This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft File: 843FDF32A52D11795BBFB0918ABF926E0A210870.mft (raw, json) Hash identifier: harv8D7sAshtBRpnarMkpKpUnycFyBunCHpmW2w86g4= Subject key identifier: B7:37:BA:9A:67:45:48:D0:81:B3:FF:D5:C8:4B:AE:54:BB:7A:64:4A Authority key identifier: 84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 Certificate issuer: /CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Certificate serial: 441BADE1B0FD3CB95CC887848A3970E22A7A582E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject info access: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft Manifest number: 013C Signing time: Fri 23 Jan 2026 20:32:22 +0000 Manifest this update: Fri 23 Jan 2026 20:27:22 +0000 Manifest next update: Mon 26 Jan 2026 22:33:22 +0000 Files and hashes: 1: 843FDF32A52D11795BBFB0918ABF926E0A210870.crl (hash: 8UD4nrTDcdmuHJ+MrQRKSo/18r5d13LVaJ0PEC5NDNo=) 2: 3231302e38372e3132342e302f32332d3234203d3e20313532303539.roa (hash: EWhTaEy0kSyTN6Oh9f79SCw3rvXkaSbLCftfTIrzMKE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 22:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:1b:ad:e1:b0:fd:3c:b9:5c:c8:87:84:8a:39:70:e2:2a:7a:58:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843FDF32A52D11795BBFB0918ABF926E0A210870 Validity Not Before: Jan 23 20:27:22 2026 GMT Not After : Jan 26 22:33:22 2026 GMT Subject: CN=B737BA9A674548D081B3FFD5C84BAE54BB7A644A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3e:f8:af:fd:68:0d:f0:bc:d5:91:25:6a:5e: bf:15:4c:64:89:48:11:c2:d0:c9:ad:f6:52:42:34: 9e:53:d4:01:01:fd:e1:0d:15:dc:b2:a8:18:d6:34: 6e:56:c2:26:32:a4:18:9c:c5:ae:91:3d:bc:dc:23: 4f:cf:06:85:b1:bc:18:51:06:87:11:5e:e2:00:4b: ba:5e:b4:ae:fd:e8:f0:2e:38:9a:91:dd:61:e9:1a: 10:fd:6c:4c:b3:a7:2f:94:8d:49:92:ab:74:e0:40: 72:23:02:b3:82:2b:0d:90:0a:b0:41:8d:0b:3a:ff: 25:22:8a:10:be:af:6d:c2:01:2c:9a:6b:95:97:fb: 99:09:75:6c:71:f7:f6:e8:53:30:22:f1:3e:1f:5e: da:2e:bc:0b:1d:ca:f1:84:5e:c1:4d:ac:7d:34:7c: 1b:98:fd:67:e8:04:e6:8a:08:70:df:91:6c:01:73: b9:65:0a:a0:70:da:93:ef:af:d0:a4:2d:ab:be:9a: b5:bf:81:3a:d2:30:1d:b1:15:4a:98:46:30:06:25: 2a:c2:12:38:ee:5d:1b:d1:a7:b8:f4:29:e3:65:af: 73:da:88:52:19:b5:83:6b:72:9e:ea:97:55:91:bd: a7:d1:ad:7d:20:57:6b:b0:40:a0:aa:0a:3f:e8:b0: b4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:37:BA:9A:67:45:48:D0:81:B3:FF:D5:C8:4B:AE:54:BB:7A:64:4A X509v3 Authority Key Identifier: keyid:84:3F:DF:32:A5:2D:11:79:5B:BF:B0:91:8A:BF:92:6E:0A:21:08:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/843FDF32A52D11795BBFB0918ABF926E0A210870.