This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft File: 99A17325620A243689E32E6074D5CFCA91D915EB.mft (raw, json) Hash identifier: nmSQmfRupfHKJv9T8IUl7WjpVBtqB6JFBXZQUM1VJ5w= Subject key identifier: E6:04:B9:7C:2F:3D:F7:6E:38:3A:6A:4A:04:A3:43:89:EE:B3:F8:84 Authority key identifier: 99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB Certificate issuer: /CN=99A17325620A243689E32E6074D5CFCA91D915EB Certificate serial: 1FE95F35389BBF36A1A8393845246B80417C0D92 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft Manifest number: 0115 Signing time: Sun 07 Dec 2025 09:01:50 +0000 Manifest this update: Sun 07 Dec 2025 08:56:50 +0000 Manifest next update: Wed 10 Dec 2025 14:07:50 +0000 Files and hashes: 1: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (hash: W4T3x6W6F80SSirpXVn9D/iy5Cn3YHJGBUQbdlxcTEY=) 2: 99A17325620A243689E32E6074D5CFCA91D915EB.crl (hash: lo0zM/frtyiWqCznRAuKx5QVy/7L+bLMJt9Mjt0K63o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:e9:5f:35:38:9b:bf:36:a1:a8:39:38:45:24:6b:80:41:7c:0d:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99A17325620A243689E32E6074D5CFCA91D915EB Validity Not Before: Dec 7 08:56:50 2025 GMT Not After : Dec 10 14:07:50 2025 GMT Subject: CN=E604B97C2F3DF76E383A6A4A04A34389EEB3F884 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:ef:ff:5d:6b:59:6e:4a:2c:09:36:c1:97: 6f:90:c5:80:b6:8d:88:ea:e4:cd:37:de:83:f8:73: d3:0e:db:30:4e:67:ad:90:c7:19:b1:5e:0c:2a:9b: bc:67:98:0a:b9:b1:b3:56:71:e0:04:25:2b:01:22: d5:d6:d4:77:40:d0:32:b6:c0:5a:e6:7e:38:be:c6: 2d:40:7c:c7:4b:1d:ad:39:90:0f:2b:b4:f9:97:78: 8f:51:a6:4b:a6:85:d5:66:30:73:92:00:f2:7d:86: 5b:5d:82:bb:63:ca:ed:e7:6c:1f:a6:8c:fe:5b:e3: 70:1c:ed:6a:43:c0:f6:b9:87:bd:60:0f:3a:21:3f: d7:bd:e9:6c:ee:44:47:3c:46:81:57:61:5a:f6:dd: d3:c5:b4:f2:6d:92:4e:61:a4:45:d8:b6:89:54:52: 56:ba:4a:a9:23:b8:01:28:5b:9f:1c:a2:2a:51:05: d8:f3:f0:ea:a6:63:c0:5e:f7:ef:a3:f4:39:c2:df: a9:56:03:53:3d:da:84:11:99:c1:7a:46:c4:09:dd: 5e:9f:76:5d:6a:1e:8a:4b:9d:01:33:2b:5e:b4:3f: fd:d8:96:11:d0:82:c4:fa:3a:b6:a2:b2:75:4e:67: 37:bb:f9:81:84:e2:c4:b7:7e:8c:5e:41:00:63:cf: ad:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:04:B9:7C:2F:3D:F7:6E:38:3A:6A:4A:04:A3:43:89:EE:B3:F8:84 X509v3 Authority Key Identifier: keyid:99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:1a:6d:ec:78:10:48:0b:18:9e:95:39:be:9a:ef:1c:66:93: 