This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft File: 871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json) Hash identifier: s9WhF6gyt4jCm3SBLeGKnTKF8IHlRmzg19GBg1GGVqs= Subject key identifier: 70:11:40:6D:83:3F:AC:F7:6E:5D:C9:43:42:AF:44:FE:E4:C5:5C:D8 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 17FB1093B44CB82B2A03FB8B98DFC37D78FE0496 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft Manifest number: 011D Signing time: Fri 05 Dec 2025 22:22:19 +0000 Manifest this update: Fri 05 Dec 2025 22:17:19 +0000 Manifest next update: Tue 09 Dec 2025 08:23:19 +0000 Files and hashes: 1: 3135372e32302e39322e302f32332d3233203d3e20313532343037.roa (hash: P7Y8t8QlzVHnPDCRyEAdHrWqFac2Md1CGzVdP33gimk=) 2: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: QhOJ1w2HweJqVPUROx9NqhTD8YAgYpPvml4hWoPS1mo=) 3: 3135372e32302e39332e302f32342d3234203d3e20313532343037.roa (hash: 7xhwBLoxBcZfSoTZvdUTvLkraKKygpQjYGPK+6LQ1oA=) 4: 3135372e32302e39322e302f32342d3234203d3e20313532343037.roa (hash: QrSBRaxGaWU8ZoD0zYmeD1ZaWtynoFSmr/bVUUg5r5E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:fb:10:93:b4:4c:b8:2b:2a:03:fb:8b:98:df:c3:7d:78:fe:04:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Dec 5 22:17:19 2025 GMT Not After : Dec 9 08:23:19 2025 GMT Subject: CN=7011406D833FACF76E5DC94342AF44FEE4C55CD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:14:d6:34:a4:05:fd:c3:01:a2:42:11:90: 79:30:a1:da:e0:29:84:07:da:bd:50:14:43:d5:99: c5:6c:a2:f8:4b:a7:6e:a1:73:e0:b9:6b:a9:47:a0: 06:e5:a6:43:03:6b:01:f9:2e:a0:ae:68:52:d6:32: 0a:8d:04:6a:50:9a:c0:01:10:23:bb:2a:a8:04:67: 39:2a:e3:3a:70:d2:fb:0c:15:84:fe:27:d2:42:1e: 5d:c3:9e:89:c5:d5:65:72:de:d8:d8:1b:74:e6:1c: e9:e5:10:69:fa:98:17:f0:40:50:08:c3:df:dc:59: 19:0c:46:40:5a:a6:48:87:cd:34:06:0d:4d:ce:a0: bd:b2:22:77:91:98:bf:3f:57:30:99:f2:5f:cd:49: 7e:21:31:16:84:96:e5:d1:81:c7:49:08:38:e1:01: 29:0d:b1:77:1a:ca:75:63:11:2b:ed:c7:fe:5e:9b: fd:05:25:0b:a0:55:9d:f7:b9:7f:4d:dc:b0:5d:3f: 8c:5a:e7:34:5a:93:1f:88:fd:e9:64:80:fd:89:36: 9c:da:6d:d2:24:d1:5a:fb:cd:db:9d:83:9e:5e:be: d0:17:f7:95:c8:9b:e0:39:0d:93:31:8a:c5:86:41: 8f:f5:56:be:5d:87:34:52:42:ab:15:e1:5d:34:f1: 4d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:11:40:6D:83:3F:AC:F7:6E:5D:C9:43:42:AF:44:FE:E4:C5:5C:D8 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:91:38:76:70:28:af:16:4d:1b:a3:2b:e7:66:93:14:a2:d7: c3:b9:d0:93:d3:f6:f4:f3:1b:f2:a9:fe:74:a3:d7:41:26:45: 61:23:8c:90:98:33:eb:9f:92:c9:7e:e2:a1:32:8a:97:24:95: b4:47:b2:a3:36:b3:4e:3b:53:d8:ad:76:66:bf:6c:e7:8d:71: 01:45:71:4f:f0:99:fe:79:9e:f7:95:99:8a:35:9c:84:67:92: 63:06:82:86:fe:ab:77:37:a1:db:63:bf:96:76:91:d5:e2:d1: 3e:5b:74:c8:5d:70:31:09:df:21:44:df:44:12:7d:6a:77:1f: 04:eb:e7:49:a9:25:86:38:4a:44:01:79:56:6e:9f:4d:1a:aa: d2:20:ee:93:06:30:cd:30:8a:0d:2a:63:ce:25:24:80:c3:77: 62:72:64:5d:39:72:bb:0b:6a:05:71:1e:ec:16:3f:cf:88:42: 21:17:6b:31:07:90:ac:e0:8d:b7:bb:1b:9e:aa:ec:01:64:14: e0:6a:b8:a5:0a:42:68:b8:62:8a:aa:e2:99:78:b4:03:57:1f: aa:f5:1b:b5:7b:01:54:34:46:c2:a1:22:2d:11:f1:02:5a:c6: 8c:08:ae:94:05:e3:d7:75:72:d8:57:27:40:8a:4e:63:a7:d8: 49:e9:0c:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF/sQk7RMuCsqA/uLmN/DfXj+BJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNTEyMDUyMjE3MTlaFw0yNTEyMDkwODIzMTlaMDMxMTAvBgNV BAMTKDcwMTE0MDZEODMzRkFDRjc2RTVEQzk0MzQyQUY0NEZFRTRDNTVDRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9TRTWNKQF/cMBokIRkHkwodrg KYQH2r1QFEPVmcVsovhLp26hc+C5a6lHoAblpkMDawH5LqCuaFLWMgqNBGpQmsAB ECO7KqgEZzkq4zpw0vsMFYT+J9JCHl3DnonF1WVy3tjYG3TmHOnlEGn6mBfwQFAI w9/cWRkMRkBapkiHzTQGDU3OoL2yIneRmL8/VzCZ8l/NSX4hMRaEluXRgcdJCDjh ASkNsXcaynVjESvtx/5em/0FJQugVZ33uX9N3LBdP4xa5zRakx+I/elkgP2JNpza bdIk0Vr7zdudg55evtAX95XIm+A5DZMxisWGQY/1Vr5dhzRSQqsV4V008U1lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcBFAbYM/rPduXclDQq9E/uTFXNgwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2 MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD+ROHZwKK8WTRujK+dmkxSi18O50JPT9vTz G/Kp/nSj10EmRWEjjJCYM+ufksl+4qEyipcklbRHsqM2s047U9itdma/bOeNcQFF cU/wmf55nveVmYo1nIRnkmMGgob+q3c3odtjv5Z2kdXi0T5bdMhdcDEJ3yFE30QS fWp3HwTr50mpJYY4SkQBeVZun00aqtIg7pMGMM0wig0qY84lJIDDd2JyZF05crsL agVxHuwWP8+IQiEXazEHkKzgjbe7G56q7AFkFOBquKUKQmi4Yoqq4pl4tANXH6r1 G7V7AVQ0RsKhIi0R8QJaxowIrpQF49d1cthXJ0CKTmOn2EnpDKw= -----END CERTIFICATE-----Generated at Sun Dec 7 18:52:33 2025 by rpki-client