This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft File: CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft (raw, json) Hash identifier: W73wwCY4vL+h+FjPfh658KI1YM5a/m5tu0Uc4Bi1sow= Subject key identifier: 9B:B2:52:08:CB:E5:01:BE:73:7E:AB:19:D2:0C:19:59:90:E5:F0:E7 Authority key identifier: CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B Certificate issuer: /CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B Certificate serial: 4E0536C320F959C8475C92E15E8F7268EB63B3B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft Manifest number: 0538 Signing time: Wed 17 Dec 2025 21:51:55 +0000 Manifest this update: Wed 17 Dec 2025 21:46:55 +0000 Manifest next update: Sun 21 Dec 2025 00:12:55 +0000 Files and hashes: 1: 3130332e36362e38362e302f32342d3234203d3e20313431313037.roa (hash: HELC9mdQ84lzVVvguuZaZieGiyQ03u73Eihy4Pkp6bs=) 2: CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl (hash: B/GUrUtPEEQcX8I4Dhp6Uu/+ASqeSG53AKtNqI5TjSQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 00:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:05:36:c3:20:f9:59:c8:47:5c:92:e1:5e:8f:72:68:eb:63:b3:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA41DDE3591DCF89BBD15BC96E05BDC73214099B Validity Not Before: Dec 17 21:46:55 2025 GMT Not After : Dec 21 00:12:55 2025 GMT Subject: CN=9BB25208CBE501BE737EAB19D20C195990E5F0E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:31:3a:7e:71:32:b8:1b:e0:1f:2f:aa:aa:e6: bf:bb:d4:1a:d4:80:c0:74:5b:e8:ec:88:2a:fe:a1: a4:1a:37:8b:b5:3e:be:60:20:81:cc:61:2a:af:af: eb:d0:ab:f1:ec:ba:72:29:7c:ad:8a:23:9c:19:0c: 2d:2e:f6:78:58:67:77:44:b4:06:f1:4b:aa:d1:09: 8b:15:f1:e3:63:fe:a1:8c:7a:3b:5e:4e:05:85:9b: 79:51:32:ef:ec:c5:05:84:3b:98:7a:06:8c:dc:77: 5c:86:2e:7e:3f:8f:b0:1b:f3:0b:c1:5a:df:71:6e: 7c:8c:af:ba:40:48:f7:c1:81:56:3d:57:16:9e:ff: 3b:4a:1a:37:76:ed:5a:34:11:44:07:b7:48:43:5f: 7c:95:9a:0c:27:84:8a:d2:01:68:03:ba:94:38:dd: 98:a0:3a:38:e8:49:1a:44:6c:77:cd:ef:25:9b:f7: f0:eb:5b:54:6a:bf:b9:66:85:07:1c:f2:c3:4b:9d: 4b:e4:18:bf:b9:22:f3:91:58:5f:96:29:10:81:59: f2:06:55:d0:61:56:87:70:a8:fe:a9:18:ab:25:de: 5e:8a:7f:0c:8f:45:de:ef:32:11:b4:9b:03:75:81: 23:5a:ad:5a:21:25:89:5f:34:69:b2:c4:a5:ed:a2: 8c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:B2:52:08:CB:E5:01:BE:73:7E:AB:19:D2:0C:19:59:90:E5:F0:E7 X509v3 Authority Key Identifier: keyid:CA:41:DD:E3:59:1D:CF:89:BB:D1:5B:C9:6E:05:BD:C7:32:14:09:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4fcc2d44-9418-4013-9723-a978f8bd8b6b/0/CA41DDE3591DCF89BBD15BC96E05BDC73214099B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:8c:71:39:81:c9:d5:92:74:08:f8:fc:ee:b5:31:38:48:83: