This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft File: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft (raw, json) Hash identifier: l4k5pLdbQQ+C+x+KsYbG8VEZ2ieGLA5722+gimykf5A= Subject key identifier: A3:B7:A0:58:A4:02:DB:CE:89:9F:80:95:6D:13:8C:2D:8E:3D:E8:7F Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 76CDE190EC7EA01D8144627A30ECC639D9C0920C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft Manifest number: CD Signing time: Tue 02 Dec 2025 00:02:06 +0000 Manifest this update: Mon 01 Dec 2025 23:57:06 +0000 Manifest next update: Fri 05 Dec 2025 03:02:06 +0000 Files and hashes: 1: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (hash: sRyhu6fDfcemdhV/NAA1n4G4NdnybRSnokvW0ioWtBY=) 2: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (hash: Sds95Ss3ilJlMKDO38Rkj40VQdzRD9GgP564MrRxXGU=) 3: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl (hash: 9iFQEIXpKk7VkysXyo3wcCJ+HXcFFQWrFvahTp89xew=) 4: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (hash: mDFd08tPILLw1T3gAXQau9nwubN6g+t2GLdqlL1NiMc=) 5: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (hash: IGC+YzF7hbNTh+lU4Xp4ZN99v7lUHzjLqU8mpRmWZMw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 03:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:cd:e1:90:ec:7e:a0:1d:81:44:62:7a:30:ec:c6:39:d9:c0:92:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Dec 1 23:57:06 2025 GMT Not After : Dec 5 03:02:06 2025 GMT Subject: CN=A3B7A058A402DBCE899F80956D138C2D8E3DE87F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1e:51:7f:01:c9:3f:bd:c6:f5:dc:42:db:d7: 80:a3:5c:89:c8:5b:6d:95:90:c8:58:90:d5:56:ab: 8e:52:e9:66:52:8c:ee:a5:91:18:16:f4:c3:59:8c: 20:fe:03:e9:2d:18:11:96:43:ce:58:93:a6:f5:11: e5:f5:27:6b:3f:ae:96:6c:ee:f2:0e:07:cd:bb:eb: 90:e8:5f:cd:8b:e5:77:f1:2d:0b:80:2d:1f:42:b2: 52:59:79:ce:58:e6:d6:d2:06:1d:0c:04:6a:9f:9c: cd:97:02:25:23:5e:14:d4:d9:77:b8:6c:bd:78:1d: 94:ca:e0:5f:d0:16:a6:0c:60:93:a1:06:85:7d:f8: c7:a9:6a:b4:88:f5:72:20:cd:cf:7d:fb:0c:be:45: 33:4f:43:f7:d7:25:bc:0e:73:14:f9:1c:b1:df:88: 08:12:e6:1e:30:4c:a4:46:d5:9d:6e:d5:c3:49:2e: 95:1d:01:54:dc:56:0d:bc:9c:28:3f:52:44:a2:b7: 62:fe:5a:6d:a5:f2:b4:df:4d:42:bc:1b:b4:42:99: 14:ab:f9:a1:1a:92:cb:86:5b:ef:a1:1e:e9:8f:50: 8e:92:87:fe:54:de:3c:31:a2:d7:ac:2a:e7:13:f8: e8:f4:a8:0b:1e:f2:d5:be:cb:4b:a7:81:28:e5:8f: 63:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B7:A0:58:A4:02:DB:CE:89:9F:80:95:6D:13:8C:2D:8E:3D:E8:7F X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:3c:34:b7:6d:ea:7e:be:20:0e:6f:a1:db:2a:7f:6a:ce:30: 32:33:82:8c:56:cc:f0:b1:a7:dc:91:27:19:c9:c1:cb:65:99: bb:aa:fd:26:2a:9f:aa:91:37:8b:4c:9a:db:bf:72:90:bc:88: a0:3c:c5:9f:19:9e:63:89:3c:53:49:8a:c4:2e:49:b2:66:58: 8e:99:ff:a1:bb:00:f6:cc:63:77:9a:19:c2:ed:98:68:78:73: b9:9b:ed:38:64:cc:87:ac:0f:cc:a3:11:b2:e7:18:70:99:87: 9a:55:17:a4:19:ff:0d:28:c8:e3:90:95:85:ac:51:95:c5:e3: 85:5b:5d:a5:38:5b:96:9f:e2:3b:fe:50:a5:07:ed:81:6c:d2: f6:77:6e:26:84:4e:01:b4:76:6d:09:9b:cb:3b:8d:a2:69:89: ee:19:5b:90:3a:bf:40:8f:d8:73:4e:d0:a0:1f:9a:1e:05:01: 20:8e:17:51:cf:38:bd:a4:d2:57:79:02:c8:e7:24:f8:a4:83: d8:b8:52:45:45:2b:3e:4c:6e:4d:8e:c4:55:08:b3:f6:5b:42: 7f:b9:15:25:43:34:9d:d3:c5:70:d8:ed:a7:6a:8f:bf:d1:77: c7:67:81:c0:e8:0c:15:47:09:e3:c0:1b:6d:88:ac:55:d9:c8: ca:b7:89:20 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUds3hkOx+oB2BRGJ6MOzGOdnAkgwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNTEyMDEyMzU3MDZaFw0yNTEyMDUwMzAyMDZaMDMxMTAvBgNV BAMTKEEzQjdBMDU4QTQwMkRCQ0U4OTlGODA5NTZEMTM4QzJEOEUzREU4N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnHlF/Ack/vcb13ELb14CjXInI W22VkMhYkNVWq45S6WZSjO6lkRgW9MNZjCD+A+ktGBGWQ85Yk6b1EeX1J2s/rpZs 7vIOB82765DoX82L5XfxLQuALR9CslJZec5Y5tbSBh0MBGqfnM2XAiUjXhTU2Xe4 bL14HZTK4F/QFqYMYJOhBoV9+MeparSI9XIgzc99+wy+RTNPQ/fXJbwOcxT5HLHf iAgS5h4wTKRG1Z1u1cNJLpUdAVTcVg28nCg/UkSit2L+Wm2l8rTfTUK8G7RCmRSr +aEaksuGW++hHumPUI6Sh/5U3jwxotesKucT+Oj0qAse8tW+y0ungSjlj2OlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo7egWKQC286Jn4CVbROMLY496H8wHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDZjOGIzYTktNGVmZi00NjBkLWIw MWQtNmJhNWQ5OWRhZGI5LzAvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcx MTQzNEM0OEFGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHM8NLdt6n6+IA5vodsqf2rOMDIzgoxWzPCx p9yRJxnJwctlmbuq/SYqn6qRN4tMmtu/cpC8iKA8xZ8ZnmOJPFNJisQuSbJmWI6Z /6G7APbMY3eaGcLtmGh4c7mb7ThkzIesD8yjEbLnGHCZh5pVF6QZ/w0oyOOQlYWs UZXF44VbXaU4W5af4jv+UKUH7YFs0vZ3biaETgG0dm0Jm8s7jaJpie4ZW5A6v0CP 2HNO0KAfmh4FASCOF1HPOL2k0ld5AsjnJPikg9i4UkVFKz5Mbk2OxFUIs/ZbQn+5 FSVDNJ3TxXDY7adqj7/Rd8dngcDoDBVHCePAG22IrFXZyMq3iSA= -----END CERTIFICATE-----Generated at Wed Dec 3 13:56:35 2025 by rpki-client