This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft File: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft (raw, json) Hash identifier: nXAreRnJCsmnX9qrp3M25o4r3u+lw/D0mQ3mSlESfKw= Subject key identifier: 65:7E:90:D6:70:D5:6F:F9:52:F0:26:A0:97:CC:56:39:04:FE:6F:B5 Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 1CE3E66E2F2AACCB1917B95D63650B248BE876C1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft Manifest number: 0225 Signing time: Fri 23 Jan 2026 18:11:50 +0000 Manifest this update: Fri 23 Jan 2026 18:06:50 +0000 Manifest next update: Mon 26 Jan 2026 19:56:50 +0000 Files and hashes: 1: 3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa (hash: en7yrsRqDUaal9vRU4LRRex8mQ3pcI0rlYghVnCEE78=) 2: 323430343a643863303a3a2f33322d3438203d3e20313338383630.roa (hash: iufPrZZScnO80QkyCPvSlgZqxsE8YzjDEGRWUUoEP4M=) 3: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl (hash: 1tj8U31hvSnRJOZLKdL253uUfESCSucIljcteF6Abx8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 19:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e3:e6:6e:2f:2a:ac:cb:19:17:b9:5d:63:65:0b:24:8b:e8:76:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: Jan 23 18:06:50 2026 GMT Not After : Jan 26 19:56:50 2026 GMT Subject: CN=657E90D670D56FF952F026A097CC563904FE6FB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ed:7b:03:57:91:79:75:a0:71:72:4a:3f:54: 99:2e:20:cb:67:99:b0:36:cf:a2:1d:b2:4f:5f:3e: 86:fc:5b:50:d7:df:5f:9a:2e:ed:c4:bd:07:26:a5: 09:37:1b:51:77:c2:7d:fd:35:1b:00:54:47:8c:6d: 28:6d:6a:90:93:3c:7a:f3:e8:fb:89:67:b3:91:e6: 4c:15:a5:3d:15:a2:86:5d:7b:ab:d2:37:eb:99:bc: f2:65:c8:b9:ef:00:e9:70:2f:d8:f3:ac:65:16:cc: 7e:17:1a:fe:22:26:ca:22:cb:6d:1f:8b:ec:c0:d0: 5c:48:72:63:37:20:76:ae:20:ec:28:7a:d2:a6:eb: 7c:d6:6e:2c:49:92:9b:6f:35:6e:7a:00:51:f1:7e: c3:37:d7:b7:c7:3c:1d:78:64:82:33:50:73:aa:14: df:58:b4:c1:e7:a1:26:aa:9e:eb:6f:d2:16:1f:40: bf:1d:d6:e5:34:f1:09:ba:2e:25:c4:21:88:85:98: 63:c7:e3:73:51:e0:81:01:39:1f:40:69:9d:12:9b: 5c:3d:25:85:b3:be:e6:bd:cc:06:a2:e4:1a:db:8f: 98:19:6b:ec:c9:ce:15:85:4d:64:84:d7:38:fb:43: 5b:aa:ff:36:00:80:c5:6a:51:7b:73:fa:93:f5:9e: 9c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7E:90:D6:70:D5:6F:F9:52:F0:26:A0:97:CC:56:39:04:FE:6F:B5 X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:8f:be:e7:d5:8b:d9:9a:f3:e4:5a:bf:7f:be:1e:7f:95:ac: ba:55:93:13:ad:5b:18:6e:b3:ae:08:ac:0a:65:4e:ab:e8:1c: 0a:87:bb:3a:9b:5d:34:3a:d3:0d:59:78:07:3d:da:94:be:41: 6f:9b:d8:b1:e7:06:69:c9:d0:43:9f:a9:9a:51:4f:20:2c:d5: df:0d:7a:2c:02:68:cb:9e:41:ad:4d:0c:b0:e9:09:c1:59:a2: 1d:53:1e:23:af:ea:d6:3a:c4:62:26:de:29:18:39:f3:fc:65: 09:23:a0:76:25:1b:92:e8:d3:75:88:40:1e:65:b8:77:27:cf: 0e:39:87:25:e3:7a:e8:78:51:ec:ce:09:79:06:05:71:4c:2b: 64:28:5f:7b:65:38:bd:af:9a:02:26:76:c4:9a:5f:1a:8f:c4: e9:d9:40:20:8a:37:fb:73:b8:3b:3e:f4:7a:24:16:f2:d5:04: 24:79:25:df:7b:58:ae:4f:73:ef:2f:2a:7e:2c:03:67:7c:30: 91:1f:4a:7d:99:27:a4:7a:79:97:c2:26:61:cf:c4:03:05:19: ad:b9:09:cd:89:13:6d:f2:f6:7d:9a:af:65:17:01:3e:f9:64: 66:89:1d:82:16:3e:9b:d2:f1:67:74:7b:78:6d:fb:79:26:72: ed:86:e3:60 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHOPmbi8qrMsZF7ldY2ULJIvodsEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNjAxMjMxODA2NTBaFw0yNjAxMjYxOTU2NTBaMDMxMTAvBgNV BAMTKDY1N0U5MEQ2NzBENTZGRjk1MkYwMjZBMDk3Q0M1NjM5MDRGRTZGQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS7XsDV5F5daBxcko/VJkuIMtn mbA2z6Idsk9fPob8W1DX31+aLu3EvQcmpQk3G1F3wn39NRsAVEeMbShtapCTPHrz 6PuJZ7OR5kwVpT0VooZde6vSN+uZvPJlyLnvAOlwL9jzrGUWzH4XGv4iJsoiy20f i+zA0FxIcmM3IHauIOwoetKm63zWbixJkptvNW56AFHxfsM317fHPB14ZIIzUHOq FN9YtMHnoSaqnutv0hYfQL8d1uU08Qm6LiXEIYiFmGPH43NR4IEBOR9AaZ0Sm1w9 JYWzvua9zAai5Brbj5gZa+zJzhWFTWSE1zj7Q1uq/zYAgMVqUXtz+pP1npxBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZX6Q1nDVb/lS8Cagl8xWOQT+b7UwHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY1ZDg4ZjEtYjljMC00ODVlLTkx NmUtNTliN2UzNjk4ZGExLzAvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJG REUxMkM5Q0I5Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADCPvufVi9ma8+Rav3++Hn+VrLpVkxOtWxhu s64IrAplTqvoHAqHuzqbXTQ60w1ZeAc92pS+QW+b2LHnBmnJ0EOfqZpRTyAs1d8N eiwCaMueQa1NDLDpCcFZoh1THiOv6tY6xGIm3ikYOfP8ZQkjoHYlG5Lo03WIQB5l uHcnzw45hyXjeuh4UezOCXkGBXFMK2QoX3tlOL2vmgImdsSaXxqPxOnZQCCKN/tz uDs+9HokFvLVBCR5Jd97WK5Pc+8vKn4sA2d8MJEfSn2ZJ6R6eZfCJmHPxAMFGa25 Cc2JE23y9n2ar2UXAT75ZGaJHYIWPpvS8Wd0e3ht+3kmcu2G42A= -----END CERTIFICATE-----Generated at Sun Jan 25 18:58:42 2026 by rpki-client