This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: n66qWNXl6t0e0+qIv5eEW9WjzmtYC7Ojo7HK1MYHcR4= Subject key identifier: BF:D7:60:09:1C:74:68:8F:14:22:6E:12:7B:B9:1F:92:AB:73:C7:30 Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 637A2185BA7252CB4A4C3239CA7EC56A31AD9035 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 0272 Signing time: Sat 24 Jan 2026 11:32:03 +0000 Manifest this update: Sat 24 Jan 2026 11:27:03 +0000 Manifest next update: Tue 27 Jan 2026 14:40:03 +0000 Files and hashes: 1: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: 3Ox4igFrXbjanezgEx9JJf9fy2Ee3ZviiPvqIzt0wUU=) 2: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: pN4ghT04j5zTe3lEB7yWGrreTGcCSMxjpmVgBxWJn+Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 14:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:7a:21:85:ba:72:52:cb:4a:4c:32:39:ca:7e:c5:6a:31:ad:90:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Jan 24 11:27:03 2026 GMT Not After : Jan 27 14:40:03 2026 GMT Subject: CN=BFD760091C74688F14226E127BB91F92AB73C730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3e:d6:6e:69:4d:86:ae:fd:87:ad:03:21:74: 47:3f:24:9a:ca:c0:04:fc:c6:06:d4:05:57:23:38: ac:7b:c6:95:7e:24:d1:a8:ad:af:7f:5f:73:3c:93: a5:86:5f:be:c0:6d:9c:64:cd:5d:2b:c4:5b:9a:7a: cd:43:54:02:00:d8:fe:af:92:07:f8:df:9e:a3:5c: d9:3f:26:20:83:a2:d3:ac:ce:26:5f:9e:39:93:6c: a0:91:95:f7:b9:4c:e6:fe:52:7f:88:d2:e9:f6:99: f4:61:14:e3:c3:a9:82:9e:88:7e:15:4d:a8:1f:31: c5:01:79:b3:69:ca:28:5d:1a:1f:16:4c:c3:41:ff: 58:f5:4d:4c:c3:ee:dc:59:b1:f0:e3:26:62:47:26: 15:92:f4:34:34:d9:b6:79:f6:c3:d7:0d:e4:8e:35: 00:54:3b:51:12:ee:fd:ac:ac:d8:e2:cc:20:b8:18: 31:25:bd:c5:f9:50:ef:2f:09:7f:7c:d9:ef:5c:39: b8:9c:91:a4:48:5a:67:dd:0b:3d:d9:19:b5:5b:e6: 55:fe:79:2e:5b:d1:77:01:60:34:0b:68:4c:58:ae: af:44:5d:df:03:e6:c4:b6:41:3b:fc:ef:e5:64:33: 36:e0:a9:92:bd:38:47:05:3d:b5:64:5d:96:29:1f: 8d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D7:60:09:1C:74:68:8F:14:22:6E:12:7B:B9:1F:92:AB:73:C7:30 X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:80:e4:7d:52:5f:ff:27:46:bc:98:cd:ad:34:44:58:c6:fb: 8e:9a:6a:99:42:e3:8c:ef:1a:8c:d4:2d:54:43:67:d2:44:58: c9:cb:8b:94:3f:07:ae:61:f0:1d:71:92:8a:b7:e0:13:7c:e8: 8b:cc:5a:13:f0:3d:42:44:e3:ef:d0:c9:c3:a7:5e:5e:5a:0d: 4a:9e:ff:1f:e0:21:ac:f7:c7:16:da:86:27:0b:f8:82:fe:7d: 95:23:03:33:cf:14:c2:62:82:5f:e9:a0:4c:da:89:90:56:93: d0:66:4b:ed:24:80:5a:70:9d:59:a3:4b:85:21:0f:e3:89:d9: 0a:4e:2d:04:be:28:08:2f:b8:5b:78:bf:6d:81:19:a0:95:d7: 20:eb:ae:ec:01:21:6e:87:00:d9:be:69:79:bc:4b:04:fa:fc: fe:57:0d:c3:20:8d:e3:dc:b5:d6:50:e1:fe:62:4b:66:f5:45: 9f:47:79:6a:4b:6a:3f:c2:34:ae:d3:84:32:9b:f6:c5:d8:ab: 90:7a:9f:db:97:ec:b5:dd:e6:5c:48:56:b2:b8:8a:01:00:3b: 6a:5b:eb:54:bf:92:4d:d4:19:c1:4e:c2:2a:81:d4:c2:89:92: b1:3d:be:09:6f:e9:cd:cf:a2:e0:94:8a:1c:c7:a6:ca:84:e4: cf:ba:24:f9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY3ohhbpyUstKTDI5yn7FajGtkDUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNjAxMjQxMTI3MDNaFw0yNjAxMjcxNDQwMDNaMDMxMTAvBgNV BAMTKEJGRDc2MDA5MUM3NDY4OEYxNDIyNkUxMjdCQjkxRjkyQUI3M0M3MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgPtZuaU2Grv2HrQMhdEc/JJrK wAT8xgbUBVcjOKx7xpV+JNGora9/X3M8k6WGX77AbZxkzV0rxFuaes1DVAIA2P6v kgf4356jXNk/JiCDotOsziZfnjmTbKCRlfe5TOb+Un+I0un2mfRhFOPDqYKeiH4V TagfMcUBebNpyihdGh8WTMNB/1j1TUzD7txZsfDjJmJHJhWS9DQ02bZ59sPXDeSO NQBUO1ES7v2srNjizCC4GDElvcX5UO8vCX982e9cObickaRIWmfdCz3ZGbVb5lX+ eS5b0XcBYDQLaExYrq9EXd8D5sS2QTv87+VkMzbgqZK9OEcFPbVkXZYpH413AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUv9dgCRx0aI8UIm4Se7kfkqtzxzAwHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADCA5H1SX/8nRryYza00RFjG+46aaplC44zv GozULVRDZ9JEWMnLi5Q/B65h8B1xkoq34BN86IvMWhPwPUJE4+/QycOnXl5aDUqe /x/gIaz3xxbahicL+IL+fZUjAzPPFMJigl/poEzaiZBWk9BmS+0kgFpwnVmjS4Uh D+OJ2QpOLQS+KAgvuFt4v22BGaCV1yDrruwBIW6HANm+aXm8SwT6/P5XDcMgjePc tdZQ4f5iS2b1RZ9HeWpLaj/CNK7ThDKb9sXYq5B6n9uX7LXd5lxIVrK4igEAO2pb 61S/kk3UGcFOwiqB1MKJkrE9vglv6c3PouCUihzHpsqE5M+6JPk= -----END CERTIFICATE-----Generated at Sun Jan 25 18:53:38 2026 by rpki-client