This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: afBjpV7/NG6GZ6h3rUf0BqtLTPHvZ7nxIKGxIHBryQQ= Subject key identifier: 53:62:9B:02:AB:15:9B:6A:3B:12:4A:66:C1:9A:FA:BE:14:78:10:BA Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 0D56E34364908EC3E3600EF1D33903FAEBEA5ED5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 01DF Signing time: Sat 24 Jan 2026 16:22:30 +0000 Manifest this update: Sat 24 Jan 2026 16:17:30 +0000 Manifest next update: Wed 28 Jan 2026 03:28:30 +0000 Files and hashes: 1: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: U3QvM9qWK+TJhBGDojanDKA8oPNCYIB5ZhNuA/z08gw=) 2: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: 96CJnoxRV4HGvhsn3PFsL8qIqJQvuSs5NCO8lzcHZm0=) 3: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: OMSstG+v7qZjFWCJ4NvuRl4cKaVI80js4sry1SoLSN0=) 4: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: Mt50+/p21GOYNepMsG33TuTbCVIy/kBB96/74sqGeIE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 03:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:56:e3:43:64:90:8e:c3:e3:60:0e:f1:d3:39:03:fa:eb:ea:5e:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Jan 24 16:17:30 2026 GMT Not After : Jan 28 03:28:30 2026 GMT Subject: CN=53629B02AB159B6A3B124A66C19AFABE147810BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:39:d3:e9:81:dd:48:2c:e5:64:e5:d8:27:b2: ae:be:78:a7:15:5e:02:f3:13:c5:6e:2f:76:da:3b: 96:13:fc:15:99:37:48:8d:f5:a8:35:f5:86:da:6e: 6c:04:f9:ea:9c:08:5d:93:d1:f6:34:01:ec:e5:8e: 80:8f:5f:10:11:54:6c:29:4b:59:32:a2:98:21:cf: 85:0b:bf:55:2d:b1:87:d8:a2:da:fc:7c:97:6b:64: ca:98:6c:73:a5:ab:13:59:3e:89:f8:4e:5f:24:d5: b5:b4:06:7b:b1:6c:42:c1:6f:8b:f2:91:00:52:95: 18:58:fd:5a:76:ce:0d:0f:0f:81:12:90:91:27:de: 5c:15:ad:8c:dc:1d:2d:48:78:68:04:bc:55:4a:15: ae:71:6d:91:4a:56:ca:b6:15:73:16:fd:66:85:b3: 02:c4:04:5c:35:27:e6:c1:86:93:2d:63:da:b4:5a: 69:b3:44:86:56:e0:00:66:69:5d:7f:7d:a5:4f:25: 39:b3:1b:82:72:76:3a:8d:bb:1c:41:0c:bc:98:22: bb:43:11:87:d0:f5:35:b7:37:ce:25:24:7e:8f:09: 04:e4:17:a2:0a:2a:03:68:31:14:64:d2:b0:65:17: c5:ed:4b:23:8a:da:9d:74:1e:98:7b:e5:02:06:13: 96:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:62:9B:02:AB:15:9B:6A:3B:12:4A:66:C1:9A:FA:BE:14:78:10:BA X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:19:e4:8a:4f:bf:10:fb:ef:7b:43:e2:16:ab:94:0a:2c:19: 69:e5:c7:66:54:31:a8:20:56:c8:a3:83:ff:f6:ed:ed:4f:de: 48:cb:1f:df:78:71:04:a0:71:20:75:6c:e4:a6:3b:c7:95:fa: 65:10:30:73:a5:7e:d4:e5:7e:ea:1a:93:b3:26:a1:11:0c:9f: a3:d2:fe:df:c2:80:0c:b2:6e:aa:45:a6:7c:2b:15:2b:ab:f4: a3:7d:c6:c1:c0:a5:6c:f9:9f:29:51:95:91:92:93:df:27:ec: 1d:08:36:69:cf:71:8a:9a:fd:9a:f5:28:17:0d:d7:08:48:25: c4:83:f9:09:f3:f4:6d:e4:cc:ee:b6:7d:f7:7c:4c:8f:6f:04: a7:39:86:96:57:2c:57:5d:c4:78:a3:ee:e8:6f:d3:50:9d:3e: 04:e8:27:0f:92:cd:3d:6b:d8:4a:47:29:5d:b8:41:b2:e3:45: fa:42:f0:34:92:bd:c2:fa:e8:34:4b:01:1c:62:88:1e:c5:b6: d9:93:04:2d:8a:de:fe:35:66:64:01:29:b7:19:1e:f9:a2:d0: d8:8c:eb:29:98:fd:80:c1:9c:af:81:fb:08:a5:de:74:cd:4c: e6:4c:0c:19:a7:2e:fb:2f:ba:8b:6b:a7:84:97:e4:13:2a:d4: 42:77:ad:39 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDVbjQ2SQjsPjYA7x0zkD+uvqXtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNjAxMjQxNjE3MzBaFw0yNjAxMjgwMzI4MzBaMDMxMTAvBgNV BAMTKDUzNjI5QjAyQUIxNTlCNkEzQjEyNEE2NkMxOUFGQUJFMTQ3ODEwQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeOdPpgd1ILOVk5dgnsq6+eKcV XgLzE8VuL3baO5YT/BWZN0iN9ag19YbabmwE+eqcCF2T0fY0AezljoCPXxARVGwp S1kyopghz4ULv1UtsYfYotr8fJdrZMqYbHOlqxNZPon4Tl8k1bW0BnuxbELBb4vy kQBSlRhY/Vp2zg0PD4ESkJEn3lwVrYzcHS1IeGgEvFVKFa5xbZFKVsq2FXMW/WaF swLEBFw1J+bBhpMtY9q0WmmzRIZW4ABmaV1/faVPJTmzG4JydjqNuxxBDLyYIrtD EYfQ9TW3N84lJH6PCQTkF6IKKgNoMRRk0rBlF8XtSyOK2p10Hph75QIGE5YpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUU2KbAqsVm2o7EkpmwZr6vhR4ELowHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJkZ5IpPvxD773tD4harlAosGWnlx2ZUMagg Vsijg//27e1P3kjLH994cQSgcSB1bOSmO8eV+mUQMHOlftTlfuoak7MmoREMn6PS /t/CgAyybqpFpnwrFSur9KN9xsHApWz5nylRlZGSk98n7B0INmnPcYqa/Zr1KBcN 1whIJcSD+Qnz9G3kzO62ffd8TI9vBKc5hpZXLFddxHij7uhv01CdPgToJw+SzT1r 2EpHKV24QbLjRfpC8DSSvcL66DRLARxiiB7FttmTBC2K3v41ZmQBKbcZHvmi0NiM 6ymY/YDBnK+B+wil3nTNTOZMDBmnLvsvuotrp4SX5BMq1EJ3rTk= -----END CERTIFICATE-----Generated at Sun Jan 25 18:45:50 2026 by rpki-client