This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft File: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft (raw, json) Hash identifier: mqoY8ocCqkwENxqeei9EgBvXq9pJ0IJlDmnm/qA3v1k= Subject key identifier: CC:78:9C:C9:BE:6A:9C:5D:B0:79:85:92:CB:AE:E1:31:4A:6D:95:D4 Authority key identifier: 2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC Certificate issuer: /CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Certificate serial: 77B2B9B114E049CD223AEE143E1AA746388D5824 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft Manifest number: 0116 Signing time: Sat 24 Jan 2026 13:40:43 +0000 Manifest this update: Sat 24 Jan 2026 13:35:43 +0000 Manifest next update: Tue 27 Jan 2026 15:31:43 +0000 Files and hashes: 1: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl (hash: 4KcP8xklrvgwk479aqne9oT/u2pBXB3BB8luUsMNJEg=) 2: 3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa (hash: teoM6MXntxfZebuRvj4HuDCmBJE7bmAYK9p8NliSwzQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 15:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b2:b9:b1:14:e0:49:cd:22:3a:ee:14:3e:1a:a7:46:38:8d:58:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Validity Not Before: Jan 24 13:35:43 2026 GMT Not After : Jan 27 15:31:43 2026 GMT Subject: CN=CC789CC9BE6A9C5DB0798592CBAEE1314A6D95D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:38:ab:ab:be:08:21:d3:62:23:f1:0b:8c:cd: a2:6f:38:41:f9:c1:1f:73:e1:61:0b:7e:49:55:b8: c4:dc:f8:cf:b3:79:43:0d:a6:56:c9:a6:20:ab:df: f0:d4:8e:da:2c:23:51:3d:2b:b3:7a:6e:ea:d8:e6: cf:89:6f:09:2e:3f:10:4b:f3:e0:d4:32:56:ef:4f: e7:1b:61:d3:f8:84:0c:ba:1f:84:a1:64:bd:17:6b: cb:2f:9a:ea:24:06:14:4d:04:ef:4b:10:86:84:8c: ea:9f:cc:b3:fc:0e:f6:de:a7:9e:4b:2a:7e:41:a4: fc:43:7c:1e:b2:4b:8c:5d:0b:5d:03:9d:2c:47:cb: 23:de:94:67:71:8f:6a:52:73:7b:bd:c7:34:e1:61: 19:00:1c:4c:30:a6:9d:59:ff:a7:8a:4b:cd:02:a8: 6b:04:36:94:5b:e1:ab:c2:bf:e1:ce:db:e1:9e:96: 3d:ef:9d:e9:f6:a3:4f:8d:ce:d6:1d:5e:10:b9:f4: 04:0b:f4:45:65:06:ad:7c:57:95:30:6b:ba:ad:4c: 21:20:fa:f3:d9:e6:fb:c5:ca:bd:c7:b5:3f:24:d2: 8d:d6:f7:f5:f1:ce:fc:16:9a:41:1b:63:52:45:2f: 81:14:8d:47:a4:2d:78:49:f9:18:b7:47:6e:63:b9: 7c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:78:9C:C9:BE:6A:9C:5D:B0:79:85:92:CB:AE:E1:31:4A:6D:95:D4 X509v3 Authority Key Identifier: keyid:2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:94:d0:19:07:6f:66:43:18:2e:5b:5d:67:7a:3c:34:94:c4: 61:f3:57:cf:c5:5b:5f:22:f1:34:9a:7b:bb:ca:5c:63:cb:0d: 3c:76:fa:11:cf:8a:73:12:1d:c1:22:69:b9:41:55:cc:71:74: 9d:3d:60:4e:24:98:61:96:3f:9f:87:d2:17:66:9e:a1:2b:24: 0f:0f:ba:86:22:7c:06:25:ce:b5:1b:22:f5:c1:c3:6b:b3:b9: 1c:c0:7e:78:ea:7a:ef:41:2e:79:f5:cb:9d:cc:76:a8:c8:88: 69:58:90:5f:c7:45:f1:79:f5:27:96:c3:7c:2c:86:eb:1c:55: df:51:1b:d8:0a:2b:f8:62:7f:8e:ae:b8:c3:20:14:cd:1e:3f: 79:91:66:20:a8:5e:85:db:2c:68:19:15:22:7a:39:7f:1d:54: 4e:bf:da:b8:70:53:6b:46:a5:a3:28:3f:bf:b8:7e:10:45:d2: 7d:7e:10:57:bd:44:1c:2d:40:a3:c3:73:ad:f0:cd:dc:f3:2d: 45:36:45:41:ed:73:80:54:95:3f:18:89:00:de:47:ba:f1:26: 57:34:d9:a9:01:1b:ac:4d:e7:87:ed:d4:57:b7:8b:2f:0b:85: d4:2a:6b:97:5d:03:d3:8c:82:14:5c:8e:3c:68:73:6a:13:4f: 0a:41:3a:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd7K5sRTgSc0iOu4UPhqnRjiNWCQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1 Mzc5OEJGQzAeFw0yNjAxMjQxMzM1NDNaFw0yNjAxMjcxNTMxNDNaMDMxMTAvBgNV BAMTKENDNzg5Q0M5QkU2QTlDNURCMDc5ODU5MkNCQUVFMTMxNEE2RDk1RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1OKurvggh02Ij8QuMzaJvOEH5 wR9z4WELfklVuMTc+M+zeUMNplbJpiCr3/DUjtosI1E9K7N6burY5s+JbwkuPxBL 8+DUMlbvT+cbYdP4hAy6H4ShZL0Xa8svmuokBhRNBO9LEIaEjOqfzLP8Dvbep55L Kn5BpPxDfB6yS4xdC10DnSxHyyPelGdxj2pSc3u9xzThYRkAHEwwpp1Z/6eKS80C qGsENpRb4avCv+HO2+Gelj3vnen2o0+NztYdXhC59AQL9EVlBq18V5Uwa7qtTCEg +vPZ5vvFyr3HtT8k0o3W9/XxzvwWmkEbY1JFL4EUjUekLXhJ+Ri3R25juXwlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzHicyb5qnF2weYWSy67hMUptldQwHwYDVR0j BBgwFoAUKt3UA1Fz+sO7OUnLNszvJVN5i/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODY3YTJlZS1kNDExLTRmZjgtOWY1Yy0zNWQwMzQxMjNmODQvMC8yQURERDQwMzUx NzNGQUMzQkIzOTQ5Q0IzNkNDRUYyNTUzNzk4QkZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1Mzc5 OEJGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg2N2EyZWUtZDQxMS00ZmY4LTlm NWMtMzVkMDM0MTIzZjg0LzAvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VG MjU1Mzc5OEJGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALSU0BkHb2ZDGC5bXWd6PDSUxGHzV8/FW18i 8TSae7vKXGPLDTx2+hHPinMSHcEiablBVcxxdJ09YE4kmGGWP5+H0hdmnqErJA8P uoYifAYlzrUbIvXBw2uzuRzAfnjqeu9BLnn1y53MdqjIiGlYkF/HRfF59SeWw3ws huscVd9RG9gKK/hif46uuMMgFM0eP3mRZiCoXoXbLGgZFSJ6OX8dVE6/2rhwU2tG paMoP7+4fhBF0n1+EFe9RBwtQKPDc63wzdzzLUU2RUHtc4BUlT8YiQDeR7rxJlc0 2akBG6xN54ft1Fe3iy8LhdQqa5ddA9OMghRcjjxoc2oTTwpBOq0= -----END CERTIFICATE-----Generated at Mon Jan 26 04:24:19 2026 by rpki-client