This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft File: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft (raw, json) Hash identifier: f2xLo5YCtRTmz+BUHQKqQ/AE8EhqjP8qBgZa8xvvErA= Subject key identifier: E7:5B:13:C1:F9:65:39:AA:20:84:B0:B7:79:B3:22:83:72:C3:77:CF Authority key identifier: 03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 Certificate issuer: /CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Certificate serial: 1DB6E74B14DDC6F376683CEAA9597D177E0CE724 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft Manifest number: 02B3 Signing time: Sun 25 Jan 2026 06:50:58 +0000 Manifest this update: Sun 25 Jan 2026 06:45:58 +0000 Manifest next update: Wed 28 Jan 2026 18:35:58 +0000 Files and hashes: 1: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl (hash: GIkcxyQ0B6+IQXVaw1kLQzxCyJe/BHAfnRfO45zNgOM=) 2: 3130332e3137382e31322e302f32332d3233203d3e20313437313635.roa (hash: piBMQKLQ4vl4/HEDElryTA2LFV1e3urfPVD8hTuJ8gs=) 3: 3130332e3137382e31332e302f32342d3234203d3e20313437313635.roa (hash: /POUiN3ADeic24fpnR1S95Kh3i2zF8ppbXpuq/ovLcI=) 4: 3130332e3137382e31322e302f32342d3234203d3e20313437313635.roa (hash: sSnxtf8TtC4PO2zmbNaGgHD80ecB0QzT4ZxlEb0ObOM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:b6:e7:4b:14:dd:c6:f3:76:68:3c:ea:a9:59:7d:17:7e:0c:e7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Validity Not Before: Jan 25 06:45:58 2026 GMT Not After : Jan 28 18:35:58 2026 GMT Subject: CN=E75B13C1F96539AA2084B0B779B3228372C377CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d7:91:d8:74:fd:b7:90:ed:0e:98:bc:5c:63: f1:76:5d:ed:ed:10:37:a2:6d:42:5d:a9:01:71:00: b0:cc:ad:fb:5b:76:24:04:66:d0:b8:c3:4e:97:bb: cc:d7:52:68:cd:92:c4:27:83:3f:26:79:b1:99:52: cd:6a:14:32:d2:6d:10:37:39:d7:15:9b:bb:f6:8c: 61:73:23:1f:ab:cd:23:f5:68:f4:5f:c6:a4:68:c3: 7d:d3:88:11:e5:c5:90:2d:9f:3e:54:30:b1:01:48: 72:93:bb:27:ee:d6:0b:73:b8:b1:43:12:b7:89:26: d4:d1:46:ad:27:c9:95:02:05:47:46:57:c1:61:ce: a5:e3:17:a1:82:d2:79:d4:ea:b1:79:8a:e1:e2:d4: b3:58:65:6e:9e:fb:05:af:51:dd:8f:8e:fc:9b:03: 40:ba:b7:d9:44:47:78:8c:98:82:6d:51:5a:8b:00: 39:65:93:89:11:ce:4d:64:32:8e:bc:f1:8c:2f:83: 25:c9:e6:0e:d9:5e:3d:7d:86:7a:9e:a3:c8:55:97: 65:a8:f0:f7:ad:c3:bb:85:e3:f4:85:3a:2b:fe:c6: 0a:68:6b:00:27:99:80:43:e6:b5:ea:f5:7e:63:30: 02:ff:f9:2c:4d:b2:43:8d:eb:8f:b9:9e:cd:69:e3: c0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:5B:13:C1:F9:65:39:AA:20:84:B0:B7:79:B3:22:83:72:C3:77:CF X509v3 Authority Key Identifier: