This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft File: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft (raw, json) Hash identifier: TjcjEB72WsNxudpWEw5eKZc8PTHHFYdOvRHfEBGxzUU= Subject key identifier: BE:BE:0D:DC:AD:D5:53:E6:0A:DD:8D:B5:EE:E5:76:C7:77:AE:05:EA Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 408784B567EAD97B1D1840ABD42093281F863403 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft Manifest number: 053E Signing time: Sun 25 Jan 2026 06:41:22 +0000 Manifest this update: Sun 25 Jan 2026 06:36:22 +0000 Manifest next update: Wed 28 Jan 2026 17:28:22 +0000 Files and hashes: 1: 3132302e38392e39342e302f32332d3234203d3e203536323333.roa (hash: dkwLIgjutNqyS1fEiwY5jB8EjSSH9/0tY66Lo4b2moY=) 2: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (hash: BlXsQ1QjfVoT6J0SDJFst3KLhMp6LiWyqHWFZlBXj2o=) 3: 3130332e31342e3131302e302f32332d3234203d3e203536323333.roa (hash: tDRK/Vdz8u2hhC9LdyJ4AT+BwDcg/REr12fUhDIA9Bo=) 4: 3130332e3233332e38382e302f32332d3234203d3e203536323333.roa (hash: 7Q0dwA0Rc1pnpyLnXxos7sM1Wj4t+yMR55gSNZ0dsoU=) 5: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (hash: u7MPei7+iN4f1OLKumfeRBmfOe2wgHqRvP7yaGUByuA=) 6: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl (hash: SXK2RkF3BDzHXNASAQU3rgn1NINPSvtAuFn9kiQsYpE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:87:84:b5:67:ea:d9:7b:1d:18:40:ab:d4:20:93:28:1f:86:34:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Jan 25 06:36:22 2026 GMT Not After : Jan 28 17:28:22 2026 GMT Subject: CN=BEBE0DDCADD553E60ADD8DB5EEE576C777AE05EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e6:4b:34:35:af:dd:64:a5:c2:4d:6b:c5:18: fa:69:e4:71:3f:4f:93:0f:e6:f1:38:31:7c:2e:58: c0:20:ac:06:61:5d:37:72:6e:6e:f1:07:0e:55:9c: 7d:3a:ed:fe:0f:ae:ab:23:6c:b1:64:c5:27:0a:4d: 02:f8:91:20:b5:cb:bb:fc:a7:34:29:6a:be:64:88: c5:81:42:1f:22:86:6e:48:f6:4a:e1:3a:c7:57:d6: 2f:a9:ff:06:73:f7:2f:96:74:82:72:a6:f7:be:48: a6:71:77:a9:b8:f1:08:21:78:53:6f:2e:4d:a6:06: 68:2e:65:d2:53:9a:d3:5f:15:55:d3:e4:9a:b2:ae: b2:8b:d4:28:80:aa:d4:ed:76:d0:a6:a1:e3:07:20: d0:ba:ca:52:f0:70:ac:c4:55:76:fc:cb:8a:fe:d3: 5c:34:2f:9e:af:d7:b6:7a:53:e4:c6:eb:37:6a:29: 60:c8:a3:25:c0:93:2c:ef:e7:59:57:2d:ff:f9:88: a4:81:0f:77:d4:d0:67:36:7c:d2:3f:58:e1:ee:24: ae:8e:4f:9f:d7:e5:9a:18:e6:4e:73:cc:9d:89:99: 3f:14:df:7b:3f:40:a3:7b:91:37:2b:8b:a9:41:9c: