next update: Fri 05 Dec 2025 07:36:25 +0000 Files and hashes: 1: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: nxxP/Ibyog14/ww3xkhe0WKaEE/l28SvZAqN21Hv7aM=) 2: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 07:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:eb:b5:4d:0c:20:42:f7:03:1d:ed:29:26:ea:35:20:ba:8c:e1:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Dec 2 02:06:25 2025 GMT Not After : Dec 5 07:36:25 2025 GMT Subject: CN=98D941CA9F99009C3AEB6B07E119ED31469510B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c3:4e:df:65:bc:76:7d:47:22:21:e5:72:d8: 4b:a0:98:3b:f5:e4:42:a0:bd:4b:be:59:58:15:44: 08:7a:ee:39:c5:ae:01:8a:6e:90:3d:60:4b:10:2c: b9:ca:bb:23:6f:59:4a:f6:52:e2:50:da:b8:30:ab: 1d:59:a3:22:6d:9b:fc:1c:f2:1a:08:7d:fb:a0:b3: 6f:5d:e2:c0:02:2c:5c:25:d7:df:cf:ab:09:28:ed: b9:35:24:14:6f:5f:24:e5:ce:ef:c7:69:24:e9:3a: 51:56:73:a2:07:a9:a9:f9:26:ee:88:2d:a1:26:e2: c7:38:f7:c0:ad:33:33:d8:ae:76:dc:ce:39:e0:a7: 02:fc:7b:c1:8e:1d:b1:86:95:4e:b9:fd:91:ac:fe: 54:25:5b:1a:f1:be:15:39:38:2f:53:fc:d0:3c:8b: 51:a0:0a:36:92:25:73:67:2b:02:f6:10:86:b9:28: 3b:be:70:27:f3:85:2a:2e:66:cf:68:1c:09:a2:27: e8:6f:b8:6f:8b:43:7d:46:57:be:b7:42:95:cb:64: d4:ce:f8:72:76:1d:40:da:76:40:2a:4a:a8:3e:fb: 0a:48:6a:a4:f0:6e:38:be:95:45:3d:e8:d2:0f:06: a7:b5:b7:41:d3:dc:01:92:7c:db:98:71:89:a3:11: 64:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D9:41:CA:9F:99:00:9C:3A:EB:6B:07:E1:19:ED:31:46:95:10:B0 X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:b9:d3:a2:e8:d4:b7:bb:7c:97:6c:01:9d:1a:ee:13:02:97: 16:e9:ed:a1:81:f3:5e:6e:78:1c:9a:f9:05:24:a6:77:88:6d: 95:9b:e0:5b:4a:c0:f8:35:e9:1e:72:99:74:9b:76:c3:4c:22: 93:20:7e:5f:d9:73:35:28:23:68:3e:5c:37:59:f8:df:75:a6: 81:04:2a:94:b9:bb:78:24:60:38:86:39:b7:a1:90:9c:85:a6: 6a:e4:76:3d:61:9a:9c:3e:af:f3:a9:b1:c8:98:33:db:93:53: 4b:bb:4e:49:4a:9d:f4:9a:4b:92:5a:94:3f:29:23:5a:e9:2f: a4:2b:6e:9e:4e:76:80:85:c7:f3:f7:fa:7e:14:36:13:94:7d: 65:d6:61:1f:ac:c6:82:11:0a:70:9e:a5:53:6d:61:86:14:5d: bd:ee:46:0a:0e:58:e6:a3:a3:af:03:f7:43:82:fb:a3:56:45: 01:bd:86:a7:00:59:36:19:e7:ff:bc:0b:d6:40:f1:20:4d:94: 20:d1:e4:ba:27:aa:30:ce:d4:a8:ae:bf:ab:b7:ca:e0:e2:66: 5a:ed:d9:75:db:a6:d7:9b:b4:be:ec:a8:d6:b9:4c:6a:77:1b: 06:1b:b6:79:79:ac:26:a8:27:e7:23:bb:78:8a:bd:03:74:73: 7b:54:b6:b5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBeu1TQwgQvcDHe0pJuo1ILqM4RowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNTEyMDIwMjA2MjVaFw0yNTEyMDUwNzM2MjVaMDMxMTAvBgNV BAMTKDk4RDk0MUNBOUY5OTAwOUMzQUVCNkIwN0UxMTlFRDMxNDY5NTEwQjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEw07fZbx2fUciIeVy2EugmDv1 5EKgvUu+WVgVRAh67jnFrgGKbpA9YEsQLLnKuyNvWUr2UuJQ2rgwqx1ZoyJtm/wc 8hoIffugs29d4sACLFwl19/Pqwko7bk1JBRvXyTlzu/HaSTpOlFWc6IHqan5Ju6I LaEm4sc498CtMzPYrnbczjngpwL8e8GOHbGGlU65/ZGs/lQlWxrxvhU5OC9T/NA8 i1GgCjaSJXNnKwL2EIa5KDu+cCfzhSouZs9oHAmiJ+hvuG+LQ31GV763QpXLZNTO +HJ2HUDadkAqSqg++wpIaqTwbji+lUU96NIPBqe1t0HT3AGSfNuYcYmjEWSrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmNlByp+ZAJw662sH4RntMUaVELAwHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGK506Lo1Le7fJdsAZ0a7hMClxbp7aGB815u eBya+QUkpneIbZWb4FtKwPg16R5ymXSbdsNMIpMgfl/ZczUoI2g+XDdZ+N91poEE KpS5u3gkYDiGObehkJyFpmrkdj1hmpw+r/OpsciYM9uTU0u7TklKnfSaS5JalD8p I1rpL6Qrbp5OdoCFx/P3+n4UNhOUfWXWYR+sxoIRCnCepVNtYYYUXb3uRgoOWOaj o68D90OC+6NWRQG9hqcAWTYZ5/+8C9ZA8SBNlCDR5LonqjDO1Kiuv6u3yuDiZlrt 2XXbptebtL7sqNa5TGp3GwYbtnl5rCaoJ+cju3iKvQN0c3tUtrU= -----END CERTIFICATE-----Generated at Wed Dec 3 17:39:46 2025 by rpki-client