This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: CC24eAYaM60l6qPgLJYmNou0xo0igEP9b0Y8yRadaM0= Subject key identifier: 01:EA:2E:2E:1B:C5:89:CE:E3:D5:FC:47:56:38:EC:06:A4:19:C4:53 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 6D5B608DC2D6E62966EC47BC54931CA143CE232C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0200 Signing time: Thu 11 Dec 2025 16:22:23 +0000 Manifest this update: Thu 11 Dec 2025 16:17:23 +0000 Manifest next update: Mon 15 Dec 2025 01:28:23 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: TEH08JBdK7uS2JMB5VCjJSoWBzlaXU882XrWSIJTMYs=) 2: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 3: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 4: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 01:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:5b:60:8d:c2:d6:e6:29:66:ec:47:bc:54:93:1c:a1:43:ce:23:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Dec 11 16:17:23 2025 GMT Not After : Dec 15 01:28:23 2025 GMT Subject: CN=01EA2E2E1BC589CEE3D5FC475638EC06A419C453 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:30:f7:f0:52:b3:2d:f0:9f:a8:80:b4:40: e4:81:e9:70:8c:ee:2e:80:3e:30:fe:d4:ce:0c:38: 5b:42:46:1f:c3:db:15:78:08:e2:6c:ae:b6:11:ac: 80:8f:01:07:e1:76:1c:e8:19:b8:b4:22:13:8c:ac: bc:8e:a0:d4:a8:55:8c:c9:20:3b:42:8f:d2:0a:59: f6:fb:93:99:ad:eb:a1:4e:06:8f:41:4d:a2:4f:d0: 51:35:5c:c4:d3:b2:bc:86:9a:70:32:5f:bf:87:ac: 2e:17:61:fb:e3:60:7e:14:bc:2a:7e:25:c7:6d:d1: cf:c1:1e:0c:32:08:18:11:c8:03:2d:21:69:a0:7d: 85:fe:32:d7:64:e4:5c:fe:64:c0:9e:35:58:20:d7: d3:b0:83:97:5f:5d:b2:4b:f4:e9:51:e8:13:e6:61: 6d:8d:13:9f:42:19:80:70:a1:7a:a9:3d:df:f8:8c: 8a:d0:4a:e5:06:88:7b:7b:05:80:14:29:f9:f0:ea: db:de:2d:bc:93:8a:bc:9f:0b:8f:30:d2:7e:bc:d2: 6f:f4:80:2b:92:c5:a9:bb:a9:79:17:8b:ff:98:22: 43:fd:9b:23:df:c6:8b:d1:aa:29:82:65:da:4f:d5: 93:a3:8d:82:a7:1e:ee:bf:88:76:6f:fc:42:8d:d7: f6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:EA:2E:2E:1B:C5:89:CE:E3:D5:FC:47:56:38:EC:06:A4:19:C4:53 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:87:63:0a:37:93:3a:14:e2:84:73:b7:33:68:81:00:a3:a5: b0:bd:ee:29:9c:10:18:3f:2c:4a:b5:36:33:52:d3:65:78:34: db:b1:41:fc:95:43:57:08:37:db:f2:bb:4f:00:1c:b6:68:71: ec:f8:6b:0d:8f:da:e6:7f:7c:74:75:b7:ab:19:bc:45:64:f6: 70:90:3c:c2:0b:35:89:ef:5e:19:2a:41:e5:1e:a3:36:bd:9f: ba:6d:3c:73:ec:c6:4b:57:30:9d:c3:f4:72:af:de:8c:23:fb: 23:ff:15:bd:32:b0:87:b8:99:de:6d:26:07:a6:b3:0d:b0:a9: ad:32:9d:ac:19:f0:e1:c3:f3:12:b3:8b:ae:98:20:ab:6b:db: f1:17:e0:c7:f5:8c:7a:55:6b:22:ca:dc:8b:da:cf:4b:e5:c9: 44:9c:b7:49:a0:2d:da:4b:42:ec:ad:05:b6:c0:9e:6b:62:4e: f6:9f:ce:21:1c:6d:75:b7:1c:b2:d9:84:ac:a6:5e:40:58:d1: a3:80:fc:6e:0d:96:b2:4d:0d:27:a8:44:e2:1e:1e:d4:c0:e4: 63:77:ee:38:9a:ec:30:b5:58:67:56:ca:13:16:fe:0f:57:d3: 16:05:aa:4b:84:c2:f1:28:5d:fd:81:1e:97:6c:5b:e9:c8:7c: 82:da:7d:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbVtgjcLW5ilm7Ee8VJMcoUPOIywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNTEyMTExNjE3MjNaFw0yNTEyMTUwMTI4MjNaMDMxMTAvBgNV BAMTKDAxRUEyRTJFMUJDNTg5Q0VFM0Q1RkM0NzU2MzhFQzA2QTQxOUM0NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGODD38FKzLfCfqIC0QOSB6XCM 7i6APjD+1M4MOFtCRh/D2xV4COJsrrYRrICPAQfhdhzoGbi0IhOMrLyOoNSoVYzJ IDtCj9IKWfb7k5mt66FOBo9BTaJP0FE1XMTTsryGmnAyX7+HrC4XYfvjYH4UvCp+ Jcdt0c/BHgwyCBgRyAMtIWmgfYX+Mtdk5Fz+ZMCeNVgg19Owg5dfXbJL9OlR6BPm YW2NE59CGYBwoXqpPd/4jIrQSuUGiHt7BYAUKfnw6tveLbyTiryfC48w0n680m/0 gCuSxam7qXkXi/+YIkP9myPfxovRqimCZdpP1ZOjjYKnHu6/iHZv/EKN1/b/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAeouLhvFic7j1fxHVjjsBqQZxFMwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH+HYwo3kzoU4oRztzNogQCjpbC97imcEBg/ LEq1NjNS02V4NNuxQfyVQ1cIN9vyu08AHLZocez4aw2P2uZ/fHR1t6sZvEVk9nCQ PMILNYnvXhkqQeUeoza9n7ptPHPsxktXMJ3D9HKv3owj+yP/Fb0ysIe4md5tJgem sw2wqa0ynawZ8OHD8xKzi66YIKtr2/EX4Mf1jHpVayLK3Ivaz0vlyUSct0mgLdpL QuytBbbAnmtiTvafziEcbXW3HLLZhKymXkBY0aOA/G4NlrJNDSeoROIeHtTA5GN3 7jia7DC1WGdWyhMW/g9X0xYFqkuEwvEoXf2BHpdsW+nIfILafYU= -----END CERTIFICATE-----Generated at Fri Dec 12 01:00:25 2025 by rpki-client