This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft (raw, json) Hash identifier: lLCHszBpH9wESOSs0ZD6IdKyUcpseRq5hqxZvmT6hP4= Subject key identifier: 7C:FF:2B:25:71:43:47:C5:F7:01:2E:82:63:B3:28:D0:E0:86:ED:40 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 1A3F9BCC48F8F1241233AC5293A30FD6A2A87778 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft Manifest number: 0248 Signing time: Sat 24 Jan 2026 12:51:30 +0000 Manifest this update: Sat 24 Jan 2026 12:46:30 +0000 Manifest next update: Tue 27 Jan 2026 13:38:30 +0000 Files and hashes: 1: 3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa (hash: D9RmffxIYaHEobvTe2y7ZZC1r4KqpQ5ll315JKMW8os=) 2: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (hash: N0XCMCw3s4kIWnX0GxZG8K7vrea02I3zr3x0DohynM4=) 3: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (hash: CeJsPXYZaSv3nt0/slveGAtFgQcdV+Sze89sGyxFRnw=) 4: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl (hash: MAcO2+Qy8q47M/jni3kiAPSkazWaQ1ZncaujEdlDJ/g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 13:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3f:9b:cc:48:f8:f1:24:12:33:ac:52:93:a3:0f:d6:a2:a8:77:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Jan 24 12:46:30 2026 GMT Not After : Jan 27 13:38:30 2026 GMT Subject: CN=7CFF2B25714347C5F7012E8263B328D0E086ED40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fc:a7:86:78:02:7f:90:bd:f4:32:c7:fe:90: d0:d2:b8:ba:84:4f:52:16:03:08:7c:5b:0e:c4:06: 44:6e:bb:ea:a7:45:a8:3c:e8:56:82:a1:bb:51:3e: f6:d1:7f:cf:a2:2c:17:44:5f:f2:bb:d2:32:50:06: 36:a0:36:6e:8c:03:dc:2c:78:21:7f:0f:9b:ab:3b: 04:a5:d0:d7:2b:d6:17:ce:5c:63:74:41:55:53:b9: 2b:56:29:33:84:53:ce:0b:2e:29:e9:ac:fe:fc:d3: d1:e4:7c:6b:4e:36:22:82:42:37:7d:39:97:3a:ec: 81:b8:1d:e0:46:2a:25:a6:23:26:d2:fd:57:5b:77: 6a:34:bd:8b:ee:55:5b:e5:b4:89:24:5d:0f:5e:fa: a4:df:80:e7:cb:ff:3b:5d:9b:05:a7:43:e4:e2:32: e9:96:1f:b6:0d:f1:30:c7:ab:41:cc:49:e4:e5:e6: 4e:aa:3d:89:f2:8b:ff:85:38:ed:eb:4d:37:7d:41: 0c:d1:b3:71:4a:11:0b:8f:19:38:ee:32:9d:95:8e: af:97:69:a1:c1:32:a1:68:73:8d:14:67:4f:e5:b0: 39:42:72:38:5c:6d:32:c0:66:15:a0:8d:16:68:a1: b7:b4:56:a8:4b:a5:2b:e4:60:0a:92:de:ed:e7:1e: 0b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:FF:2B:25:71:43:47:C5:F7:01:2E:82:63:B3:28:D0:E0:86:ED:40 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b6:be:4a:86:8a:30:5a:29:c5:bc:f5:3d:f8:54:be:87:84: dc:7e:41:40:30:67:3d:5a:17:ac:bf:cb:54:03:cc:d1:f8:7f: 21:d1:6c:34:ff:13:e3:e2:0b:ed:0f:61:28:8d:55:d7:eb:41: a0:0e:a3:9c:9d:8a:2f:73:16:9e:b4:5e:94:c4:e1:55:b2:c4: b6:98:15:64:c3:6d:c7:fd:36:da:f3:00:ad:96:99:09:1c:c6: 2c:bc:80:3d:32:e1:20:cc:9a:e2:28:a1:7a:8d:0f:a8:22:82: 97:b8:a5:6a:47:2f:dd:c1:17:fa:4b:14:8e:a9:a1:7d:57:7c: 15:f1:3c:67:84:62:7c:79:4a:00:38:b7:92:64:fa:fa:d7:83: 68:9d:7c:66:c2:25:e4:8a:34:e8:42:f4:9f:06:89:48:e9:7d: ec:6c:02:ff:36:06:99:dd:51:0f:87:b4:41:c4:a1:95:49:61: aa:91:6e:68:6a:39:31:0e:98:e2:3e:c2:37:9c:9c:eb:f0:44: a6:e4:39:03:b0:dc:44:b1:9e:c2:6a:78:05:c3:28:e1:ef:ad: 3a:f0:3b:1e:b3:60:50:1e:3c:5c:c1:d3:1a:ff:17:6b:33:fc: 28:6a:a5:56:ab:58:b5:07:b3:71:b6:98:97:2e:df:50:41:cf: 7f:06:37:86 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGj+bzEj48SQSM6xSk6MP1qKod3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNjAxMjQxMjQ2MzBaFw0yNjAxMjcxMzM4MzBaMDMxMTAvBgNV BAMTKDdDRkYyQjI1NzE0MzQ3QzVGNzAxMkU4MjYzQjMyOEQwRTA4NkVENDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn/KeGeAJ/kL30Msf+kNDSuLqE T1IWAwh8Ww7EBkRuu+qnRag86FaCobtRPvbRf8+iLBdEX/K70jJQBjagNm6MA9ws eCF/D5urOwSl0Ncr1hfOXGN0QVVTuStWKTOEU84LLinprP7809HkfGtONiKCQjd9 OZc67IG4HeBGKiWmIybS/Vdbd2o0vYvuVVvltIkkXQ9e+qTfgOfL/ztdmwWnQ+Ti MumWH7YN8TDHq0HMSeTl5k6qPYnyi/+FOO3rTTd9QQzRs3FKEQuPGTjuMp2Vjq+X aaHBMqFoc40UZ0/lsDlCcjhcbTLAZhWgjRZoobe0VqhLpSvkYAqS3u3nHgutAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfP8rJXFDR8X3AS6CY7Mo0OCG7UAwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDNhZDUyMjYtNjU2ZC00NjFkLTlj ZmYtYzgzYWMwNzQyZjIwLzAvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRB ODQxOEMzRUE3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGy2vkqGijBaKcW89T34VL6HhNx+QUAwZz1a F6y/y1QDzNH4fyHRbDT/E+PiC+0PYSiNVdfrQaAOo5ydii9zFp60XpTE4VWyxLaY FWTDbcf9NtrzAK2WmQkcxiy8gD0y4SDMmuIooXqND6gigpe4pWpHL93BF/pLFI6p oX1XfBXxPGeEYnx5SgA4t5Jk+vrXg2idfGbCJeSKNOhC9J8GiUjpfexsAv82Bpnd UQ+HtEHEoZVJYaqRbmhqOTEOmOI+wjecnOvwRKbkOQOw3ESxnsJqeAXDKOHvrTrw Ox6zYFAePFzB0xr/F2sz/ChqpVarWLUHs3G2mJcu31BBz38GN4Y= -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:41 2026 by rpki-client