This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft File: 43A0899A11D5A51202F1304338672AF19B201A74.mft (raw, json) Hash identifier: joir+TxGXuVEtWvhifUinttDAjZ6C6e2NDQH4xTapzw= Subject key identifier: 11:D7:7B:F5:4A:00:D3:B6:C9:EE:48:B9:FA:2B:E8:36:56:E0:EB:A0 Authority key identifier: 43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 Certificate issuer: /CN=43A0899A11D5A51202F1304338672AF19B201A74 Certificate serial: 1B12F0AE2C6E97D82EC37768F993CC603B97EFAC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft Manifest number: 041B Signing time: Sat 24 Jan 2026 17:12:12 +0000 Manifest this update: Sat 24 Jan 2026 17:07:12 +0000 Manifest next update: Tue 27 Jan 2026 22:08:12 +0000 Files and hashes: 1: 3130332e32392e3231322e302f32322d3234203d3e203538333737.roa (hash: YYshjWJChQ7GjjLm5x5OoEwBOuUfUWvc0tdshb8NzOU=) 2: 43A0899A11D5A51202F1304338672AF19B201A74.crl (hash: 0j3dx6F6JXjOWwkoJMKLia+NwPldhj/3FRJDbrh3Pjg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:08:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:12:f0:ae:2c:6e:97:d8:2e:c3:77:68:f9:93:cc:60:3b:97:ef:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43A0899A11D5A51202F1304338672AF19B201A74 Validity Not Before: Jan 24 17:07:12 2026 GMT Not After : Jan 27 22:08:12 2026 GMT Subject: CN=11D77BF54A00D3B6C9EE48B9FA2BE83656E0EBA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9b:3f:49:0e:98:25:f3:72:c3:16:d7:76:86: c1:da:d5:70:05:d6:68:c8:de:a4:7c:2e:29:98:d4: 1d:02:b0:cb:7b:c3:2e:f6:7b:0d:10:51:f8:1b:90: 51:70:c2:8d:51:85:20:99:b6:e1:31:67:23:54:63: e1:bb:cf:02:6a:e2:5f:c1:4d:ed:93:22:c0:88:57: 0d:09:ca:bf:aa:d5:92:d9:be:2b:75:07:ce:2c:11: 16:0f:69:2e:4d:57:6c:86:5d:14:69:33:4d:85:1e: 28:2c:48:9f:ab:72:d7:91:0e:3e:8d:15:aa:ab:90: 4f:da:b6:1a:7a:d6:42:82:94:aa:17:13:51:73:3a: 85:dc:5d:ee:98:55:41:0a:e5:d1:bd:65:65:f9:4a: f1:30:15:e6:b0:54:44:93:5f:ee:54:2c:73:1c:87: 06:a6:e1:df:7e:61:24:89:6d:ba:fd:17:65:95:f9: 96:84:2c:2e:5c:1a:23:f6:0e:6e:65:16:60:fc:61: ef:9f:14:99:f3:7a:53:03:f3:43:c5:36:60:85:bd: ea:96:f5:74:79:c8:37:15:7b:b6:0c:a2:ba:06:3a: 59:33:ba:b7:78:66:a0:98:cd:58:a6:06:ea:45:03: f2:a7:ef:5e:e0:59:fd:9b:4b:fe:91:46:b5:59:3d: 10:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D7:7B:F5:4A:00:D3:B6:C9:EE:48:B9:FA:2B:E8:36:56:E0:EB:A0 X509v3 Authority Key Identifier: keyid:43:A0:89:9A:11:D5:A5:12:02:F1:30:43:38:67:2A:F1:9B:20:1A:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/43A0899A11D5A51202F1304338672AF19B201A74.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0401b2d1-01ca-40e8-bf77-986159867a04/0/43A0899A11D5A51202F1304338672AF19B201A74.