This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: CTDpDzOHRvRtinHUQmxDOfLuHLYiuWEczhJd3LuUhzQ= Subject key identifier: F5:7A:CC:90:09:D1:1B:CD:3B:2A:36:B3:C6:FB:35:65:9E:84:D7:3F Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 0FAAF339E7AAEE69B16C317270AAABFE21368274 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 02C8 Signing time: Fri 23 Jan 2026 19:20:56 +0000 Manifest this update: Fri 23 Jan 2026 19:15:56 +0000 Manifest next update: Mon 26 Jan 2026 20:49:56 +0000 Files and hashes: 1: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) 2: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: uWfUO/Mx98U3TOj2RsPju7hbq4CTGSuOMPgZNgySaec=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 20:49:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:aa:f3:39:e7:aa:ee:69:b1:6c:31:72:70:aa:ab:fe:21:36:82:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Jan 23 19:15:56 2026 GMT Not After : Jan 26 20:49:56 2026 GMT Subject: CN=F57ACC9009D11BCD3B2A36B3C6FB35659E84D73F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:56:d3:f4:4a:68:6c:e6:0e:1e:ea:31:d1: 59:77:ea:61:ab:3d:6d:55:7c:5c:29:70:40:23:80: a8:05:17:9a:68:1b:ad:d6:3e:18:c5:b9:b5:e1:8b: 74:4d:7d:4c:70:c1:3b:99:2b:8a:e5:53:cf:ec:67: bc:87:f7:03:44:9a:db:19:62:42:53:7d:3c:c2:46: 56:9a:5c:1a:e9:d9:f3:1c:2d:93:a4:17:69:1e:92: dc:f5:51:b9:81:6f:d7:34:4b:06:34:ea:0e:82:a8: fc:7b:f6:d7:4d:50:1f:dd:2b:7e:34:08:a0:64:ca: 8d:10:c9:2f:58:3a:f7:f2:b8:2a:e6:69:93:1c:42: c4:e4:57:7c:8a:6d:64:00:9a:c1:42:6a:f5:a5:fe: 9f:7e:eb:75:13:1b:fc:b2:71:86:ef:9e:23:ad:a7: d4:00:ee:b6:4c:66:8f:74:c4:ad:b8:af:77:c2:cf: 24:6a:94:52:70:4e:87:19:bc:45:b8:0a:1b:05:dd: 51:e3:5b:bb:70:48:bb:26:4d:63:f2:2c:d1:bb:e5: e0:10:e6:bc:36:d7:80:53:68:73:7f:50:6f:88:31: d9:4b:c5:8f:0b:34:fe:fb:3c:73:74:5e:8e:1c:3f: 50:1b:79:ba:26:35:6a:2b:67:ba:d1:f3:24:b9:da: 33:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7A:CC:90:09:D1:1B:CD:3B:2A:36:B3:C6:FB:35:65:9E:84:D7:3F X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:f8:eb:d6:39:10:2e:4d:82:57:7f:cb:ce:b3:90:d0:07:dd: 4b:1c:f2:48:38:be:df:87:dd:38:4d:1d:3e:ed:1b:65:81:53: 11:b1:8b:e0:7d:bc:85:05:a2:e5:e6:c8:58:cd:ca:9f:5b:19: 0b:52:5c:44:17:9e:da:5c:30:25:8d:69:0e:27:b9:22:99:77: 3d:e3:51:c9:0f:b4:f9:e2:20:2b:df:90:e7:fb:bf:f9:97:0b: 3b:fc:3d:00:63:e5:56:0b:76:f3:92:4b:a3:02:b5:1a:10:52: f5:40:f6:9a:1a:66:4f:64:44:2c:c3:68:ef:93:7b:3e:41:de: ac:74:f2:ed:91:28:5b:f0:05:c8:e7:6f:7e:f1:9a:ef:76:54: fc:8f:fb:b6:2c:0f:b7:8e:99:15:00:88:3c:0e:b9:20:fa:e2: 19:18:1c:02:45:b8:0c:bd:33:81:46:fa:1b:d0:3c:b3:b5:04: c9:b9:c5:e1:d4:cc:c9:c1:aa:bb:07:c7:ac:63:a8:46:8d:33: 03:07:4b:34:aa:bc:11:15:3c:91:6a:a2:73:55:94:89:99:71: 03:ce:14:47:2b:0c:6e:4b:a4:9c:87:55:5b:16:1c:43:19:78: 22:de:64:64:92:a8:02:ea:e2:0b:fb:47:33:56:4d:c2:31:81: 53:43:7c:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD6rzOeeq7mmxbDFycKqr/iE2gnQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNjAxMjMxOTE1NTZaFw0yNjAxMjYyMDQ5NTZaMDMxMTAvBgNV BAMTKEY1N0FDQzkwMDlEMTFCQ0QzQjJBMzZCM0M2RkIzNTY1OUU4NEQ3M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQHFbT9EpobOYOHuox0Vl36mGr PW1VfFwpcEAjgKgFF5poG63WPhjFubXhi3RNfUxwwTuZK4rlU8/sZ7yH9wNEmtsZ YkJTfTzCRlaaXBrp2fMcLZOkF2kektz1UbmBb9c0SwY06g6CqPx79tdNUB/dK340 CKBkyo0QyS9YOvfyuCrmaZMcQsTkV3yKbWQAmsFCavWl/p9+63UTG/yycYbvniOt p9QA7rZMZo90xK24r3fCzyRqlFJwTocZvEW4ChsF3VHjW7twSLsmTWPyLNG75eAQ 5rw214BTaHN/UG+IMdlLxY8LNP77PHN0Xo4cP1AbebomNWorZ7rR8yS52jOVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9XrMkAnRG807Kjazxvs1ZZ6E1z8wHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAv469Y5EC5Ngld/y86zkNAH3Usc8kg4vt+H 3ThNHT7tG2WBUxGxi+B9vIUFouXmyFjNyp9bGQtSXEQXntpcMCWNaQ4nuSKZdz3j UckPtPniICvfkOf7v/mXCzv8PQBj5VYLdvOSS6MCtRoQUvVA9poaZk9kRCzDaO+T ez5B3qx08u2RKFvwBcjnb37xmu92VPyP+7YsD7eOmRUAiDwOuSD64hkYHAJFuAy9 M4FG+hvQPLO1BMm5xeHUzMnBqrsHx6xjqEaNMwMHSzSqvBEVPJFqonNVlImZcQPO FEcrDG5LpJyHVVsWHEMZeCLeZGSSqALq4gv7RzNWTcIxgVNDfIU= -----END CERTIFICATE-----Generated at Sun Jan 25 18:44:23 2026 by rpki-client