This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft File: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft (raw, json) Hash identifier: X/JzkE1fxiGvVDiq7lsrys6dlqsnFTwr6Boo+X5tSvs= Subject key identifier: 9F:9A:0A:85:B8:D7:A3:16:9A:2C:83:F6:45:7A:3F:4B:C3:C7:C1:CD Authority key identifier: D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 Certificate issuer: /CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Certificate serial: 52F65FF77A2B90E90041B41E7B949ABBF188887E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft Manifest number: AF Signing time: Sun 25 Jan 2026 04:52:03 +0000 Manifest this update: Sun 25 Jan 2026 04:47:03 +0000 Manifest next update: Wed 28 Jan 2026 13:47:03 +0000 Files and hashes: 1: 3135372e32302e3132312e302f32342d3234203d3e20313439343039.roa (hash: OSAo9QWqyVe1VudNV/7NSJlH0xk8Gb3rIp16xTTxTOk=) 2: D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl (hash: iZZLrdjbRcTZ2qBSmmOqTGHK+6ZWQuHG/1/FMgErytI=) 3: 3135372e32302e3132302e302f32342d3234203d3e20313532343133.roa (hash: kToxDWGLAx7wPnTumpRERHYAC4YJ3ZjsOgXXR/j0FWs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 13:47:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:f6:5f:f7:7a:2b:90:e9:00:41:b4:1e:7b:94:9a:bb:f1:88:88:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D78FE5AE870EF221FD95775CFEAFEAD5ACF32368 Validity Not Before: Jan 25 04:47:03 2026 GMT Not After : Jan 28 13:47:03 2026 GMT Subject: CN=9F9A0A85B8D7A3169A2C83F6457A3F4BC3C7C1CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:de:ac:7a:3b:89:c8:0a:4b:33:bb:ef:b1:4a: 8d:4f:9a:f6:2a:5f:b8:a9:2b:74:16:c1:98:6b:9d: 86:52:f3:df:2f:60:42:c0:49:5c:ab:3a:56:87:b0: c2:42:dd:13:23:95:a9:6d:6e:90:3c:94:36:9f:99: e6:79:e7:37:cb:c2:96:58:11:61:da:77:31:a5:8d: 9a:1c:2a:c7:3c:84:fa:82:1f:be:8d:12:1b:4d:f0: 01:4e:68:d3:01:6e:cd:ad:72:08:dd:77:37:28:45: 84:d5:9d:63:f3:c6:e0:78:2f:ee:94:bd:bf:c8:c6: c1:7b:fa:d1:41:f0:8d:38:60:c1:2d:f3:ac:d7:71: 78:37:9f:26:f4:11:c1:a9:74:a5:d6:bc:da:f2:a3: 7b:c0:8a:e4:fb:b0:a5:9a:48:30:bb:b6:fa:c5:fb: 98:d3:12:01:ff:2d:28:8d:c4:ca:dc:1a:8b:6f:38: 45:e9:9e:b6:05:6f:84:ce:b9:d3:1d:80:f4:e6:6c: 07:b3:0f:38:df:d4:18:bb:9b:fe:83:fc:e3:8c:37: 22:b4:4c:6c:88:4b:bc:fb:32:75:0c:bc:28:64:cc: d5:50:bf:d0:6a:f4:e6:5f:23:76:1e:c0:eb:32:31: 4c:35:8e:4c:3c:aa:42:fa:1f:5e:d4:4d:eb:10:1c: ea:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:9A:0A:85:B8:D7:A3:16:9A:2C:83:F6:45:7A:3F:4B:C3:C7:C1:CD X509v3 Authority Key Identifier: keyid:D7:8F:E5:AE:87:0E:F2:21:FD:95:77:5C:FE:AF:EA:D5:AC:F3:23:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4644263a-8ee2-4eec-a810-5733ccaf51e3/0/D78FE5AE870EF221FD95775CFEAFEAD5ACF32368.