This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft File: B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft (raw, json) Hash identifier: SqUs3sU58JrDnoCk0fPXDU3ibGCU2fA+rNnoqL0HUck= Subject key identifier: 65:07:FC:C3:FA:B5:09:92:8B:9B:77:54:6C:B9:B5:3B:F3:14:53:D9 Authority key identifier: B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 Certificate issuer: /CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Certificate serial: 77BFCC305BC593070C3126DC27DC9887D5308C7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft Manifest number: 01CC Signing time: Thu 20 Nov 2025 22:11:13 +0000 Manifest this update: Thu 20 Nov 2025 22:06:13 +0000 Manifest next update: Mon 24 Nov 2025 06:54:13 +0000 Files and hashes: 1: B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl (hash: B+h3q2RIzB4beGB+HbcXK1CF0Su3+Z+RyqKy631uOt4=) 2: 3230322e3135392e39362e302f31392d3234203d3e2039333430.roa (hash: 4CYpX855PsKjE7pRqG0I65N8tDE2yevHm2JcGXCxF84=) 3: 3230322e35332e3232342e302f31392d3234203d3e2039333430.roa (hash: cxySA+7GoKy0ZBQ953Jz7wXFE+7U1S6vU/NAFozpO4w=) 4: 3230322e3135392e35302e302f32332d3234203d3e203435373239.roa (hash: 7LPe2lEj9jSSghBzwzWvEJHD1rdTalK2jKZeyt7h7R0=) 5: 3230322e3135332e3232342e302f31392d3234203d3e2039333430.roa (hash: vY8tbOcXriyCtT6FUxDmURMpeDa3xL/alWeAEYVK8DM=) 6: 3131372e35342e302e302f31362d3234203d3e2039333430.roa (hash: UieSxZjEvKIMrWcJdH2TDXUustdkDqF4w0J/hh4yLRA=) 7: 3230322e3135392e302e302f31382d3234203d3e2039333430.roa (hash: Juur4GxLWpPp32FXP5B1lQD8F+2wWzZU/lQ5cSimSag=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Nov 2025 06:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:bf:cc:30:5b:c5:93:07:0c:31:26:dc:27:dc:98:87:d5:30:8c:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308 Validity Not Before: Nov 20 22:06:13 2025 GMT Not After : Nov 24 06:54:13 2025 GMT Subject: CN=6507FCC3FAB509928B9B77546CB9B53BF31453D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:97:03:c3:78:f7:ad:05:9c:24:9f:a0:25:54: 28:c4:6d:be:ca:c9:61:4c:ba:93:12:a1:54:2e:8e: 51:a3:3c:62:93:f1:c6:8b:95:9d:70:94:2f:08:a6: ad:9a:3d:7c:df:3c:63:ab:e6:80:20:7f:bb:48:01: 59:80:8f:6c:f8:7f:0e:06:56:d0:bb:ff:5e:f0:97: 1d:33:73:89:7b:b6:3d:fb:37:f6:5c:b4:78:14:18: 20:51:44:21:cf:18:15:dd:48:82:39:94:ce:1b:41: dc:66:df:4a:ce:54:df:1c:f8:7e:a5:a2:f2:f7:00: 5d:f1:0a:45:38:b8:bc:75:fd:d4:5b:b2:3d:ce:8b: 45:8a:4e:be:96:df:53:c0:ed:c8:22:5a:63:60:a0: bf:db:a4:4d:55:87:ff:63:41:db:0b:d4:7e:e3:ee: 9d:64:d9:30:f9:a7:e2:06:5d:32:36:c6:58:f1:06: f7:63:40:03:f9:19:72:f1:62:b5:08:75:e0:a6:e1: 53:f0:5c:46:74:54:40:73:d0:03:6c:96:ed:34:e2: 60:c5:3f:a6:ed:42:37:3e:e6:fd:29:18:be:5a:6f: 0f:8d:33:fe:bc:ed:dd:a9:25:bc:e3:69:a8:f5:95: 7d:a1:d8:b8:a9:6c:34:aa:b1:db:25:43:c0:f0:21: 65:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:07:FC:C3:FA:B5:09:92:8B:9B:77:54:6C:B9:B5:3B:F3:14:53:D9 X509v3 Authority Key Identifier: keyid:B8:C2:A2:B1:B2:11:64:AF:8E:AE:E3:87:C7:D9:A5:D9:4D:4F:83:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/B8C2A2B1B21164AF8EAEE387C7D9A5D94D4F8308.