This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: KJZW1xvNP42kTySQGsWB6iLDKYTzOOfTWksQ/FGDMqI= Subject key identifier: D3:CE:33:FB:83:B1:DE:60:1A:FD:0F:15:DC:F2:0C:82:7B:AF:68:00 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 39F264F6CD61811E919BC76A5E10FCCC722F193A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 0550 Signing time: Sun 25 Jan 2026 09:52:11 +0000 Manifest this update: Sun 25 Jan 2026 09:47:11 +0000 Manifest next update: Wed 28 Jan 2026 14:49:11 +0000 Files and hashes: 1: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) 2: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: PNg74UmEwtquqzErVJPk5zUli2svTLHGYsAURoYqnjo=) 3: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 4: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 5: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:f2:64:f6:cd:61:81:1e:91:9b:c7:6a:5e:10:fc:cc:72:2f:19:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Jan 25 09:47:11 2026 GMT Not After : Jan 28 14:49:11 2026 GMT Subject: CN=D3CE33FB83B1DE601AFD0F15DCF20C827BAF6800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9a:c2:81:c1:63:36:8a:a0:f0:f6:85:93:fe: b4:94:8e:0d:d4:07:92:f0:05:e3:04:42:64:df:a2: 86:ed:8b:57:d5:2c:f2:ef:bc:c0:95:de:5c:75:20: ee:5b:96:ac:85:c8:6f:a2:e9:dc:f3:05:3b:ce:49: 78:e8:57:f4:8c:9a:68:9e:fe:86:f3:d9:fa:ba:b5: 71:0b:3f:3e:85:b6:64:28:df:ca:d6:f3:6c:ab:35: ec:04:fa:5d:f1:78:58:91:21:de:7e:c2:3c:08:15: 32:c6:47:5d:b9:00:40:46:45:91:bc:5d:3e:c9:ef: 8e:66:e2:b1:5b:ce:91:7b:ef:66:22:bd:38:d0:07: 76:4c:89:27:ee:04:31:ef:e4:23:8c:52:5e:b7:9a: 9e:37:38:68:3a:88:52:45:09:59:cb:0d:4d:f7:4e: 6f:21:e4:70:2c:cb:2a:d6:37:5c:3b:5b:67:6a:83: 6d:db:2c:2a:d7:11:4d:e0:fc:0e:26:ec:ca:04:84: 53:ab:d5:d0:ec:e3:b3:d2:00:ee:86:07:62:a0:d4: 2d:6e:9b:b7:68:d1:13:5d:71:4c:3c:d4:a3:f0:44: 38:d3:18:57:a4:78:13:c3:7f:ce:28:fa:b1:67:d6: bf:a7:dd:dd:7f:86:62:50:5e:11:df:4d:0a:f1:c7: 1e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:CE:33:FB:83:B1:DE:60:1A:FD:0F:15:DC:F2:0C:82:7B:AF:68:00 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:67:40:88:bf:1c:6c:58:8d:e9:74:8f:48:a6:bd:3c:7b:25: a0:5a:c4:11:cf:3d:60:67:2f:b6:4e:46:d6:7c:42:4e:43:0e: eb:a8:ff:1d:4e:11:e4:4e:d7:d9:dd:be:08:f6:00:55:11:cf: 2e:6d:5d:08:96:35:cf:5f:62:74:fe:6c:c6:61:7b:01:34:b6: ec:04:f3:2b:ea:a1:1e:5f:91:b5:d5:92:95:04:ed:41:60:3b: db:da:97:72:ad:20:61:e9:97:9a:55:7b:3e:b8:6d:aa:bb:1d: 9c:47:3d:ca:bb:19:46:77:ac:ac:85:0e:b2:1c:a8:6b:83:ed: 94:97:8e:ae:20:43:10:02:65:05:da:f2:b6:9e:9a:64:79:32: cb:52:2c:6d:b7:58:e8:d8:c9:54:56:1d:34:3f:11:69:dd:49: 6d:f5:aa:96:3c:27:f8:57:f1:e5:a8:f9:da:82:24:73:3a:7a: d9:8b:6a:81:a6:eb:f2:9d:91:b3:f5:7d:54:85:79:d3:47:13: 9c:cf:e0:28:1f:7e:30:99:27:8a:87:1b:66:14:b9:b5:4d:a5: 5f:88:2c:da:7d:a5:a6:f5:c4:ae:eb:b1:4a:15:7f:d9:d4:31: dd:a9:f3:3f:bb:2d:1c:b1:ad:36:69:af:7e:2c:5e:d0:4b:e8: 97:c3:31:1f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOfJk9s1hgR6Rm8dqXhD8zHIvGTowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNjAxMjUwOTQ3MTFaFw0yNjAxMjgxNDQ5MTFaMDMxMTAvBgNV BAMTKEQzQ0UzM0ZCODNCMURFNjAxQUZEMEYxNURDRjIwQzgyN0JBRjY4MDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKmsKBwWM2iqDw9oWT/rSUjg3U B5LwBeMEQmTfoobti1fVLPLvvMCV3lx1IO5blqyFyG+i6dzzBTvOSXjoV/SMmmie /obz2fq6tXELPz6FtmQo38rW82yrNewE+l3xeFiRId5+wjwIFTLGR125AEBGRZG8 XT7J745m4rFbzpF772YivTjQB3ZMiSfuBDHv5COMUl63mp43OGg6iFJFCVnLDU33 Tm8h5HAsyyrWN1w7W2dqg23bLCrXEU3g/A4m7MoEhFOr1dDs47PSAO6GB2Kg1C1u m7do0RNdcUw81KPwRDjTGFekeBPDf84o+rFn1r+n3d1/hmJQXhHfTQrxxx65AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU084z+4Ox3mAa/Q8V3PIMgnuvaAAwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIBnQIi/HGxYjel0j0imvTx7JaBaxBHPPWBn L7ZORtZ8Qk5DDuuo/x1OEeRO19ndvgj2AFURzy5tXQiWNc9fYnT+bMZhewE0tuwE 8yvqoR5fkbXVkpUE7UFgO9val3KtIGHpl5pVez64baq7HZxHPcq7GUZ3rKyFDrIc qGuD7ZSXjq4gQxACZQXa8raemmR5MstSLG23WOjYyVRWHTQ/EWndSW31qpY8J/hX 8eWo+dqCJHM6etmLaoGm6/KdkbP1fVSFedNHE5zP4CgffjCZJ4qHG2YUubVNpV+I LNp9pab1xK7rsUoVf9nUMd2p8z+7LRyxrTZpr34sXtBL6JfDMR8= -----END CERTIFICATE-----Generated at Sun Jan 25 18:44:32 2026 by rpki-client