keyid:03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ec:ed:0a:ae:ed:9b:1e:c5:a1:91:a1:66:b3:0b:c9:5f:62:fb: 73:a4:6e:04:92:c1:e1:8e:4f:c3:c0:ad:e1:6e:f9:da:30:7e: a5:0b:ef:9a:27:82:57:7d:4d:de:57:0e:92:ac:f9:d8:63:ab: 8c:a3:40:48:4b:fd:8a:94:6e:68:ed:b6:bf:29:d3:be:bb:8c: de:ef:ec:bd:01:cf:ff:66:84:48:4a:df:d4:ab:83:3f:55:82: bd:c8:8c:1f:d8:f6:ad:b1:a7:77:24:c3:db:a3:57:73:3e:bf: f3:e4:20:14:87:4f:9f:00:65:ab:07:39:0e:c7:fe:d6:24:cf: 4d:5e:ba:ae:41:ed:37:55:2a:82:26:96:6b:64:62:b1:b2:cb: b7:84:57:a2:f3:bd:a4:fe:84:53:fa:0d:84:d5:fa:92:16:77: fe:eb:81:f0:75:2f:9d:11:5f:74:03:c1:f5:28:16:42:53:59: 17:81:2c:fe:c5:7b:63:3c:94:d3:c6:91:fe:58:2c:e5:dd:2b: d3:01:26:b7:79:5a:c9:db:a9:47:27:0c:a4:5d:dd:69:86:b3: 72:2a:bb:0d:9c:f3:8a:7a:f1:9a:ec:a5:8a:59:74:c8:68:93: ad:e5:0c:6f:65:14:70:7e:be:06:e8:94:5c:7e:22:d9:2f:57: c0:a3:83:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHbbnSxTdxvN2aDzqqVl9F34M5yQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFB RTkyNUFFODAeFw0yNjAxMjUwNjQ1NThaFw0yNjAxMjgxODM1NThaMDMxMTAvBgNV BAMTKEU3NUIxM0MxRjk2NTM5QUEyMDg0QjBCNzc5QjMyMjgzNzJDMzc3Q0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB15HYdP23kO0OmLxcY/F2Xe3t EDeibUJdqQFxALDMrftbdiQEZtC4w06Xu8zXUmjNksQngz8mebGZUs1qFDLSbRA3 OdcVm7v2jGFzIx+rzSP1aPRfxqRow33TiBHlxZAtnz5UMLEBSHKTuyfu1gtzuLFD EreJJtTRRq0nyZUCBUdGV8FhzqXjF6GC0nnU6rF5iuHi1LNYZW6e+wWvUd2Pjvyb A0C6t9lER3iMmIJtUVqLADllk4kRzk1kMo688YwvgyXJ5g7ZXj19hnqeo8hVl2Wo 8Petw7uF4/SFOiv+xgpoawAnmYBD5rXq9X5jMAL/+SxNskON64+5ns1p48BHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU51sTwfllOaoghLC3ebMig3LDd88wHwYDVR0j BBgwFoAUAy+o8MbHD00nbvSi6chfaq6SWugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2E3OWQ5NS02NGE5LTQ4MDktOTRiMi02MmRlMjQxOTIyNDUvMC8wMzJGQThGMEM2 QzcwRjREMjc2RUY0QTJFOUM4NUY2QUFFOTI1QUU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFBRTky NUFFOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDNhNzlkOTUtNjRhOS00ODA5LTk0 YjItNjJkZTI0MTkyMjQ1LzAvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVG NkFBRTkyNUFFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOztCq7tmx7FoZGhZrMLyV9i+3OkbgSSweGO T8PAreFu+dowfqUL75ongld9Td5XDpKs+dhjq4yjQEhL/YqUbmjttr8p0767jN7v 7L0Bz/9mhEhK39Srgz9Vgr3IjB/Y9q2xp3ckw9ujV3M+v/PkIBSHT58AZasHOQ7H /tYkz01euq5B7TdVKoImlmtkYrGyy7eEV6LzvaT+hFP6DYTV+pIWd/7rgfB1L50R X3QDwfUoFkJTWReBLP7Fe2M8lNPGkf5YLOXdK9MBJrd5WsnbqUcnDKRd3WmGs3Iq uw2c84p68ZrspYpZdMhok63lDG9lFHB+vgbolFx+ItkvV8Cjg8g= -----END CERTIFICATE-----Generated at Sun Jan 25 20:37:14 2026 by rpki-client