This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft File: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft (raw, json) Hash identifier: 45PmfXuxWsqcV5YBrRTUtD4J9+0XjvJvmBaHzZhxKWo= Subject key identifier: 47:F0:A8:68:BF:F0:54:98:36:E5:D6:02:0E:7C:D9:9A:29:A2:1C:56 Authority key identifier: 86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 Certificate issuer: /CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Certificate serial: 42A0E65F3B86F55D35E84669D7590A6AA12B99D9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft Manifest number: 75 Signing time: Tue 02 Dec 2025 09:51:44 +0000 Manifest this update: Tue 02 Dec 2025 09:46:44 +0000 Manifest next update: Fri 05 Dec 2025 12:23:44 +0000 Files and hashes: 1: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl (hash: HuY2phYtRgw/M9HsptBPCFJ+J0uKD2SyELEkoe288U0=) 2: 3230322e39302e3139342e302f32342d3234203d3e203435333233.roa (hash: E3gl245QWUOSrRvQIfs41ST6vQLNBujKh2hLnsJBzx8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 12:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a0:e6:5f:3b:86:f5:5d:35:e8:46:69:d7:59:0a:6a:a1:2b:99:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Validity Not Before: Dec 2 09:46:44 2025 GMT Not After : Dec 5 12:23:44 2025 GMT Subject: CN=47F0A868BFF0549836E5D6020E7CD99A29A21C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:81:b5:d0:de:f0:6c:bc:9f:61:7a:31:6b:56: fe:9c:5a:f5:42:f1:24:2e:ce:25:9a:99:23:0c:d8: 5f:b5:69:90:a6:cd:62:cb:47:2d:93:9e:7c:e5:0d: 6c:cb:71:a7:ba:cc:1d:90:bd:f3:c1:35:b2:5b:79: b5:51:26:b7:c8:7d:be:03:32:14:e8:39:16:ab:20: f0:a1:ac:62:86:3a:fb:b7:da:de:71:78:a5:51:7f: 08:c5:85:a0:d9:49:4c:12:f6:f2:09:4a:57:5c:99: 86:ef:c9:e9:dc:7c:cd:1a:82:ba:41:23:06:2a:5b: a3:be:33:9d:8e:cd:a6:38:c3:77:15:3d:f3:17:f2: ed:4b:67:e5:8d:a9:39:89:dc:be:83:91:bc:d8:e6: bb:c7:52:16:8d:c0:ea:5e:56:c8:03:f2:7a:7e:a2: 9a:bf:9f:92:a1:a3:6e:e9:0d:e4:d0:26:a4:b4:59: 44:8b:ce:87:fb:75:d0:95:7f:a9:e2:c8:df:fb:2c: d4:ee:1a:e2:da:f0:2d:3c:1a:70:c4:53:4f:a5:d2: 02:c9:f8:db:e2:fb:ea:11:0e:54:58:f0:2c:da:f9: 31:3d:85:24:83:5a:dc:e1:69:23:72:65:60:52:f4: 9b:8e:9e:dc:7a:af:f7:4a:6a:b5:bc:3a:85:c5:8d: 07:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F0:A8:68:BF:F0:54:98:36:E5:D6:02:0E:7C:D9:9A:29:A2:1C:56 X509v3 Authority Key Identifier: keyid:86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:31:24:64:d9:df:4b:b8:af:2a:9e:42:c9:88:9c:76:11:23: 7e:cd:71:b2:00:9f:5e:b7:d4:fa:9c:e2:bc:ec:d1:f7:42:31: 67:25:6c:c1:aa:84:74:30:93:40:bc:66:c8:56:7d:eb:2f:5f: b0:91:ce:59:c4:a7:db:1e:4d:b5:7a:87:d3:86:58:70:2b:0e: 69:5a:4b:5b:b4:69:a5:84:0d:ca:53:5e:ef:92:02:67:71:40: 63:ef:46:81:57:be:66:c7:2b:04:bf:aa:bb:53:e8:f3:9f:b1: 52:e1:db:dc:b9:d2:87:3d:e1:c3:89:36:1e:b4:99:d9:f9:5d: 8c:98:64:22:2e:2a:31:5c:5e:f1:76:01:2c:54:3e:f3:63:ff: 3b:9a:e2:7a:0f:5a:b9:ab:9c:e1:44:21:90:14:c9:f3:09:cc: ed:3b:5a:17:1d:57:56:52:c8:88:38:83:53:13:64:47:6a:29: df:65:23:cf:d6:94:83:71:28:e5:0f:70:8f:45:fa:44:57:90: 7e:ff:ef:ef:30:4c:fd:ff:6e:1e:0e:1b:e6:f6:59:cb:12:87: ec:63:99:46:00:fc:8a:96:77:44:e6:8f:09:f0:95:db:f8:3c: ba:85:cc:c0:45:81:25:dc:f5:a3:18:52:bd:1d:4d:9d:3e:2a: 74:64:73:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQqDmXzuG9V016EZp11kKaqErmdkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5 NzNENzMwMjAeFw0yNTEyMDIwOTQ2NDRaFw0yNTEyMDUxMjIzNDRaMDMxMTAvBgNV BAMTKDQ3RjBBODY4QkZGMDU0OTgzNkU1RDYwMjBFN0NEOTlBMjlBMjFDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRgbXQ3vBsvJ9hejFrVv6cWvVC 8SQuziWamSMM2F+1aZCmzWLLRy2TnnzlDWzLcae6zB2QvfPBNbJbebVRJrfIfb4D MhToORarIPChrGKGOvu32t5xeKVRfwjFhaDZSUwS9vIJSldcmYbvyencfM0agrpB IwYqW6O+M52OzaY4w3cVPfMX8u1LZ+WNqTmJ3L6DkbzY5rvHUhaNwOpeVsgD8np+ opq/n5Kho27pDeTQJqS0WUSLzof7ddCVf6niyN/7LNTuGuLa8C08GnDEU0+l0gLJ +Nvi++oRDlRY8Cza+TE9hSSDWtzhaSNyZWBS9JuOntx6r/dKarW8OoXFjQc/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUR/CoaL/wVJg25dYCDnzZmimiHFYwHwYDVR0j BBgwFoAUhpTNu1L0rqia9Gylv6WmOZc9cwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2YwMGY4YS01Y2JkLTQ2MGYtYmZjNi1iZDg5NDJiNjUzN2MvMC84Njk0Q0RCQjUy RjRBRUE4OUFGNDZDQTVCRkE1QTYzOTk3M0Q3MzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5NzNE NzMwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGNmMDBmOGEtNWNiZC00NjBmLWJm YzYtYmQ4OTQyYjY1MzdjLzAvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2 Mzk5NzNENzMwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG8xJGTZ30u4ryqeQsmInHYRI37NcbIAn163 1Pqc4rzs0fdCMWclbMGqhHQwk0C8ZshWfesvX7CRzlnEp9seTbV6h9OGWHArDmla S1u0aaWEDcpTXu+SAmdxQGPvRoFXvmbHKwS/qrtT6POfsVLh29y50oc94cOJNh60 mdn5XYyYZCIuKjFcXvF2ASxUPvNj/zua4noPWrmrnOFEIZAUyfMJzO07WhcdV1ZS yIg4g1MTZEdqKd9lI8/WlINxKOUPcI9F+kRXkH7/7+8wTP3/bh4OG+b2WcsSh+xj mUYA/IqWd0Tmjwnwldv4PLqFzMBFgSXc9aMYUr0dTZ0+KnRkc+Y= -----END CERTIFICATE-----Generated at Wed Dec 3 14:57:22 2025 by rpki-client