This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft File: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json) Hash identifier: 5rI6kfWutCuAFFPoK1goWJoBNw1fKSaBPtAE95xLcR0= Subject key identifier: F3:3E:02:AB:64:54:9B:7C:E4:0A:79:37:13:B3:C1:C7:39:38:69:84 Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 402146B7736766D30A6A8C53E265F6ACFEB6151D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft Manifest number: 027B Signing time: Mon 26 Jan 2026 00:11:53 +0000 Manifest this update: Mon 26 Jan 2026 00:06:53 +0000 Manifest next update: Thu 29 Jan 2026 00:18:53 +0000 Files and hashes: 1: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: WJpk6OJhYHyX86ohUUgS9kpJlYQ2ATwwuZvaycGRILQ=) 2: 3130332e3138302e3235302e302f32332d3234203d3e20313439333733.roa (hash: 6+aOTOrAxzWsWipZ2VbdRwlhEyJYsC/PS67oMR2JaEk=) 3: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: hUygR1F36BFXE6jZfKUn6z9xWtDxXwKMMrnfrGbDbrA=) 4: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: FU4m4uM0eOvuHrbeEWpDEWdnGc1mYzPxVGKE41GscXY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:21:46:b7:73:67:66:d3:0a:6a:8c:53:e2:65:f6:ac:fe:b6:15:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: Jan 26 00:06:53 2026 GMT Not After : Jan 29 00:18:53 2026 GMT Subject: CN=F33E02AB64549B7CE40A793713B3C1C739386984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:89:91:c2:32:ed:69:e7:85:58:7c:df:bc:12: 73:f9:93:97:35:49:81:b2:37:d6:fb:68:4e:9f:52: e9:49:7f:b3:f1:f0:df:10:88:e9:db:63:15:d7:75: e3:c8:00:19:b9:70:b4:aa:fe:b8:8f:aa:7e:d0:4a: 32:3c:bd:fa:d8:be:fd:38:58:09:e5:98:0b:3f:b4: 28:f8:5c:eb:20:ed:1a:56:d1:2a:37:14:6d:d1:df: a2:fc:7f:ae:1f:f3:ea:e7:38:2b:ce:7f:c6:6f:5a: 4e:3a:65:f8:ab:2d:bc:89:38:e1:64:f3:55:71:6a: 9b:97:c3:e4:c4:5e:03:2b:07:8c:a8:c1:3a:81:4d: 55:51:06:5e:c6:e5:f2:0e:72:d9:bb:48:03:05:b5: 84:68:5f:7b:11:68:2f:7b:55:06:e2:02:f1:a2:bf: b8:b1:a2:35:43:0f:3e:32:3f:27:d9:4c:e2:51:9f: dd:f2:be:c7:57:4e:ed:86:73:82:26:92:e0:2d:cb: 22:02:8b:b5:b6:b8:27:da:17:88:76:d4:11:a0:19: 1f:f7:7f:29:1e:10:86:29:78:bf:8e:fb:3f:8f:3c: f4:c3:ca:25:6c:d5:11:b7:88:c3:a7:31:df:f2:29: b9:72:d9:83:85:20:44:bc:1e:b8:2c:47:5f:4a:c9: 5f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:3E:02:AB:64:54:9B:7C:E4:0A:79:37:13:B3:C1:C7:39:38:69:84 X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:be:a7:85:da:73:2b:a5:6d:e5:b1:31:b8:39:d6:32:07:32: ef:42:65:5d:c0:ff:d6:d3:f1:14:54:15:45:6c:f2:47:57:da: 80:96:8e:84:f0:65:8a:45:37:ab:c0:82:3c:ee:57:1c:be:e5: df:21:98:6f:7b:59:af:94:14:62:e4:18:36:4f:c8:90:04:fc: c8:d5:ab:40:f2:4f:09:5d:6e:2f:b0:91:b6:72:a9:84:c6:58: 9f:96:9b:79:df:ee:0e:51:b6:c3:91:ef:9e:4d:d8:c0:e9:cb: d7:fa:64:6f:a6:41:88:f0:6e:2a:33:b3:40:30:10:1a:69:9e: 80:75:71:78:35:df:89:59:86:e3:92:16:de:fe:64:87:fb:74: be:4a:c9:43:66:f9:97:79:94:5d:01:75:12:d3:79:52:29:c8: 16:6a:06:3d:48:63:a0:07:48:62:8c:ed:0f:7a:28:23:a1:2d: 56:20:cd:55:e2:d0:9b:77:17:cf:d7:54:c9:39:95:80:e0:88: 3e:c0:e0:7f:b4:6b:b6:63:eb:9d:12:f3:cb:f7:b4:7b:97:b1: ff:f7:2c:33:10:f9:68:7d:6b:ae:96:b4:52:0f:ac:e1:a4:c2: e1:d1:2f:d0:e2:26:90:51:51:a5:2c:52:43:dc:ef:7d:d9:48: ab:5d:73:60 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQCFGt3NnZtMKaoxT4mX2rP62FR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNjAxMjYwMDA2NTNaFw0yNjAxMjkwMDE4NTNaMDMxMTAvBgNV BAMTKEYzM0UwMkFCNjQ1NDlCN0NFNDBBNzkzNzEzQjNDMUM3MzkzODY5ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8iZHCMu1p54VYfN+8EnP5k5c1 SYGyN9b7aE6fUulJf7Px8N8QiOnbYxXXdePIABm5cLSq/riPqn7QSjI8vfrYvv04 WAnlmAs/tCj4XOsg7RpW0So3FG3R36L8f64f8+rnOCvOf8ZvWk46ZfirLbyJOOFk 81VxapuXw+TEXgMrB4yowTqBTVVRBl7G5fIOctm7SAMFtYRoX3sRaC97VQbiAvGi v7ixojVDDz4yPyfZTOJRn93yvsdXTu2Gc4ImkuAtyyICi7W2uCfaF4h21BGgGR/3 fykeEIYpeL+O+z+PPPTDyiVs1RG3iMOnMd/yKbly2YOFIES8HrgsR19KyV/zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8z4Cq2RUm3zkCnk3E7PBxzk4aYQwHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3 NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIO+p4XacyulbeWxMbg51jIHMu9CZV3A/9bT 8RRUFUVs8kdX2oCWjoTwZYpFN6vAgjzuVxy+5d8hmG97Wa+UFGLkGDZPyJAE/MjV q0DyTwldbi+wkbZyqYTGWJ+Wm3nf7g5RtsOR755N2MDpy9f6ZG+mQYjwbiozs0Aw EBppnoB1cXg134lZhuOSFt7+ZIf7dL5KyUNm+Zd5lF0BdRLTeVIpyBZqBj1IY6AH SGKM7Q96KCOhLVYgzVXi0Jt3F8/XVMk5lYDgiD7A4H+0a7Zj650S88v3tHuXsf/3 LDMQ+Wh9a66WtFIPrOGkwuHRL9DiJpBRUaUsUkPc733ZSKtdc2A= -----END CERTIFICATE-----Generated at Mon Jan 26 05:48:01 2026 by rpki-client