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:8a:a4:eb:3d:a9:e0:24:3a:08:b0:61:4d:e8:33:d6:89:0d: 3e:07:d3:7a:bc:09:36:82:ac:b3:4b:5e:a8:1e:f5:28:65:46: 5e:da:99:cf:6d:24:c0:57:26:d1:50:e2:5e:72:93:4a:bc:4d: a8:7e:15:29:14:68:a7:6f:10:52:55:31:38:ad:89:96:0c:46: ec:63:fb:c7:ce:a9:66:82:54:f6:56:5e:44:95:0a:b1:e7:25: b2:12:0c:9d:4e:67:8a:1d:63:6a:7e:02:83:27:ac:5f:98:d1: 87:b8:8a:ee:96:e6:31:ab:0c:54:b3:f6:fa:b9:43:87:b5:d9: 51:4b:41:f3:36:8c:eb:08:d6:1d:09:1f:22:0e:10:89:3d:57: 0a:5f:f0:81:28:d8:b4:0c:07:22:48:0a:d1:9c:69:3d:9a:f9: 10:b3:24:ce:cd:de:dc:85:11:3d:04:e3:e4:dd:bc:3b:0a:9c: 79:9a:63:16:eb:fa:d8:c2:91:24:ab:bf:0a:52:41:98:71:40: b9:0a:be:a6:e0:45:6f:be:11:fc:fc:d7:3a:31:0e:16:cf:e6: b5:25:67:b1:a2:f9:e4:d6:2d:67:54:fc:fa:d5:d9:67:e0:92: 05:03:44:3a:cb:b5:a0:09:f9:18:f0:91:95:b8:9c:ca:65:ee: ce:df:57:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUvZf93orkOkAQbQee5Sau/GIiH4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVB Q0YzMjM2ODAeFw0yNjAxMjUwNDQ3MDNaFw0yNjAxMjgxMzQ3MDNaMDMxMTAvBgNV BAMTKDlGOUEwQTg1QjhEN0EzMTY5QTJDODNGNjQ1N0EzRjRCQzNDN0MxQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC3qx6O4nICkszu++xSo1PmvYq X7ipK3QWwZhrnYZS898vYELASVyrOlaHsMJC3RMjlaltbpA8lDafmeZ55zfLwpZY EWHadzGljZocKsc8hPqCH76NEhtN8AFOaNMBbs2tcgjddzcoRYTVnWPzxuB4L+6U vb/IxsF7+tFB8I04YMEt86zXcXg3nyb0EcGpdKXWvNryo3vAiuT7sKWaSDC7tvrF +5jTEgH/LSiNxMrcGotvOEXpnrYFb4TOudMdgPTmbAezDzjf1Bi7m/6D/OOMNyK0 TGyIS7z7MnUMvChkzNVQv9Bq9OZfI3YewOsyMUw1jkw8qkL6H17UTesQHOppAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUn5oKhbjXoxaaLIP2RXo/S8PHwc0wHwYDVR0j BBgwFoAU14/lrocO8iH9lXdc/q/q1azzI2gwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NjQ0MjYzYS04ZWUyLTRlZWMtYTgxMC01NzMzY2NhZjUxZTMvMC9ENzhGRTVBRTg3 MEVGMjIxRkQ5NTc3NUNGRUFGRUFENUFDRjMyMzY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVBRDVBQ0Yz MjM2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDY0NDI2M2EtOGVlMi00ZWVjLWE4 MTAtNTczM2NjYWY1MWUzLzAvRDc4RkU1QUU4NzBFRjIyMUZEOTU3NzVDRkVBRkVB RDVBQ0YzMjM2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJCKpOs9qeAkOgiwYU3oM9aJDT4H03q8CTaC rLNLXqge9ShlRl7amc9tJMBXJtFQ4l5yk0q8Tah+FSkUaKdvEFJVMTitiZYMRuxj +8fOqWaCVPZWXkSVCrHnJbISDJ1OZ4odY2p+AoMnrF+Y0Ye4iu6W5jGrDFSz9vq5 Q4e12VFLQfM2jOsI1h0JHyIOEIk9Vwpf8IEo2LQMByJICtGcaT2a+RCzJM7N3tyF ET0E4+TdvDsKnHmaYxbr+tjCkSSrvwpSQZhxQLkKvqbgRW++Efz81zoxDhbP5rUl Z7Gi+eTWLWdU/PrV2WfgkgUDRDrLtaAJ+RjwkZW4nMpl7s7fV0s= -----END CERTIFICATE-----Generated at Mon Jan 26 07:11:34 2026 by rpki-client