This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft File: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft (raw, json) Hash identifier: HhaT7/NWauiGUcH6JBU19Fy+Q1RgxlXuQnLiCOMVi2w= Subject key identifier: 47:40:7D:52:C6:55:33:8C:33:09:99:DE:20:68:EA:22:92:84:19:8F Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 6D2EAB6922BA19F2E6421A709AC4BD93FEAE282C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft Manifest number: 04AA Signing time: Sat 24 Jan 2026 07:21:05 +0000 Manifest this update: Sat 24 Jan 2026 07:16:05 +0000 Manifest next update: Tue 27 Jan 2026 09:32:05 +0000 Files and hashes: 1: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (hash: g4MCHQFO3MQThoyM2TjwQb6nRcwAjTBYmahYDBr6bho=) 2: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (hash: LmeqzYeHbwqjRvKuIbroVaXCpVEz8bLJBtycTcCFJu4=) 3: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl (hash: 6o895XG9/QJOvAz0uI2s6nblbx7Ru+lJ7zLmzXjAhQU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 09:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:2e:ab:69:22:ba:19:f2:e6:42:1a:70:9a:c4:bd:93:fe:ae:28:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Jan 24 07:16:05 2026 GMT Not After : Jan 27 09:32:05 2026 GMT Subject: CN=47407D52C655338C330999DE2068EA229284198F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:61:55:a8:e4:cb:ec:63:f9:4b:6b:39:63:94: 96:57:d1:c9:16:bc:a7:69:37:2f:4d:45:b7:b8:6e: 2b:b0:d3:52:9b:7a:76:ef:cc:f7:3a:76:6f:c0:3b: 44:8e:9a:ae:cd:af:16:1c:bd:8b:40:82:3d:26:bb: e5:7b:67:fb:47:6b:54:66:df:25:7d:7b:65:cd:0e: 53:ff:ca:67:2a:44:4e:be:89:b3:fd:ca:a2:0a:5e: 3b:1e:aa:c4:3a:4c:26:50:3b:f9:ac:f6:32:91:88: f0:9d:c5:fa:36:6b:e2:c4:61:f7:44:3f:5c:28:fb: 4f:0f:a2:c4:c9:96:a4:0f:4e:0e:6e:f7:13:e6:d3: b9:e8:7b:93:5f:34:b4:b4:f8:60:37:e0:9b:19:5b: e3:c2:9a:ad:26:c5:3b:37:3a:68:27:be:7e:5d:01: 40:21:8b:1f:a4:59:f6:ac:a2:e9:bf:39:78:90:f6: db:19:48:e9:8c:3b:a7:3b:d7:ef:4e:ca:40:02:67: 26:57:e7:02:58:32:1f:d9:87:77:f0:9f:70:56:88: a6:f8:85:5f:db:c1:66:6b:45:9a:7e:84:09:83:cc: 50:69:62:42:6f:d2:ba:6d:74:fe:e2:b5:da:4e:cb: c2:20:60:6b:f2:75:a1:c7:cf:ce:95:92:8d:8a:d3: 38:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:40:7D:52:C6:55:33:8C:33:09:99:DE:20:68:EA:22:92:84:19:8F X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:1a:c1:27:56:95:ab:1f:7d:b0:7d:f6:5d:59:ea:c8:a5:7d: 7a:79:d3:c4:1c:f4:95:03:2e:6d:14:a0:b9:e3:b3:a9:b1:c0: 90:29:a6:7d:01:46:a3:bb:63:3e:c4:38:6b:61:29:77:6a:f4: 0e:29:2a:e1:60:5c:14:81:4d:e9:00:bd:68:bc:92:7c:f4:3d: e3:6e:85:81:69:6f:c6:61:3d:e2:a5:d1:0b:97:9a:ce:b5:27: fe:22:34:53:fd:b0:c0:97:73:41:ba:60:b5:b3:9c:d1:98:2d: 52:6d:d5:28:e0:99:c1:81:11:b5:e5:c1:d6:f8:c7:38:30:4d: 12:96:2e:7d:72:a4:4a:0d:5a:8b:13:c2:59:bb:e5:d6:9e:73: be:da:c0:11:3a:8f:7c:47:20:bd:88:48:b1:3e:b2:90:05:cf: 2b:2e:6b:13:30:c6:16:b0:18:62:5d:f0:33:bb:5f:87:2f:6e: 96:5d:f8:19:15:64:21:66:fd:c1:08:bf:2f:81:90:66:ae:d9: 81:9b:aa:11:21:43:5e:5f:2d:16:ff:fb:dd:2c:c8:36:bf:e5: d5:5a:1c:31:8c:bd:98:24:63:b4:1c:32:52:5a:a7:8c:0e:5c: f0:f1:02:c9:8d:4c:a6:e2:f7:94:4c:3b:0b:94:56:d8:56:56: 8a:be:03:94 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbS6raSK6GfLmQhpwmsS9k/6uKCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNjAxMjQwNzE2MDVaFw0yNjAxMjcwOTMyMDVaMDMxMTAvBgNV BAMTKDQ3NDA3RDUyQzY1NTMzOEMzMzA5OTlERTIwNjhFQTIyOTI4NDE5OEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjYVWo5MvsY/lLazljlJZX0ckW vKdpNy9NRbe4biuw01KbenbvzPc6dm/AO0SOmq7NrxYcvYtAgj0mu+V7Z/tHa1Rm 3yV9e2XNDlP/ymcqRE6+ibP9yqIKXjseqsQ6TCZQO/ms9jKRiPCdxfo2a+LEYfdE P1wo+08PosTJlqQPTg5u9xPm07noe5NfNLS0+GA34JsZW+PCmq0mxTs3Omgnvn5d AUAhix+kWfasoum/OXiQ9tsZSOmMO6c71+9OykACZyZX5wJYMh/Zh3fwn3BWiKb4 hV/bwWZrRZp+hAmDzFBpYkJv0rptdP7itdpOy8IgYGvydaHHz86Vko2K0zg/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUR0B9UsZVM4wzCZneIGjqIpKEGY8wHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2Y0MDhlNDQtM2U5Yy00NWU1LWJj YTQtNWRmYmQ0YjI3MTMwLzAvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4 NEE1QUFFQUFGOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEAawSdWlasffbB99l1Z6silfXp508Qc9JUD Lm0UoLnjs6mxwJAppn0BRqO7Yz7EOGthKXdq9A4pKuFgXBSBTekAvWi8knz0PeNu hYFpb8ZhPeKl0QuXms61J/4iNFP9sMCXc0G6YLWznNGYLVJt1SjgmcGBEbXlwdb4 xzgwTRKWLn1ypEoNWosTwlm75daec77awBE6j3xHIL2ISLE+spAFzysuaxMwxhaw GGJd8DO7X4cvbpZd+BkVZCFm/cEIvy+BkGau2YGbqhEhQ15fLRb/+90syDa/5dVa HDGMvZgkY7QcMlJap4wOXPDxAsmNTKbi95RMOwuUVthWVoq+A5Q= -----END CERTIFICATE-----Generated at Mon Jan 26 02:16:31 2026 by rpki-client