This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft File: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft (raw, json) Hash identifier: l/9WAa2I8inkGS0HMX+Vt613SSX4Fuhunuuv2xsd1bA= Subject key identifier: F2:AD:CF:63:9A:7D:2B:D6:97:7F:CD:BF:DE:52:C2:C5:21:16:95:91 Authority key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Certificate issuer: /CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Certificate serial: 1EBACC67BA0CDA57B32521A9DB83FB3BAC5A22D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft Manifest number: 0283 Signing time: Sun 25 Jan 2026 17:22:03 +0000 Manifest this update: Sun 25 Jan 2026 17:17:03 +0000 Manifest next update: Wed 28 Jan 2026 18:28:03 +0000 Files and hashes: 1: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl (hash: +5TlfVpCZYYvzJ/V6vTBEZC1un9E3VCnIxSx1XqP8Jo=) 2: 3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa (hash: 2lTJuwgktOu4lo9SNeOCA4rDFu8XBUgqcawUv+9j6hA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ba:cc:67:ba:0c:da:57:b3:25:21:a9:db:83:fb:3b:ac:5a:22:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Validity Not Before: Jan 25 17:17:03 2026 GMT Not After : Jan 28 18:28:03 2026 GMT Subject: CN=F2ADCF639A7D2BD6977FCDBFDE52C2C521169591 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:78:79:3c:b2:8d:00:15:bb:23:ba:13:52: ac:35:8a:e8:b2:15:45:1c:a2:8a:c4:c6:75:54:20: d0:6e:53:fc:cd:14:85:1d:18:64:76:62:a5:ba:24: 24:3d:93:81:7e:9f:3e:5d:4b:85:4d:3f:eb:70:21: 2e:2c:fa:bc:04:e4:20:97:24:64:c9:2d:2b:43:a3: 89:0f:e7:7d:fb:46:fa:7f:4e:03:73:d5:32:da:b0: ed:ee:3c:af:d1:1b:ea:b3:d2:77:53:a6:0d:a0:b3: 0e:89:64:bb:ce:30:7e:9c:03:0d:bf:2e:d7:e1:3a: 1a:6c:2f:1d:99:67:17:cc:c9:38:4d:3d:f4:d7:a6: bf:67:fb:5f:27:ce:de:87:4e:68:9b:60:d5:de:f5: a4:c7:21:15:82:03:66:f9:df:60:1e:91:a1:14:41: 60:0e:13:3b:9f:60:23:b4:e5:06:55:25:03:fa:8d: 9c:7c:63:34:11:60:91:c4:98:f9:fc:ce:fc:38:90: 4d:b4:b3:90:9a:d8:15:93:86:ce:0b:7d:bb:76:d8: db:ec:1c:3b:3e:1e:f5:8a:c8:89:88:fc:18:11:57: eb:c6:fd:2e:5c:0d:e4:77:12:d3:fc:82:d5:3d:0a: 92:3f:d0:d2:8b:45:a1:dc:3e:ee:ee:0a:94:67:ff: e5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AD:CF:63:9A:7D:2B:D6:97:7F:CD:BF:DE:52:C2:C5:21:16:95:91 X509v3 Authority Key Identifier: keyid:DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:ec:53:96:47:7a:64:30:27:2d:b7:c8:76:f5:40:84:05:26: 4f:9e:e7:d7:56:d2:1d:7f:f1:38:59:ec:f3:5e:21:0c:d2:a2: 31:a8:d6:1c:ef:f1:7b:75:3e:5e:0c:ad:09:37:02:73:6a:1d: 77:9b:bd:19:ce:e7:62:55:ed:49:e4:e5:3f:b1:01:7f:d5:f9: 2b:52:2a:80:08:9e:05:13:41:9d:83:dd:87:11:05:34:67:b4: db:d8:ce:39:52:55:12:37:45:79:99:71:a0:4c:5e:b5:3e:bb: a4:8e:a9:db:77:7a:7a:23:b5:2d:72:a7:20:62:c1:17:fb:85: 95:85:93:25:04:65:4c:e4:85:de:4c:ce:95:d9:52:a4:57:b5: cb:07:c1:7d:42:5d:14:8b:aa:93:e5:d8:48:a8:1d:d6:e2:df: 09:18:40:74:2e:79:53:56:a5:d5:ba:1e:d6:b2:53:dd:c2:00: a6:c7:bf:c1:60:cf:e3:28:4b:d6:33:bd:f3:3a:ff:b5:7a:a4: 8c:81:16:82:11:fb:c6:a9:2e:f6:41:c8:a6:35:02:9b:4b:18: d6:a5:80:02:3f:0c:5e:45:f4:88:57:c6:e3:a1:d4:e5:4b:58: 2e:ac:bb:95:77:4d:15:ba:eb:34:32:4f:02:87:eb:48:bd:f0: a8:f1:e6:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHrrMZ7oM2lezJSGp24P7O6xaItMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVC N0ExQUVGMjAeFw0yNjAxMjUxNzE3MDNaFw0yNjAxMjgxODI4MDNaMDMxMTAvBgNV BAMTKEYyQURDRjYzOUE3RDJCRDY5NzdGQ0RCRkRFNTJDMkM1MjExNjk1OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDImnh5PLKNABW7I7oTUqw1iuiy FUUcoorExnVUINBuU/zNFIUdGGR2YqW6JCQ9k4F+nz5dS4VNP+twIS4s+rwE5CCX JGTJLStDo4kP5337Rvp/TgNz1TLasO3uPK/RG+qz0ndTpg2gsw6JZLvOMH6cAw2/ LtfhOhpsLx2ZZxfMyThNPfTXpr9n+18nzt6HTmibYNXe9aTHIRWCA2b532AekaEU QWAOEzufYCO05QZVJQP6jZx8YzQRYJHEmPn8zvw4kE20s5Ca2BWThs4Lfbt22Nvs HDs+HvWKyImI/BgRV+vG/S5cDeR3EtP8gtU9CpI/0NKLRaHcPu7uCpRn/+XTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8q3PY5p9K9aXf82/3lLCxSEWlZEwHwYDVR0j BBgwFoAU3xmUnOF9wRbnt8IkjJM0BbehrvIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMC9ERjE5OTQ5Q0Ux N0RDMTE2RTdCN0MyMjQ4QzkzMzQwNUI3QTFBRUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVCN0Ex QUVGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FlZjc4NmItNjIyNi00NGFmLTg1 MmQtMWZiMDQ1YzRkZWIzLzAvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0 MDVCN0ExQUVGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALnsU5ZHemQwJy23yHb1QIQFJk+e59dW0h1/ 8ThZ7PNeIQzSojGo1hzv8Xt1Pl4MrQk3AnNqHXebvRnO52JV7Unk5T+xAX/V+StS KoAIngUTQZ2D3YcRBTRntNvYzjlSVRI3RXmZcaBMXrU+u6SOqdt3enojtS1ypyBi wRf7hZWFkyUEZUzkhd5MzpXZUqRXtcsHwX1CXRSLqpPl2EioHdbi3wkYQHQueVNW pdW6HtayU93CAKbHv8Fgz+MoS9YzvfM6/7V6pIyBFoIR+8apLvZByKY1AptLGNal gAI/DF5F9IhXxuOh1OVLWC6su5V3TRW66zQyTwKH60i98Kjx5s8= -----END CERTIFICATE-----Generated at Mon Jan 26 01:11:28 2026 by rpki-client