This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft File: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft (raw, json) Hash identifier: yk74Q5QuwgtQ7jhu1dkdeSs7qNrrEzKC6ll9lTyeiBA= Subject key identifier: 22:97:B7:88:6A:AD:DD:B9:E2:95:8C:4F:F4:1A:49:81:1E:C8:F6:3E Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 3397599FFC99B0C636707CFB73F35EEDD6AA81 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft Manifest number: 0379 Signing time: Wed 03 Dec 2025 10:22:03 +0000 Manifest this update: Wed 03 Dec 2025 10:17:03 +0000 Manifest next update: Sat 06 Dec 2025 21:38:03 +0000 Files and hashes: 1: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl (hash: 80Wb66UetA2d1k2KdvuON8uap3khtOhGc89VwfFLnNE=) 2: 3130332e3136312e37332e302f32342d3234203d3e203538333738.roa (hash: yhKeiwU+JCs9UN8oh228h1Q0h11o4+yJwLGZRxsDQjM=) 3: 3130332e3136312e37332e302f32342d3234203d3e20313430333936.roa (hash: /rt35EUSw4Ix6/cmxLUEYEesdVZ42xEum9IJJSBZ0aY=) 4: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (hash: KGeHvvLL7YUj6ruPXwXmEedVa7petv8U3MdeekZgjts=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 21:38:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:97:59:9f:fc:99:b0:c6:36:70:7c:fb:73:f3:5e:ed:d6:aa:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Dec 3 10:17:03 2025 GMT Not After : Dec 6 21:38:03 2025 GMT Subject: CN=2297B7886AADDDB9E2958C4FF41A49811EC8F63E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f2:85:cd:f1:d7:42:9c:6e:ea:79:7b:17:c7: 9a:85:52:70:77:4d:6b:35:d3:0d:37:bc:ec:65:4e: 2c:92:e5:10:19:4c:e1:a6:9c:79:0a:05:bf:be:1f: 06:97:5f:5a:2a:07:9e:41:f2:92:5b:97:05:98:8a: 0f:52:b4:46:73:59:91:e0:45:44:03:ad:ac:41:c7: 31:ef:af:7b:75:1f:82:cb:06:0a:4d:9d:80:4a:0a: 31:f2:1e:c0:54:f6:1e:75:22:c4:a4:8a:27:4c:4d: 6c:3a:c7:1b:71:19:b3:bc:e1:46:43:15:99:43:14: 13:d0:c3:05:2c:7c:21:30:1a:ec:71:b4:be:29:a9: 88:3c:1e:82:f9:03:b5:fb:15:4b:81:a7:c9:b2:ac: cd:ff:64:31:2c:2e:f7:c8:29:cf:50:76:1b:1f:e5: e3:e5:45:64:2e:01:e1:4c:d7:c9:64:95:3a:64:0e: 69:a2:73:32:f3:97:3f:8d:4c:ca:32:a1:a5:fa:ed: 45:c1:d0:7c:c0:ce:ae:40:63:a4:8e:61:5a:8f:58: 57:57:bf:7b:db:1c:38:f9:b5:d1:94:c9:ba:67:d3: 8a:ef:b9:42:34:75:13:2f:eb:9c:9f:a6:be:64:9f: e8:c7:de:69:26:57:aa:af:e8:2f:c8:ed:27:2a:9a: 95:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:97:B7:88:6A:AD:DD:B9:E2:95:8C:4F:F4:1A:49:81:1E:C8:F6:3E X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:87:68:d3:fa:3c:c3:36:8b:b7:ba:8f:26:d8:cf:40:db:3b: a0:5b:d4:7b:bd:b9:ab:11:d5:5d:f1:76:2f:06:17:df:66:48: 3b:f5:fa:5c:c2:15:f7:b7:dd:54:b3:65:41:61:c0:c2:b5:94: bc:63:90:df:e4:73:26:ef:2d:62:d0:a9:a1:29:af:83:bd:79: 6d:cd:fa:e2:b5:69:9c:3e:ee:c9:39:2d:9c:b6:39:f7:e7:53: b1:16:5d:99:bb:00:8e:27:9e:19:b7:e5:8f:fb:97:bc:0f:0f: 6b:07:8b:72:68:4d:ab:89:a6:ab:38:c2:9e:19:f3:3a:94:9c: 38:39:63:39:80:f7:73:e0:52:cb:9f:9f:a8:bb:5d:5c:87:13: 89:44:5e:46:fe:cf:73:87:e0:b1:e6:4d:08:b3:01:b0:5a:51: 73:24:39:d3:b4:64:73:2d:34:b8:3f:59:34:2c:d3:17:39:68: ed:bc:1b:81:df:f8:6d:a0:f7:16:19:e2:b2:cb:56:da:b6:58: e7:d4:aa:ca:83:32:15:b1:f5:85:4a:bc:d6:0f:d9:65:0b:dc: 0b:83:e6:a0:fc:d3:e3:0e:03:7e:13:61:db:9a:25:16:34:7c: cf:e6:75:0f:db:35:24:a2:fa:3e:11:21:cc:a0:f4:a3:e2:3f: ba:df:ba:4e -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITM5dZn/yZsMY2cHz7c/Ne7daqgTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhDMjBERDM3QUYwRUYzQ0EwNTVERkRGOEYzRjVEMThGMDgx ODE5NkY0MB4XDTI1MTIwMzEwMTcwM1oXDTI1MTIwNjIxMzgwM1owMzExMC8GA1UE AxMoMjI5N0I3ODg2QUFERERCOUUyOTU4QzRGRjQxQTQ5ODExRUM4RjYzRTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKPyhc3x10Kcbup5exfHmoVScHdN azXTDTe87GVOLJLlEBlM4aaceQoFv74fBpdfWioHnkHykluXBZiKD1K0RnNZkeBF RAOtrEHHMe+ve3UfgssGCk2dgEoKMfIewFT2HnUixKSKJ0xNbDrHG3EZs7zhRkMV mUMUE9DDBSx8ITAa7HG0vimpiDwegvkDtfsVS4GnybKszf9kMSwu98gpz1B2Gx/l 4+VFZC4B4UzXyWSVOmQOaaJzMvOXP41MyjKhpfrtRcHQfMDOrkBjpI5hWo9YV1e/ e9scOPm10ZTJumfTiu+5QjR1Ey/rnJ+mvmSf6MfeaSZXqq/oL8jtJyqalVcCAwEA AaOCAjwwggI4MB0GA1UdDgQWBBQil7eIaq3dueKVjE/0GkmBHsj2PjAfBgNVHSME GDAWgBTCDdN68O88oFXf348/XRjwgYGW9DAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzll YmU3YWQ4LWUxNWMtNDAxNC1iZmIzLWJlNjliN2Q1ZGU4OC8wL0MyMEREMzdBRjBF RjNDQTA1NURGREY4RjNGNUQxOEYwODE4MTk2RjQuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9DMjBERDM3QUYwRUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5 NkY0LmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85ZWJlN2FkOC1lMTVjLTQwMTQtYmZi My1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYwRUYzQ0EwNTVERkRGOEYzRjVEMThG MDgxODE5NkY0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAK4do0/o8wzaLt7qPJtjPQNs7oFvUe725qxHV XfF2LwYX32ZIO/X6XMIV97fdVLNlQWHAwrWUvGOQ3+RzJu8tYtCpoSmvg715bc36 4rVpnD7uyTktnLY59+dTsRZdmbsAjieeGbflj/uXvA8PaweLcmhNq4mmqzjCnhnz OpScODljOYD3c+BSy5+fqLtdXIcTiUReRv7Pc4fgseZNCLMBsFpRcyQ507Rkcy00 uD9ZNCzTFzlo7bwbgd/4baD3FhnisstW2rZY59SqyoMyFbH1hUq81g/ZZQvcC4Pm oPzT4w4DfhNh25olFjR8z+Z1D9s1JKL6PhEhzKD0o+I/ut+6Tg== -----END CERTIFICATE-----Generated at Wed Dec 3 16:49:41 2025 by rpki-client