This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: GBhgnJAEErPi1G7RMvqBoiLvJ0v4UcK9hUH0q/r9kbc= Subject key identifier: B0:E0:E7:29:9D:F5:E9:82:9A:70:8D:94:57:61:7F:B8:1E:0E:84:65 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 602199ECC5A933CB53FBC302B665E452074FA905 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 0301 Signing time: Fri 23 Jan 2026 19:01:16 +0000 Manifest this update: Fri 23 Jan 2026 18:56:16 +0000 Manifest next update: Mon 26 Jan 2026 22:50:16 +0000 Files and hashes: 1: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: QdIixnzSq8N8sCH+dxKebIKtXdrr8qVttS8Xci0wB7M=) 2: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM=) 3: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: ea+FRU1ZHoqLLFJCDKqCurhJ6cWjhL0pKJecgEAVXOs=) 4: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: QO9yzDb4CC7G7ZrOt9x3m3LlZY080vHY8ADNw1G145c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 22:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:21:99:ec:c5:a9:33:cb:53:fb:c3:02:b6:65:e4:52:07:4f:a9:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Jan 23 18:56:16 2026 GMT Not After : Jan 26 22:50:16 2026 GMT Subject: CN=B0E0E7299DF5E9829A708D9457617FB81E0E8465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:48:c5:27:36:2c:ed:84:09:0f:77:ad:75:15: b4:66:7b:c0:ee:a2:2c:c4:04:e7:04:97:d1:01:2d: 94:e5:ff:aa:62:df:6e:1b:68:f6:2d:86:f5:02:d2: 5c:be:22:1d:db:3d:1a:63:48:0e:fb:83:7a:9c:90: 5a:e0:46:c2:8d:8a:53:df:1f:c4:55:fe:8c:c6:10: db:c9:c6:b4:cf:10:0a:1a:64:17:6d:8f:3b:8e:97: b7:37:8b:0f:9d:d3:6a:d2:8d:51:6d:0a:a6:de:49: be:93:1a:75:8a:ee:d7:fd:12:b0:1a:2d:62:42:cc: 1e:ef:1d:62:dc:21:1e:af:e1:48:af:b8:9d:f0:22: f9:68:f7:3e:ea:bc:d4:52:d9:5a:ff:f1:68:e6:ea: 63:92:a4:19:7f:80:bc:53:1f:f2:b5:c0:60:af:d5: fc:5e:0d:dc:9e:e6:06:b5:7a:88:40:af:0d:1f:fc: f0:7a:d0:31:4c:7c:68:32:93:21:eb:8a:47:8e:80: de:ea:5d:2c:06:7c:35:f8:d8:c1:54:08:9d:93:ed: 83:d9:61:d4:4b:1a:04:05:8d:35:62:14:4a:b9:99: 47:ac:57:57:8e:f7:79:79:ee:11:0c:a4:17:e9:25: 26:06:ce:fd:04:00:da:fe:7f:16:ba:50:f6:96:ae: 1f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E0:E7:29:9D:F5:E9:82:9A:70:8D:94:57:61:7F:B8:1E:0E:84:65 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:80:1c:8c:63:e6:f3:76:f6:54:a7:4e:66:6e:70:6f:33:c1: 59:32:5e:78:78:2b:13:af:81:f6:e2:2b:99:f3:e7:c6:02:14: bc:84:75:95:87:6f:9c:a9:0f:3b:5a:e7:3e:8d:94:ca:1c:0d: 63:16:1d:69:df:47:aa:b7:ce:bb:b4:92:51:e5:a6:9b:12:0c: 9e:f5:6d:de:46:50:ac:0b:04:01:82:d5:02:69:64:2b:c2:66: 74:02:f2:a3:38:fd:d8:31:03:3a:ef:5d:32:2a:0f:53:ae:9c: 95:31:2f:75:6d:e2:27:98:46:cd:73:8e:b9:85:94:9d:1e:38: 91:9e:50:40:96:0a:45:1f:ea:4f:1b:5e:bd:a5:cb:5e:6d:e3: 12:98:ab:c2:b5:84:5b:cf:cf:4f:8d:ae:0d:63:d9:6d:10:7e: ef:31:df:32:f1:03:ac:e5:c4:64:b5:b6:2b:fc:ce:7b:64:a1: 33:f4:ee:8b:21:67:01:fc:4e:65:db:6c:6f:76:e1:de:96:60: f9:5c:2c:36:f4:5a:08:20:30:5e:c3:e8:dc:42:bc:0e:63:b0: ad:24:6d:19:c5:d5:02:79:d8:0f:ce:d9:d7:dd:d9:0a:1f:99: b3:2c:73:df:99:9e:1c:49:c2:1e:49:c9:47:9e:4c:a1:01:d5: 2f:50:e9:66 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYCGZ7MWpM8tT+8MCtmXkUgdPqQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNjAxMjMxODU2MTZaFw0yNjAxMjYyMjUwMTZaMDMxMTAvBgNV BAMTKEIwRTBFNzI5OURGNUU5ODI5QTcwOEQ5NDU3NjE3RkI4MUUwRTg0NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwSMUnNizthAkPd611FbRme8Du oizEBOcEl9EBLZTl/6pi324baPYthvUC0ly+Ih3bPRpjSA77g3qckFrgRsKNilPf H8RV/ozGENvJxrTPEAoaZBdtjzuOl7c3iw+d02rSjVFtCqbeSb6TGnWK7tf9ErAa LWJCzB7vHWLcIR6v4UivuJ3wIvlo9z7qvNRS2Vr/8Wjm6mOSpBl/gLxTH/K1wGCv 1fxeDdye5ga1eohArw0f/PB60DFMfGgykyHrikeOgN7qXSwGfDX42MFUCJ2T7YPZ YdRLGgQFjTViFEq5mUesV1eO93l57hEMpBfpJSYGzv0EANr+fxa6UPaWrh8NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsODnKZ316YKacI2UV2F/uB4OhGUwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALCAHIxj5vN29lSnTmZucG8zwVkyXnh4KxOv gfbiK5nz58YCFLyEdZWHb5ypDzta5z6NlMocDWMWHWnfR6q3zru0klHlppsSDJ71 bd5GUKwLBAGC1QJpZCvCZnQC8qM4/dgxAzrvXTIqD1OunJUxL3Vt4ieYRs1zjrmF lJ0eOJGeUECWCkUf6k8bXr2ly15t4xKYq8K1hFvPz0+Nrg1j2W0Qfu8x3zLxA6zl xGS1tiv8zntkoTP07oshZwH8TmXbbG924d6WYPlcLDb0WgggMF7D6NxCvA5jsK0k bRnF1QJ52A/O2dfd2QofmbMsc9+ZnhxJwh5JyUeeTKEB1S9Q6WY= -----END CERTIFICATE-----Generated at Sun Jan 25 18:58:35 2026 by rpki-client