This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d78b50b-449c-454b-850d-f20803789b58/0/3809A288AA4D4C241EA6011D90DBF2693B3333D2.mft File: 3809A288AA4D4C241EA6011D90DBF2693B3333D2.mft (raw, json) Hash identifier: znvR8KtHD7dw9FwEWbPYNaFdUQNXv5s7ZXHWsLiYriE= Subject key identifier: A9:29:89:AC:F5:99:C0:BC:2C:8F:B1:4D:4E:F4:0D:E4:99:DD:DB:E1 Authority key identifier: 38:09:A2:88:AA:4D:4C:24:1E:A6:01:1D:90:DB:F2:69:3B:33:33:D2 Certificate issuer: /CN=3809A288AA4D4C241EA6011D90DBF2693B3333D2 Certificate serial: 4A10C76641591C02996B6CF29090CD6E7FA5CC51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3809A288AA4D4C241EA6011D90DBF2693B3333D2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d78b50b-449c-454b-850d-f20803789b58/0/3809A288AA4D4C241EA6011D90DBF2693B3333D2.mft Manifest number: 0C Signing time: Sat 24 Jan 2026 19:40:03 +0000 Manifest this update: Sat 24 Jan 2026 19:35:03 +0000 Manifest next update: Tue 27 Jan 2026 22:06:03 +0000 Files and hashes: 1: 3809A288AA4D4C241EA6011D90DBF2693B3333D2.crl (hash: lfLQ1O8/nyr6R/kXIQjFhY/exCNkWn9+Sy1LbYFdqOI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d78b50b-449c-454b-850d-f20803789b58/0/3809A288AA4D4C241EA6011D90DBF2693B3333D2.crl rsync://repo-rpki.idnic.net/repo/2d78b50b-449c-454b-850d-f20803789b58/0/3809A288AA4D4C241EA6011D90DBF2693B3333D2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3809A288AA4D4C241EA6011D90DBF2693B3333D2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:06:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:10:c7:66:41:59:1c:02:99:6b:6c:f2:90:90:cd:6e:7f:a5:cc:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3809A288AA4D4C241EA6011D90DBF2693B3333D2 Validity Not Before: Jan 24 19:35:03 2026 GMT Not After : Jan 27 22:06:03 2026 GMT Subject: CN=A92989ACF599C0BC2C8FB14D4EF40DE499DDDBE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bb:57:42:25:78:0e:b6:72:c7:5e:6c:a5:77: 42:36:de:33:ed:2d:d3:00:03:5b:53:e0:fa:50:c9: 7b:f3:53:dc:39:2b:cd:55:7e:24:06:17:fe:e5:b8: 14:d7:5c:7f:10:c2:70:62:77:cb:b9:09:e6:7c:b2: bd:9b:7c:b7:0d:99:96:48:d2:63:93:a4:b8:48:95: e4:b4:9e:bd:fa:29:df:f8:a4:5a:1b:16:93:7d:e3: 0c:8c:2c:d8:40:0c:7b:f9:f9:84:36:a0:cd:45:2d: 06:da:95:d1:e6:a3:4f:cf:05:76:1a:be:d3:5e:1e: 85:cf:e6:fb:69:28:e1:dc:65:1f:27:57:51:c1:98: 0f:5d:70:8c:e0:ca:09:eb:67:87:43:18:d8:3e:c8: c7:f9:fb:7a:1a:26:8b:88:ec:03:2a:43:6d:57:04: a8:45:53:ea:3e:54:c1:f6:25:71:86:2e:ac:dd:d4: 36:60:4b:59:32:03:4b:96:38:bf:1c:f7:67:13:87: 60:e8:c1:82:89:16:aa:8a:d7:a9:e1:0c:3e:1f:9c: ad:22:d7:a3:8e:2f:12:32:2d:da:0e:94:49:a8:9a: 15:d7:37:b9:de:cd:64:f4:56:1f:27:d9:fd:bf:ff: 53:65:86:2b:2f:d1:cb:f7:3e:89:61:e0:fe:64:57: b7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:29:89:AC:F5:99:C0:BC:2C:8F:B1:4D:4E:F4:0D:E4:99:DD:DB:E1 X509v3 Authority Key Identifier: