This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft File: BCDF6D8F5670257F852914E87D552983AA37A3A3.mft (raw, json) Hash identifier: 2XSQDIBLkgpI3JfMtMY8gAARhmUPuIYOeIWgAMn7pjI= Subject key identifier: 11:FA:56:BF:57:53:0B:92:C4:34:22:14:0A:1C:19:43:32:12:DD:42 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 7CE2D762D690348D94C7AE02915F6BC3D47E347C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft Manifest number: 0483 Signing time: Tue 02 Dec 2025 06:51:02 +0000 Manifest this update: Tue 02 Dec 2025 06:46:02 +0000 Manifest next update: Fri 05 Dec 2025 13:24:02 +0000 Files and hashes: 1: BCDF6D8F5670257F852914E87D552983AA37A3A3.crl (hash: laARBf+yklkQ/jfwlJs2Vbu3Nr5Wi5LzV8kk8NI12Nc=) 2: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (hash: ZtfrmcdIDZFk5FXV0vrgffSS//LC3R042y4pGOoRFVw=) 3: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (hash: 2JYulwUxi2T/jzgAmBWLWpOPU3Z1C06NLPJ2YJd9h44=) 4: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (hash: gks4E4RAlqsYzpMbY7s86LphrkEHlbXfODEV9a6VKSU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 13:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e2:d7:62:d6:90:34:8d:94:c7:ae:02:91:5f:6b:c3:d4:7e:34:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Dec 2 06:46:02 2025 GMT Not After : Dec 5 13:24:02 2025 GMT Subject: CN=11FA56BF57530B92C43422140A1C19433212DD42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:89:74:47:e7:0b:d5:ea:36:d7:21:20:b0:e3: 1c:69:78:11:e2:2a:e9:e7:36:ef:c9:b7:e9:c5:cd: 6c:36:c1:a8:52:e4:29:35:8c:b6:da:18:f9:ae:0f: 58:16:a2:23:40:49:95:b0:18:08:a1:f2:95:61:d5: df:2e:2a:84:d1:41:67:2b:eb:e2:b4:7a:63:d2:c0: 72:99:7b:b4:ba:b9:d7:fd:8f:eb:5b:ac:f8:91:ad: 1a:f7:01:c8:f5:c8:27:1e:80:b8:35:cc:9c:59:7e: d3:73:7a:9c:98:22:a1:1b:f7:cf:d6:37:13:f1:de: 9e:94:9c:32:e2:5c:01:48:e8:1b:9b:4f:87:8b:12: 2c:73:e3:94:68:ed:d1:68:82:37:fc:3e:37:aa:1a: 0b:bb:68:bf:be:5a:12:41:38:72:1c:a3:4d:1a:49: 35:8e:0f:57:b8:e9:40:dd:ad:33:33:89:1c:51:71: d3:0e:6c:55:41:a6:db:b6:3a:61:a8:a9:a6:f0:1f: 9a:b4:be:e7:85:b3:47:25:26:d0:06:8c:24:f3:d7: 4c:38:5b:11:bb:64:2a:31:5f:ef:d2:3a:06:ed:a6: 38:4a:8a:e3:e5:d7:dd:dc:68:02:47:4b:71:ca:1b: 38:82:98:1c:14:4e:7b:dd:e9:ee:c8:0d:ec:af:56: 26:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:FA:56:BF:57:53:0B:92:C4:34:22:14:0A:1C:19:43:32:12:DD:42 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:ec:dd:28:78:68:1b:5f:46:d2:e6:bb:8f:db:ef:b9:be:85: 90:65:58:76:81:f8:da:0e:e6:35:d7:7f:48:d2:1d:10:59:02: 3a:cb:07:42:ec:60:0c:3b:65:08:d7:05:fb:cb:99:f7:03:64: 30:35:ad:c3:31:e6:c8:f1:9a:b6:83:e8:09:55:f2:80:a4:25: 13:2c:55:e5:7a:e7:33:03:e7:de:5f:58:af:4e:33:74:31:97: 3f:75:57:7f:4a:15:27:1a:f8:30:57:c3:b6:5c:32:10:ab:ee: cd:80:44:73:b5:91:39:3e:b7:dc:f2:6a:89:c7:08:02:3c:9d: ba:17:74:1e:e6:00:71:47:99:10:93:4c:95:63:34:66:22:90: 1d:c1:39:b0:b1:0e:58:10:38:17:6d:7b:7c:7f:28:d6:e1:23: 75:c9:3a:52:8b:22:3b:5b:23:79:c2:17:95:06:c6:b9:01:19: 9b:80:92:98:cf:7a:f6:b7:08:a0:0f:58:59:c8:a5:48:e6:e1: ee:c1:fb:e3:a2:47:1f:31:1c:34:7a:88:a4:a0:e5:44:b3:45: 08:21:ef:7c:d3:dc:da:f5:7b:6d:e7:61:43:e3:d3:23:3b:6f: 77:27:e8:a1:84:0b:ea:39:85:5f:5d:a1:29:22:8b:24:34:52: e2:8b:bd:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfOLXYtaQNI2Ux64CkV9rw9R+NHwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNTEyMDIwNjQ2MDJaFw0yNTEyMDUxMzI0MDJaMDMxMTAvBgNV BAMTKDExRkE1NkJGNTc1MzBCOTJDNDM0MjIxNDBBMUMxOTQzMzIxMkRENDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYiXRH5wvV6jbXISCw4xxpeBHi KunnNu/Jt+nFzWw2wahS5Ck1jLbaGPmuD1gWoiNASZWwGAih8pVh1d8uKoTRQWcr 6+K0emPSwHKZe7S6udf9j+tbrPiRrRr3Acj1yCcegLg1zJxZftNzepyYIqEb98/W NxPx3p6UnDLiXAFI6BubT4eLEixz45Ro7dFogjf8PjeqGgu7aL++WhJBOHIco00a STWOD1e46UDdrTMziRxRcdMObFVBptu2OmGoqabwH5q0vueFs0clJtAGjCTz10w4 WxG7ZCoxX+/SOgbtpjhKiuPl193caAJHS3HKGziCmBwUTnvd6e7IDeyvViZNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEfpWv1dTC5LENCIUChwZQzIS3UIwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc3YjAxY2YtYjFjOS00NTBmLTg1 NTEtNGRjYjRjYmQ0MjYyLzAvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5 ODNBQTM3QTNBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAELs3Sh4aBtfRtLmu4/b77m+hZBlWHaB+NoO 5jXXf0jSHRBZAjrLB0LsYAw7ZQjXBfvLmfcDZDA1rcMx5sjxmraD6AlV8oCkJRMs VeV65zMD595fWK9OM3Qxlz91V39KFSca+DBXw7ZcMhCr7s2ARHO1kTk+t9zyaonH CAI8nboXdB7mAHFHmRCTTJVjNGYikB3BObCxDlgQOBdte3x/KNbhI3XJOlKLIjtb I3nCF5UGxrkBGZuAkpjPeva3CKAPWFnIpUjm4e7B++OiRx8xHDR6iKSg5USzRQgh 73zT3Nr1e23nYUPj0yM7b3cn6KGEC+o5hV9doSkiiyQ0UuKLvbc= -----END CERTIFICATE-----Generated at Wed Dec 3 16:08:31 2025 by rpki-client