29:d0:f4:63:ef:d8:1a:31:b6:dd:35:7a:62:86:a3:23:2c:c9: 3d:e3:c9:db:12:51:37:85:e7:c8:03:00:ce:50:40:61:e5:54: f5:ab:d7:3f:2b:8d:4d:13:22:b8:38:f2:97:ec:e3:53:48:38: c4:36:04:4d:73:e2:2d:ac:54:01:2f:0b:65:3c:14:8c:a3:da: a7:09:a2:a3:46:84:a9:29:de:d9:81:65:5e:91:39:8a:25:cd: e0:e4:95:20:4d:32:21:04:b9:71:fb:6f:a1:e5:24:a8:82:6d: 00:ee:20:d4:4a:70:2c:7e:62:9d:a9:08:fa:9e:a7:6e:ab:a5: 2c:d0:71:e3:bb:fb:26:25:67:4b:48:7d:88:53:c0:37:2e:2d: 7a:b7:ef:4a:82:1a:79:06:57:7a:f4:13:b9:43:2b:34:fd:bb: 9e:3f:60:9a:27:63:b5:56:f9:d5:dc:aa:9c:d1:e2:11:c6:01: e6:2b:e9:6f:b6:99:b7:c7:5b:3b:34:33:ed:78:1a:71:e6:2b: cd:23:c4:1a:09:48:13:50:f2:3a:4e:f4:55:3f:64:0e:e1:fb: 6e:43:07:db:24:78:f9:88:b7:cc:a1:dd:6e:89:86:08:1c:fe: 49:b7:dc:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH+lfNTibvzahqDk4RSRrgEF8DZIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5 MUQ5MTVFQjAeFw0yNTEyMDcwODU2NTBaFw0yNTEyMTAxNDA3NTBaMDMxMTAvBgNV BAMTKEU2MDRCOTdDMkYzREY3NkUzODNBNkE0QTA0QTM0Mzg5RUVCM0Y4ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpS+//XWtZbkosCTbBl2+QxYC2 jYjq5M033oP4c9MO2zBOZ62QxxmxXgwqm7xnmAq5sbNWceAEJSsBItXW1HdA0DK2 wFrmfji+xi1AfMdLHa05kA8rtPmXeI9RpkumhdVmMHOSAPJ9hltdgrtjyu3nbB+m jP5b43Ac7WpDwPa5h71gDzohP9e96WzuREc8RoFXYVr23dPFtPJtkk5hpEXYtolU Ula6SqkjuAEoW58coipRBdjz8OqmY8Be9++j9DnC36lWA1M92oQRmcF6RsQJ3V6f dl1qHopLnQEzK160P/3YlhHQgsT6OraisnVOZze7+YGE4sS3foxeQQBjz63nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5gS5fC899244OmpKBKNDie6z+IQwHwYDVR0j BBgwFoAUmaFzJWIKJDaJ4y5gdNXPypHZFeswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDU5YjgyMi01YzA4LTQ2ZjEtYjI1ZS03NThkYzE4ZTk5MDUvMC85OUExNzMyNTYy MEEyNDM2ODlFMzJFNjA3NEQ1Q0ZDQTkxRDkxNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5MUQ5 MTVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWQ1OWI4MjItNWMwOC00NmYxLWIy NWUtNzU4ZGMxOGU5OTA1LzAvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNG Q0E5MUQ5MTVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABoabex4EEgLGJ6VOb6a7xxmkynQ9GPv2Box tt01emKGoyMsyT3jydsSUTeF58gDAM5QQGHlVPWr1z8rjU0TIrg48pfs41NIOMQ2 BE1z4i2sVAEvC2U8FIyj2qcJoqNGhKkp3tmBZV6ROYolzeDklSBNMiEEuXH7b6Hl JKiCbQDuINRKcCx+Yp2pCPqep26rpSzQceO7+yYlZ0tIfYhTwDcuLXq370qCGnkG V3r0E7lDKzT9u54/YJonY7VW+dXcqpzR4hHGAeYr6W+2mbfHWzs0M+14GnHmK80j xBoJSBNQ8jpO9FU/ZA7h+25DB9skePmIt8yh3W6Jhggc/km33HU= -----END CERTIFICATE-----Generated at Sun Dec 7 18:56:13 2025 by rpki-client