This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft File: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft (raw, json) Hash identifier: hEjvZmduXsCNaH+jxRKh75Y31HEnWeX1dvEFfTquM/c= Subject key identifier: F7:FE:A7:19:4D:E1:61:60:70:34:EE:6B:74:40:E3:4B:47:8C:FA:B5 Authority key identifier: 2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 Certificate issuer: /CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Certificate serial: 14528B2AF5BA497023C7A26A2CFAB8DBAC80A565 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft Manifest number: 0117 Signing time: Sun 25 Jan 2026 05:00:39 +0000 Manifest this update: Sun 25 Jan 2026 04:55:39 +0000 Manifest next update: Wed 28 Jan 2026 08:50:39 +0000 Files and hashes: 1: 2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl (hash: ig6L4A3ZSMUdy7fCmnGoqA34zN98zaUuna1qq0mlKg0=) 2: 32372e3132342e36372e302f32342d3234203d3e20313532303339.roa (hash: s05NUxO3OCK6ljSM126JzvbuefrUbP5vbV9fxoiHqUw=) 3: 32372e3132342e36362e302f32342d3234203d3e20313532303339.roa (hash: Qk1aebZH6HpsmbRtyw6Zbd7LsZDQbi5L/mrlB31+AsU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 08:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:52:8b:2a:f5:ba:49:70:23:c7:a2:6a:2c:fa:b8:db:ac:80:a5:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605 Validity Not Before: Jan 25 04:55:39 2026 GMT Not After : Jan 28 08:50:39 2026 GMT Subject: CN=F7FEA7194DE161607034EE6B7440E34B478CFAB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:38:46:21:c1:f6:51:dd:24:92:c6:14:a4:95: 07:71:29:b1:7f:fe:a6:80:14:27:15:46:0b:f1:3b: 3d:93:91:2a:7d:ac:2a:7c:3d:e8:b6:27:9a:a7:4b: 03:1e:d8:e4:2d:93:ba:f8:e4:5c:e2:71:b2:be:89: e9:b0:7e:2b:80:50:c7:b0:63:6b:f8:1c:4a:03:61: 8a:3f:7b:72:f8:01:cb:ba:e7:4c:c7:da:9c:e7:0c: ca:7b:c0:69:ae:0b:e4:cf:5b:eb:05:a7:87:00:fe: 35:a9:0c:a6:3d:28:43:3e:0a:11:17:5a:81:20:31: af:e8:d9:29:1b:f9:8f:08:91:1f:69:5d:7d:b8:8e: d5:44:d4:d2:88:6b:7c:07:99:10:1b:12:b9:72:ee: f1:e8:ff:f1:d2:7d:5b:12:d9:01:c9:32:60:88:db: 78:e9:43:d2:83:f1:77:ae:92:76:94:c7:84:42:7c: 26:fe:3d:0a:02:fd:b5:41:c0:5a:44:dd:c1:fa:0a: 40:6b:90:3a:21:2d:f3:60:da:a0:8f:93:78:34:5f: d2:5b:2e:75:5c:60:6e:52:8b:8f:6c:0f:76:1d:79: e5:dd:67:23:95:35:1f:9e:1e:44:d3:17:9e:0c:d4: 99:bd:b9:6e:75:5c:79:d1:ad:91:72:b6:ec:bc:5e: 40:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FE:A7:19:4D:E1:61:60:70:34:EE:6B:74:40:E3:4B:47:8C:FA:B5 X509v3 Authority Key Identifier: keyid:2C:FD:5B:DD:D1:DB:A6:D9:40:28:74:D6:22:3A:BD:7E:EE:E0:16:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1b7e0bc0-761b-4ec3-8f42-82981b91a97a/0/2CFD5BDDD1DBA6D9402874D6223ABD7EEEE01605.