keyid:38:09:A2:88:AA:4D:4C:24:1E:A6:01:1D:90:DB:F2:69:3B:33:33:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d78b50b-449c-454b-850d-f20803789b58/0/3809A288AA4D4C241EA6011D90DBF2693B3333D2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3809A288AA4D4C241EA6011D90DBF2693B3333D2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d78b50b-449c-454b-850d-f20803789b58/0/3809A288AA4D4C241EA6011D90DBF2693B3333D2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:ee:6e:3a:30:58:23:34:53:a8:cf:43:a9:d9:f3:9a:86:9f: b8:cd:b5:f3:fc:3c:f4:1a:a7:4e:7e:3a:55:34:3c:e0:03:dc: 43:cf:34:c5:f9:13:80:c8:c1:c7:d2:97:54:bb:34:30:89:b0: 40:ff:38:ff:04:27:cc:09:6a:8f:2f:22:be:33:ea:66:1d:33: 85:23:0b:1d:ea:77:88:9b:d4:2a:32:db:4f:8a:cd:5b:37:1c: 16:54:24:f8:e1:58:19:69:0c:76:7d:b5:29:de:66:e1:63:90: 87:d3:75:8c:59:ba:d1:ab:b0:85:b8:c6:30:e8:e1:c6:25:56: 5a:08:c6:60:fe:3f:e7:ed:1c:de:eb:ed:38:84:cc:49:ad:96: 5b:be:99:24:14:46:c7:82:e4:20:73:c2:da:d2:c2:f8:9f:21: e3:8e:24:4a:c5:af:62:37:87:07:24:c9:8e:57:e9:56:0b:df: b0:ae:d8:e4:e9:a7:7d:a1:92:3c:c1:5c:9a:18:e7:08:04:7c: 58:33:64:de:40:de:79:b2:ae:72:53:76:58:81:58:01:7a:3a: cc:d2:94:e0:fa:e4:77:8a:77:54:36:52:e6:bc:9f:cc:13:53: c0:16:4a:b1:be:fb:50:bb:f2:7f:6c:80:a4:70:07:67:28:a9: 61:c8:bf:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUShDHZkFZHAKZa2zykJDNbn+lzFEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzgwOUEyODhBQTRENEMyNDFFQTYwMTFEOTBEQkYyNjkz QjMzMzNEMjAeFw0yNjAxMjQxOTM1MDNaFw0yNjAxMjcyMjA2MDNaMDMxMTAvBgNV BAMTKEE5Mjk4OUFDRjU5OUMwQkMyQzhGQjE0RDRFRjQwREU0OTlERERCRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCku1dCJXgOtnLHXmyld0I23jPt LdMAA1tT4PpQyXvzU9w5K81VfiQGF/7luBTXXH8QwnBid8u5CeZ8sr2bfLcNmZZI 0mOTpLhIleS0nr36Kd/4pFobFpN94wyMLNhADHv5+YQ2oM1FLQbaldHmo0/PBXYa vtNeHoXP5vtpKOHcZR8nV1HBmA9dcIzgygnrZ4dDGNg+yMf5+3oaJouI7AMqQ21X BKhFU+o+VMH2JXGGLqzd1DZgS1kyA0uWOL8c92cTh2DowYKJFqqK16nhDD4fnK0i 16OOLxIyLdoOlEmomhXXN7nezWT0Vh8n2f2//1Nlhisv0cv3Polh4P5kV7dbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqSmJrPWZwLwsj7FNTvQN5Jnd2+EwHwYDVR0j BBgwFoAUOAmiiKpNTCQepgEdkNvyaTszM9IwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDc4YjUwYi00NDljLTQ1NGItODUwZC1mMjA4MDM3ODliNTgvMC8zODA5QTI4OEFB NEQ0QzI0MUVBNjAxMUQ5MERCRjI2OTNCMzMzM0QyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzgwOUEyODhBQTRENEMyNDFFQTYwMTFEOTBEQkYyNjkzQjMz MzNEMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ3OGI1MGItNDQ5Yy00NTRiLTg1 MGQtZjIwODAzNzg5YjU4LzAvMzgwOUEyODhBQTRENEMyNDFFQTYwMTFEOTBEQkYy NjkzQjMzMzNEMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAATubjowWCM0U6jPQ6nZ85qGn7jNtfP8PPQa p05+OlU0POAD3EPPNMX5E4DIwcfSl1S7NDCJsED/OP8EJ8wJao8vIr4z6mYdM4Uj Cx3qd4ib1Coy20+KzVs3HBZUJPjhWBlpDHZ9tSneZuFjkIfTdYxZutGrsIW4xjDo 4cYlVloIxmD+P+ftHN7r7TiEzEmtllu+mSQURseC5CBzwtrSwvifIeOOJErFr2I3 hwckyY5X6VYL37Cu2OTpp32hkjzBXJoY5wgEfFgzZN5A3nmyrnJTdliBWAF6OszS lOD65HeKd1Q2Uua8n8wTU8AWSrG++1C78n9sgKRwB2coqWHIv9A= -----END CERTIFICATE-----Generated at Sun Jan 25 21:32:47 2026 by rpki-client