This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: S7ttCvR4E5ccqQ3XkKFi4XMiJoAujT2Lh4KIkXJpTrw= Subject key identifier: F0:C2:67:7C:DC:28:10:24:8C:2D:6F:D9:59:15:20:B0:3A:14:BD:C6 Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 0C03B3575FF8B51B11DDEDF2C5DF35A253E9A9DD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 01E1 Signing time: Tue 09 Dec 2025 20:01:28 +0000 Manifest this update: Tue 09 Dec 2025 19:56:28 +0000 Manifest next update: Sat 13 Dec 2025 02:01:28 +0000 Files and hashes: 1: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: GcwQFWAT36FoVfbgoIULsPrsTF3iNneVcbfF3egjyck=) 2: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 8iEgHOEIqDfpr7gSt8jxyho1deCIzw83qW565uPVSgs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 02:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:03:b3:57:5f:f8:b5:1b:11:dd:ed:f2:c5:df:35:a2:53:e9:a9:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Dec 9 19:56:28 2025 GMT Not After : Dec 13 02:01:28 2025 GMT Subject: CN=F0C2677CDC2810248C2D6FD9591520B03A14BDC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ae:57:e6:22:47:37:ee:6c:2c:b6:70:d7:71: d3:96:8c:7c:a9:89:e5:c3:9d:82:97:c4:f4:0a:2f: 42:7f:0b:16:6e:4b:ab:9e:a6:09:ff:23:9b:00:9d: 6a:1d:42:73:d4:80:02:22:d9:96:d5:a4:f3:46:ce: 20:c0:65:48:9e:62:b6:45:e6:79:8d:bf:df:bd:ab: ba:f2:b3:e6:ee:c4:43:f7:e0:37:b4:9f:1d:89:c7: da:c9:4f:a0:67:83:57:da:52:8b:cc:f7:18:cf:8b: 61:55:da:68:0f:b1:ac:46:5a:6a:1d:3e:ea:82:e2: 41:ca:c0:b0:4a:c0:44:db:86:62:d5:38:1c:2e:f1: 9e:a9:08:6a:af:b2:01:ac:84:6f:ef:27:52:8e:af: 65:66:8f:a1:3e:7f:79:5b:9c:70:7c:48:25:46:75: 36:4f:f6:10:e7:31:99:87:9e:92:f3:3b:42:7b:39: 16:7b:5a:93:4c:a0:a7:32:50:5d:3f:2d:f9:98:91: 36:a0:fa:6c:7d:60:43:71:11:2e:0b:cc:cd:c6:67: dd:25:7a:94:50:aa:ca:cd:3b:53:44:c6:af:bf:8a: 17:ff:90:10:5f:3a:42:d2:20:23:b2:84:1f:e4:43: 1f:2a:1e:8d:bb:a7:4d:6a:8e:74:9a:ba:70:df:e0: cc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C2:67:7C:DC:28:10:24:8C:2D:6F:D9:59:15:20:B0:3A:14:BD:C6 X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:8d:30:d9:bc:a0:70:cb:a1:95:e3:d9:fa:88:86:e6:91:b6: a4:5c:f2:be:02:1b:f4:cf:2a:c4:73:c7:f6:c6:7c:75:1b:58: fd:e7:9a:df:2b:c6:f6:8b:9c:22:06:0e:93:9a:f3:4b:dc:42: 37:ae:67:fe:5b:1f:05:7d:e8:45:3d:cf:a5:a0:20:f2:4a:e8: 0a:72:61:30:77:d9:b5:f8:16:1c:1c:d4:aa:f1:ab:3b:10:eb: 4c:16:c2:fb:9e:3a:41:58:20:ce:96:0e:87:86:49:67:b7:cf: af:e3:76:df:da:9a:9f:31:ce:a7:45:be:e4:d0:02:d4:50:2e: f2:6f:bd:2c:fd:f7:12:e2:12:b3:75:e5:bf:6a:12:da:2c:4a: 2e:44:a0:62:98:2f:84:8d:af:c2:b5:f5:29:ce:aa:ae:31:ba: 84:8b:10:83:f9:4a:84:ce:72:e7:09:5c:2b:00:10:40:0d:25: 09:ec:65:f8:76:86:11:d7:fd:4f:ff:49:95:0b:b3:b9:8b:c0: e4:ef:f1:17:01:13:0e:57:bd:a9:df:d0:b2:ab:60:c9:ad:b3: 4c:af:53:91:57:07:7a:12:0d:ca:8e:10:63:bf:28:25:1b:5d: d9:39:3e:a9:82:e5:16:cf:25:e3:b9:58:f0:c7:7f:d5:fd:92: ac:94:fd:06 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDAOzV1/4tRsR3e3yxd81olPpqd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTEyMDkxOTU2MjhaFw0yNTEyMTMwMjAxMjhaMDMxMTAvBgNV BAMTKEYwQzI2NzdDREMyODEwMjQ4QzJENkZEOTU5MTUyMEIwM0ExNEJEQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSrlfmIkc37mwstnDXcdOWjHyp ieXDnYKXxPQKL0J/CxZuS6uepgn/I5sAnWodQnPUgAIi2ZbVpPNGziDAZUieYrZF 5nmNv9+9q7rys+buxEP34De0nx2Jx9rJT6Bng1faUovM9xjPi2FV2mgPsaxGWmod PuqC4kHKwLBKwETbhmLVOBwu8Z6pCGqvsgGshG/vJ1KOr2Vmj6E+f3lbnHB8SCVG dTZP9hDnMZmHnpLzO0J7ORZ7WpNMoKcyUF0/LfmYkTag+mx9YENxES4LzM3GZ90l epRQqsrNO1NExq+/ihf/kBBfOkLSICOyhB/kQx8qHo27p01qjnSaunDf4MwLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8MJnfNwoECSMLW/ZWRUgsDoUvcYwHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI+NMNm8oHDLoZXj2fqIhuaRtqRc8r4CG/TP KsRzx/bGfHUbWP3nmt8rxvaLnCIGDpOa80vcQjeuZ/5bHwV96EU9z6WgIPJK6Apy YTB32bX4Fhwc1KrxqzsQ60wWwvueOkFYIM6WDoeGSWe3z6/jdt/amp8xzqdFvuTQ AtRQLvJvvSz99xLiErN15b9qEtosSi5EoGKYL4SNr8K19SnOqq4xuoSLEIP5SoTO cucJXCsAEEANJQnsZfh2hhHX/U//SZULs7mLwOTv8RcBEw5Xvanf0LKrYMmts0yv U5FXB3oSDcqOEGO/KCUbXdk5PqmC5RbPJeO5WPDHf9X9kqyU/QY= -----END CERTIFICATE-----Generated at Wed Dec 10 02:11:52 2025 by rpki-client