This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: 1rn+ad9q4+GqIERkecSLsLfMb9kYoYpZ/qffbnm5pns= Subject key identifier: 0C:1C:83:A3:95:89:7E:F8:D3:C1:2B:DD:8F:57:58:0A:F6:69:9B:39 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 2AD87A1F33683107C38D96F8AF832FD46F2FE9B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 0313 Signing time: Thu 18 Dec 2025 23:30:58 +0000 Manifest this update: Thu 18 Dec 2025 23:25:58 +0000 Manifest next update: Mon 22 Dec 2025 03:01:58 +0000 Files and hashes: 1: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: KLUhnDi41TS2D5i+ocmWHJy9FBXU8CVYJGY/E8vN75w=) 2: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 3: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) 4: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) 5: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d8:7a:1f:33:68:31:07:c3:8d:96:f8:af:83:2f:d4:6f:2f:e9:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Dec 18 23:25:58 2025 GMT Not After : Dec 22 03:01:58 2025 GMT Subject: CN=0C1C83A395897EF8D3C12BDD8F57580AF6699B39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b7:dd:1b:27:7c:0b:af:b9:65:90:cb:81:57: 8d:58:83:77:82:31:2a:9a:03:38:04:fd:73:65:36: a6:15:a2:fe:b5:44:da:c7:8c:5b:92:be:df:8f:b2: c5:b7:a9:17:37:05:76:aa:97:b8:50:5f:3b:04:b0: d5:7f:f0:15:9b:83:bf:1b:54:a1:3a:43:e4:4f:05: 25:de:f4:87:8d:4d:52:a4:36:36:ab:67:ff:9d:5c: 52:78:62:e2:0a:4e:9b:36:8a:29:9f:2c:16:bd:31: ea:f6:c3:09:08:75:96:f1:4f:8d:e1:d7:a0:c4:7c: 6d:52:b5:d8:78:4b:c6:ab:2f:75:a0:13:45:5f:ef: 9d:6f:d4:a1:89:91:a7:b6:d8:d7:50:14:88:54:94: 53:2e:5f:49:76:1e:35:52:4b:18:08:e5:0d:c7:2b: 3a:b9:b2:51:f7:21:a5:94:58:6b:fc:b3:2b:12:90: cc:5f:15:45:e8:e9:07:2c:55:ab:cb:4c:05:c9:42: 43:cb:85:6d:d0:c9:ef:5f:44:3e:8a:cd:be:e8:da: 1d:25:31:a5:f1:02:18:36:b1:56:8e:fb:2a:b6:e8: 94:65:af:33:f3:17:70:56:35:16:25:f9:86:6c:12: 1e:c2:78:fa:34:bd:83:a8:5d:91:c6:bd:17:28:a9: 97:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1C:83:A3:95:89:7E:F8:D3:C1:2B:DD:8F:57:58:0A:F6:69:9B:39 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:a2:bc:89:95:35:ef:56:f9:72:5e:82:71:62:61:57:b4:9f: e4:c9:e8:7f:17:55:5c:0f:e5:f6:0a:c2:ae:8b:77:5e:d8:44: ac:9e:ea:52:19:d0:ed:86:77:59:fc:3f:4f:0e:4f:98:b9:28: 9a:ef:d1:1b:c5:9b:c5:8d:5f:a5:ec:82:47:3f:01:1c:b5:fd: 3f:16:0f:df:ef:bb:b0:ab:e4:dd:f1:2f:25:2e:f8:ea:92:dc: 07:93:b9:b5:46:ac:4d:01:fe:0b:77:11:46:b5:61:1c:50:f3: 56:12:66:51:9a:7e:36:11:e5:2d:ca:e2:58:48:0a:a3:e7:81: 5e:0c:3b:39:a3:84:99:df:3a:c4:0c:f6:81:c2:04:98:f4:ac: 63:d5:47:fe:f9:64:7d:ad:1e:33:4a:c4:52:bc:43:b5:a9:3e: 72:a4:48:a2:00:e6:25:23:69:05:b9:36:22:cf:08:63:21:aa: 48:e0:f2:a7:56:c6:21:99:38:9e:e5:c9:ea:63:6a:fd:1b:19: eb:2e:3f:15:b3:bc:83:a2:9a:92:f3:1d:4d:3c:c4:28:b3:bc: ca:64:85:35:5b:e0:cc:55:9b:31:2b:31:9c:1e:9b:cd:0d:64: 51:f3:46:f7:be:a4:a0:22:25:1f:3b:6d:f8:30:92:69:e6:cb: aa:c2:87:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKth6HzNoMQfDjZb4r4Mv1G8v6bYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNTEyMTgyMzI1NThaFw0yNTEyMjIwMzAxNThaMDMxMTAvBgNV BAMTKDBDMUM4M0EzOTU4OTdFRjhEM0MxMkJERDhGNTc1ODBBRjY2OTlCMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYt90bJ3wLr7llkMuBV41Yg3eC MSqaAzgE/XNlNqYVov61RNrHjFuSvt+PssW3qRc3BXaql7hQXzsEsNV/8BWbg78b VKE6Q+RPBSXe9IeNTVKkNjarZ/+dXFJ4YuIKTps2iimfLBa9Mer2wwkIdZbxT43h 16DEfG1Stdh4S8arL3WgE0Vf751v1KGJkae22NdQFIhUlFMuX0l2HjVSSxgI5Q3H Kzq5slH3IaWUWGv8sysSkMxfFUXo6QcsVavLTAXJQkPLhW3Qye9fRD6Kzb7o2h0l MaXxAhg2sVaO+yq26JRlrzPzF3BWNRYl+YZsEh7CePo0vYOoXZHGvRcoqZdrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDByDo5WJfvjTwSvdj1dYCvZpmzkwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJWivImVNe9W+XJegnFiYVe0n+TJ6H8XVVwP 5fYKwq6Ld17YRKye6lIZ0O2Gd1n8P08OT5i5KJrv0RvFm8WNX6Xsgkc/ARy1/T8W D9/vu7Cr5N3xLyUu+OqS3AeTubVGrE0B/gt3EUa1YRxQ81YSZlGafjYR5S3K4lhI CqPngV4MOzmjhJnfOsQM9oHCBJj0rGPVR/75ZH2tHjNKxFK8Q7WpPnKkSKIA5iUj aQW5NiLPCGMhqkjg8qdWxiGZOJ7lyepjav0bGesuPxWzvIOimpLzHU08xCizvMpk hTVb4MxVmzErMZwem80NZFHzRve+pKAiJR87bfgwkmnmy6rCh3k= -----END CERTIFICATE-----Generated at Fri Dec 19 11:22:11 2025 by rpki-client