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d4:2d:d2:e9:50:03:c8:21:15:53:4f:75:a1:44:8f:ff:33: 00:c7:c1:13:10:be:30:3a:81:be:d7:ed:ed:bc:eb:9f:2f:76: cb:bb:92:0d:7d:6a:11:8f:f3:d9:33:11:04:9d:c1:a9:ca:19: 54:6e:72:b3:5d:85:2c:36:58:c8:02:58:22:69:ab:5c:d4:93: 26:df:2d:0d:3c:fa:ab:d7:4f:4d:45:43:35:6c:06:f7:f8:d9: 99:e9:69:4d:b1:c8:41:6b:e4:ce:de:c9:36:89:35:76:d2:2b: ed:ab:1f:df:fd:c9:98:e0:04:ab:4d:ad:42:32:3d:c6:8c:1b: 1e:e2:77:17:43:a2:66:fc:cc:2d:97:92:cd:c1:34:52:6f:6c: 8d:10:c5:d4:db:a7:cd:fc:8c:60:51:af:c8:e4:91:fe:b2:4e: c9:bb:20:b5:cc:a5:df:ba:f2:d7:47:74:4e:f7:1b:e0:15:8b: 96:88:d6:4d:e7:a6:3c:c7:2d:40:8c:bf:77:dd:6d:ad:2b:98: 00:63:4e:cf:dc:9e:e5:36:61:50:34:77:72:7c:b9:8d:53:53: 73:bd:00:2a:14:77:c8:54:5d:bd:25:94:c7:cf:d4:79:c5:68: 12:b6:8e:67:01:70:a0:ec:05:8e:d8:8b:e3:9d:60:c6:10:79: 6b:f5:c7:52 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGxLwrixul9guw3do+ZPMYDuX76wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5 QjIwMUE3NDAeFw0yNjAxMjQxNzA3MTJaFw0yNjAxMjcyMjA4MTJaMDMxMTAvBgNV BAMTKDExRDc3QkY1NEEwMEQzQjZDOUVFNDhCOUZBMkJFODM2NTZFMEVCQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdmz9JDpgl83LDFtd2hsHa1XAF 1mjI3qR8LimY1B0CsMt7wy72ew0QUfgbkFFwwo1RhSCZtuExZyNUY+G7zwJq4l/B Te2TIsCIVw0Jyr+q1ZLZvit1B84sERYPaS5NV2yGXRRpM02FHigsSJ+rcteRDj6N FaqrkE/athp61kKClKoXE1FzOoXcXe6YVUEK5dG9ZWX5SvEwFeawVESTX+5ULHMc hwam4d9+YSSJbbr9F2WV+ZaELC5cGiP2Dm5lFmD8Ye+fFJnzelMD80PFNmCFveqW 9XR5yDcVe7YMoroGOlkzurd4ZqCYzVimBupFA/Kn717gWf2bS/6RRrVZPRBpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEdd79UoA07bJ7ki5+ivoNlbg66AwHwYDVR0j BBgwFoAUQ6CJmhHVpRIC8TBDOGcq8ZsgGnQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDAxYjJkMS0wMWNhLTQwZTgtYmY3Ny05ODYxNTk4NjdhMDQvMC80M0EwODk5QTEx RDVBNTEyMDJGMTMwNDMzODY3MkFGMTlCMjAxQTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJBRjE5QjIw MUE3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDQwMWIyZDEtMDFjYS00MGU4LWJm NzctOTg2MTU5ODY3YTA0LzAvNDNBMDg5OUExMUQ1QTUxMjAyRjEzMDQzMzg2NzJB RjE5QjIwMUE3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACrULdLpUAPIIRVTT3WhRI//MwDHwRMQvjA6 gb7X7e28658vdsu7kg19ahGP89kzEQSdwanKGVRucrNdhSw2WMgCWCJpq1zUkybf LQ08+qvXT01FQzVsBvf42ZnpaU2xyEFr5M7eyTaJNXbSK+2rH9/9yZjgBKtNrUIy PcaMGx7idxdDomb8zC2Xks3BNFJvbI0QxdTbp838jGBRr8jkkf6yTsm7ILXMpd+6 8tdHdE73G+AVi5aI1k3npjzHLUCMv3fdba0rmABjTs/cnuU2YVA0d3J8uY1TU3O9 ACoUd8hUXb0llMfP1HnFaBK2jmcBcKDsBY7Yi+OdYMYQeWv1x1I= -----END CERTIFICATE-----Generated at Sun Jan 25 18:37:05 2026 by rpki-client