This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: BisHrT9KeBa082tugBlBq0X7T4YcOKYt6WDjQ0fOjjc= Subject key identifier: 98:CE:E2:95:D3:B3:63:95:89:BD:B2:18:DA:D7:48:B2:F6:70:44:F7 Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 63C731772098BF02297E6C8911C5796EC44351EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 0218 Signing time: Sat 24 Jan 2026 23:11:48 +0000 Manifest this update: Sat 24 Jan 2026 23:06:48 +0000 Manifest next update: Wed 28 Jan 2026 00:16:48 +0000 Files and hashes: 1: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: 7zBTS0bU7PgzGa8PCcebIzMScdeyLBIAzKr1yoDxbbo=) 2: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: aDPjpRT6pfd3T7ltNqLLQRA6RqqiOtEG5C4gW/hEaTI=) 3: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: 0GFIWUiUrqRfAE/w3eKveKOv4M+2LjJoosY6Pp8ypUc=) 4: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: Ekdk7XJ+4KobySEzdKIdG39Ajba+VuVMBPZNq7exOao=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 00:16:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c7:31:77:20:98:bf:02:29:7e:6c:89:11:c5:79:6e:c4:43:51:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: Jan 24 23:06:48 2026 GMT Not After : Jan 28 00:16:48 2026 GMT Subject: CN=98CEE295D3B3639589BDB218DAD748B2F67044F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e4:83:99:e0:37:ab:7c:31:7d:3d:0e:5e:c9: 6c:98:60:79:11:69:a2:f7:ae:e9:cc:4e:e1:10:8e: 23:20:96:7c:cc:49:22:3c:d6:e1:29:75:c5:aa:35: fb:87:63:74:fb:f3:14:0e:63:f1:26:ba:d9:9a:c8: 74:31:73:62:91:15:16:15:00:a7:b1:e0:a9:0d:f0: 1e:c5:76:48:97:c7:a0:97:21:c5:5a:91:dc:a5:e1: 8e:4c:cb:33:df:d7:bd:37:8b:04:e6:bd:2b:94:3a: d0:7c:87:fc:e7:8f:9a:8a:b4:4c:c8:f9:12:bc:a2: f0:c0:98:9d:1c:b8:1b:0a:84:59:bd:d2:a3:e1:d9: 0a:2f:5c:e9:b4:6f:5e:16:81:a5:7b:e4:ad:ca:d3: 49:ee:e1:ac:c9:bf:fc:f3:1e:5a:ad:0e:2e:19:f2: 3f:bc:d2:b8:52:5e:fe:ee:03:95:85:1c:a4:43:f8: af:a6:7e:0f:20:a1:a8:26:45:f7:9d:ef:3b:fd:78: 98:40:45:e8:e2:9a:dc:98:fb:7e:ea:db:5d:fa:6c: 0a:7a:70:e7:3f:84:cd:d5:c4:d0:01:18:da:a9:14: e7:0e:d8:70:fc:02:24:1b:26:68:a3:54:4a:24:33: ab:72:7a:57:1f:50:ee:99:3e:cd:ff:37:fd:6f:7c: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:CE:E2:95:D3:B3:63:95:89:BD:B2:18:DA:D7:48:B2:F6:70:44:F7 X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:80:22:60:5f:bc:8e:6d:e1:43:0f:0e:6f:0c:c8:f6:8d:41: d6:3e:bd:87:64:84:89:13:b4:c4:5e:e0:56:15:dd:c8:32:f7: 86:3a:63:4c:84:ee:af:53:a2:8d:7a:37:4a:67:2a:6f:66:8f: 9a:77:21:34:a6:b1:2b:f4:63:d4:3e:7f:b1:46:b9:4f:21:11: c7:7b:a5:2b:f4:1b:5f:94:a7:ee:f0:8f:77:d7:e7:cc:ec:82: 62:57:23:38:ee:39:57:e5:a5:0b:92:7e:86:87:e9:3c:db:75: 2a:05:da:b8:cf:ef:1a:45:14:9e:56:a5:e8:a8:11:32:44:59: 5a:75:e3:38:07:4f:cd:3d:46:02:25:79:8a:c9:0d:63:97:9d: 8f:8a:de:65:aa:24:4e:d8:81:f7:59:86:33:55:e6:e0:e2:fc: fe:c9:ef:d9:54:3c:15:81:f1:ed:b0:47:36:4d:57:2c:70:bd: bd:a7:a4:f8:2f:76:dc:21:4a:46:ed:57:11:d6:86:ff:d1:e4: a6:b3:55:7b:7b:c7:9c:c8:cd:10:d8:6c:48:29:d4:4a:c2:e3: eb:58:6f:f0:1a:0d:7b:58:9f:11:c5:9e:64:b2:bc:bc:c0:eb: 21:53:d3:ff:45:4d:f5:5c:4a:9c:14:ad:b3:58:d3:5d:bf:22: 92:7e:2e:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY8cxdyCYvwIpfmyJEcV5bsRDUeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNjAxMjQyMzA2NDhaFw0yNjAxMjgwMDE2NDhaMDMxMTAvBgNV BAMTKDk4Q0VFMjk1RDNCMzYzOTU4OUJEQjIxOERBRDc0OEIyRjY3MDQ0RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm5IOZ4DerfDF9PQ5eyWyYYHkR aaL3runMTuEQjiMglnzMSSI81uEpdcWqNfuHY3T78xQOY/EmutmayHQxc2KRFRYV AKex4KkN8B7FdkiXx6CXIcVakdyl4Y5MyzPf1703iwTmvSuUOtB8h/znj5qKtEzI +RK8ovDAmJ0cuBsKhFm90qPh2QovXOm0b14WgaV75K3K00nu4azJv/zzHlqtDi4Z 8j+80rhSXv7uA5WFHKRD+K+mfg8goagmRfed7zv9eJhARejimtyY+37q2136bAp6 cOc/hM3VxNABGNqpFOcO2HD8AiQbJmijVEokM6tyelcfUO6ZPs3/N/1vfFAjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmM7ildOzY5WJvbIY2tdIsvZwRPcwHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGKAImBfvI5t4UMPDm8MyPaNQdY+vYdkhIkT tMRe4FYV3cgy94Y6Y0yE7q9Too16N0pnKm9mj5p3ITSmsSv0Y9Q+f7FGuU8hEcd7 pSv0G1+Up+7wj3fX58zsgmJXIzjuOVflpQuSfoaH6TzbdSoF2rjP7xpFFJ5Wpeio ETJEWVp14zgHT809RgIleYrJDWOXnY+K3mWqJE7YgfdZhjNV5uDi/P7J79lUPBWB 8e2wRzZNVyxwvb2npPgvdtwhSkbtVxHWhv/R5KazVXt7x5zIzRDYbEgp1ErC4+tY b/AaDXtYnxHFnmSyvLzA6yFT0/9FTfVcSpwUrbNY012/IpJ+LgM= -----END CERTIFICATE-----Generated at Sun Jan 25 17:08:27 2026 by rpki-client