This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: efvlwly4o3PRh2d0pnEyP3+5d7VmYTT+wIe+J3cZs+4= Subject key identifier: 2B:D7:F4:4F:DA:17:0F:4F:B5:1D:3E:FD:B1:23:8B:DB:07:8B:BB:92 Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 6C0D13B8D2B1E738753933F27DEACE917BA619A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 01E3 Signing time: Sun 14 Dec 2025 11:51:26 +0000 Manifest this update: Sun 14 Dec 2025 11:46:26 +0000 Manifest next update: Wed 17 Dec 2025 22:56:26 +0000 Files and hashes: 1: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: iVpcnunl2kUu1Xg5p8Rpre/PGqo8IxT9hNDezFENnXw=) 2: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 8iEgHOEIqDfpr7gSt8jxyho1deCIzw83qW565uPVSgs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 22:56:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:0d:13:b8:d2:b1:e7:38:75:39:33:f2:7d:ea:ce:91:7b:a6:19:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Dec 14 11:46:26 2025 GMT Not After : Dec 17 22:56:26 2025 GMT Subject: CN=2BD7F44FDA170F4FB51D3EFDB1238BDB078BBB92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e4:cf:86:a3:1d:8f:42:f7:87:c9:c9:3e:40: ec:65:b2:7c:d8:75:91:ff:8a:68:b5:dd:eb:13:3a: 2f:d1:32:30:f5:19:87:b5:c0:a0:11:e0:8e:e4:56: d0:ab:74:69:67:6b:e7:a5:9b:f4:f8:50:53:f1:e1: 7e:7e:b0:50:d0:2b:65:60:c1:5a:f8:ba:ac:4c:f0: f4:f2:fc:46:85:ab:3c:c2:2b:ed:57:51:41:f3:5a: e1:c0:bf:79:ed:21:67:74:4f:26:13:20:30:40:09: 6b:24:4a:c8:20:e7:04:da:d3:00:7d:27:9d:a2:27: 47:12:42:5f:9e:5d:be:b7:39:ca:0c:eb:01:70:05: 31:0f:ee:70:68:de:d0:65:24:d8:68:6f:4e:d3:79: 81:d2:5b:b2:9f:50:eb:29:64:2f:c4:d9:58:f1:70: 4f:98:22:4a:d3:92:d9:f3:e0:4f:e6:7e:f4:f3:69: 43:16:f4:4a:72:e8:d6:2c:50:b5:51:62:21:5a:61: 6b:10:44:c9:95:c9:fb:64:a3:13:9f:02:26:d2:6f: 70:92:e2:d7:10:4e:f9:4e:58:b2:51:f2:36:a4:29: fb:06:df:4c:0c:e2:7a:75:4b:11:24:68:7f:4b:6f: 7c:c7:f1:68:ac:ce:16:79:dc:22:95:31:ec:98:54: 93:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D7:F4:4F:DA:17:0F:4F:B5:1D:3E:FD:B1:23:8B:DB:07:8B:BB:92 X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:34:16:8e:f9:b5:22:7c:43:92:ec:64:2e:23:26:d5:c3:3f: 41:1f:c3:fe:b8:d4:c2:75:a3:f1:45:99:41:be:b4:59:8c:f4: 69:c3:f5:6a:d6:7d:b5:a8:73:11:d8:e6:45:82:6e:23:73:76: 7e:03:d6:eb:6a:11:e6:9f:bd:81:78:47:54:25:ab:d7:23:b1: 94:b7:ba:c6:71:15:23:02:d4:e9:d6:7b:7c:c2:be:8e:31:25: 97:f2:84:7d:44:bd:ec:a2:09:1f:9c:ba:93:1c:9f:aa:a3:81: 49:fb:e6:39:36:a3:7d:d5:dc:16:db:33:d7:31:e9:71:b3:44: 2a:2f:87:ce:7d:cf:39:ef:b1:49:d5:fb:b2:70:18:70:a8:ee: 43:cd:9b:46:08:c8:01:84:82:f7:b7:ef:bd:2a:34:7f:bb:d1: 9b:b2:77:c6:27:04:ae:d3:63:79:4e:d6:c8:35:00:24:94:bd: 3d:73:e2:72:e8:ca:da:b7:a9:d4:b9:bf:9a:8a:3b:68:3b:93: f3:11:05:bc:e6:58:7c:ad:30:e6:cf:66:42:9d:57:51:25:24: 7c:d2:3c:28:2b:c4:59:18:af:b9:61:bc:b7:77:2f:86:2e:bb: 0b:0a:8f:13:33:28:dd:5e:18:2b:42:fb:bf:4f:f9:f6:41:78: 04:ad:28:ff -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbA0TuNKx5zh1OTPyferOkXumGaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTEyMTQxMTQ2MjZaFw0yNTEyMTcyMjU2MjZaMDMxMTAvBgNV BAMTKDJCRDdGNDRGREExNzBGNEZCNTFEM0VGREIxMjM4QkRCMDc4QkJCOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH5M+Gox2PQveHyck+QOxlsnzY dZH/imi13esTOi/RMjD1GYe1wKAR4I7kVtCrdGlna+elm/T4UFPx4X5+sFDQK2Vg wVr4uqxM8PTy/EaFqzzCK+1XUUHzWuHAv3ntIWd0TyYTIDBACWskSsgg5wTa0wB9 J52iJ0cSQl+eXb63OcoM6wFwBTEP7nBo3tBlJNhob07TeYHSW7KfUOspZC/E2Vjx cE+YIkrTktnz4E/mfvTzaUMW9Epy6NYsULVRYiFaYWsQRMmVyftkoxOfAibSb3CS 4tcQTvlOWLJR8jakKfsG30wM4np1SxEkaH9Lb3zH8WiszhZ53CKVMeyYVJMpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUK9f0T9oXD0+1HT79sSOL2weLu5IwHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAE0Fo75tSJ8Q5LsZC4jJtXDP0Efw/641MJ1 o/FFmUG+tFmM9GnD9WrWfbWocxHY5kWCbiNzdn4D1utqEeafvYF4R1Qlq9cjsZS3 usZxFSMC1OnWe3zCvo4xJZfyhH1EveyiCR+cupMcn6qjgUn75jk2o33V3BbbM9cx 6XGzRCovh859zznvsUnV+7JwGHCo7kPNm0YIyAGEgve3770qNH+70Zuyd8YnBK7T Y3lO1sg1ACSUvT1z4nLoytq3qdS5v5qKO2g7k/MRBbzmWHytMObPZkKdV1ElJHzS PCgrxFkYr7lhvLd3L4YuuwsKjxMzKN1eGCtC+79P+fZBeAStKP8= -----END CERTIFICATE-----Generated at Mon Dec 15 13:18:23 2025 by rpki-client