This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft File: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft (raw, json) Hash identifier: M7A3n0CTMa4Wmo+nTpgGLY4OB4WL07fuWCaW4/T6NEc= Subject key identifier: B5:09:39:63:AF:B9:31:91:3F:E8:42:BE:38:8C:66:FC:5F:77:AA:BB Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 25EF1CE4B568FA478BC196D769693A8EFCAC4906 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft Manifest number: 0241 Signing time: Sat 24 Jan 2026 16:01:29 +0000 Manifest this update: Sat 24 Jan 2026 15:56:29 +0000 Manifest next update: Wed 28 Jan 2026 01:48:29 +0000 Files and hashes: 1: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl (hash: ucUGMcRGSImoV3clydv8G86rxoMjr/GTf7QM8gHgMMo=) 2: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (hash: O62FaU7sfJ7WBpQAG4VOlHgoxy59qAGq0CxPAvacDkY=) 3: 3130332e3131312e3131382e302f32342d3234203d3e20313439393531.roa (hash: FK++k16W5o1G1ymHbgbWCr22LclnvM/8CkDyIWrtSXU=) 4: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (hash: SQEisBhY0DV53zHr/sBQtcOCDd0Bbr0+fAzbajSxd3s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 01:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ef:1c:e4:b5:68:fa:47:8b:c1:96:d7:69:69:3a:8e:fc:ac:49:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Jan 24 15:56:29 2026 GMT Not After : Jan 28 01:48:29 2026 GMT Subject: CN=B5093963AFB931913FE842BE388C66FC5F77AABB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:77:65:97:0f:f0:e2:a3:1e:f6:32:ad:3e:26: ef:6b:ef:7d:55:c8:f4:71:2b:4e:eb:7c:d8:54:c1: 5c:bd:fa:ef:8f:18:f5:5c:46:63:10:f9:c8:b6:df: cd:d1:6e:c0:7a:0a:4c:36:75:02:b8:ef:df:f9:06: 4e:0f:cf:16:05:12:bf:29:10:70:d3:24:1c:25:7e: 44:01:3f:d1:6d:80:c0:e1:b1:9d:2c:54:d3:72:00: 6e:51:95:f4:5b:0a:8f:fa:f2:f9:bb:18:49:ba:e0: c8:b5:81:01:37:3e:78:83:e3:4c:db:0b:ce:57:63: 19:83:94:2d:72:a6:11:51:6f:8f:a2:00:09:10:bc: a7:d5:91:e7:27:ec:6f:d0:f1:7b:52:25:48:e6:04: dd:ec:f4:9a:23:87:57:10:de:dc:b4:53:a4:98:3c: 34:90:56:36:37:5e:ad:e8:dc:05:5e:9c:42:cc:a7: 89:b2:c2:bb:a3:6a:0a:3b:42:e6:45:03:34:4f:6f: 32:0c:f1:a8:a2:2a:dd:62:b6:8f:a1:95:1d:75:1d: 76:45:ea:0e:25:6d:2b:c6:98:03:f2:ad:fc:3e:1c: 1d:ff:95:f8:8c:9f:96:2f:8e:66:21:af:40:85:96: 81:11:6d:8a:09:d3:4f:3a:3b:dc:93:d9:f5:e9:12: 51:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:09:39:63:AF:B9:31:91:3F:E8:42:BE:38:8C:66:FC:5F:77:AA:BB X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:e4:2f:e0:f7:2f:6c:25:5e:f8:cf:38:06:c3:cf:18:f3:2d: 8a:ff:75:c1:2a:4c:25:24:39:fd:39:87:fb:9b:23:c8:b8:05: f5:03:1f:f9:72:4c:b6:2d:8a:68:ed:e6:e2:59:70:ab:76:c4: eb:b7:e5:43:45:de:64:70:b1:52:e0:61:21:65:87:ce:0e:f4: 8d:f7:9e:a0:cb:0f:f1:e6:fc:e5:c2:fe:72:b8:e7:a2:17:ac: dc:1f:37:6c:ec:02:67:f9:41:11:16:9d:7b:ce:05:cd:4d:5f: ec:77:e9:e5:5e:5c:4c:f4:5a:61:6d:2a:4e:91:20:5d:f6:4b: 64:f5:05:60:8f:23:6c:d6:da:99:b8:ea:bd:d9:79:85:3f:b2: 48:a4:ef:0e:47:d3:13:87:17:b6:09:5f:2b:36:04:22:ea:30: 62:2c:e1:5a:b6:17:69:47:1e:e5:6a:d8:34:d7:6e:51:27:70: ba:97:71:97:3d:96:c8:cb:e9:e4:08:6e:6a:81:c2:59:9a:e6: 92:ed:3d:1e:0a:a1:92:82:3b:6e:95:eb:39:1e:49:55:1d:fd: 19:9a:6f:51:ff:e2:4d:e1:45:89:f4:ea:38:93:32:7c:4c:dd: 41:92:2e:62:67:6d:1f:3c:ad:1f:db:1d:7d:2c:ed:06:fd:61: e1:f8:9d:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJe8c5LVo+keLwZbXaWk6jvysSQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNjAxMjQxNTU2MjlaFw0yNjAxMjgwMTQ4MjlaMDMxMTAvBgNV BAMTKEI1MDkzOTYzQUZCOTMxOTEzRkU4NDJCRTM4OEM2NkZDNUY3N0FBQkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2d2WXD/Diox72Mq0+Ju9r731V yPRxK07rfNhUwVy9+u+PGPVcRmMQ+ci2383RbsB6Ckw2dQK479/5Bk4PzxYFEr8p EHDTJBwlfkQBP9FtgMDhsZ0sVNNyAG5RlfRbCo/68vm7GEm64Mi1gQE3PniD40zb C85XYxmDlC1yphFRb4+iAAkQvKfVkecn7G/Q8XtSJUjmBN3s9Jojh1cQ3ty0U6SY PDSQVjY3Xq3o3AVenELMp4mywrujago7QuZFAzRPbzIM8aiiKt1ito+hlR11HXZF 6g4lbSvGmAPyrfw+HB3/lfiMn5YvjmYhr0CFloERbYoJ0086O9yT2fXpElFbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtQk5Y6+5MZE/6EK+OIxm/F93qrswHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTFmMTZjNDUtOTZmYi00YzkyLTgw NGUtNjRiMGJmMjgwMzAyLzAvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFC MkQ1N0IxRTM1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABTkL+D3L2wlXvjPOAbDzxjzLYr/dcEqTCUk Of05h/ubI8i4BfUDH/lyTLYtimjt5uJZcKt2xOu35UNF3mRwsVLgYSFlh84O9I33 nqDLD/Hm/OXC/nK456IXrNwfN2zsAmf5QREWnXvOBc1NX+x36eVeXEz0WmFtKk6R IF32S2T1BWCPI2zW2pm46r3ZeYU/skik7w5H0xOHF7YJXys2BCLqMGIs4Vq2F2lH HuVq2DTXblEncLqXcZc9lsjL6eQIbmqBwlma5pLtPR4KoZKCO26V6zkeSVUd/Rma b1H/4k3hRYn06jiTMnxM3UGSLmJnbR88rR/bHX0s7Qb9YeH4nXY= -----END CERTIFICATE-----Generated at Sun Jan 25 20:38:59 2026 by rpki-client