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:59:dd:a3:4c:88:45:f9:94:df:4d:4a:36:53:f3:da:0a:64: b2:18:b5:4b:2d:06:47:a9:3b:88:a9:26:92:a9:cb:f2:34:fc: 49:df:b7:d1:4c:16:10:4d:1e:77:76:48:ca:be:c0:3e:00:ad: b2:4c:08:75:7b:0f:b2:3f:a0:25:b9:16:dd:e2:80:86:23:aa: 2b:42:2b:ba:aa:4a:8f:34:f6:6f:86:ef:5a:09:9c:9f:66:63: e5:0f:99:25:57:c6:c9:32:02:06:7e:28:45:c9:6c:6b:0e:20: bd:48:40:b8:96:99:e4:46:27:80:fd:da:dd:d7:51:2b:89:32: 59:e2:a9:6d:26:59:2a:87:dd:d8:a9:02:31:7c:4d:85:d5:de: a6:ef:2e:b9:13:66:46:0d:bf:9b:25:d3:42:ba:c3:d3:49:7f: 8a:0f:ae:26:2b:62:37:8e:41:86:16:e4:c4:5d:b2:3d:c3:70: 11:f7:04:7e:c0:50:72:2f:bf:ac:86:35:13:1f:44:4e:5c:9e: 04:ac:eb:ca:45:ee:cf:5b:2a:6e:fe:c7:66:5e:e2:39:2e:77: 1c:bc:23:ba:1d:d6:62:47:5e:7b:a1:fd:b2:99:09:97:d1:e2: 1d:a8:79:d0:56:fb:b6:eb:8e:b7:27:12:c7:51:5c:7e:75:e2: f7:02:0e:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd7/MMFvFkwcMMSbcJ9yYh9UwjH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0 RDRGODMwODAeFw0yNTExMjAyMjA2MTNaFw0yNTExMjQwNjU0MTNaMDMxMTAvBgNV BAMTKDY1MDdGQ0MzRkFCNTA5OTI4QjlCNzc1NDZDQjlCNTNCRjMxNDUzRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQColwPDePetBZwkn6AlVCjEbb7K yWFMupMSoVQujlGjPGKT8caLlZ1wlC8Ipq2aPXzfPGOr5oAgf7tIAVmAj2z4fw4G VtC7/17wlx0zc4l7tj37N/ZctHgUGCBRRCHPGBXdSII5lM4bQdxm30rOVN8c+H6l ovL3AF3xCkU4uLx1/dRbsj3Oi0WKTr6W31PA7cgiWmNgoL/bpE1Vh/9jQdsL1H7j 7p1k2TD5p+IGXTI2xljxBvdjQAP5GXLxYrUIdeCm4VPwXEZ0VEBz0ANslu004mDF P6btQjc+5v0pGL5abw+NM/687d2pJbzjaaj1lX2h2LipbDSqsdslQ8DwIWWtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZQf8w/q1CZKLm3dUbLm1O/MUU9kwHwYDVR0j BBgwFoAUuMKisbIRZK+OruOHx9ml2U1PgwgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NWIxZTU3ZS1hMGYxLTQ2N2YtYTQ2Zi01NWEzMTU3YjBkNjUvMC9COEMyQTJCMUIy MTE2NEFGOEVBRUUzODdDN0Q5QTVEOTRENEY4MzA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1RDk0RDRG ODMwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTViMWU1N2UtYTBmMS00NjdmLWE0 NmYtNTVhMzE1N2IwZDY1LzAvQjhDMkEyQjFCMjExNjRBRjhFQUVFMzg3QzdEOUE1 RDk0RDRGODMwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACdZ3aNMiEX5lN9NSjZT89oKZLIYtUstBkep O4ipJpKpy/I0/Enft9FMFhBNHnd2SMq+wD4ArbJMCHV7D7I/oCW5Ft3igIYjqitC K7qqSo809m+G71oJnJ9mY+UPmSVXxskyAgZ+KEXJbGsOIL1IQLiWmeRGJ4D92t3X USuJMlniqW0mWSqH3dipAjF8TYXV3qbvLrkTZkYNv5sl00K6w9NJf4oPriYrYjeO QYYW5MRdsj3DcBH3BH7AUHIvv6yGNRMfRE5cngSs68pF7s9bKm7+x2Ze4jkudxy8 I7od1mJHXnuh/bKZCZfR4h2oedBW+7brjrcnEsdRXH514vcCDtY= -----END CERTIFICATE-----Generated at Fri Nov 21 13:22:58 2025 by rpki-client