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:41:40:9d:cd:3d:d1:66:dd:e2:15:cf:67:16:d6:8b:97:7b: c6:0f:6d:c1:ed:33:c6:3e:17:00:a7:96:96:a2:0d:c0:63:0b: 4a:3a:12:07:3e:25:ab:f4:ed:df:5a:7b:8c:e4:65:a6:72:99: e5:74:57:4e:8b:e5:71:28:37:f1:7a:05:e8:6a:1b:72:12:50: a8:a8:0c:bf:e9:a8:a9:7e:5d:ee:52:d2:25:1d:fa:e5:35:24: 99:01:73:4e:bb:9b:b8:81:82:7b:f8:30:55:13:e3:a2:9e:80: 32:4a:26:29:18:e2:e1:87:0f:0d:6b:1a:07:03:8f:eb:b4:10: 25:3f:d0:7d:d6:c9:bb:c6:df:fa:1f:66:d8:47:59:79:1e:fc: b8:98:ca:cd:5a:ab:3a:fc:39:90:e1:9c:7f:4d:29:25:92:14: f4:56:2f:a7:b3:62:00:0b:b4:f5:62:8f:f5:fd:68:35:41:76: d3:b9:e6:59:bc:49:d2:e7:83:aa:8d:96:3b:56:c2:5c:35:f8: 3d:7a:66:a2:60:bb:65:17:c2:f9:4d:c3:d3:88:01:2d:72:e5: b1:ef:a5:95:bb:71:4f:87:b9:a8:c8:98:59:be:c4:d9:1e:2b: 69:b6:bd:58:68:d7:2b:68:41:79:03:f0:79:56:df:ce:dc:f0: 45:8d:b7:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFFKLKvW6SXAjx6JqLPq426yApWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VF RUUwMTYwNTAeFw0yNjAxMjUwNDU1MzlaFw0yNjAxMjgwODUwMzlaMDMxMTAvBgNV BAMTKEY3RkVBNzE5NERFMTYxNjA3MDM0RUU2Qjc0NDBFMzRCNDc4Q0ZBQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkOEYhwfZR3SSSxhSklQdxKbF/ /qaAFCcVRgvxOz2TkSp9rCp8Pei2J5qnSwMe2OQtk7r45FzicbK+iemwfiuAUMew Y2v4HEoDYYo/e3L4Acu650zH2pznDMp7wGmuC+TPW+sFp4cA/jWpDKY9KEM+ChEX WoEgMa/o2Skb+Y8IkR9pXX24jtVE1NKIa3wHmRAbErly7vHo//HSfVsS2QHJMmCI 23jpQ9KD8XeuknaUx4RCfCb+PQoC/bVBwFpE3cH6CkBrkDohLfNg2qCPk3g0X9Jb LnVcYG5Si49sD3YdeeXdZyOVNR+eHkTTF54M1Jm9uW51XHnRrZFytuy8XkBTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9/6nGU3hYWBwNO5rdEDjS0eM+rUwHwYDVR0j BBgwFoAULP1b3dHbptlAKHTWIjq9fu7gFgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YjdlMGJjMC03NjFiLTRlYzMtOGY0Mi04Mjk4MWI5MWE5N2EvMC8yQ0ZENUJEREQx REJBNkQ5NDAyODc0RDYyMjNBQkQ3RUVFRTAxNjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJEN0VFRUUw MTYwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWI3ZTBiYzAtNzYxYi00ZWMzLThm NDItODI5ODFiOTFhOTdhLzAvMkNGRDVCREREMURCQTZEOTQwMjg3NEQ2MjIzQUJE N0VFRUUwMTYwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB1BQJ3NPdFm3eIVz2cW1ouXe8YPbcHtM8Y+ FwCnlpaiDcBjC0o6Egc+Jav07d9ae4zkZaZymeV0V06L5XEoN/F6BehqG3ISUKio DL/pqKl+Xe5S0iUd+uU1JJkBc067m7iBgnv4MFUT46KegDJKJikY4uGHDw1rGgcD j+u0ECU/0H3WybvG3/ofZthHWXke/LiYys1aqzr8OZDhnH9NKSWSFPRWL6ezYgAL tPVij/X9aDVBdtO55lm8SdLng6qNljtWwlw1+D16ZqJgu2UXwvlNw9OIAS1y5bHv pZW7cU+HuajImFm+xNkeK2m2vVho1ytoQXkD8HlW387c8EWNtwI= -----END CERTIFICATE-----Generated at Sun Jan 25 22:05:20 2026 by rpki-client