This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft File: 656A72A6F38230D6A0DB097480D736B5C2FBA683.mft (raw, json) Hash identifier: 93Y6/M5tnJOuaie/K6Vh69Qat7YJJJ51RAMV9rrxpnI= Subject key identifier: 78:92:C9:B3:0C:1C:4A:F7:74:35:12:28:9F:12:FD:85:09:8D:72:52 Authority key identifier: 65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 Certificate issuer: /CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Certificate serial: 27524DD247BCD0B582BBFBE787A14A6C32D0391F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft Manifest number: 0279 Signing time: Fri 23 Jan 2026 21:52:26 +0000 Manifest this update: Fri 23 Jan 2026 21:47:26 +0000 Manifest next update: Tue 27 Jan 2026 08:58:26 +0000 Files and hashes: 1: 3130332e3138322e37322e302f32342d3234203d3e20313439343038.roa (hash: Tr9Xm455VVFwcMWVKgFVkQjW4pXUazCaoGIyqlMivog=) 2: 656A72A6F38230D6A0DB097480D736B5C2FBA683.crl (hash: GhaIxRn3N/Fz0ypTeSdkfv1JnxXfR2HrzQMvaMRhWtI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 08:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:52:4d:d2:47:bc:d0:b5:82:bb:fb:e7:87:a1:4a:6c:32:d0:39:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Validity Not Before: Jan 23 21:47:26 2026 GMT Not After : Jan 27 08:58:26 2026 GMT Subject: CN=7892C9B30C1C4AF7743512289F12FD85098D7252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:2b:03:d4:24:f0:eb:6a:1b:5f:38:29:24: 27:72:e6:cd:c7:a7:59:3a:9c:94:91:af:0a:e0:a0: b8:d9:fc:e3:59:41:2c:02:81:d8:93:7c:03:d2:aa: ad:5c:ba:da:e9:35:f4:33:dd:d1:4d:ed:b9:51:94: ba:c5:ee:6f:c4:0b:71:ba:59:0d:0b:5e:dd:b6:eb: 7b:02:72:c0:ce:52:3c:8b:25:6a:88:f2:6e:a8:20: 9c:f1:c2:c9:98:e9:a8:bc:b4:94:a0:a0:e9:88:03: 04:b5:6e:f3:01:dc:af:e5:f2:f5:cc:b7:aa:50:2f: f6:34:b5:3e:33:9d:34:83:aa:23:25:e9:30:11:64: 75:39:13:09:49:82:82:5e:75:38:fe:17:a4:52:59: ee:30:7c:a9:48:2f:10:92:a1:05:3c:1c:9f:ad:58: 13:bb:26:93:42:2b:56:e7:8d:d3:2d:99:5d:56:8b: 40:d2:af:af:2f:5d:29:86:6e:5d:27:81:5a:52:33: e5:d2:18:73:86:23:ab:be:78:ad:f2:da:50:3c:0c: 84:21:f5:ca:ce:d0:59:51:c3:3b:51:41:df:61:1f: 6b:35:6a:56:b3:51:a0:b0:d4:e5:a8:a8:30:99:16: 14:f8:b2:e8:6a:37:69:3f:e1:4e:6b:e5:6f:2d:dd: 1a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:92:C9:B3:0C:1C:4A:F7:74:35:12:28:9F:12:FD:85:09:8D:72:52 X509v3 Authority Key Identifier: keyid:65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:15:4c:ea:42:1e:d6:2d:f1:79:0a:3e:0c:97:68:b8:06:6e: