This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft File: 338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft (raw, json) Hash identifier: FPbqvTYEJN/RUokxgyUKoC6ubsvmHwpoJ48ngJQw+xY= Subject key identifier: C0:4C:C5:E9:E8:FD:8D:1F:AD:D6:08:35:0E:B5:C3:8F:47:97:BF:45 Authority key identifier: 33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B Certificate issuer: /CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B Certificate serial: 143695063E71C76218FEAACD716F1E0500104303 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft Manifest number: 0510 Signing time: Sat 24 Jan 2026 10:42:08 +0000 Manifest this update: Sat 24 Jan 2026 10:37:08 +0000 Manifest next update: Tue 27 Jan 2026 17:17:08 +0000 Files and hashes: 1: 338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl (hash: 9KWskVe3YoHa4m4pQuv+QO1Vaotow4AjoewJ4cOS8oM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:36:95:06:3e:71:c7:62:18:fe:aa:cd:71:6f:1e:05:00:10:43:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B Validity Not Before: Jan 24 10:37:08 2026 GMT Not After : Jan 27 17:17:08 2026 GMT Subject: CN=C04CC5E9E8FD8D1FADD608350EB5C38F4797BF45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:b3:36:5a:fb:2e:a0:a8:1e:3c:1d:e3:d9: 52:3d:b3:c0:0a:99:29:e9:a2:fe:72:57:9b:a6:5f: 66:77:ac:db:c3:5b:9c:8a:4c:00:cb:19:eb:e8:d1: 95:70:72:72:22:28:a8:e8:97:0a:e7:e1:ca:56:9d: f2:e6:f4:7a:ed:5d:71:5b:2a:25:7c:51:72:61:af: 4f:52:7e:d3:d9:5e:99:e2:f2:4c:1a:5f:18:4c:65: 0d:10:82:39:5b:69:58:cf:a8:0d:4e:55:53:14:aa: c7:71:61:32:a9:cd:89:b1:14:74:df:16:56:03:04: ef:78:ad:17:e7:45:85:e6:42:d5:6c:4a:28:fd:ee: 61:d8:74:48:fc:79:b9:6b:d7:98:95:4f:2a:50:52: 84:18:4c:a1:e8:fa:be:f8:85:ea:52:df:ce:e5:e1: d9:b1:99:fd:a7:d6:9d:65:37:5a:37:4a:fc:ae:4d: ff:83:5e:68:ca:25:0d:1d:03:ae:5c:14:76:93:fc: 0d:ac:fe:82:81:ac:fe:62:ee:14:4c:a0:e7:40:07: 45:41:0a:b6:f0:85:f2:ae:51:3a:e8:29:4d:3b:11: 8f:3b:33:58:08:3f:f7:33:68:b8:c8:05:0f:3d:a5: e5:cd:85:46:a0:ea:05:a7:f3:cf:db:8e:68:4e:77: 1b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:4C:C5:E9:E8:FD:8D:1F:AD:D6:08:35:0E:B5:C3:8F:47:97:BF:45 X509v3 Authority Key Identifier: keyid:33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:12:7f:7a:11:16:d8:f8:37:33:c9:99:6e:73:c4:0c:05:e3: 12:c7:02:95:f3:b8:0c:97:d8:2b:22:86:12:7b:ef:50:7a:12: 4f:80:55:c9:46:97:6b:06:88:54:00:ed:8b:96:79:2e:fe:b0: c1:d9:44:f4:08:4f:09:f0:07:48:3b:e8:15:8c:24:02:94:18: 7a:58:0c:86:fb:67:75:a1:99:fe:0e:30:be:cd:f9:5e:a6:1c: ae:58:52:9f:4e:2f:2f:7c:23:e9:74:67:87:b4:e4:22:09:c4: 3d:9b:c0:46:81:c6:ef:62:cc:8f:13:ab:49:cb:4b:72:93:7a: 12:32:3b:20:49:57:37:1e:17:ff:b5:ca:32:0e:6c:10:10:f2: 84:11:df:bd:b5:2e:5e:a0:ff:b3:1a:a8:b1:b3:c3:19:95:73: 7f:4a:12:48:c9:16:75:2b:36:3a:78:47:56:8c:19:d1:93:a0: 2e:cc:1c:3e:2d:df:70:f0:43:db:7c:2e:da:9b:fe:eb:7e:eb: 11:5f:06:ce:ea:16:74:60:3d:69:5c:f0:20:46:ba:81:d4:c1: 0f:93:f8:7a:9a:bc:1d:08:47:4f:b9:1b:81:c0:0e:db:84:57: 3c:a1:68:e4:1b:10:4d:6a:75:bd:62:92:1a:2f:df:13:23:e7: 16:ee:57:9e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFDaVBj5xx2IY/qrNcW8eBQAQQwMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhDOUUz QzkzQjk2QjAeFw0yNjAxMjQxMDM3MDhaFw0yNjAxMjcxNzE3MDhaMDMxMTAvBgNV BAMTKEMwNENDNUU5RThGRDhEMUZBREQ2MDgzNTBFQjVDMzhGNDc5N0JGNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwRLM2WvsuoKgePB3j2VI9s8AK mSnpov5yV5umX2Z3rNvDW5yKTADLGevo0ZVwcnIiKKjolwrn4cpWnfLm9HrtXXFb KiV8UXJhr09SftPZXpni8kwaXxhMZQ0QgjlbaVjPqA1OVVMUqsdxYTKpzYmxFHTf FlYDBO94rRfnRYXmQtVsSij97mHYdEj8eblr15iVTypQUoQYTKHo+r74hepS387l 4dmxmf2n1p1lN1o3SvyuTf+DXmjKJQ0dA65cFHaT/A2s/oKBrP5i7hRMoOdAB0VB CrbwhfKuUTroKU07EY87M1gIP/czaLjIBQ89peXNhUag6gWn88/bjmhOdxuDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwEzF6ej9jR+t1gg1DrXDj0eXv0UwHwYDVR0j BBgwFoAUM43rjXBRxj/GzNexpd2MnjyTuWswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MjRhNjVmNC00ZjRiLTQ0YjYtYTJlYi01OTk1N2JjNmE0ZDMvMC8zMzhERUI4RDcw NTFDNjNGQzZDQ0Q3QjFBNUREOEM5RTNDOTNCOTZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhDOUUzQzkz Qjk2Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzI0YTY1ZjQtNGY0Yi00NGI2LWEy ZWItNTk5NTdiYzZhNGQzLzAvMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhD OUUzQzkzQjk2Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABESf3oRFtj4NzPJmW5zxAwF4xLHApXzuAyX 2CsihhJ771B6Ek+AVclGl2sGiFQA7YuWeS7+sMHZRPQITwnwB0g76BWMJAKUGHpY DIb7Z3Whmf4OML7N+V6mHK5YUp9OLy98I+l0Z4e05CIJxD2bwEaBxu9izI8Tq0nL S3KTehIyOyBJVzceF/+1yjIObBAQ8oQR3721Ll6g/7MaqLGzwxmVc39KEkjJFnUr Njp4R1aMGdGToC7MHD4t33DwQ9t8Ltqb/ut+6xFfBs7qFnRgPWlc8CBGuoHUwQ+T +HqavB0IR0+5G4HADtuEVzyhaOQbEE1qdb1ikhov3xMj5xbuV54= -----END CERTIFICATE-----Generated at Mon Jan 26 02:26:02 2026 by rpki-client