This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: eQfjMtNeE73IykmWnLmel0Kj2fnFplG+pkAJCqIhmHw= Subject key identifier: 72:0A:34:68:76:20:ED:DB:2B:02:BC:8B:BC:0C:F0:43:6D:B6:C7:2B Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 412CC5A205BADDD7BB3F6A38C2E9BEC810610A01 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 01AA Signing time: Sat 24 Jan 2026 18:52:24 +0000 Manifest this update: Sat 24 Jan 2026 18:47:24 +0000 Manifest next update: Wed 28 Jan 2026 06:30:24 +0000 Files and hashes: 1: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 2: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 3: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) 4: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: j85IOtVyzOgh4kx/GKkYTO+ekuCtpHHACJUiczNr6G8=) 5: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 06:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:2c:c5:a2:05:ba:dd:d7:bb:3f:6a:38:c2:e9:be:c8:10:61:0a:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Jan 24 18:47:24 2026 GMT Not After : Jan 28 06:30:24 2026 GMT Subject: CN=720A34687620EDDB2B02BC8BBC0CF0436DB6C72B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:48:50:6f:63:20:b8:6a:4f:c4:f6:89:66:aa: 94:e3:b2:89:e6:af:c9:eb:8e:2a:40:86:66:a6:cf: 0b:2b:07:06:b3:c4:4d:9b:46:84:96:1b:fa:62:3e: 4f:3d:42:ad:31:c3:7a:c3:41:d2:74:9b:58:91:3b: f5:71:3b:21:fb:54:0d:dc:72:e6:1b:d5:67:21:78: 32:43:2a:d2:92:2c:0d:b3:19:2f:7c:94:7f:a2:54: 5d:58:d7:60:9e:0b:ec:0e:18:cd:75:ad:ff:32:13: cd:91:b8:5f:e8:06:52:27:93:72:4f:27:3c:01:49: 01:05:48:23:ed:2e:c7:b4:44:f5:81:1f:dd:6f:76: d9:c8:2e:e5:5c:c1:fa:b7:9f:5c:f7:94:b2:52:5b: b1:7d:ac:cc:c4:b1:ea:ab:61:0e:cd:91:64:10:7a: d0:dd:78:5d:77:02:e1:d5:9f:2c:92:59:22:d3:85: 68:b5:66:8a:37:7b:48:0a:16:bb:d1:e2:bf:a9:e8: a9:d2:25:fd:35:65:60:d4:a7:30:cf:af:b5:3a:17: 47:a3:97:e2:5e:0b:a5:16:fa:21:12:27:bf:31:da: 84:b1:17:8d:66:93:f1:02:b3:c7:73:7a:09:15:37: c1:65:ce:9a:43:94:0f:fb:08:46:ee:19:33:1f:8e: 9d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:0A:34:68:76:20:ED:DB:2B:02:BC:8B:BC:0C:F0:43:6D:B6:C7:2B X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:24:32:41:a5:e4:5d:04:1c:56:d4:06:95:b7:98:e8:fa:b1: 9f:43:b3:26:2f:dd:39:04:83:7f:26:2f:94:15:dc:76:88:c6: 8f:c2:b0:4c:44:a1:4b:c8:a5:ef:bd:4e:3b:8e:30:44:1a:fc: 9b:6b:2e:cc:1b:c4:84:76:2b:db:57:6f:db:97:f7:a4:26:99: 0d:78:6e:2a:37:6b:b3:79:6f:62:3b:4d:eb:62:e1:0d:ff:38: ab:f5:f5:dd:cb:fd:bc:5b:46:35:43:32:11:94:3f:cf:8e:4f: d1:ed:81:9e:a6:39:4e:39:3b:f0:ed:9c:94:7c:f8:f9:f3:b5: 40:dd:1f:39:1c:42:88:29:0a:35:bf:61:db:ae:f7:32:bf:3a: d0:cc:b0:f8:09:6c:97:f7:f4:86:ac:85:f5:7a:42:2d:01:ac: f3:57:16:9f:36:20:1f:81:23:34:d6:c3:1a:a6:d6:c1:52:92: 03:f8:b5:10:2f:8c:63:0b:d3:7a:01:5b:5c:78:45:ea:ae:ff: c6:e1:20:19:63:b6:82:2a:86:92:90:5d:18:f6:8d:a9:17:03: 43:d8:42:b9:00:fa:7a:a6:1a:06:90:b1:00:12:28:d0:08:d2: ad:d9:f0:2a:42:5c:85:49:84:d2:88:70:0b:1e:4b:0d:cb:4e: d4:ba:9f:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQSzFogW63de7P2o4wum+yBBhCgEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNjAxMjQxODQ3MjRaFw0yNjAxMjgwNjMwMjRaMDMxMTAvBgNV BAMTKDcyMEEzNDY4NzYyMEVEREIyQjAyQkM4QkJDMENGMDQzNkRCNkM3MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdSFBvYyC4ak/E9olmqpTjsonm r8nrjipAhmamzwsrBwazxE2bRoSWG/piPk89Qq0xw3rDQdJ0m1iRO/VxOyH7VA3c cuYb1WcheDJDKtKSLA2zGS98lH+iVF1Y12CeC+wOGM11rf8yE82RuF/oBlInk3JP JzwBSQEFSCPtLse0RPWBH91vdtnILuVcwfq3n1z3lLJSW7F9rMzEseqrYQ7NkWQQ etDdeF13AuHVnyySWSLThWi1Zoo3e0gKFrvR4r+p6KnSJf01ZWDUpzDPr7U6F0ej l+JeC6UW+iESJ78x2oSxF41mk/ECs8dzegkVN8FlzppDlA/7CEbuGTMfjp2xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcgo0aHYg7dsrAryLvAzwQ222xyswHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD8kMkGl5F0EHFbUBpW3mOj6sZ9DsyYv3TkE g38mL5QV3HaIxo/CsExEoUvIpe+9TjuOMEQa/JtrLswbxIR2K9tXb9uX96QmmQ14 bio3a7N5b2I7Teti4Q3/OKv19d3L/bxbRjVDMhGUP8+OT9HtgZ6mOU45O/DtnJR8 +PnztUDdHzkcQogpCjW/Yduu9zK/OtDMsPgJbJf39IashfV6Qi0BrPNXFp82IB+B IzTWwxqm1sFSkgP4tRAvjGML03oBW1x4Requ/8bhIBljtoIqhpKQXRj2jakXA0PY QrkA+nqmGgaQsQASKNAI0q3Z8CpCXIVJhNKIcAseSw3LTtS6nxg= -----END CERTIFICATE-----Generated at Sun Jan 25 20:39:47 2026 by rpki-client