a4:b3:f4:aa:b4:1c:aa:60:c3:98:5a:6d:80:76:b1:72:d8:a2: 71:f9:32:e9:ca:d4:63:a1:ce:81:11:34:2d:62:9e:a5:5c:7f: 01:3f:fb:90:80:87:76:c4:48:92:82:32:6e:78:4f:b2:2a:6b: c1:3a:78:c0:3a:86:d4:16:17:f3:17:69:38:5d:79:e4:df:42: 70:0c:ce:37:b4:43:65:c4:6e:dc:8c:18:f9:de:5e:c0:00:ce: f2:a5:0e:59:8c:6b:f3:6a:07:6b:ec:8a:aa:de:3e:5f:3e:5d: 28:da:52:44:ea:51:13:c6:b6:85:82:60:d8:31:d5:b0:f0:40: 81:5d:3e:94:1f:8c:48:65:e1:3c:6b:b6:37:f9:fd:fd:00:d8: 51:6e:e6:74:2e:c9:66:7d:a3:2b:03:e1:2a:38:9b:13:b7:6b: bd:d1:f3:ff:68:96:ac:e8:e2:ee:9b:ca:97:01:df:83:4f:89: 8c:98:d4:ae:5d:a4:91:57:9d:9b:f2:5d:4d:d0:69:41:78:75: 7f:b2:41:2a:70:8f:b6:81:20:1d:79:b9:a1:48:a8:07:f6:9e: 04:37:a3:a6:fa:24:7c:4e:b3:94:1b:7c:6c:e8:c8:f7:f2:38: 8a:93:d2:23 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ1JN0ke80LWCu/vnh6FKbDLQOR8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVD MkZCQTY4MzAeFw0yNjAxMjMyMTQ3MjZaFw0yNjAxMjcwODU4MjZaMDMxMTAvBgNV BAMTKDc4OTJDOUIzMEMxQzRBRjc3NDM1MTIyODlGMTJGRDg1MDk4RDcyNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZiisD1CTw62obXzgpJCdy5s3H p1k6nJSRrwrgoLjZ/ONZQSwCgdiTfAPSqq1cutrpNfQz3dFN7blRlLrF7m/EC3G6 WQ0LXt2263sCcsDOUjyLJWqI8m6oIJzxwsmY6ai8tJSgoOmIAwS1bvMB3K/l8vXM t6pQL/Y0tT4znTSDqiMl6TARZHU5EwlJgoJedTj+F6RSWe4wfKlILxCSoQU8HJ+t WBO7JpNCK1bnjdMtmV1Wi0DSr68vXSmGbl0ngVpSM+XSGHOGI6u+eK3y2lA8DIQh 9crO0FlRwztRQd9hH2s1alazUaCw1OWoqDCZFhT4suhqN2k/4U5r5W8t3RrlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeJLJswwcSvd0NRIonxL9hQmNclIwHwYDVR0j BBgwFoAUZWpypvOCMNag2wl0gNc2tcL7poMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjczNzVmOS1lOGI1LTRkOTQtODBhOC0zNWUwMmRkMGY2ZjIvMC82NTZBNzJBNkYz ODIzMEQ2QTBEQjA5NzQ4MEQ3MzZCNUMyRkJBNjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVDMkZC QTY4My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY3Mzc1ZjktZThiNS00ZDk0LTgw YTgtMzVlMDJkZDBmNmYyLzAvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2 QjVDMkZCQTY4My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADoVTOpCHtYt8XkKPgyXaLgGbqSz9Kq0HKpg w5habYB2sXLYonH5MunK1GOhzoERNC1inqVcfwE/+5CAh3bESJKCMm54T7Iqa8E6 eMA6htQWF/MXaThdeeTfQnAMzje0Q2XEbtyMGPneXsAAzvKlDlmMa/NqB2vsiqre Pl8+XSjaUkTqURPGtoWCYNgx1bDwQIFdPpQfjEhl4Txrtjf5/f0A2FFu5nQuyWZ9 oysD4So4mxO3a73R8/9olqzo4u6bypcB34NPiYyY1K5dpJFXnZvyXU3QaUF4dX+y QSpwj7aBIB15uaFIqAf2ngQ3o6b6JHxOs5QbfGzoyPfyOIqT0iM= -----END CERTIFICATE-----Generated at Sun Jan 25 18:53:11 2026 by rpki-client