This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: hx5mF5F3RsoZFQ0W+Vxys6Ur0D1xLSeNXyLnSP0oKw8= Subject key identifier: E0:6F:CF:92:E1:EA:76:B2:D8:18:3B:12:96:D9:CF:4C:E1:1C:BB:72 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 6B6AC47F52D68F486F2A595F4D3B5D4A7C8809AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0530 Signing time: Tue 02 Dec 2025 19:30:43 +0000 Manifest this update: Tue 02 Dec 2025 19:25:43 +0000 Manifest next update: Sat 06 Dec 2025 06:14:43 +0000 Files and hashes: 1: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 2: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 3: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) 4: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 5: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 6: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: RNt2IhFq1tnxp5Z+Ta3Xizk0E2P6VqZFRVsh6omKgEw=) 7: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 8: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 9: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 10: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 06:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:6a:c4:7f:52:d6:8f:48:6f:2a:59:5f:4d:3b:5d:4a:7c:88:09:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Dec 2 19:25:43 2025 GMT Not After : Dec 6 06:14:43 2025 GMT Subject: CN=E06FCF92E1EA76B2D8183B1296D9CF4CE11CBB72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d2:9c:62:cd:33:00:18:6a:30:4d:8d:7c:ec: 69:68:bc:ad:9b:5b:12:ac:4e:21:38:28:0d:3b:6b: 44:4e:82:d2:8c:fc:b8:dd:ae:fa:18:fe:53:86:53: e3:b6:03:33:33:0b:66:91:e0:89:14:80:41:7d:fa: 15:03:17:8e:b7:80:36:50:f3:4f:90:7e:1f:e9:20: 8a:57:9b:44:c9:3a:36:55:ef:16:f0:5a:93:d6:a2: e9:b2:39:8b:e8:43:79:3e:a0:02:4f:a2:3a:38:ea: eb:fa:b5:77:3b:1d:43:34:d4:ff:41:91:84:96:07: 9b:27:cf:a8:68:1c:8e:64:66:dd:69:50:c4:d2:55: 4f:46:b3:76:23:f8:26:b0:86:a5:78:9f:03:3f:9b: 0a:b8:e0:dc:bf:10:c4:94:3c:99:a0:30:fb:5c:e4: f7:05:d7:b5:72:d2:cd:6c:8c:7a:fd:7c:b8:f7:9c: a3:e6:54:8f:7f:ff:e5:d9:76:f0:3f:a5:80:31:69: d5:7d:64:c2:8a:32:d5:97:3a:15:64:22:a1:c7:a0: 58:b2:10:d5:36:e9:d5:ed:11:f4:18:eb:0b:23:e5: ef:86:9b:dc:12:9c:b4:08:7a:8a:89:31:9a:da:e0: d4:b7:67:aa:ca:a6:77:dc:46:df:37:db:a2:1f:41: e6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:6F:CF:92:E1:EA:76:B2:D8:18:3B:12:96:D9:CF:4C:E1:1C:BB:72 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:48:00:5e:67:9c:7f:64:02:90:67:77:3e:11:15:37:92:de: 31:33:3e:9f:5e:03:f0:05:47:0e:e5:05:94:5f:9b:63:1c:b9: 98:c6:7e:f7:26:70:a5:61:e4:ec:b5:78:a5:bd:1d:f3:84:db: 59:d8:18:96:a7:24:0c:0e:41:19:35:68:c0:13:12:95:57:8f: 0c:a2:91:45:c0:1c:31:51:e0:1a:eb:ca:b4:a7:ac:35:b1:91: e5:f8:bd:8e:d7:80:3c:aa:28:57:01:6f:1c:fc:14:d3:61:68: 81:65:74:17:c7:50:37:92:0b:51:aa:e5:59:4b:1a:14:29:08: 8b:0a:b8:44:0e:5c:57:77:1d:0f:89:7e:0f:b2:54:98:c7:bb: 17:17:e7:95:6f:0e:e2:d0:b1:15:ca:d5:7f:1d:5e:41:38:20: aa:78:ad:1c:b7:76:49:4f:ff:1e:c7:51:92:cd:45:80:c6:0c: 4d:39:75:30:fd:ba:14:58:52:63:f3:10:7b:a4:24:6d:16:c5: 64:01:86:a1:f0:c1:30:bc:4d:78:ea:e9:d8:50:ad:e6:49:4c: e4:03:81:f7:55:6c:e8:fe:e5:6c:b9:1b:41:1f:cc:14:c4:40: c5:7f:ea:bf:10:58:ec:09:6e:58:f5:ae:a2:c9:51:6a:66:8c: 0d:6c:40:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa2rEf1LWj0hvKllfTTtdSnyICaswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTEyMDIxOTI1NDNaFw0yNTEyMDYwNjE0NDNaMDMxMTAvBgNV BAMTKEUwNkZDRjkyRTFFQTc2QjJEODE4M0IxMjk2RDlDRjRDRTExQ0JCNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm0pxizTMAGGowTY187GlovK2b WxKsTiE4KA07a0ROgtKM/LjdrvoY/lOGU+O2AzMzC2aR4IkUgEF9+hUDF463gDZQ 80+Qfh/pIIpXm0TJOjZV7xbwWpPWoumyOYvoQ3k+oAJPojo46uv6tXc7HUM01P9B kYSWB5snz6hoHI5kZt1pUMTSVU9Gs3Yj+CawhqV4nwM/mwq44Ny/EMSUPJmgMPtc 5PcF17Vy0s1sjHr9fLj3nKPmVI9//+XZdvA/pYAxadV9ZMKKMtWXOhVkIqHHoFiy ENU26dXtEfQY6wsj5e+Gm9wSnLQIeoqJMZra4NS3Z6rKpnfcRt8326IfQeb7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4G/PkuHqdrLYGDsSltnPTOEcu3IwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFpIAF5nnH9kApBndz4RFTeS3jEzPp9eA/AF Rw7lBZRfm2McuZjGfvcmcKVh5Oy1eKW9HfOE21nYGJanJAwOQRk1aMATEpVXjwyi kUXAHDFR4BrryrSnrDWxkeX4vY7XgDyqKFcBbxz8FNNhaIFldBfHUDeSC1Gq5VlL GhQpCIsKuEQOXFd3HQ+Jfg+yVJjHuxcX55VvDuLQsRXK1X8dXkE4IKp4rRy3dklP /x7HUZLNRYDGDE05dTD9uhRYUmPzEHukJG0WxWQBhqHwwTC8TXjq6dhQreZJTOQD gfdVbOj+5Wy5G0EfzBTEQMV/6r8QWOwJblj1rqLJUWpmjA1sQMc= -----END CERTIFICATE-----Generated at Wed Dec 3 14:55:49 2025 by rpki-client