This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft File: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft (raw, json) Hash identifier: Fd9AL0LXX1S0/P+JjX1NTWptPOpUt+8exSmyCHxxOGk= Subject key identifier: 5C:4B:C2:BB:4E:09:3F:01:4A:48:0E:BF:45:D7:7C:AF:D8:43:21:D7 Authority key identifier: AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 Certificate issuer: /CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Certificate serial: 1F977F161CCF663FF2E8A748F7D73EF09F67D498 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft Manifest number: 02AE Signing time: Wed 03 Dec 2025 10:42:12 +0000 Manifest this update: Wed 03 Dec 2025 10:37:12 +0000 Manifest next update: Sat 06 Dec 2025 20:36:12 +0000 Files and hashes: 1: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl (hash: VN6dSyE+/vAzkmjo52/0P3es2OOtmGybkq9TUPwX8r0=) 2: 3130332e3137322e32332e302f32342d3234203d3e20313437313237.roa (hash: ZUhqRkopz2aAEIpLVfRWO4+f532BAakRUcbL26qkTI0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 20:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:97:7f:16:1c:cf:66:3f:f2:e8:a7:48:f7:d7:3e:f0:9f:67:d4:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Validity Not Before: Dec 3 10:37:12 2025 GMT Not After : Dec 6 20:36:12 2025 GMT Subject: CN=5C4BC2BB4E093F014A480EBF45D77CAFD84321D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:98:81:e9:8f:9a:15:86:70:81:1c:12:4a:e1: eb:54:8a:11:10:d5:30:7d:23:d4:b6:35:3c:7f:44: 02:65:9c:ad:8d:f4:33:27:5d:0c:68:6a:84:d8:7d: 36:17:7f:13:35:c3:3a:09:b8:9b:3a:a9:c7:60:3e: f8:19:20:2a:55:1d:99:c6:ee:1d:a5:2a:32:b6:10: 05:0b:92:08:04:d9:46:d8:f4:39:82:3a:d1:49:57: 6f:ce:ab:5b:be:16:b3:57:6e:59:2b:eb:a8:32:cf: cc:27:d3:2d:5b:40:65:31:a1:4f:27:47:28:c3:49: 59:6e:03:24:cb:98:ef:43:30:5a:6f:e0:20:50:69: cc:76:37:59:51:be:a0:d3:2b:87:c2:f2:dc:96:74: 88:1e:0e:2a:ed:98:0d:dd:9c:f7:70:a7:7a:32:fd: f1:ae:d0:d3:59:0d:17:78:da:06:d7:41:63:9e:44: 79:8a:df:97:c8:d6:bf:c3:ab:02:77:e1:a2:bc:65: 52:21:cd:14:e8:ec:76:12:c9:b8:da:f7:fb:bb:72: 15:87:bf:1a:0a:d3:5f:f7:f9:7c:b4:6b:9d:68:19: 15:d6:df:63:2c:80:a1:41:93:36:d8:57:3c:8a:ae: cb:36:83:c3:ef:15:2f:03:4b:78:9b:a7:29:da:5e: 43:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4B:C2:BB:4E:09:3F:01:4A:48:0E:BF:45:D7:7C:AF:D8:43:21:D7 X509v3 Authority Key Identifier: keyid:AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:a5:02:59:86:d1:8e:56:b7:9a:0a:f1:fd:c5:f3:7e:45:1f: 60:00:aa:da:5f:19:88:af:ff:26:32:c5:b5:cb:ee:f1:4f:e7: 2b:9d:e5:c1:a2:e9:f0:3a:2f:8d:14:7a:53:20:ff:4d:10:0c: c6:dc:03:db:12:5f:ab:1f:8b:15:4a:f6:20:d2:e3:0d:c2:1f: e8:42:70:d1:ae:0f:2d:16:1f:0c:81:47:ea:3a:8d:6a:2f:e3: e6:b1:79:56:38:98:a7:bf:59:b3:62:cf:9e:68:62:c8:43:ca: f5:a4:fa:f3:c4:38:6f:f1:3c:a8:72:f0:36:93:97:38:1f:7d: 0d:5c:39:6d:3b:8b:62:cb:33:4b:0c:a5:4b:35:1f:92:d6:df: b4:75:c9:13:ca:cd:7e:6d:e5:c3:20:65:9b:dc:af:43:f5:92: 05:d3:63:fe:59:fa:bb:ed:20:27:18:7e:52:c6:5e:34:48:8b: 28:03:34:6a:cf:b3:cf:56:d4:64:ab:26:e9:a5:41:d5:ec:fe: be:33:bc:03:3b:58:9c:5b:15:28:f3:17:b7:41:63:34:50:cb: 1e:0d:01:79:c6:78:19:04:50:6b:c5:7c:36:9c:7f:9b:f6:a8: 91:5d:9e:6c:32:10:3d:11:cb:bd:65:03:a4:12:96:9e:af:3e: 02:d6:de:40 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH5d/FhzPZj/y6KdI99c+8J9n1JgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4 MkMzQzJGNjAeFw0yNTEyMDMxMDM3MTJaFw0yNTEyMDYyMDM2MTJaMDMxMTAvBgNV BAMTKDVDNEJDMkJCNEUwOTNGMDE0QTQ4MEVCRjQ1RDc3Q0FGRDg0MzIxRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvmIHpj5oVhnCBHBJK4etUihEQ 1TB9I9S2NTx/RAJlnK2N9DMnXQxoaoTYfTYXfxM1wzoJuJs6qcdgPvgZICpVHZnG 7h2lKjK2EAULkggE2UbY9DmCOtFJV2/Oq1u+FrNXblkr66gyz8wn0y1bQGUxoU8n RyjDSVluAyTLmO9DMFpv4CBQacx2N1lRvqDTK4fC8tyWdIgeDirtmA3dnPdwp3oy /fGu0NNZDRd42gbXQWOeRHmK35fI1r/DqwJ34aK8ZVIhzRTo7HYSybja9/u7chWH vxoK01/3+Xy0a51oGRXW32MsgKFBkzbYVzyKrss2g8PvFS8DS3ibpynaXkMNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXEvCu04JPwFKSA6/Rdd8r9hDIdcwHwYDVR0j BBgwFoAUr5WN4OzoMLLAfBpYzpFf24LDwvYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWRlMGMzOS04NGQ1LTQ0MDUtOTU0ZC00ZDNkNzEyNjkzY2UvMC9BRjk1OERFMEVD RTgzMEIyQzA3QzFBNThDRTkxNUZEQjgyQzNDMkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4MkMz QzJGNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzlkZTBjMzktODRkNS00NDA1LTk1 NGQtNGQzZDcxMjY5M2NlLzAvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVG REI4MkMzQzJGNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC6lAlmG0Y5Wt5oK8f3F835FH2AAqtpfGYiv /yYyxbXL7vFP5yud5cGi6fA6L40UelMg/00QDMbcA9sSX6sfixVK9iDS4w3CH+hC cNGuDy0WHwyBR+o6jWov4+axeVY4mKe/WbNiz55oYshDyvWk+vPEOG/xPKhy8DaT lzgffQ1cOW07i2LLM0sMpUs1H5LW37R1yRPKzX5t5cMgZZvcr0P1kgXTY/5Z+rvt ICcYflLGXjRIiygDNGrPs89W1GSrJumlQdXs/r4zvAM7WJxbFSjzF7dBYzRQyx4N AXnGeBkEUGvFfDacf5v2qJFdnmwyED0Ry71lA6QSlp6vPgLW3kA= -----END CERTIFICATE-----Generated at Wed Dec 3 16:07:05 2025 by rpki-client