This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft File: A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft (raw, json) Hash identifier: JYVXmZJDfUWRS618dSxdvxVOv3L+7pm2BoVb1UD+rSo= Subject key identifier: D1:63:46:27:70:02:48:D7:4D:12:23:E8:53:92:97:20:09:B0:25:EF Authority key identifier: A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 Certificate issuer: /CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Certificate serial: 2EB4D09DF7ABC43F456DB4719226CB9016633C4B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft Manifest number: 95 Signing time: Sat 24 Jan 2026 02:41:25 +0000 Manifest this update: Sat 24 Jan 2026 02:36:25 +0000 Manifest next update: Tue 27 Jan 2026 12:54:25 +0000 Files and hashes: 1: 3136302e32352e3234392e302f32342d3234203d3e20313336303939.roa (hash: fAL9MfqpRcilmiK6cDbN2CreeawZppTYa6tvP1zgN7Y=) 2: A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl (hash: 4SUGJ9L1yOuPkr9Kma1OsbUFueNPBSotFUoJEscYckY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 12:54:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b4:d0:9d:f7:ab:c4:3f:45:6d:b4:71:92:26:cb:90:16:63:3c:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A21BA70DF8EE470FE7A60385B6653842570ED3A4 Validity Not Before: Jan 24 02:36:25 2026 GMT Not After : Jan 27 12:54:25 2026 GMT Subject: CN=D1634627700248D74D1223E85392972009B025EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fb:1b:25:f7:62:38:e8:04:6c:6d:bd:13:32: 52:27:6c:90:da:43:80:65:05:25:ad:f8:ee:f7:30: 9a:2b:e6:08:ce:5e:84:98:73:ca:93:db:ac:dd:0d: 8e:f1:76:f1:62:82:1b:fe:a5:39:a2:75:5c:83:08: 14:34:e2:64:f5:18:a2:b6:ef:15:03:16:ec:7a:76: d6:6a:b2:c0:c1:05:29:b1:ab:fd:be:11:11:04:8c: 63:b0:3f:54:40:22:c2:22:d6:24:01:86:84:47:23: 79:eb:9f:df:dc:11:c2:83:12:90:28:a0:f9:4d:c4: 62:32:6e:75:8c:63:1d:e6:5a:3e:5d:53:f0:1e:ec: b4:0d:ec:31:ff:97:bf:60:2d:e2:22:28:e4:b4:b3: 9a:29:8b:58:92:ec:9d:07:46:73:46:63:a3:0a:a0: f9:57:f5:84:d6:2a:21:00:72:75:98:69:55:45:e7: d9:1d:38:9b:fc:35:82:b4:79:c1:e0:d5:68:ad:67: 61:e4:d3:ec:f9:5b:cd:67:65:da:b7:d6:75:a9:a7: 75:68:c9:1c:0a:61:d0:c0:b0:10:ee:c7:ff:71:e5: 93:a6:91:c7:a5:5d:42:ea:c4:1b:ee:fa:65:d7:d7: a6:9b:4e:4d:7a:de:16:f6:28:f3:91:66:60:11:a3: 03:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:63:46:27:70:02:48:D7:4D:12:23:E8:53:92:97:20:09:B0:25:EF X509v3 Authority Key Identifier: keyid:A2:1B:A7:0D:F8:EE:47:0F:E7:A6:03:85:B6:65:38:42:57:0E:D3:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/41405545-c35d-4de1-9618-44b5f417a303/1/A21BA70DF8EE470FE7A60385B6653842570ED3A4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:b5:dc:3a:fc:66:4e:82:12:32:14:77:20:95:ce:b2:79:5e: