This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft File: 20B00D67B048DAE581FE60A498995A27878149A7.mft (raw, json) Hash identifier: 1kGzlW6CAmGIsX1KyEShp+0fQMLAL4c2F5J6w9n9vdg= Subject key identifier: 5D:0D:DD:79:45:05:D3:C2:C6:E4:BE:63:CB:62:BF:8F:6C:88:A1:D9 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 60D5280FDCFD8CBCC8EC205BA3CF278E2E18AA59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft Manifest number: 01E8 Signing time: Wed 03 Dec 2025 05:21:07 +0000 Manifest this update: Wed 03 Dec 2025 05:16:07 +0000 Manifest next update: Sat 06 Dec 2025 14:00:07 +0000 Files and hashes: 1: 3230322e37352e31362e302f32302d3234203d3e203338373834.roa (hash: lK1vUk86W1WWvANWItOKCTii7JITy4ro2D+rSQqdjDY=) 2: 3230322e37352e31362e302f32302d3234203d3e203233393438.roa (hash: 9Zia9o6pZwHOK52NvyDCb/uiHgQl9tsHUexz827si5o=) 3: 3230322e37352e32382e302f32332d3234203d3e20313338383731.roa (hash: gpotogkgRPqhq+iXjlc72dawBwQqgtK3y2i6zL2CYVg=) 4: 323430313a383234303a3a2f33322d3438203d3e203338373834.roa (hash: G8PV7882jIzL7DpesLHcinlC2gFpMWki9wF55ivTArc=) 5: 323430313a383234303a3a2f33322d3438203d3e203233393438.roa (hash: G1GO2xkJddb3+Y/gyc1CuMPONDsxmL8d7VQhnKS/oUM=) 6: 20B00D67B048DAE581FE60A498995A27878149A7.crl (hash: n5LCj0JtiWg9qhiBs5ZWuQp4G2I0lbQI4+nqdv4IG1g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:d5:28:0f:dc:fd:8c:bc:c8:ec:20:5b:a3:cf:27:8e:2e:18:aa:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Dec 3 05:16:07 2025 GMT Not After : Dec 6 14:00:07 2025 GMT Subject: CN=5D0DDD794505D3C2C6E4BE63CB62BF8F6C88A1D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:10:25:9f:44:05:f0:cf:e3:f2:eb:3b:c4:2b: e8:3b:49:cd:72:f1:7b:19:11:78:35:d5:b1:51:ad: c5:64:19:35:64:be:02:e2:53:25:49:21:5d:d1:4d: f2:df:1e:cf:e7:f4:d8:ab:23:7d:15:74:6c:42:33: e5:c6:75:cf:3c:27:33:1d:fc:c5:ba:01:55:cf:0d: 1c:87:a9:af:ac:45:e3:0f:f3:40:f7:17:18:5e:c5: 36:ff:28:4e:7a:59:56:6c:df:45:56:55:16:87:2e: f0:6e:87:bf:d2:e7:3d:33:fd:b4:32:6b:f7:ec:57: be:91:2c:ee:69:0c:dc:28:1b:c2:55:5d:1a:aa:3f: b7:b0:b7:34:2b:89:0c:c3:0f:bd:b6:d8:04:e2:be: 4b:dc:7e:a4:84:00:a2:b6:df:57:08:7b:3b:c8:43: 18:59:2f:62:87:4e:28:69:40:9f:ef:32:68:20:7b: 88:d7:e3:e8:5d:0b:8e:c1:54:c0:f8:b4:ab:3a:73: d2:b4:7f:26:ba:48:1a:8c:ac:e0:f0:b3:f9:c9:7f: 5c:44:47:e1:3f:07:96:20:e1:27:b6:e2:a4:b9:2b: e3:d1:f2:70:5b:2b:51:48:51:60:9a:83:62:56:60: 