This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json) Hash identifier: JTt14Roq817/FEwK6nbsx4nCqBDyIBOh82WtLonryhw= Subject key identifier: B3:45:1E:63:7F:A6:28:D3:57:1F:38:27:D8:78:10:13:BE:25:3D:2F Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: FBA5B011BBE733BB498A08AF4608BB78B62229 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft Manifest number: 0116 Signing time: Sun 07 Dec 2025 14:52:23 +0000 Manifest this update: Sun 07 Dec 2025 14:47:23 +0000 Manifest next update: Wed 10 Dec 2025 17:09:23 +0000 Files and hashes: 1: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: mIAtzNrfjeKiFzHKpCt4+yI3FhKtEfckYghfutbPb44=) 2: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: B1T+BbI7/nLynqIoWNxT0etMzMdtfcfuUEzHhbdFz5c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: fb:a5:b0:11:bb:e7:33:bb:49:8a:08:af:46:08:bb:78:b6:22:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Dec 7 14:47:23 2025 GMT Not After : Dec 10 17:09:23 2025 GMT Subject: CN=B3451E637FA628D3571F3827D8781013BE253D2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6e:d3:e3:77:69:63:b7:cd:3a:80:b2:4a:27: 7c:5c:b7:17:1e:78:fd:22:88:c8:6c:86:a4:8e:4a: 0c:8a:48:4f:b5:d3:d9:a7:10:d9:5d:6c:db:62:72: 0f:55:58:82:ed:e2:90:c1:f1:95:3a:35:29:04:9e: da:97:4b:82:30:c7:a7:a7:7e:d8:16:0d:71:5f:ba: 2f:39:fc:c5:91:28:c9:d9:43:56:7b:f0:13:c1:ec: e1:66:ee:80:ea:13:1d:50:50:ce:ce:1f:9e:2c:b9: 42:64:a1:49:7c:e0:62:5b:4f:14:21:00:70:29:31: e3:56:5c:de:03:b6:60:4c:3f:5d:bc:48:3b:e2:ec: 5e:96:ea:35:71:28:96:66:27:2a:97:2b:b9:2f:01: 3f:7b:d1:53:90:7d:fd:99:35:ec:e8:79:63:ee:ed: e3:1f:85:f9:b1:49:89:0e:ff:07:ac:98:e4:0a:6c: 38:31:73:ff:be:a2:b9:4b:e0:3e:5d:fd:46:9d:d2: 4e:76:89:26:20:fa:a9:5f:b7:3a:1a:c1:c1:d4:5b: 60:01:a6:ca:b3:9e:8d:f1:a2:03:eb:6a:94:7e:7e: 55:6e:16:8d:12:70:e2:3a:25:b4:4a:68:e7:4c:11: 48:de:be:a9:5d:ea:db:4a:6b:ac:4b:ab:40:ec:eb: 8d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:45:1E:63:7F:A6:28:D3:57:1F:38:27:D8:78:10:13:BE:25:3D:2F X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:b3:3d:9d:56:59:48:a2:e2:24:65:d3:97:c8:a3:04:57:b2: e4:8e:87:d3:aa:98:e1:80:d4:aa:7b:71:7d:19:a2:f8:48:2f: 2b:9d:8c:24:77:ba:31:3e:6b:b6:39:98:13:9a:30:36:fc:77: 34:21:17:3b:0b:48:ab:f9:67:de:56:a9:26:0f:05:1a:0a:2d: 7c:16:50:16:11:8c:62:09:b3:d6:d4:f0:44:a0:3e:82:ac:19: fe:40:85:6a:ae:d1:89:b5:be:cf:52:2e:ef:57:4d:ba:d8:1b: 99:aa:df:bf:ef:c2:d8:a0:e3:d3:33:84:1e:d7:b3:2b:c0:07: 24:63:93:79:94:66:50:ff:47:ce:6d:80:03:02:9e:f4:6c:03: 5c:d9:45:28:67:49:69:9d:65:59:59:97:ea:41:fb:01:d2:d1: 55:ec:c1:39:0a:af:b5:60:27:0e:bf:01:1a:83:03:c5:14:45: ca:4d:ca:3e:81:83:05:8f:1a:77:f8:6b:17:62:19:ca:3d:b0: ea:d4:c2:8b:80:fd:bf:a0:bc:11:50:cf:f5:cb:fa:6e:d8:af: a0:0c:3c:19:aa:41:36:17:b4:fb:a9:35:27:7c:87:47:0c:75: 07:75:e1:41:07:be:27:b9:e3:9f:9d:ec:01:c6:6d:a7:11:8d: 16:17:be:a6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAPulsBG75zO7SYoIr0YIu3i2IikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNTEyMDcxNDQ3MjNaFw0yNTEyMTAxNzA5MjNaMDMxMTAvBgNV BAMTKEIzNDUxRTYzN0ZBNjI4RDM1NzFGMzgyN0Q4NzgxMDEzQkUyNTNEMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDebtPjd2ljt806gLJKJ3xctxce eP0iiMhshqSOSgyKSE+109mnENldbNticg9VWILt4pDB8ZU6NSkEntqXS4Iwx6en ftgWDXFfui85/MWRKMnZQ1Z78BPB7OFm7oDqEx1QUM7OH54suUJkoUl84GJbTxQh AHApMeNWXN4DtmBMP128SDvi7F6W6jVxKJZmJyqXK7kvAT970VOQff2ZNezoeWPu 7eMfhfmxSYkO/wesmOQKbDgxc/++orlL4D5d/Uad0k52iSYg+qlftzoawcHUW2AB psqzno3xogPrapR+flVuFo0ScOI6JbRKaOdMEUjevqld6ttKa6xLq0Ds641rAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs0UeY3+mKNNXHzgn2HgQE74lPS8wHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTBmNzhiZDQtYzE5Yi00ZDQwLWFh NTQtZWQ4ZDdiYzc3MmNhLzAvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIy QkE1RUEyRTYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAizPZ1WWUii4iRl05fIowRXsuSOh9OqmOGA 1Kp7cX0ZovhILyudjCR3ujE+a7Y5mBOaMDb8dzQhFzsLSKv5Z95WqSYPBRoKLXwW UBYRjGIJs9bU8ESgPoKsGf5AhWqu0Ym1vs9SLu9XTbrYG5mq37/vwtig49MzhB7X syvAByRjk3mUZlD/R85tgAMCnvRsA1zZRShnSWmdZVlZl+pB+wHS0VXswTkKr7Vg Jw6/ARqDA8UURcpNyj6BgwWPGnf4axdiGco9sOrUwouA/b+gvBFQz/XL+m7Yr6AM PBmqQTYXtPupNSd8h0cMdQd14UEHvie545+d7AHGbacRjRYXvqY= -----END CERTIFICATE-----Generated at Sun Dec 7 18:46:49 2025 by rpki-client