This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: dpxAIsfYUCc7AbXfboHE4F1osQD+jNnvAq0d7Xtgxc4= Subject key identifier: 1B:36:78:9E:32:40:F2:91:C9:CD:D5:6B:1F:65:53:1F:9C:1E:0B:05 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 0EF447C9AD7457DA3584B516ED5270E88079BBB1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 0216 Signing time: Sat 24 Jan 2026 16:30:54 +0000 Manifest this update: Sat 24 Jan 2026 16:25:54 +0000 Manifest next update: Wed 28 Jan 2026 00:25:54 +0000 Files and hashes: 1: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: JIraJ/CAZY0yk1VNJvb1NTKJPld4al9WExBS2LrxDsY=) 2: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) 3: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: s7xt6atAlnuk0NCp/3UKrnkCS/YpsE7vKEiGKhHlUBE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 00:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f4:47:c9:ad:74:57:da:35:84:b5:16:ed:52:70:e8:80:79:bb:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Jan 24 16:25:54 2026 GMT Not After : Jan 28 00:25:54 2026 GMT Subject: CN=1B36789E3240F291C9CDD56B1F65531F9C1E0B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:06:2e:78:ad:f1:b4:70:9d:ba:c1:f7:44:b0: 22:72:95:fd:42:05:48:33:2e:82:88:66:ca:e6:f6: 2e:f9:60:87:92:ff:00:b0:db:0d:f2:ef:ed:89:0d: e7:a5:7e:d0:c4:df:37:90:e9:8f:25:16:92:9e:07: 6f:5f:02:77:e1:b7:85:6b:0e:d6:19:9d:f1:9d:45: 22:7c:61:b7:1e:b7:cc:39:2c:08:5c:60:0a:2a:ef: b3:aa:71:82:c1:44:d5:60:1c:fb:ca:19:76:f7:3a: d8:5b:84:5a:22:d6:3c:1c:09:e3:08:9b:56:19:91: 06:bc:e0:58:ed:13:b7:37:77:26:da:f5:30:fc:ac: b2:b8:e2:71:60:34:5a:e3:09:55:6a:95:bb:85:04: 7b:7e:24:2b:31:ba:52:06:da:f5:09:12:19:de:5d: e1:93:e1:8f:d9:e5:0e:5d:42:9c:78:dc:28:3a:b2: 96:ab:00:48:f8:91:b1:f2:c6:e7:b0:df:3d:5c:53: c1:12:06:12:8f:19:a3:dc:ec:98:c1:b0:53:c4:a0: 97:4a:28:be:9f:20:3c:8d:da:62:a1:1d:2d:da:16: 77:20:e2:54:47:7d:64:32:c2:64:4d:39:88:ef:bc: 67:32:7e:e2:ab:09:ef:9c:25:0e:3e:a5:e4:c4:40: 5f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:36:78:9E:32:40:F2:91:C9:CD:D5:6B:1F:65:53:1F:9C:1E:0B:05 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:9e:a2:17:55:25:0a:bd:bc:e9:26:f5:30:37:55:4e:30:4f: 4c:09:32:8d:42:7a:65:42:e6:12:2d:a3:51:e6:1e:19:ff:3a: be:3e:c8:c1:c6:db:4a:b2:a0:1b:e5:c4:cf:c9:be:ae:e5:19: ef:e0:5d:8f:b5:18:be:dd:d9:b9:15:4d:99:3d:a0:78:3c:aa: 1f:98:8e:f8:bd:22:28:7d:28:db:6d:02:21:8d:fd:79:ac:f8: 19:ec:0e:33:ef:22:aa:49:0a:31:4f:b6:3d:37:a3:97:56:0a: f9:de:6b:e7:48:ff:ed:59:9c:e0:47:c4:52:e6:d1:3f:f7:5c: c8:32:5a:b1:4e:5a:cf:27:7c:9e:27:2e:b2:69:32:d0:09:11: f9:06:fc:a2:e7:be:a8:88:dc:be:d6:5a:84:32:88:8b:bc:5f: 5f:40:bd:79:1f:b3:34:4d:74:0c:8e:3f:ba:de:a5:94:32:1c: ac:5a:52:dc:7c:15:dc:06:45:30:34:02:11:dd:d3:10:4d:83: 00:0d:fb:21:f3:4c:01:8f:cb:fe:64:58:fe:2e:e2:5d:19:68: dd:0b:ec:3d:93:9c:21:49:d1:2e:c2:da:f7:b5:0a:76:19:26: c4:73:81:e2:31:e5:08:28:c6:d0:4a:1f:0a:3d:de:79:5b:68: fa:37:5b:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDvRHya10V9o1hLUW7VJw6IB5u7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNjAxMjQxNjI1NTRaFw0yNjAxMjgwMDI1NTRaMDMxMTAvBgNV BAMTKDFCMzY3ODlFMzI0MEYyOTFDOUNERDU2QjFGNjU1MzFGOUMxRTBCMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Bi54rfG0cJ26wfdEsCJylf1C BUgzLoKIZsrm9i75YIeS/wCw2w3y7+2JDeelftDE3zeQ6Y8lFpKeB29fAnfht4Vr DtYZnfGdRSJ8Ybcet8w5LAhcYAoq77OqcYLBRNVgHPvKGXb3OthbhFoi1jwcCeMI m1YZkQa84FjtE7c3dyba9TD8rLK44nFgNFrjCVVqlbuFBHt+JCsxulIG2vUJEhne XeGT4Y/Z5Q5dQpx43Cg6sparAEj4kbHyxuew3z1cU8ESBhKPGaPc7JjBsFPEoJdK KL6fIDyN2mKhHS3aFncg4lRHfWQywmRNOYjvvGcyfuKrCe+cJQ4+peTEQF8tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGzZ4njJA8pHJzdVrH2VTH5weCwUwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAImeohdVJQq9vOkm9TA3VU4wT0wJMo1CemVC 5hIto1HmHhn/Or4+yMHG20qyoBvlxM/Jvq7lGe/gXY+1GL7d2bkVTZk9oHg8qh+Y jvi9Iih9KNttAiGN/Xms+BnsDjPvIqpJCjFPtj03o5dWCvnea+dI/+1ZnOBHxFLm 0T/3XMgyWrFOWs8nfJ4nLrJpMtAJEfkG/KLnvqiI3L7WWoQyiIu8X19AvXkfszRN dAyOP7repZQyHKxaUtx8FdwGRTA0AhHd0xBNgwAN+yHzTAGPy/5kWP4u4l0ZaN0L 7D2TnCFJ0S7C2ve1CnYZJsRzgeIx5QgoxtBKHwo93nlbaPo3Wxc= -----END CERTIFICATE-----Generated at Sun Jan 25 23:16:55 2026 by rpki-client