This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: hbfJ5xvViuM9TuHML8tbu+xU0NXDlXjRUsuzBi5NIOg= Subject key identifier: 14:A7:D6:03:DC:12:2F:13:1C:B0:73:B2:1F:51:79:CA:E4:21:94:C1 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 5C74CC95833DAF4DFF756B08FE4DE09113CDA16A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 011C Signing time: Sun 25 Jan 2026 07:01:07 +0000 Manifest this update: Sun 25 Jan 2026 06:56:07 +0000 Manifest next update: Wed 28 Jan 2026 08:13:07 +0000 Files and hashes: 1: 3135372e32302e34352e302f32342d3234203d3e20323035343232.roa (hash: 0BKZVYiTiHtgjZEUGoDI40NlGQFEUeOEKE+t8AaJ1+k=) 2: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) 3: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: Ac02XEP2KMyzEY0x2JnVvypIB2+P+Pp4VGEYIZymajo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 08:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:74:cc:95:83:3d:af:4d:ff:75:6b:08:fe:4d:e0:91:13:cd:a1:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Jan 25 06:56:07 2026 GMT Not After : Jan 28 08:13:07 2026 GMT Subject: CN=14A7D603DC122F131CB073B21F5179CAE42194C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f7:e3:3f:cf:16:2e:83:d1:9e:cf:66:a8:78: e2:74:21:9c:67:f2:0e:7b:61:0b:da:c3:6f:a2:19: d9:59:0d:52:39:5a:1e:c8:42:f8:db:06:08:32:c3: b5:2c:b6:f5:34:db:5e:c5:03:70:da:b7:bb:51:ff: 93:ba:10:a1:d0:b0:ad:32:57:4e:d4:94:73:28:fe: f1:da:cf:31:d1:48:e4:3e:29:b7:c7:56:7c:e9:f5: 94:d5:fd:b3:4c:71:17:a0:46:36:06:76:97:30:bb: 5b:ee:2d:5f:bd:94:29:e6:4e:ad:51:ec:f8:74:a8: cf:89:1e:22:83:3f:ab:2a:04:00:09:aa:53:7f:8a: 5e:3f:34:41:2d:1f:e8:8d:09:c4:8d:94:44:a3:50: db:f2:6a:36:e2:84:5c:56:46:3f:f0:d6:43:ee:e8: eb:c9:ae:01:a9:0b:8f:94:74:ba:a8:b1:6a:f4:8b: a7:83:4a:a7:34:bf:8e:64:e7:36:9e:1d:43:6c:3a: c6:d3:b2:3b:f2:52:5a:ab:63:31:82:d4:52:66:9b: a3:2f:22:eb:ea:10:31:37:38:29:68:34:36:fc:73: 95:c8:d3:20:77:6b:18:a8:ea:83:d7:0b:95:05:30: a5:be:22:83:2d:be:a9:58:a1:1b:4e:5f:f6:42:07: b8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:A7:D6:03:DC:12:2F:13:1C:B0:73:B2:1F:51:79:CA:E4:21:94:C1 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:fb:10:00:39:d7:ab:e6:60:be:7d:98:6c:d2:db:1b:f7:37: cd:d0:27:d7:f3:33:2d:c7:3a:1c:09:52:4b:b6:e8:26:b5:df: 5e:93:54:b5:54:02:9f:d3:40:45:f6:17:de:a2:96:d9:d1:63: 33:f6:bc:7f:e6:73:cc:a1:8c:2f:24:eb:90:11:9a:8a:92:b9: 01:76:e0:b9:a2:03:9e:32:eb:02:9e:c3:18:75:a5:06:9b:44: e3:e3:7b:89:1e:16:d3:31:31:bf:81:b6:0f:91:a4:60:e7:ff: e3:5d:76:e3:09:2a:90:d0:93:f5:ef:95:d7:66:d0:a8:07:97: 09:1a:58:71:29:6e:de:b3:eb:fe:1c:1d:39:7a:c6:36:c9:7f: b7:b9:26:23:99:8e:46:ff:e3:ba:28:1e:18:fc:62:0b:87:1c: f1:63:57:32:47:40:fb:7b:20:a5:10:a9:bd:cb:8c:7c:8b:0f: 04:6e:f2:d9:96:b5:ce:5b:be:8a:d7:3d:8d:06:82:9b:28:67: 30:4f:61:49:d0:b3:4e:c9:58:77:fa:ab:b3:c0:97:ed:84:19: a3:63:e5:27:64:59:d9:c6:2e:c4:ad:5a:5b:f9:b8:77:d9:50: e3:93:81:f6:b1:2c:73:89:12:6f:98:0c:d1:3a:7c:7a:50:eb: 5a:44:98:cb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXHTMlYM9r03/dWsI/k3gkRPNoWowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNjAxMjUwNjU2MDdaFw0yNjAxMjgwODEzMDdaMDMxMTAvBgNV BAMTKDE0QTdENjAzREMxMjJGMTMxQ0IwNzNCMjFGNTE3OUNBRTQyMTk0QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR9+M/zxYug9Gez2aoeOJ0IZxn 8g57YQvaw2+iGdlZDVI5Wh7IQvjbBggyw7UstvU0217FA3Dat7tR/5O6EKHQsK0y V07UlHMo/vHazzHRSOQ+KbfHVnzp9ZTV/bNMcRegRjYGdpcwu1vuLV+9lCnmTq1R 7Ph0qM+JHiKDP6sqBAAJqlN/il4/NEEtH+iNCcSNlESjUNvyajbihFxWRj/w1kPu 6OvJrgGpC4+UdLqosWr0i6eDSqc0v45k5zaeHUNsOsbTsjvyUlqrYzGC1FJmm6Mv IuvqEDE3OCloNDb8c5XI0yB3axio6oPXC5UFMKW+IoMtvqlYoRtOX/ZCB7g1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFKfWA9wSLxMcsHOyH1F5yuQhlMEwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEv7EAA516vmYL59mGzS2xv3N83QJ9fzMy3H OhwJUku26Ca1316TVLVUAp/TQEX2F96iltnRYzP2vH/mc8yhjC8k65ARmoqSuQF2 4LmiA54y6wKewxh1pQabROPje4keFtMxMb+Btg+RpGDn/+NdduMJKpDQk/Xvlddm 0KgHlwkaWHEpbt6z6/4cHTl6xjbJf7e5JiOZjkb/47ooHhj8YguHHPFjVzJHQPt7 IKUQqb3LjHyLDwRu8tmWtc5bvorXPY0GgpsoZzBPYUnQs07JWHf6q7PAl+2EGaNj 5SdkWdnGLsStWlv5uHfZUOOTgfaxLHOJEm+YDNE6fHpQ61pEmMs= -----END CERTIFICATE-----Generated at Sun Jan 25 23:55:29 2026 by rpki-client