30:82:7e:a5:fa:28:ed:d3:ec:c4:d8:97:1a:9c:b1: 41:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:0D:DD:79:45:05:D3:C2:C6:E4:BE:63:CB:62:BF:8F:6C:88:A1:D9 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:e3:6f:f7:51:8f:61:f5:28:43:8f:81:08:61:0c:4d:15:c3: 0f:c3:eb:38:e9:c8:9a:08:b5:18:69:00:c3:de:81:3f:41:2d: 02:a9:3c:6f:13:a8:6f:af:f3:14:6b:b7:7e:4f:1e:46:ce:f8: 7e:b3:b5:db:03:2a:e8:b5:d1:8d:ef:92:b2:a8:6b:96:a6:80: 79:80:72:13:ff:8c:0c:c8:47:0d:f9:4a:00:a6:f8:60:3f:1f: 2e:90:d6:8f:d6:25:6b:2d:4f:80:5f:62:e9:ce:09:64:6f:86: bf:41:33:89:92:c5:37:6a:f7:95:d8:51:e7:6c:67:f9:98:15: 65:56:9a:f7:9d:f6:43:bb:80:4d:99:41:12:61:0a:91:b3:77: 8a:80:a0:86:5d:40:4b:61:10:05:ad:7f:f6:0c:65:c7:f0:bc: 38:7e:66:7b:1c:32:44:35:c1:b0:b5:a8:9e:ad:52:ba:1f:bd: 6b:97:8f:d3:5d:4d:de:91:c4:ea:fd:e6:11:f9:86:ac:65:83: 53:f8:84:ac:f8:61:df:94:9d:62:75:a9:88:c3:4e:5e:26:8c: 77:b6:3d:51:3a:e4:d7:53:3c:06:54:4f:d7:1c:7e:27:60:b4: 00:1e:e3:83:75:f7:26:15:64:df:84:b3:38:da:0e:76:69:bd: c6:6e:81:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYNUoD9z9jLzI7CBbo88nji4YqlkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNTEyMDMwNTE2MDdaFw0yNTEyMDYxNDAwMDdaMDMxMTAvBgNV BAMTKDVEMERERDc5NDUwNUQzQzJDNkU0QkU2M0NCNjJCRjhGNkM4OEExRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSECWfRAXwz+Py6zvEK+g7Sc1y 8XsZEXg11bFRrcVkGTVkvgLiUyVJIV3RTfLfHs/n9NirI30VdGxCM+XGdc88JzMd /MW6AVXPDRyHqa+sReMP80D3FxhexTb/KE56WVZs30VWVRaHLvBuh7/S5z0z/bQy a/fsV76RLO5pDNwoG8JVXRqqP7ewtzQriQzDD7222ATivkvcfqSEAKK231cIezvI QxhZL2KHTihpQJ/vMmgge4jX4+hdC47BVMD4tKs6c9K0fya6SBqMrODws/nJf1xE R+E/B5Yg4Se24qS5K+PR8nBbK1FIUWCag2JWYDCCfqX6KO3T7MTYlxqcsUHXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXQ3deUUF08LG5L5jy2K/j2yIodkwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzQ1NDcxMDQtOTM5ZS00MGUzLThm YzgtNDI1MjI2NDIwNDRiLzAvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVB Mjc4NzgxNDlBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADLjb/dRj2H1KEOPgQhhDE0Vww/D6zjpyJoI tRhpAMPegT9BLQKpPG8TqG+v8xRrt35PHkbO+H6ztdsDKui10Y3vkrKoa5amgHmA chP/jAzIRw35SgCm+GA/Hy6Q1o/WJWstT4BfYunOCWRvhr9BM4mSxTdq95XYUeds Z/mYFWVWmved9kO7gE2ZQRJhCpGzd4qAoIZdQEthEAWtf/YMZcfwvDh+ZnscMkQ1 wbC1qJ6tUrofvWuXj9NdTd6RxOr95hH5hqxlg1P4hKz4Yd+UnWJ1qYjDTl4mjHe2 PVE65NdTPAZUT9ccfidgtAAe44N19yYVZN+EszjaDnZpvcZugbk= -----END CERTIFICATE-----Generated at Wed Dec 3 14:58:34 2025 by rpki-client