This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: lxY6NrIroUIfHuDLFm1AbMy97Uzo0qjQjp5GHQ9VCWo= Subject key identifier: E1:EC:48:1C:D8:D8:BC:9C:CF:58:7D:0E:FF:23:71:E6:9E:48:D4:99 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 4B25569C05069AF7F34460C52CB235B2463E78CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 01FD Signing time: Sun 25 Jan 2026 04:32:29 +0000 Manifest this update: Sun 25 Jan 2026 04:27:29 +0000 Manifest next update: Wed 28 Jan 2026 13:26:29 +0000 Files and hashes: 1: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: uNA/yO7Jurn3EZm3l95rlsLVpHCEIuUhUwihJjKDdLE=) 2: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: bKAiHhmlEj4IgvE00Lo3377sGcryUEP8JoeR2a9n6WM=) 3: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: oFJCKICuqKzdgacfuNhwj/Ye50y9VbM7NHCUMBLx52w=) 4: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: Hj/Oe+Radw8pbluCv/VN2XxQ+sX4+0STYPYTyYPvjyc=) 5: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: 1yTR12zVNlgV/3lhF5YF8WQX2wlBuTs2UGOXRfg1gpk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 13:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:25:56:9c:05:06:9a:f7:f3:44:60:c5:2c:b2:35:b2:46:3e:78:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Jan 25 04:27:29 2026 GMT Not After : Jan 28 13:26:29 2026 GMT Subject: CN=E1EC481CD8D8BC9CCF587D0EFF2371E69E48D499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d2:47:d7:54:4d:f3:eb:ee:aa:ae:3e:2d:51: f7:08:98:7d:1f:77:c1:02:dd:6b:41:71:fe:26:e3: ad:bb:e5:f6:c0:ce:ca:06:c5:09:ed:0e:42:bc:25: 66:50:f8:71:ba:3f:35:d0:ec:0b:71:07:5d:1a:ed: 82:d6:b6:20:e5:de:73:9a:f0:dd:5a:90:4d:dc:03: 23:00:a9:64:03:43:30:3f:6a:95:93:1c:30:85:b4: 2b:88:24:3b:2b:51:d3:68:5a:d2:75:51:6e:9c:80: 7a:57:05:fb:f8:50:ab:52:58:18:fa:27:5c:e4:81: 1a:44:4b:01:fd:75:8d:5f:92:13:70:8a:0c:58:ee: ff:e3:69:6f:8d:ca:d8:e3:ab:f6:5c:0e:f1:77:0e: 5b:08:3d:28:9d:bf:54:81:b9:a9:10:46:21:bb:3a: 14:0b:10:4d:f9:99:6e:14:c6:8a:be:46:c3:a9:2f: 5c:19:ad:8c:35:3a:de:f0:0b:6f:25:78:b8:33:7e: 19:3b:d5:f3:a9:fb:69:81:9b:1c:63:69:da:f6:ab: a5:11:ce:41:58:bd:da:6e:a8:7f:4a:fa:d4:f9:69: 36:d3:15:ad:dc:c9:ff:d3:e2:50:83:e3:fd:2a:8a: dd:6e:69:28:eb:e0:e7:e1:d1:32:d1:70:4b:88:dc: 30:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:EC:48:1C:D8:D8:BC:9C:CF:58:7D:0E:FF:23:71:E6:9E:48:D4:99 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption db:6c:19:0b:4c:98:d3:c7:e2:60:25:a2:3d:83:4b:7d:f3:38: 08:c5:5b:03:11:ef:31:6a:79:69:6e:f1:29:8e:9c:56:bb:11: b7:23:19:14:d7:91:2c:be:80:5b:36:0a:3f:14:9d:f7:7a:9b: e0:b7:13:eb:4f:48:2b:6e:a6:b7:b1:b5:63:4e:02:3a:06:1d: 9f:4e:f7:82:71:aa:9a:a2:47:9b:86:f2:eb:80:7e:22:60:23: 05:f9:05:95:e5:b3:94:69:12:a5:fb:05:52:06:12:d4:87:20: af:ae:cf:d0:42:5c:98:a6:95:99:36:ee:f2:f9:b5:56:b0:1a: 53:0b:e1:58:20:96:48:27:6d:f9:12:78:ae:08:69:a8:c3:9f: 52:1b:36:73:09:9c:d4:d1:11:bd:f2:03:83:31:49:84:2b:b0: e8:c1:0a:52:49:93:55:c3:d5:a5:d0:db:4e:fe:87:6e:03:df: f5:77:61:da:6e:98:cd:79:67:5d:31:31:b8:50:55:c2:cb:6d: 81:81:2b:fb:75:49:50:43:bc:b2:9b:32:74:2a:66:43:21:9f: 69:07:53:3c:7b:0b:bb:4b:a5:65:49:52:77:69:58:f4:85:9d: 71:95:68:93:6b:1c:37:63:b8:c3:ec:be:d4:51:d4:0e:10:ba: 6d:3f:03:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSyVWnAUGmvfzRGDFLLI1skY+eM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNjAxMjUwNDI3MjlaFw0yNjAxMjgxMzI2MjlaMDMxMTAvBgNV BAMTKEUxRUM0ODFDRDhEOEJDOUNDRjU4N0QwRUZGMjM3MUU2OUU0OEQ0OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS0kfXVE3z6+6qrj4tUfcImH0f d8EC3WtBcf4m46275fbAzsoGxQntDkK8JWZQ+HG6PzXQ7AtxB10a7YLWtiDl3nOa 8N1akE3cAyMAqWQDQzA/apWTHDCFtCuIJDsrUdNoWtJ1UW6cgHpXBfv4UKtSWBj6 J1zkgRpESwH9dY1fkhNwigxY7v/jaW+Nytjjq/ZcDvF3DlsIPSidv1SBuakQRiG7 OhQLEE35mW4Uxoq+RsOpL1wZrYw1Ot7wC28leLgzfhk71fOp+2mBmxxjadr2q6UR zkFYvdpuqH9K+tT5aTbTFa3cyf/T4lCD4/0qit1uaSjr4Ofh0TLRcEuI3DBLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4exIHNjYvJzPWH0O/yNx5p5I1JkwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANtsGQtMmNPH4mAloj2DS33zOAjFWwMR7zFq eWlu8SmOnFa7EbcjGRTXkSy+gFs2Cj8Unfd6m+C3E+tPSCtuprextWNOAjoGHZ9O 94JxqpqiR5uG8uuAfiJgIwX5BZXls5RpEqX7BVIGEtSHIK+uz9BCXJimlZk27vL5 tVawGlML4VgglkgnbfkSeK4IaajDn1IbNnMJnNTREb3yA4MxSYQrsOjBClJJk1XD 1aXQ207+h24D3/V3YdpumM15Z10xMbhQVcLLbYGBK/t1SVBDvLKbMnQqZkMhn2kH Uzx7C7tLpWVJUndpWPSFnXGVaJNrHDdjuMPsvtRR1A4Qum0/A3I= -----END CERTIFICATE-----Generated at Sun Jan 25 19:00:38 2026 by rpki-client