This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: wqR+5inbjaThKKWFLBB7ZBXOkhNcn8D3szbGC6BJX9U= Subject key identifier: 2E:E7:11:83:C9:8B:78:75:1A:78:5A:35:91:3E:71:E9:A5:29:3D:BE Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 0D59D12D139690CF6485A4EF29A634C5E8BA5484 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 04B7 Signing time: Mon 01 Dec 2025 20:52:23 +0000 Manifest this update: Mon 01 Dec 2025 20:47:23 +0000 Manifest next update: Fri 05 Dec 2025 06:10:23 +0000 Files and hashes: 1: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: 6AKerr7CTq+JgI1ADEb2BbCh6hgeIEYfrN0SbcWpTow=) 2: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0yCL5KXTraWL90iq30pQr9XlRbIvmMrP24hOvDxVdWE=) 3: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: rkHE7dCGWjwiXKSo5AmkFhmGB4j/W88po8KuTJD9fS0=) 4: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: ceA/XjkZTjtckNNE+B0y8t16H7RYtmT+yFrD+MsXpYk=) 5: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: zCUg4ypvv2GlwnHN93OEr6YWYy+0fl7UKwqXyrw+mYs=) 6: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: QKBrvi0RsDMYjSNqwszDPfOesbOlEOIHdE8u3xcyVKM=) 7: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: q/CV3YIPQOm1aZYip5fIR1K9i7bDSVO+nIFF+ycG0Go=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 06:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:59:d1:2d:13:96:90:cf:64:85:a4:ef:29:a6:34:c5:e8:ba:54:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Dec 1 20:47:23 2025 GMT Not After : Dec 5 06:10:23 2025 GMT Subject: CN=2EE71183C98B78751A785A35913E71E9A5293DBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c2:0e:73:1d:9e:e1:d9:31:0b:9c:9f:36:48: 16:b7:36:76:db:ba:2b:44:fa:c5:69:23:63:c8:fd: 5c:a7:71:ed:7f:2f:0e:30:3d:a8:5b:dc:67:60:04: b2:66:8d:24:21:4d:24:40:d8:72:61:49:99:80:96: d1:55:39:d9:98:0b:ed:d0:44:14:3c:bf:cc:80:91: bd:96:8e:76:25:0f:eb:55:5a:2e:67:36:97:e6:b2: 5f:97:64:5d:bc:71:e4:1a:82:40:34:82:e2:c5:f8: 52:6c:ab:90:21:3b:8d:3c:67:f9:b7:15:f6:5b:83: 05:a3:df:de:26:e3:49:45:b7:58:dd:0c:42:11:a4: bf:95:3d:bd:86:bb:92:24:d3:08:2d:ee:cf:28:76: cc:82:5e:64:57:71:b4:61:23:75:d2:5b:c7:f6:67: a2:41:8c:71:5e:db:21:c9:4e:6d:24:ff:59:bc:f7: ac:60:b9:8b:05:ed:1a:a4:9a:bb:89:a9:10:ab:68: 4c:18:68:35:8f:12:d6:22:1d:0a:90:a4:57:b6:c7: 91:b0:aa:16:76:e0:8c:19:5e:05:96:f3:40:15:b0: 4c:f3:b3:9b:5e:38:9c:a9:ba:a6:29:97:24:ee:4f: f3:9b:3a:38:28:ce:42:98:1c:50:ce:54:d8:6f:3d: 63:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:E7:11:83:C9:8B:78:75:1A:78:5A:35:91:3E:71:E9:A5:29:3D:BE X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ff:8a:ce:d6:38:9e:99:91:74:70:1f:76:05:bc:eb:7e:14: 47:58:09:d4:da:c5:b0:6e:1c:d8:b4:89:fe:ff:dc:ee:75:dc: d5:c9:ee:49:9a:76:99:d0:a6:bc:62:89:e3:d8:90:e8:a5:eb: 5c:5d:4f:7d:cf:44:b8:21:66:ad:8f:9e:98:2e:3a:02:83:2c: dc:1b:77:05:08:95:44:ea:ac:b2:18:1c:36:df:a6:6d:27:bf: 09:eb:7f:3a:49:3d:08:f3:6e:fd:5b:9c:c2:8a:58:d0:92:3c: 9b:15:0b:63:5f:b4:e3:b8:a6:3d:60:87:25:9d:e4:fd:58:cf: 7e:89:fc:a9:c6:ed:bb:3f:6f:19:22:e1:ef:63:6f:03:f9:b3: a8:a1:e6:4c:93:7f:cf:81:e8:bc:07:c2:e6:62:ed:70:87:fd: 1c:a3:63:66:3f:35:ea:c2:38:6c:dd:73:9a:98:94:dc:d0:6d: 14:c0:ae:6e:78:d6:9f:e6:4f:7e:60:bd:9e:3c:60:c6:39:f0: 9b:86:90:20:43:29:aa:a0:13:bc:5f:69:5d:0b:0f:cc:db:8e: 5a:34:73:b0:d2:59:93:7c:b7:f4:f9:d1:7e:81:10:41:84:36: 66:77:dd:70:89:dc:44:70:f0:7d:fd:c6:bf:82:73:7c:cb:15: 72:ce:15:9b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDVnRLROWkM9khaTvKaY0xei6VIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTEyMDEyMDQ3MjNaFw0yNTEyMDUwNjEwMjNaMDMxMTAvBgNV BAMTKDJFRTcxMTgzQzk4Qjc4NzUxQTc4NUEzNTkxM0U3MUU5QTUyOTNEQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCowg5zHZ7h2TELnJ82SBa3Nnbb uitE+sVpI2PI/Vynce1/Lw4wPahb3GdgBLJmjSQhTSRA2HJhSZmAltFVOdmYC+3Q RBQ8v8yAkb2WjnYlD+tVWi5nNpfmsl+XZF28ceQagkA0guLF+FJsq5AhO408Z/m3 FfZbgwWj394m40lFt1jdDEIRpL+VPb2Gu5Ik0wgt7s8odsyCXmRXcbRhI3XSW8f2 Z6JBjHFe2yHJTm0k/1m896xguYsF7RqkmruJqRCraEwYaDWPEtYiHQqQpFe2x5Gw qhZ24IwZXgWW80AVsEzzs5teOJypuqYplyTuT/ObOjgozkKYHFDOVNhvPWN3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQULucRg8mLeHUaeFo1kT5x6aUpPb4wHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIv/is7WOJ6ZkXRwH3YFvOt+FEdYCdTaxbBu HNi0if7/3O513NXJ7kmadpnQprxiiePYkOil61xdT33PRLghZq2PnpguOgKDLNwb dwUIlUTqrLIYHDbfpm0nvwnrfzpJPQjzbv1bnMKKWNCSPJsVC2NftOO4pj1ghyWd 5P1Yz36J/KnG7bs/bxki4e9jbwP5s6ih5kyTf8+B6LwHwuZi7XCH/RyjY2Y/NerC OGzdc5qYlNzQbRTArm541p/mT35gvZ48YMY58JuGkCBDKaqgE7xfaV0LD8zbjlo0 c7DSWZN8t/T50X6BEEGENmZ33XCJ3ERw8H39xr+Cc3zLFXLOFZs= -----END CERTIFICATE-----Generated at Wed Dec 3 14:55:08 2025 by rpki-client