This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft File: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json) Hash identifier: 2LVmvX6ZXyDD/ztRxTcmMEHMv2ws9s499InB9HYb9sA= Subject key identifier: 37:21:78:97:0A:1A:D4:5A:3E:98:70:32:4D:25:71:F7:2F:C5:85:64 Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 706F8DEA1ED63115A8E767DA3AEBDA97D57D50FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft Manifest number: 03A7 Signing time: Sun 14 Dec 2025 19:42:25 +0000 Manifest this update: Sun 14 Dec 2025 19:37:25 +0000 Manifest next update: Thu 18 Dec 2025 01:35:25 +0000 Files and hashes: 1: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: fYk1A/6JlSofdoRQTxZ35IGs4jax1F7uqVxTxU6HBk4=) 2: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: IKHn716g0T1eoGjvmliLghDzDiqJ8umczYcTsrvdguE=) 3: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: rNa2on5+DMAnzayjr8XpEII8JqHWgOprf/5TlZrlTb0=) 4: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: ylDWnunXe+P0sSpHe2ems7WUQ+PsguFxQzvub0cWxiw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 01:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:6f:8d:ea:1e:d6:31:15:a8:e7:67:da:3a:eb:da:97:d5:7d:50:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Dec 14 19:37:25 2025 GMT Not After : Dec 18 01:35:25 2025 GMT Subject: CN=372178970A1AD45A3E9870324D2571F72FC58564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b6:90:8a:0f:2f:0b:73:16:cc:90:b7:a2:81: af:47:db:13:0c:90:5e:3c:19:ca:0f:26:fd:f1:ac: aa:b1:e7:77:6e:ce:30:4f:7c:e4:47:cd:49:ad:1b: 96:b4:aa:57:af:a6:cc:2b:17:20:c7:e8:98:1e:63: af:50:ce:29:14:b3:b9:a6:0c:06:31:42:0c:ae:1a: 30:d7:82:00:b4:7a:a5:d4:1e:71:17:05:9c:c2:9a: 76:f4:5b:ee:1d:27:8d:f5:6a:cb:9a:83:cf:c0:a4: a4:52:63:03:23:af:fe:b6:8c:36:d3:28:0f:b8:42: 27:ff:4c:07:26:88:a9:d2:21:d7:31:2f:27:2f:43: 6e:98:0f:f4:a6:a1:f0:72:cf:7a:bb:2e:5f:fd:8e: 7b:a3:c2:25:29:89:1d:a8:2a:20:ba:a6:56:1e:44: 3b:57:34:60:a4:6e:7f:9c:a7:a6:97:da:3d:94:38: 27:61:57:20:cd:a5:16:40:bd:56:b1:95:d7:d7:bb: 6a:1f:14:fe:4a:4e:d2:03:36:08:2c:21:58:29:72: da:3f:97:f2:70:a5:63:e3:a5:06:b7:11:e3:bb:fa: 57:a7:c9:dd:3d:bc:4a:04:56:a5:a4:be:b6:67:6a: 71:ca:e0:3a:68:91:cf:f2:2b:d2:8d:a7:e8:e8:2e: fd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:21:78:97:0A:1A:D4:5A:3E:98:70:32:4D:25:71:F7:2F:C5:85:64 X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:d6:23:12:aa:02:67:fc:63:dd:4c:00:1a:f1:47:f3:48:7d: 4a:03:33:52:a1:93:88:b7:c2:d5:ab:ca:6b:24:ae:01:82:46: 23:7c:f2:c1:35:cd:8c:a6:08:fe:d6:74:f6:69:b4:8e:0c:30: c1:f0:11:a0:c3:35:03:6d:e3:dc:18:2f:2c:a3:bc:14:e0:4b: ed:a9:aa:5a:16:c4:f8:20:a1:b6:d9:3a:66:fc:be:b2:13:b4: 08:e3:9f:9e:d0:6c:d4:9b:15:15:5d:fd:a0:9f:bf:33:0a:45: 6e:f1:c4:12:e4:73:f7:e0:6b:05:89:91:9f:a7:f9:65:68:6c: f0:49:6b:0e:b2:4c:69:0c:4e:e7:47:a8:5b:42:eb:9f:ef:69: 52:17:ac:28:7e:49:6b:b1:f2:f4:a7:cb:61:5d:42:63:d4:b2: c3:f5:71:d9:8f:a0:fe:fe:f4:4d:0f:f3:98:65:b1:a1:b6:7f: 17:58:6f:42:88:cd:c5:92:29:77:c0:0e:80:f3:5c:13:71:b3: 37:12:a0:e8:1a:d4:22:b8:74:2a:f0:94:11:75:06:a7:ee:96: e9:cc:26:e1:94:f9:51:89:66:14:57:38:bd:92:91:96:89:93: b7:c2:c2:5c:9f:28:5e:c1:e1:79:8d:21:24:12:95:8a:d5:14: 95:b1:e4:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcG+N6h7WMRWo52faOuval9V9UPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNTEyMTQxOTM3MjVaFw0yNTEyMTgwMTM1MjVaMDMxMTAvBgNV BAMTKDM3MjE3ODk3MEExQUQ0NUEzRTk4NzAzMjREMjU3MUY3MkZDNTg1NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWtpCKDy8LcxbMkLeiga9H2xMM kF48GcoPJv3xrKqx53duzjBPfORHzUmtG5a0qlevpswrFyDH6JgeY69QzikUs7mm DAYxQgyuGjDXggC0eqXUHnEXBZzCmnb0W+4dJ431asuag8/ApKRSYwMjr/62jDbT KA+4Qif/TAcmiKnSIdcxLycvQ26YD/SmofByz3q7Ll/9jnujwiUpiR2oKiC6plYe RDtXNGCkbn+cp6aX2j2UOCdhVyDNpRZAvVaxldfXu2ofFP5KTtIDNggsIVgpcto/ l/JwpWPjpQa3EeO7+lenyd09vEoEVqWkvrZnanHK4Dpokc/yK9KNp+joLv2hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNyF4lwoa1Fo+mHAyTSVx9y/FhWQwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDQyMTk4NWItYTBlNi00ZTA1LWJl ZjYtZmU2ZjVhNmUyZjQzLzAvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUy RDRDRkQ3RTI2Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGHWIxKqAmf8Y91MABrxR/NIfUoDM1Khk4i3 wtWrymskrgGCRiN88sE1zYymCP7WdPZptI4MMMHwEaDDNQNt49wYLyyjvBTgS+2p qloWxPggobbZOmb8vrITtAjjn57QbNSbFRVd/aCfvzMKRW7xxBLkc/fgawWJkZ+n +WVobPBJaw6yTGkMTudHqFtC65/vaVIXrCh+SWux8vSny2FdQmPUssP1cdmPoP7+ 9E0P85hlsaG2fxdYb0KIzcWSKXfADoDzXBNxszcSoOga1CK4dCrwlBF1BqfulunM JuGU+VGJZhRXOL2SkZaJk7fCwlyfKF7B4XmNISQSlYrVFJWx5NY= -----END CERTIFICATE-----Generated at Mon Dec 15 21:52:12 2025 by rpki-client