This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft (raw, json) Hash identifier: T6awZTRPnHlbNXC2dTcfRspHDdgMWZu64wHq9MAR60Y= Subject key identifier: C0:D6:A4:89:B5:12:59:26:07:F5:05:58:2F:FC:15:51:D0:BA:F6:E2 Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 6A1AF313D8BBD579CF9791803C8EDA3A0E0CC06A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft Manifest number: 0528 Signing time: Tue 02 Dec 2025 16:41:03 +0000 Manifest this update: Tue 02 Dec 2025 16:36:03 +0000 Manifest next update: Fri 05 Dec 2025 23:28:03 +0000 Files and hashes: 1: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: tAs35Xh9PvYdZJSIW4FLCQe0rvv+Ua53CMSGfgCNFT4=) 2: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: i8E531bAACF/do6q7C690HP7ycKInzio0QMeynldjVQ=) 3: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 0DSPPC3eIjICQ1QgbLgmjGB64GhEc/FiJxgxZMMi2rw=) 4: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl (hash: iVhnhGSTzFTX+bEY9/rLhUmvjgQPo5UPCORU96OQeVM=) 5: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: YHgchxUowX4afg18dRitbsm1i2Jr1bcDLdOROkNe9ds=) 6: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: vyo5RypkFQEnVHU24LrFw7oPwATfGzPKn/kBk5If2Fc=) 7: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: wHpTffZ2nuWlAhlZXWgWT5vAarjhnzHKQ1BNdqdBZLA=) 8: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: LSvRzZKZqA3NwdEC9iho4W4LPDyE6x1z3v9TKwhHRg0=) 9: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: jGoXC4NtMGtzcx+R9/Q81p54SI3SY8CoW+n8Kb2SzRU=) 10: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: dHAXVvHNWN3lX3SmokQ/UCj86xJ8/z2lq2nv43vYPc0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 23:28:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:1a:f3:13:d8:bb:d5:79:cf:97:91:80:3c:8e:da:3a:0e:0c:c0:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Dec 2 16:36:03 2025 GMT Not After : Dec 5 23:28:03 2025 GMT Subject: CN=C0D6A489B512592607F505582FFC1551D0BAF6E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:11:72:33:97:70:94:f6:7a:5c:aa:27:78:f4: e5:a2:95:4e:93:de:96:85:5b:10:29:3d:06:1f:c5: e8:8a:2d:5a:f9:17:10:13:d3:f4:93:de:eb:75:d6: 1b:c9:c7:8d:3a:1b:0a:17:fa:82:15:e8:e1:75:a3: be:94:22:0b:e1:1a:53:b3:c7:3e:53:63:28:28:da: 58:0d:5f:f0:db:7a:16:ce:d3:7a:15:b1:88:dd:07: b6:89:35:98:95:3d:b0:f7:38:6a:91:12:aa:43:44: c1:a9:a3:29:6b:9e:38:24:7a:05:64:38:20:2e:44: 97:3e:d4:a2:1d:8e:27:bd:c6:07:0d:e4:db:6a:65: bd:7c:c9:a8:c2:64:ab:cb:73:bd:e0:56:91:59:f8: 7f:be:35:c1:81:7a:47:b9:43:42:fc:e9:55:14:ad: f6:22:d0:8d:02:a8:61:04:ba:ad:6f:6e:ec:38:f5: 45:86:30:ed:62:33:a8:84:84:33:f5:6f:11:74:e2: b0:6a:e6:f8:3a:f5:78:92:ca:df:18:7f:fd:73:6b: b9:bb:0b:e4:40:97:da:ba:fa:5a:fd:ab:22:1a:dd: ee:e0:8c:dc:e0:c7:23:ac:3a:4f:7e:bd:9c:17:4c: d5:c2:b6:98:ce:49:4f:83:1f:e4:81:b9:ac:65:47: e2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D6:A4:89:B5:12:59:26:07:F5:05:58:2F:FC:15:51:D0:BA:F6:E2 X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:50:b8:08:54:ec:82:44:5f:6b:47:35:1e:6e:9e:80:cf:56: e8:c1:3d:a7:fd:fb:1a:9e:57:5e:2c:a7:00:36:c2:73:da:ad: f1:08:db:e2:ab:38:7e:b8:52:0f:7f:5b:76:80:79:48:3d:f9: ac:be:fa:03:1e:76:d0:a7:6e:55:7e:2c:af:89:28:3a:b4:c8: ad:7e:27:77:88:6a:93:ea:24:b1:fe:45:21:f8:36:51:55:ca: 0f:d4:41:44:0e:12:3b:3b:5e:94:36:ae:95:84:79:c1:db:18: 2c:07:24:2d:b0:5b:bc:29:46:0c:aa:c1:fa:c9:4c:86:b6:d1: 50:81:b8:f7:25:a8:38:a0:8e:d3:29:24:17:24:a0:ac:a6:d6: a4:e5:6f:a2:59:ee:36:12:a4:8f:d7:87:df:0a:6c:5b:90:7c: 4d:41:74:84:05:81:c2:3d:66:27:94:39:23:62:f0:b6:1b:a6: c3:ab:4b:70:1c:ae:ec:ee:e0:4f:07:72:6c:c7:de:c3:02:48: 3c:62:9f:dd:8c:f2:24:92:a8:2e:7d:8c:ff:fc:06:28:6d:39: 2a:a1:b8:3d:a6:31:47:40:a7:b0:51:e8:59:02:99:bb:2f:43: e2:c9:fc:bc:cf:e7:d8:45:c0:8a:6f:6f:2f:78:1b:37:07:b1: 69:d3:7e:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUahrzE9i71XnPl5GAPI7aOg4MwGowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNTEyMDIxNjM2MDNaFw0yNTEyMDUyMzI4MDNaMDMxMTAvBgNV BAMTKEMwRDZBNDg5QjUxMjU5MjYwN0Y1MDU1ODJGRkMxNTUxRDBCQUY2RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpEXIzl3CU9npcqid49OWilU6T 3paFWxApPQYfxeiKLVr5FxAT0/ST3ut11hvJx406GwoX+oIV6OF1o76UIgvhGlOz xz5TYygo2lgNX/DbehbO03oVsYjdB7aJNZiVPbD3OGqREqpDRMGpoylrnjgkegVk OCAuRJc+1KIdjie9xgcN5NtqZb18yajCZKvLc73gVpFZ+H++NcGBeke5Q0L86VUU rfYi0I0CqGEEuq1vbuw49UWGMO1iM6iEhDP1bxF04rBq5vg69XiSyt8Yf/1za7m7 C+RAl9q6+lr9qyIa3e7gjNzgxyOsOk9+vZwXTNXCtpjOSU+DH+SBuaxlR+LlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwNakibUSWSYH9QVYL/wVUdC69uIwHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMy MzQyN0MxOTFBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG5QuAhU7IJEX2tHNR5unoDPVujBPaf9+xqe V14spwA2wnParfEI2+KrOH64Ug9/W3aAeUg9+ay++gMedtCnblV+LK+JKDq0yK1+ J3eIapPqJLH+RSH4NlFVyg/UQUQOEjs7XpQ2rpWEecHbGCwHJC2wW7wpRgyqwfrJ TIa20VCBuPclqDigjtMpJBckoKym1qTlb6JZ7jYSpI/Xh98KbFuQfE1BdIQFgcI9 ZieUOSNi8LYbpsOrS3Acruzu4E8HcmzH3sMCSDxin92M8iSSqC59jP/8BihtOSqh uD2mMUdAp7BR6FkCmbsvQ+LJ/LzP59hFwIpvby94GzcHsWnTfmY= -----END CERTIFICATE-----Generated at Wed Dec 3 15:29:12 2025 by rpki-client