This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft File: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft (raw, json) Hash identifier: GEyOranL2Ly5si/NqiI818zqHpGRId0niUyVgJ+PAcE= Subject key identifier: A4:CB:AD:18:78:18:A2:A3:71:9F:73:22:3D:BE:04:12:56:09:47:C7 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 1A4BE5C7C0CB202759CA4396B94CE3757E0BEA7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft Manifest number: FB Signing time: Sun 07 Dec 2025 12:41:12 +0000 Manifest this update: Sun 07 Dec 2025 12:36:12 +0000 Manifest next update: Wed 10 Dec 2025 13:33:12 +0000 Files and hashes: 1: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (hash: Z2FYRByoR87CHEnziWjFnKQyuENb6OACYT6R1ULlqwE=) 2: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (hash: t349gF8xh8M32UG8Ruer+VIkvNUKNNfdFe/xLjKGLjs=) 3: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (hash: Gr1mlE+rzWEpOTNh6WPoTj4w/1KCxiBabRIKttXDzDg=) 4: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl (hash: dpLlAYjL4gdFJqV5723FCjKSzwjlexTVAPDFNmRIMgM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4b:e5:c7:c0:cb:20:27:59:ca:43:96:b9:4c:e3:75:7e:0b:ea:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: Dec 7 12:36:12 2025 GMT Not After : Dec 10 13:33:12 2025 GMT Subject: CN=A4CBAD187818A2A3719F73223DBE0412560947C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d0:94:d0:8a:1b:df:ef:ff:dc:cb:52:66:c7: 8e:b7:e0:0a:4c:52:94:11:0d:8a:23:54:ab:b2:5c: dd:94:46:9e:28:da:51:f2:b2:15:11:49:ec:43:c2: 3d:52:59:ea:b1:47:7d:f1:85:2f:4d:8d:ec:0e:20: 4d:fc:8a:97:fe:60:9e:ab:fa:c8:38:c3:58:12:b4: 5c:c9:51:ca:1f:75:e0:e1:aa:a8:ce:8c:38:de:84: 4b:a2:32:df:82:04:e2:69:48:fb:08:92:26:c9:d4: 47:65:4c:a8:0d:e6:e8:c7:28:a3:80:b6:b7:a0:92: 06:1c:4c:4c:56:9b:b0:db:5d:21:57:9e:6d:c7:d1: fa:8e:a1:6b:c8:4e:c7:51:c2:59:9c:74:22:c4:1c: 4f:5d:a6:6e:7b:01:dd:27:ac:e5:09:2b:0c:0d:43: bb:68:6c:0b:8d:65:55:8e:07:a4:1d:cd:36:21:af: 4c:85:dd:96:1e:6d:3b:5a:25:17:9b:32:4f:4b:98: c4:83:95:5e:99:98:32:2a:22:8a:c8:af:09:f0:da: da:91:33:20:7d:fd:29:63:79:3a:b2:c9:cd:2d:78: 20:0e:27:0e:90:7e:a6:88:9b:02:62:5e:77:b9:4e: b7:42:ff:30:f9:c2:30:91:70:49:55:b8:e0:8f:0a: 35:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:CB:AD:18:78:18:A2:A3:71:9F:73:22:3D:BE:04:12:56:09:47:C7 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:53:39:eb:22:4d:b6:70:93:cc:c4:10:20:29:c5:0a:e2:e4: e7:94:de:c5:82:89:f0:17:1e:41:4f:d0:e4:1f:89:4c:e6:f1: 3e:3c:a2:e7:f1:97:32:7d:16:04:5e:c3:6e:00:f0:45:b3:fa: e5:10:0c:f0:f1:cb:48:40:46:71:cd:8f:46:d5:98:e0:e1:f1: 7e:d6:88:6b:de:c8:0c:f4:73:c5:dd:de:55:6a:06:52:c9:ac: af:cf:fb:04:58:d8:6a:05:fb:a5:81:bd:7b:8b:e9:6d:ca:bb: 3d:93:80:b7:f0:fc:18:ee:d5:29:5e:36:75:c3:e5:71:35:ed: 16:9f:2b:f6:ec:91:9c:ee:26:c5:7b:da:d5:11:91:86:ce:0f: 85:76:e6:d3:7b:0c:a1:7d:cb:8b:19:66:aa:34:f9:9f:b1:32: 9e:8d:46:1a:c5:3b:62:e9:54:d8:c5:be:3d:e9:b3:9a:57:e3: 7e:07:49:a3:b4:b1:c1:c2:9a:3f:08:3e:16:75:b8:08:0b:a1: ca:23:b3:72:d4:17:60:3c:18:d3:22:ce:6a:6b:66:18:8e:ae: bd:14:40:8a:89:cf:65:ed:a5:ba:81:62:2e:66:63:09:c8:c9: 49:16:05:36:1a:c9:fe:53:a6:40:b1:b8:35:cc:88:99:70:37: 45:de:80:f1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGkvlx8DLICdZykOWuUzjdX4L6nwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNTEyMDcxMjM2MTJaFw0yNTEyMTAxMzMzMTJaMDMxMTAvBgNV BAMTKEE0Q0JBRDE4NzgxOEEyQTM3MTlGNzMyMjNEQkUwNDEyNTYwOTQ3QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq0JTQihvf7//cy1Jmx4634ApM UpQRDYojVKuyXN2URp4o2lHyshURSexDwj1SWeqxR33xhS9NjewOIE38ipf+YJ6r +sg4w1gStFzJUcofdeDhqqjOjDjehEuiMt+CBOJpSPsIkibJ1EdlTKgN5ujHKKOA tregkgYcTExWm7DbXSFXnm3H0fqOoWvITsdRwlmcdCLEHE9dpm57Ad0nrOUJKwwN Q7tobAuNZVWOB6QdzTYhr0yF3ZYebTtaJRebMk9LmMSDlV6ZmDIqIorIrwnw2tqR MyB9/SljeTqyyc0teCAOJw6QfqaImwJiXne5TrdC/zD5wjCRcElVuOCPCjUzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpMutGHgYoqNxn3MiPb4EElYJR8cwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjM2MDY2ZTgtOGUxOS00ZGU3LTk0 N2ItOTRlZTNjZDA5Zjg1LzAvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdE OTYzNjE4MjMxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHhTOesiTbZwk8zEECApxQri5OeU3sWCifAX HkFP0OQfiUzm8T48oufxlzJ9FgRew24A8EWz+uUQDPDxy0hARnHNj0bVmODh8X7W iGveyAz0c8Xd3lVqBlLJrK/P+wRY2GoF+6WBvXuL6W3Kuz2TgLfw/Bju1SleNnXD 5XE17RafK/bskZzuJsV72tURkYbOD4V25tN7DKF9y4sZZqo0+Z+xMp6NRhrFO2Lp VNjFvj3ps5pX434HSaO0scHCmj8IPhZ1uAgLocojs3LUF2A8GNMizmprZhiOrr0U QIqJz2XtpbqBYi5mYwnIyUkWBTYayf5TpkCxuDXMiJlwN0XegPE= -----END CERTIFICATE-----Generated at Sun Dec 7 18:56:49 2025 by rpki-client