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/57be8b7c-232f-47e8-9cdd-8817d39b70ea/0/843FDF32A52D11795BBFB0918ABF926E0A210870.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:32:0f:fe:e9:bd:8c:f4:e2:53:e0:d0:aa:ff:89:2a:81:40: a6:c5:db:df:3e:26:ce:06:a3:43:6e:4b:8b:41:96:9b:a4:08: 7a:43:95:99:1f:29:6c:cf:82:b5:a2:da:9f:e0:bc:6d:6a:60: 34:97:20:0e:35:be:91:b2:f7:da:e3:ee:a1:e6:da:4c:a2:ee: 6b:d0:da:3d:ca:2c:23:74:dc:93:57:8e:8e:d7:e4:80:b6:ba: e7:3f:44:0d:ae:36:13:be:6f:cc:41:46:d7:71:f9:f6:ba:aa: 2c:0c:19:a9:55:62:8f:94:09:84:e3:04:bd:94:e5:a6:3e:57: 35:9c:fc:5d:c3:59:6d:f5:c1:6f:c3:17:16:ee:cf:45:74:df: 25:a4:26:8f:df:17:e4:f2:85:43:c1:e4:b9:67:d0:a4:97:ae: 48:1a:88:92:a0:3a:1f:48:d1:76:06:f2:f1:3e:6b:82:37:a9: 71:d3:04:f7:75:aa:12:8c:3a:82:80:e2:87:82:99:fa:ec:28: b5:50:ae:8c:71:60:0a:05:af:85:83:72:8b:46:af:87:d7:c4: 5f:b2:fb:85:0e:d7:91:af:05:6e:71:ee:92:f5:c4:44:ac:34: 57:47:e5:32:89:d5:66:89:48:75:e7:38:a0:b6:d3:29:b1:02: 97:89:67:05 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURBut4bD9PLlcyIeEijlw4ip6WC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUw QTIxMDg3MDAeFw0yNjAxMjMyMDI3MjJaFw0yNjAxMjYyMjMzMjJaMDMxMTAvBgNV BAMTKEI3MzdCQTlBNjc0NTQ4RDA4MUIzRkZENUM4NEJBRTU0QkI3QTY0NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyPviv/WgN8LzVkSVqXr8VTGSJ SBHC0Mmt9lJCNJ5T1AEB/eENFdyyqBjWNG5WwiYypBicxa6RPbzcI0/PBoWxvBhR BocRXuIAS7petK796PAuOJqR3WHpGhD9bEyzpy+UjUmSq3TgQHIjArOCKw2QCrBB jQs6/yUiihC+r23CASyaa5WX+5kJdWxx9/boUzAi8T4fXtouvAsdyvGEXsFNrH00 fBuY/WfoBOaKCHDfkWwBc7llCqBw2pPvr9CkLau+mrW/gTrSMB2xFUqYRjAGJSrC EjjuXRvRp7j0KeNlr3PaiFIZtYNrcp7ql1WRvafRrX0gV2uwQKCqCj/osLTvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtze6mmdFSNCBs//VyEuuVLt6ZEowHwYDVR0j BBgwFoAUhD/fMqUtEXlbv7CRir+SbgohCHAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 N2JlOGI3Yy0yMzJmLTQ3ZTgtOWNkZC04ODE3ZDM5YjcwZWEvMC84NDNGREYzMkE1 MkQxMTc5NUJCRkIwOTE4QUJGOTI2RTBBMjEwODcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjkyNkUwQTIx MDg3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTdiZThiN2MtMjMyZi00N2U4LTlj ZGQtODgxN2QzOWI3MGVhLzAvODQzRkRGMzJBNTJEMTE3OTVCQkZCMDkxOEFCRjky NkUwQTIxMDg3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGsyD/7pvYz04lPg0Kr/iSqBQKbF298+Js4G o0NuS4tBlpukCHpDlZkfKWzPgrWi2p/gvG1qYDSXIA41vpGy99rj7qHm2kyi7mvQ 2j3KLCN03JNXjo7X5IC2uuc/RA2uNhO+b8xBRtdx+fa6qiwMGalVYo+UCYTjBL2U 5aY+VzWc/F3DWW31wW/DFxbuz0V03yWkJo/fF+TyhUPB5Lln0KSXrkgaiJKgOh9I 0XYG8vE+a4I3qXHTBPd1qhKMOoKA4oeCmfrsKLVQroxxYAoFr4WDcotGr4fXxF+y +4UO15GvBW5x7pL1xESsNFdH5TKJ1WaJSHXnOKC20ymxApeJZwU= -----END CERTIFICATE-----Generated at Sun Jan 25 18:46:50 2026 by rpki-client