d0:a3:d2:81:00:54:bc:82:3c:de:d3:27:39:f5:13:4f:60:d3: 4f:a2:d0:86:c9:df:d8:a4:72:a4:1d:7f:4d:bb:9e:7d:79:f5: f7:0e:97:96:1f:1a:a4:4f:55:fb:67:35:eb:2a:af:27:48:a7: ee:b7:76:57:6a:76:64:24:5e:96:0c:5a:d4:ba:8a:b2:8a:7b: ba:15:01:ff:9d:4b:9d:4f:62:c5:b1:e6:37:48:95:c6:24:38: 74:71:0a:9d:34:07:72:8f:9d:5e:7c:08:95:ce:62:a1:8f:87: c0:1d:0d:24:33:22:90:bf:8a:36:a6:d9:31:87:17:aa:7c:dc: 38:8f:9b:83:ea:9d:48:6a:5b:fb:7d:b2:b2:95:c3:3a:a1:18: 3a:67:7a:85:c2:21:df:d4:0e:df:a3:65:6f:93:51:c3:d4:18: 77:b2:00:34:0c:3d:a5:13:a3:97:50:13:bb:01:15:4a:b1:65: d7:7b:29:38:6e:78:ea:fc:7b:b8:d2:17:49:58:1f:21:1b:e0: de:69:47:5b:87:49:04:f7:16:67:ce:c2:9b:52:60:5f:95:d7: 29:9b:91:d0:dd:f6:65:48:b7:1e:d6:17:e7:e4:55:aa:d1:a6: 88:db:75:9f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTgU2wyD5WchHXJLhXo9yaOtjs7MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzcz MjE0MDk5QjAeFw0yNTEyMTcyMTQ2NTVaFw0yNTEyMjEwMDEyNTVaMDMxMTAvBgNV BAMTKDlCQjI1MjA4Q0JFNTAxQkU3MzdFQUIxOUQyMEMxOTU5OTBFNUYwRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKMTp+cTK4G+AfL6qq5r+71BrU gMB0W+jsiCr+oaQaN4u1Pr5gIIHMYSqvr+vQq/HsunIpfK2KI5wZDC0u9nhYZ3dE tAbxS6rRCYsV8eNj/qGMejteTgWFm3lRMu/sxQWEO5h6Bozcd1yGLn4/j7Ab8wvB Wt9xbnyMr7pASPfBgVY9Vxae/ztKGjd27Vo0EUQHt0hDX3yVmgwnhIrSAWgDupQ4 3ZigOjjoSRpEbHfN7yWb9/DrW1Rqv7lmhQcc8sNLnUvkGL+5IvORWF+WKRCBWfIG VdBhVodwqP6pGKsl3l6KfwyPRd7vMhG0mwN1gSNarVohJYlfNGmyxKXtoowbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUm7JSCMvlAb5zfqsZ0gwZWZDl8OcwHwYDVR0j BBgwFoAUykHd41kdz4m70VvJbgW9xzIUCZswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZmNjMmQ0NC05NDE4LTQwMTMtOTcyMy1hOTc4ZjhiZDhiNmIvMC9DQTQxRERFMzU5 MURDRjg5QkJEMTVCQzk2RTA1QkRDNzMyMTQwOTlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJEQzczMjE0 MDk5Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGZjYzJkNDQtOTQxOC00MDEzLTk3 MjMtYTk3OGY4YmQ4YjZiLzAvQ0E0MURERTM1OTFEQ0Y4OUJCRDE1QkM5NkUwNUJE QzczMjE0MDk5Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACGMcTmBydWSdAj4/O61MThIg9Cj0oEAVLyC PN7TJzn1E09g00+i0IbJ39ikcqQdf027nn159fcOl5YfGqRPVftnNesqrydIp+63 dldqdmQkXpYMWtS6irKKe7oVAf+dS51PYsWx5jdIlcYkOHRxCp00B3KPnV58CJXO YqGPh8AdDSQzIpC/ijam2TGHF6p83DiPm4PqnUhqW/t9srKVwzqhGDpneoXCId/U Dt+jZW+TUcPUGHeyADQMPaUTo5dQE7sBFUqxZdd7KThueOr8e7jSF0lYHyEb4N5p R1uHSQT3FmfOwptSYF+V1ymbkdDd9mVItx7WF+fkVarRpojbdZ8= -----END CERTIFICATE-----Generated at Fri Dec 19 10:42:08 2025 by rpki-client