This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: aGY79g0pEdEWRUj5rLq59AQpe2LO3kH913kbj8Wv5RA= Subject key identifier: 14:45:29:4E:E5:80:E9:8F:B7:BB:B7:89:2B:98:0F:33:74:FA:64:46 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 23A0AFC3E06505D87800E3B6D712542384C5F9D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: F6 Signing time: Sat 06 Dec 2025 10:30:52 +0000 Manifest this update: Sat 06 Dec 2025 10:25:52 +0000 Manifest next update: Tue 09 Dec 2025 18:52:52 +0000 Files and hashes: 1: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE=) 2: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw=) 3: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: zcvwViMverJd3DXVu0KCCQmm0rnwHlWUZSwWsd5fHXo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a0:af:c3:e0:65:05:d8:78:00:e3:b6:d7:12:54:23:84:c5:f9:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Dec 6 10:25:52 2025 GMT Not After : Dec 9 18:52:52 2025 GMT Subject: CN=1445294EE580E98FB7BBB7892B980F3374FA6446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:f8:70:78:48:2e:f0:b2:66:ac:a9:f9:49: 32:b0:96:77:60:f8:e2:78:4b:84:97:8b:aa:08:ab: 6f:07:0e:b8:0a:1f:83:1f:04:20:3e:8b:e5:ef:d7: 45:c4:e9:39:04:f4:5b:a6:de:a7:66:ae:89:04:a6: 11:f1:27:0b:39:ce:ce:b3:74:28:5d:d4:15:82:6c: f4:9b:cc:e0:88:a2:90:59:64:a7:d0:67:d2:5c:43: bf:ff:62:1b:b9:4c:7d:2b:e3:d2:4c:8b:9f:ad:50: 4d:03:c6:57:f6:27:65:6c:33:eb:80:2c:4e:d2:d3: 40:24:0d:dc:18:b5:e8:87:a4:e9:16:cb:66:f2:52: 2a:12:dc:75:f5:26:e8:b9:28:b4:17:41:3e:24:9e: c6:f5:9c:81:48:71:16:7f:e6:8f:a3:c3:7f:a9:9e: d6:ad:94:7c:67:16:f6:c6:a0:f8:83:20:75:b5:79: 4c:d3:49:64:f4:89:e3:90:35:f3:ae:9d:c9:ac:1b: 6e:bb:94:de:54:e5:c7:8a:af:c9:fb:66:41:e6:cb: cf:b6:c5:9d:5a:0b:c6:27:d2:ee:7d:23:d6:7b:3a: c4:b5:8f:ca:f8:2a:e3:a4:15:9e:0d:4d:76:1c:d9: b9:fa:bb:21:c3:b5:21:36:c7:a3:24:2a:65:e4:c1: f3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:45:29:4E:E5:80:E9:8F:B7:BB:B7:89:2B:98:0F:33:74:FA:64:46 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:5b:ee:f9:95:84:13:6e:26:b3:3c:9f:1b:b3:be:e5:03:a6: 98:8a:3d:ce:7b:4f:9f:55:1e:6a:06:8f:e0:fd:5c:1a:29:d8: 41:e5:c3:54:1d:56:36:8e:70:49:91:11:61:57:33:00:49:87: f3:7a:8e:33:dd:26:d8:de:bb:dc:ff:fa:f1:c7:68:19:47:32: 9a:bc:e5:88:5b:90:5c:21:a7:65:42:c0:60:04:68:7a:c6:5a: 5f:2e:02:0a:78:18:3a:8f:cc:03:35:08:bd:df:95:f5:40:da: 7c:c9:9c:c2:59:94:d6:eb:50:a8:a3:82:b5:d8:0b:c5:f1:5d: 63:7c:5f:e7:ba:07:43:76:b8:57:6b:0b:55:eb:e2:60:a4:6d: 2b:7a:29:35:fe:28:fa:68:4a:17:83:6c:5f:3a:59:ed:39:21: 2f:ec:35:43:ce:70:42:92:c6:a3:b2:f9:05:84:14:af:2d:c9: 57:4c:b7:bf:47:4b:b0:87:76:e2:db:e1:99:48:d6:83:cb:1e: dc:f9:c3:c5:d6:33:0f:33:f8:f7:e2:65:86:9b:cf:85:ff:2c: 6e:42:39:7e:11:9a:6e:71:7e:37:15:26:5a:75:92:c0:28:b2: f7:29:78:59:d1:6a:37:84:62:8d:fa:cf:6c:3b:13:b3:7c:c9: a4:44:fc:dc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI6Cvw+BlBdh4AOO21xJUI4TF+dQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTEyMDYxMDI1NTJaFw0yNTEyMDkxODUyNTJaMDMxMTAvBgNV BAMTKDE0NDUyOTRFRTU4MEU5OEZCN0JCQjc4OTJCOTgwRjMzNzRGQTY0NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCtvhweEgu8LJmrKn5STKwlndg +OJ4S4SXi6oIq28HDrgKH4MfBCA+i+Xv10XE6TkE9Fum3qdmrokEphHxJws5zs6z dChd1BWCbPSbzOCIopBZZKfQZ9JcQ7//Yhu5TH0r49JMi5+tUE0Dxlf2J2VsM+uA LE7S00AkDdwYteiHpOkWy2byUioS3HX1Jui5KLQXQT4knsb1nIFIcRZ/5o+jw3+p ntatlHxnFvbGoPiDIHW1eUzTSWT0ieOQNfOuncmsG267lN5U5ceKr8n7ZkHmy8+2 xZ1aC8Yn0u59I9Z7OsS1j8r4KuOkFZ4NTXYc2bn6uyHDtSE2x6MkKmXkwfNDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFEUpTuWA6Y+3u7eJK5gPM3T6ZEYwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADlb7vmVhBNuJrM8nxuzvuUDppiKPc57T59V HmoGj+D9XBop2EHlw1QdVjaOcEmREWFXMwBJh/N6jjPdJtjeu9z/+vHHaBlHMpq8 5YhbkFwhp2VCwGAEaHrGWl8uAgp4GDqPzAM1CL3flfVA2nzJnMJZlNbrUKijgrXY C8XxXWN8X+e6B0N2uFdrC1Xr4mCkbSt6KTX+KPpoSheDbF86We05IS/sNUPOcEKS xqOy+QWEFK8tyVdMt79HS7CHduLb4ZlI1oPLHtz5w8XWMw8z+PfiZYabz4X/LG5C OX4Rmm5xfjcVJlp1ksAosvcpeFnRajeEYo36z2w7E7N8yaRE/Nw= -----END CERTIFICATE-----Generated at Sun Dec 7 18:53:52 2025 by rpki-client