This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft File: 29692979765B670997413579D7BF5663C05BBD1A.mft (raw, json) Hash identifier: OiAz/p75lH0jpeilXpFSDj3tc5jyDtILndxz9VCoWIo= Subject key identifier: DD:D1:5C:24:84:E7:AD:3E:A9:AC:E5:42:FC:78:F7:91:A5:B3:19:F9 Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 6F7FB877E3B245D19F2D4D204BC70F498F140E6F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft Manifest number: 027A Signing time: Sun 25 Jan 2026 06:21:07 +0000 Manifest this update: Sun 25 Jan 2026 06:16:07 +0000 Manifest next update: Wed 28 Jan 2026 07:07:07 +0000 Files and hashes: 1: 3130332e392e3132342e302f32322d3234203d3e20313331373131.roa (hash: gJ4+RIzMU3sNK8zgeNrc/IFATPDJCmEd1aztpgZm3dA=) 2: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (hash: wQ45tmfAW0vTrcP1CHqdkU4kV8VsIFLIOnBtD5fu+LU=) 3: 29692979765B670997413579D7BF5663C05BBD1A.crl (hash: vECsjdbhc3RnPDN8XwITxTkUpNaAblIFSGgFKLwBiR4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 07:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:7f:b8:77:e3:b2:45:d1:9f:2d:4d:20:4b:c7:0f:49:8f:14:0e:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: Jan 25 06:16:07 2026 GMT Not After : Jan 28 07:07:07 2026 GMT Subject: CN=DDD15C2484E7AD3EA9ACE542FC78F791A5B319F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:09:c0:9f:4e:96:ed:0b:9e:e2:08:f3:c3:f3: 73:4e:7d:2d:df:36:05:76:35:d4:d0:de:6f:d2:b3: 6a:ee:88:99:57:06:8d:b0:14:04:d1:cf:b0:5f:42: 46:09:0d:d1:a0:bf:8d:2d:0d:aa:bf:8a:26:92:0d: ee:5c:aa:71:29:2a:fc:b8:7d:02:b8:e0:c9:ee:f4: 67:9f:28:52:2f:47:79:39:2a:b9:25:12:eb:16:1e: ef:2f:a5:3b:d5:d5:34:83:de:91:7c:e3:0f:16:9d: 0d:43:ce:87:1f:58:b7:be:08:2a:ff:68:2a:7e:e9: ab:39:1c:29:47:ab:68:86:12:6b:0c:ff:6a:6a:f6: 89:60:a5:da:ae:d0:f3:de:1f:a4:7d:8c:39:3a:78: 63:e9:ff:16:ac:34:92:91:e1:37:6c:bb:a8:f0:64: f2:e0:91:73:5f:c2:4a:d8:23:ba:90:df:cf:55:30: 41:89:da:8f:cc:62:84:33:0b:ac:88:23:2c:35:ab: 9e:2f:b2:e1:a9:2f:c7:7f:da:a7:cb:52:f9:9b:5d: 3a:97:88:44:75:5c:5b:03:f4:86:6b:84:d5:69:1f: e2:e5:af:06:23:e0:51:11:53:69:ee:2f:36:c5:5a: fd:99:eb:f8:9b:f0:62:c5:07:05:3e:06:3c:51:b3: 9c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D1:5C:24:84:E7:AD:3E:A9:AC:E5:42:FC:78:F7:91:A5:B3:19:F9 X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:ea:f6:d8:8b:f5:d8:54:ef:76:0c:c2:76:1b:6f:a4:ec:45: 2a:11:05:53:a3:f5:f4:ff:f5:5e:96:c9:2c:89:52:e2:aa:35: 9b:81:71:da:9e:2d:97:8f:d4:90:36:6f:87:aa:5d:00:12:fa: 45:dd:f8:e1:59:80:f3:b1:80:38:9c:15:e5:fa:8c:5e:8b:8e: 0f:3f:46:ca:12:cc:6e:29:94:ff:f9:05:da:e4:6e:f6:d5:18: 5a:46:77:02:ed:70:f8:c2:89:aa:a4:09:97:82:10:c8:1a:08: a0:39:51:c6:ae:04:b4:82:d4:69:26:ef:03:5b:5a:12:c3:f9: 31:7c:60:5e:f8:48:0f:f2:16:ad:0a:8c:43:99:bf:5a:af:55: 22:3d:da:fb:2a:8b:82:0d:07:33:51:00:ba:a2:4d:38:9a:5c: 0c:80:97:f1:0b:91:5b:2b:1a:8d:a1:d4:00:5e:45:56:64:c8: 95:0b:6e:16:2b:a9:05:7a:a3:2d:ab:f9:0b:93:47:a0:36:29: e9:82:24:18:67:69:d1:d9:c9:6e:55:55:bb:27:b2:2f:94:c1: 2a:f7:61:7a:54:59:0c:94:a8:ee:d8:94:68:fd:cc:b3:cf:c3: b9:cc:8b:90:15:a7:59:27:77:66:fc:b5:23:1e:1b:fb:79:d7: 4f:98:db:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUb3+4d+OyRdGfLU0gS8cPSY8UDm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNjAxMjUwNjE2MDdaFw0yNjAxMjgwNzA3MDdaMDMxMTAvBgNV BAMTKERERDE1QzI0ODRFN0FEM0VBOUFDRTU0MkZDNzhGNzkxQTVCMzE5RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChCcCfTpbtC57iCPPD83NOfS3f NgV2NdTQ3m/Ss2ruiJlXBo2wFATRz7BfQkYJDdGgv40tDaq/iiaSDe5cqnEpKvy4 fQK44Mnu9GefKFIvR3k5KrklEusWHu8vpTvV1TSD3pF84w8WnQ1DzocfWLe+CCr/ aCp+6as5HClHq2iGEmsM/2pq9olgpdqu0PPeH6R9jDk6eGPp/xasNJKR4Tdsu6jw ZPLgkXNfwkrYI7qQ389VMEGJ2o/MYoQzC6yIIyw1q54vsuGpL8d/2qfLUvmbXTqX iER1XFsD9IZrhNVpH+LlrwYj4FERU2nuLzbFWv2Z6/ib8GLFBwU+BjxRs5xjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3dFcJITnrT6prOVC/Hj3kaWzGfkwHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2IwYTExYjUtOTQ0MS00Y2M5LWE2 NzItYmU5Nzk5YjY1NTIwLzAvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2 NjNDMDVCQkQxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjq9tiL9dhU73YMwnYbb6TsRSoRBVOj9fT/ 9V6WySyJUuKqNZuBcdqeLZeP1JA2b4eqXQAS+kXd+OFZgPOxgDicFeX6jF6Ljg8/ RsoSzG4plP/5BdrkbvbVGFpGdwLtcPjCiaqkCZeCEMgaCKA5UcauBLSC1Gkm7wNb WhLD+TF8YF74SA/yFq0KjEOZv1qvVSI92vsqi4INBzNRALqiTTiaXAyAl/ELkVsr Go2h1ABeRVZkyJULbhYrqQV6oy2r+QuTR6A2KemCJBhnadHZyW5VVbsnsi+UwSr3 YXpUWQyUqO7YlGj9zLPPw7nMi5AVp1knd2b8tSMeG/t510+Y21U= -----END CERTIFICATE-----Generated at Sun Jan 25 15:51:28 2026 by rpki-client