c8:f5:79:e5:88:b2:5d:e4:cb:9e:0f:0e:6a:45:21:30:c6:84: 0b:48:b0:bb:e9:56:15:b1:dd:0e:fe:1a:46:2d:7f:d5:48:21: 4d:9f:27:24:21:6b:d4:fa:33:ef:10:05:a3:10:18:a8:cc:8c: 99:26:d7:59:2b:7b:0f:13:75:b4:92:9e:5d:5f:1f:7f:5e:33: 8b:e0:4d:9a:ea:08:80:5d:4a:3a:7f:cb:96:e2:77:16:8e:8b: 68:2b:68:ec:af:af:35:97:5d:b5:92:62:02:49:4b:35:84:7d: 7b:79:92:c7:2c:70:fa:fc:06:ce:80:3a:3e:4f:da:fc:30:d9: 5e:94:83:af:e7:19:3e:cb:cd:5a:d3:3c:67:25:33:f8:f6:e6: 5c:71:a5:12:2a:ad:01:35:5e:67:ad:37:e6:9b:0b:5c:91:b2: 48:04:1b:93:ea:e1:4e:47:03:51:18:b7:d6:0d:be:b4:34:3f: 3a:ab:ac:08:53:91:8c:4f:9f:c2:6e:e1:d4:9a:19:db:05:ec: 86:e9:67:ae:68:ed:36:23:68:cb:89:32:59:37:fb:51:59:85: 83:00:61:93:47:a5:f2:47:1f:eb:00:92:91:b6:fc:41:98:53: 04:3a:f2:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULrTQnferxD9FbbRxkibLkBZjPEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1 NzBFRDNBNDAeFw0yNjAxMjQwMjM2MjVaFw0yNjAxMjcxMjU0MjVaMDMxMTAvBgNV BAMTKEQxNjM0NjI3NzAwMjQ4RDc0RDEyMjNFODUzOTI5NzIwMDlCMDI1RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp+xsl92I46ARsbb0TMlInbJDa Q4BlBSWt+O73MJor5gjOXoSYc8qT26zdDY7xdvFighv+pTmidVyDCBQ04mT1GKK2 7xUDFux6dtZqssDBBSmxq/2+EREEjGOwP1RAIsIi1iQBhoRHI3nrn9/cEcKDEpAo oPlNxGIybnWMYx3mWj5dU/Ae7LQN7DH/l79gLeIiKOS0s5opi1iS7J0HRnNGY6MK oPlX9YTWKiEAcnWYaVVF59kdOJv8NYK0ecHg1WitZ2Hk0+z5W81nZdq31nWpp3Vo yRwKYdDAsBDux/9x5ZOmkcelXULqxBvu+mXX16abTk163hb2KPORZmARowNBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0WNGJ3ACSNdNEiPoU5KXIAmwJe8wHwYDVR0j BBgwFoAUohunDfjuRw/npgOFtmU4QlcO06QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MTQwNTU0NS1jMzVkLTRkZTEtOTYxOC00NGI1ZjQxN2EzMDMvMS9BMjFCQTcwREY4 RUU0NzBGRTdBNjAzODVCNjY1Mzg0MjU3MEVEM0E0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4NDI1NzBF RDNBNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDE0MDU1NDUtYzM1ZC00ZGUxLTk2 MTgtNDRiNWY0MTdhMzAzLzEvQTIxQkE3MERGOEVFNDcwRkU3QTYwMzg1QjY2NTM4 NDI1NzBFRDNBNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAK13Dr8Zk6CEjIUdyCVzrJ5Xsj1eeWIsl3k y54PDmpFITDGhAtIsLvpVhWx3Q7+GkYtf9VIIU2fJyQha9T6M+8QBaMQGKjMjJkm 11krew8TdbSSnl1fH39eM4vgTZrqCIBdSjp/y5bidxaOi2graOyvrzWXXbWSYgJJ SzWEfXt5kscscPr8Bs6AOj5P2vww2V6Ug6/nGT7LzVrTPGclM/j25lxxpRIqrQE1 XmetN+abC1yRskgEG5Pq4U5HA1EYt9YNvrQ0PzqrrAhTkYxPn8Ju4dSaGdsF7Ibp Z65o7TYjaMuJMlk3+1FZhYMAYZNHpfJHH+sAkpG2/EGYUwQ68nk= -----END CERTIFICATE-----Generated at Mon Jan 26 10:58:11 2026 by rpki-client