This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: lTRvrPzXvTGjaYXZj1w83qKYEjJm8CNIBvBZFk6wkl4= Subject key identifier: 7F:A8:E4:6E:6E:1B:9A:C4:F1:72:63:68:5E:CD:99:29:C2:D9:F3:98 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 6233A99E180B89EAD2BA4C7EC145A5138BE3F687 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 0538 Signing time: Wed 03 Dec 2025 05:00:44 +0000 Manifest this update: Wed 03 Dec 2025 04:55:44 +0000 Manifest next update: Sat 06 Dec 2025 14:50:44 +0000 Files and hashes: 1: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: oN9nPjr/ADhYNpevliqpNLRXE3JSrYUl0ipOSzXSgJ0=) 2: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 3: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) 4: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 5: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 14:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:33:a9:9e:18:0b:89:ea:d2:ba:4c:7e:c1:45:a5:13:8b:e3:f6:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Dec 3 04:55:44 2025 GMT Not After : Dec 6 14:50:44 2025 GMT Subject: CN=7FA8E46E6E1B9AC4F17263685ECD9929C2D9F398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b9:9c:b1:32:e8:7e:d8:31:a7:8e:1a:2c:a1: 11:19:19:44:84:b1:cf:d1:fc:18:ec:77:60:cb:08: 02:d5:44:a3:96:18:12:d9:cc:8b:9f:4d:9f:ec:89: 95:64:5e:6c:1d:91:ae:b9:3d:dc:b5:9e:65:46:1e: 3a:54:21:72:83:c7:ac:a8:d0:cb:90:c9:10:e8:44: 67:35:bb:7a:91:fb:d2:e8:28:7d:26:93:d5:35:ee: c9:02:57:b0:f2:54:74:f4:05:ae:c5:a1:92:84:7f: 62:57:19:13:21:5a:1f:51:e8:07:8a:f0:f6:75:6c: d5:a1:1e:b6:d4:94:a1:85:3e:7c:7d:86:7b:c2:52: 55:06:95:2d:d9:76:12:e4:c6:73:36:8e:9b:e7:7f: 4f:be:11:c8:af:5d:2b:d0:48:b6:f9:89:89:8d:86: c6:3a:5e:8b:73:21:c5:16:3a:a0:0f:48:19:01:57: d1:88:93:3e:6d:fd:2f:92:f9:1a:fd:a3:a5:4c:e8: 91:dd:94:0b:71:21:c4:06:66:8d:0b:5a:d1:68:f1: 28:38:d4:e8:9e:9e:2e:5b:fb:58:27:07:2e:e1:7c: 53:7f:64:b3:e8:39:9e:20:1e:d0:47:50:2e:b5:26: f8:85:ac:f1:b8:a8:e5:77:4c:25:cb:57:3e:bc:7d: b1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A8:E4:6E:6E:1B:9A:C4:F1:72:63:68:5E:CD:99:29:C2:D9:F3:98 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:29:14:61:d1:6a:e7:e8:42:20:00:c0:7b:bc:55:88:75:b6: 4e:c2:af:33:13:bb:09:f5:2f:88:a7:22:c6:e0:13:cb:d1:3b: e1:ce:1f:84:3c:3c:bc:50:a0:47:f9:fe:d6:4f:8c:78:ea:45: f5:4e:8f:33:5c:b1:f2:5e:d0:a2:0c:4d:53:b3:7b:1a:75:e4: a0:77:89:e3:1e:3b:88:f7:44:c9:30:56:af:d4:1c:6b:60:fc: 11:7c:53:1c:60:16:3a:64:3b:43:29:14:83:e0:27:2a:b5:e1: 9c:67:f2:b4:27:37:bd:a5:78:d6:d7:eb:93:8d:4f:84:8a:80: 9b:a1:d4:8d:bc:b0:b3:cf:ad:d5:4b:42:54:a1:98:7f:14:7a: 3c:f1:60:cd:4d:ff:4a:16:9e:04:ca:28:10:45:d8:ca:56:be: 82:20:81:0e:60:3c:0b:5c:02:bb:d5:fe:28:4f:30:7d:b3:86: a4:2e:67:dd:c7:bb:fe:32:e7:a9:a1:78:37:01:fb:8a:a6:6e: dc:2b:66:74:a1:51:da:85:a3:9c:d5:ad:79:ba:27:3e:26:8b: 39:f9:95:ce:46:07:a0:15:d9:4c:38:87:cf:c4:fc:02:16:00: 21:40:5d:8e:82:f2:b3:c9:45:23:e9:0a:ca:80:17:69:ac:fb: 08:ca:14:70 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYjOpnhgLierSukx+wUWlE4vj9ocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTEyMDMwNDU1NDRaFw0yNTEyMDYxNDUwNDRaMDMxMTAvBgNV BAMTKDdGQThFNDZFNkUxQjlBQzRGMTcyNjM2ODVFQ0Q5OTI5QzJEOUYzOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuuZyxMuh+2DGnjhosoREZGUSE sc/R/Bjsd2DLCALVRKOWGBLZzIufTZ/siZVkXmwdka65Pdy1nmVGHjpUIXKDx6yo 0MuQyRDoRGc1u3qR+9LoKH0mk9U17skCV7DyVHT0Ba7FoZKEf2JXGRMhWh9R6AeK 8PZ1bNWhHrbUlKGFPnx9hnvCUlUGlS3ZdhLkxnM2jpvnf0++EcivXSvQSLb5iYmN hsY6XotzIcUWOqAPSBkBV9GIkz5t/S+S+Rr9o6VM6JHdlAtxIcQGZo0LWtFo8Sg4 1Oieni5b+1gnBy7hfFN/ZLPoOZ4gHtBHUC61JviFrPG4qOV3TCXLVz68fbE3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf6jkbm4bmsTxcmNoXs2ZKcLZ85gwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH0pFGHRaufoQiAAwHu8VYh1tk7CrzMTuwn1 L4inIsbgE8vRO+HOH4Q8PLxQoEf5/tZPjHjqRfVOjzNcsfJe0KIMTVOzexp15KB3 ieMeO4j3RMkwVq/UHGtg/BF8UxxgFjpkO0MpFIPgJyq14Zxn8rQnN72leNbX65ON T4SKgJuh1I28sLPPrdVLQlShmH8UejzxYM1N/0oWngTKKBBF2MpWvoIggQ5gPAtc ArvV/ihPMH2zhqQuZ93Hu/4y56mheDcB+4qmbtwrZnShUdqFo5zVrXm6Jz4mizn5 lc5GB6AV2Uw4h8/E/AIWACFAXY6C8rPJRSPpCsqAF2ms+wjKFHA= -----END CERTIFICATE-----Generated at Wed Dec 3 15:29:09 2025 by rpki-client