This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: 93AHfgfR1kMea1TLG1kMhFwTRFSXq6Tv6yV6iZ9qao4= Subject key identifier: 53:AF:81:62:6E:7D:D6:95:85:3A:B6:18:FD:67:17:E9:56:35:D0:DE Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 6EE22573E38D4E6064875C1FEA6BE4299E7CB3EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: B8 Signing time: Sat 24 Jan 2026 10:42:10 +0000 Manifest this update: Sat 24 Jan 2026 10:37:10 +0000 Manifest next update: Tue 27 Jan 2026 12:00:10 +0000 Files and hashes: 1: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: C3FKzuG4X+kWOKRcOxiO+fzWySL6H0NRGt7s6VJxYGQ=) 2: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: 4k5l0oKGlgrseypJOAcgbZ3voSGQS5pK7FIolyad81E=) 3: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: HqTyhMmIQNWyd9Uu39hBDh2ymSKez80mYyj1XdusXb0=) 4: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: tGZJC6gHp+rBRUU+fviXr/Qmv6Fq3jy2euNYPnmiMt4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 12:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:e2:25:73:e3:8d:4e:60:64:87:5c:1f:ea:6b:e4:29:9e:7c:b3:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Jan 24 10:37:10 2026 GMT Not After : Jan 27 12:00:10 2026 GMT Subject: CN=53AF81626E7DD695853AB618FD6717E95635D0DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:46:f9:e7:0b:c0:c9:ff:a3:4d:6a:65:52:95: 6d:d1:0a:6f:04:d4:d4:07:23:df:b3:34:35:f2:8a: ca:69:df:eb:29:a6:5f:52:f3:d4:94:24:a5:91:77: 55:74:31:a8:11:d3:6e:8f:99:7c:ef:c7:33:56:a2: 4a:fb:dc:83:c9:f7:19:98:e0:51:19:f6:91:3c:b4: 1f:5f:e3:c9:18:81:c4:bb:86:13:14:f9:e0:52:2e: 4b:24:26:fd:94:f2:1d:17:3b:6c:f5:ed:e7:a4:95: 47:9f:64:73:7f:6f:2f:5a:ff:0c:9d:5b:c1:a3:4e: dc:58:8a:8d:44:20:f8:80:96:b3:92:ad:07:75:38: f7:7c:c3:a5:f1:14:07:5d:8a:cf:6d:e3:f8:42:cd: b8:c8:70:2a:23:71:21:51:ab:4e:08:3e:e6:58:47: 7d:97:e8:8e:44:4a:8a:7c:4e:41:b0:ef:3d:46:b0: bb:21:a2:df:c0:76:29:88:b7:58:94:5a:4f:87:a0: 43:de:b0:56:06:64:ae:a1:9d:d8:68:4d:f2:20:fe: fb:0b:d6:0c:ab:ab:b4:8e:3f:99:8a:4f:26:4d:99: bc:96:6b:9b:81:fd:4b:35:c2:00:1f:5b:b4:83:22: e5:f3:b0:e9:ad:be:0b:e6:b2:0c:1c:bb:4d:52:7f: d7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:AF:81:62:6E:7D:D6:95:85:3A:B6:18:FD:67:17:E9:56:35:D0:DE X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:99:ca:74:9f:6b:50:1e:cf:31:13:94:92:b3:59:04:6b:ad: 2c:57:1a:d9:92:21:ec:e5:26:bd:ad:82:b3:af:44:f0:de:0d: bb:9c:9b:2e:ba:c9:44:d3:b9:42:71:be:c6:a7:42:78:00:93: 4f:7f:2c:cb:c1:c3:e1:e0:fa:a3:7c:a5:b5:14:d9:4a:67:0f: 86:8f:f3:db:92:e9:b9:0b:c7:1b:2f:9a:dd:c1:c2:b2:9a:62: cb:17:2d:d7:d9:80:d1:ac:e3:04:a3:85:f8:be:60:a5:cc:4b: 5f:7c:94:a9:94:4d:18:cc:24:26:b1:a9:ed:71:44:a0:ef:e6: d3:8c:f6:be:c8:66:92:ed:e7:2c:89:bf:20:93:63:e4:99:0e: 02:71:25:11:ab:8b:72:1e:54:21:03:0e:f6:cf:fe:0c:eb:e0: e6:f4:a0:14:2e:f3:b9:d7:62:78:17:f6:84:c1:75:46:22:4f: 0a:13:d6:28:9a:27:07:24:04:55:b5:26:ab:f1:2e:f1:24:7b: 19:89:ff:66:b8:c4:a0:5e:bf:d7:20:49:8e:08:e9:30:5a:2a: 70:fc:7f:00:d6:30:5b:92:92:45:2d:06:55:bd:00:c0:6c:06: 34:af:28:c6:e9:12:01:4c:5b:e9:47:87:71:2b:c7:59:ef:ca: 12:cc:e9:67 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbuIlc+ONTmBkh1wf6mvkKZ58s+owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNjAxMjQxMDM3MTBaFw0yNjAxMjcxMjAwMTBaMDMxMTAvBgNV BAMTKDUzQUY4MTYyNkU3REQ2OTU4NTNBQjYxOEZENjcxN0U5NTYzNUQwREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYRvnnC8DJ/6NNamVSlW3RCm8E 1NQHI9+zNDXyispp3+sppl9S89SUJKWRd1V0MagR026PmXzvxzNWokr73IPJ9xmY 4FEZ9pE8tB9f48kYgcS7hhMU+eBSLkskJv2U8h0XO2z17eeklUefZHN/by9a/wyd W8GjTtxYio1EIPiAlrOSrQd1OPd8w6XxFAddis9t4/hCzbjIcCojcSFRq04IPuZY R32X6I5ESop8TkGw7z1GsLshot/AdimIt1iUWk+HoEPesFYGZK6hndhoTfIg/vsL 1gyrq7SOP5mKTyZNmbyWa5uB/Us1wgAfW7SDIuXzsOmtvgvmsgwcu01Sf9e/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUU6+BYm591pWFOrYY/WcX6VY10N4wHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACWZynSfa1AezzETlJKzWQRrrSxXGtmSIezl Jr2tgrOvRPDeDbucmy66yUTTuUJxvsanQngAk09/LMvBw+Hg+qN8pbUU2UpnD4aP 89uS6bkLxxsvmt3BwrKaYssXLdfZgNGs4wSjhfi+YKXMS198lKmUTRjMJCaxqe1x RKDv5tOM9r7IZpLt5yyJvyCTY+SZDgJxJRGri3IeVCEDDvbP/gzr4Ob0oBQu87nX YngX9oTBdUYiTwoT1iiaJwckBFW1JqvxLvEkexmJ/2a4xKBev9cgSY4I6TBaKnD8 fwDWMFuSkkUtBlW9AMBsBjSvKMbpEgFMW+lHh3Erx1nvyhLM6Wc= -----END CERTIFICATE-----Generated at Mon Jan 26 01:21:00 2026 by rpki-client