b5:13:94:2a:da:f2:29:27:9a:1c:33:57:ce:6b:46: 68:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:BE:0D:DC:AD:D5:53:E6:0A:DD:8D:B5:EE:E5:76:C7:77:AE:05:EA X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:09:db:f8:d0:6d:5a:c8:f6:5d:f8:ec:cc:89:dc:4d:0b:1c: 0e:53:22:52:19:93:97:d8:3c:34:a1:dd:31:e8:a2:6e:e0:4f: 21:6f:1d:ed:ec:08:29:bf:b1:30:e0:30:cd:4d:8a:1d:1f:f3: b6:51:93:c8:66:83:49:49:82:40:ec:ba:4d:88:d0:9b:4b:5b: 3c:0c:89:cc:94:f4:ca:7a:96:75:09:32:1a:01:67:30:f4:24: 78:55:52:aa:b1:0d:2c:9f:19:b0:69:ec:b9:c2:73:b7:bc:ee: f9:68:df:54:5e:8f:6a:0a:25:e5:2e:13:01:b8:26:15:cb:b9: ce:02:3c:53:ea:24:e9:72:2c:30:0f:58:c8:35:bb:7b:52:f1: d0:fe:b2:b8:9d:85:49:97:e6:f6:2c:4b:d4:12:c0:00:83:11: 11:88:8c:0e:f9:a5:93:27:d2:a3:6f:4a:73:8b:8c:c8:96:c4: e4:13:5f:96:81:cd:fc:43:8c:24:79:4a:c7:80:13:96:fd:44: 04:fc:4c:87:58:2e:79:48:67:bd:c0:c7:71:41:d9:11:93:4c: 39:26:76:3e:c6:22:aa:ad:19:14:87:7a:c4:12:6a:89:7c:dc: 96:e9:9e:c6:22:f9:6d:c6:cd:96:62:5c:12:93:29:27:0a:c6: 8e:57:a8:70 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQIeEtWfq2XsdGECr1CCTKB+GNAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNjAxMjUwNjM2MjJaFw0yNjAxMjgxNzI4MjJaMDMxMTAvBgNV BAMTKEJFQkUwRERDQURENTUzRTYwQUREOERCNUVFRTU3NkM3NzdBRTA1RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk5ks0Na/dZKXCTWvFGPpp5HE/ T5MP5vE4MXwuWMAgrAZhXTdybm7xBw5VnH067f4PrqsjbLFkxScKTQL4kSC1y7v8 pzQpar5kiMWBQh8ihm5I9krhOsdX1i+p/wZz9y+WdIJypve+SKZxd6m48QgheFNv Lk2mBmguZdJTmtNfFVXT5JqyrrKL1CiAqtTtdtCmoeMHINC6ylLwcKzEVXb8y4r+ 01w0L56v17Z6U+TG6zdqKWDIoyXAkyzv51lXLf/5iKSBD3fU0Gc2fNI/WOHuJK6O T5/X5ZoY5k5zzJ2JmT8U33s/QKN7kTcri6lBnLUTlCra8iknmhwzV85rRmipAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvr4N3K3VU+YK3Y217uV2x3euBeowHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDRmZDRiYzItNDFkNC00MmU2LWE3 ZmYtNTk0OTM4ODUxMjZhLzAvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRC QkVFNTRDQTg1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACoJ2/jQbVrI9l347MyJ3E0LHA5TIlIZk5fY PDSh3THoom7gTyFvHe3sCCm/sTDgMM1Nih0f87ZRk8hmg0lJgkDsuk2I0JtLWzwM icyU9Mp6lnUJMhoBZzD0JHhVUqqxDSyfGbBp7LnCc7e87vlo31Rej2oKJeUuEwG4 JhXLuc4CPFPqJOlyLDAPWMg1u3tS8dD+sridhUmX5vYsS9QSwACDERGIjA75pZMn 0qNvSnOLjMiWxOQTX5aBzfxDjCR5SseAE5b9RAT8TIdYLnlIZ73Ax3FB2RGTTDkm dj7GIqqtGRSHesQSaol83JbpnsYi+W3GzZZiXBKTKScKxo5XqHA= -----END CERTIFICATE-----Generated at Mon Jan 26 01:10:10 2026 by rpki-client