This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: 8DK8vxonPpx5yTUFOdcG7iD5U/MQzzcgEZ3w3+MS2t8= Subject key identifier: 54:9C:CB:F5:F9:62:95:89:C3:10:9E:AA:32:84:DA:69:05:49:78:85 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 491F398A2FBE692CDE8E508EE10AC90214995026 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 01BC Signing time: Sat 24 Jan 2026 14:01:09 +0000 Manifest this update: Sat 24 Jan 2026 13:56:09 +0000 Manifest next update: Tue 27 Jan 2026 18:48:09 +0000 Files and hashes: 1: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: AiUjoNLWK8bsjBYzAgNhmvkQ64vw7ZsungoSmbZPeos=) 2: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 3: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 4: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 18:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:1f:39:8a:2f:be:69:2c:de:8e:50:8e:e1:0a:c9:02:14:99:50:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Jan 24 13:56:09 2026 GMT Not After : Jan 27 18:48:09 2026 GMT Subject: CN=549CCBF5F9629589C3109EAA3284DA6905497885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0b:3c:4c:66:ad:fa:e0:12:b5:d3:76:77:05: ef:4f:3e:c8:42:63:e9:8d:50:7d:31:41:43:1c:02: 0d:1a:f6:8e:50:bf:58:a6:7b:9b:ff:d8:75:41:dc: ce:20:51:3b:d0:e8:7c:9e:0c:95:cf:44:67:63:33: 74:cf:40:d9:b7:76:fd:9d:e4:e7:3c:2d:27:60:13: fb:cd:61:e8:c0:11:4b:45:e8:c6:48:d5:54:1e:79: 2c:67:69:d6:74:ad:d3:01:9d:ce:ae:67:78:97:b2: fe:f3:58:38:7d:8b:98:48:16:f5:58:ec:c0:7c:da: df:63:74:8b:01:db:7d:2c:f4:86:47:eb:93:fd:84: 7e:09:57:c4:c5:8f:cb:d0:0c:02:d7:28:32:af:93: 06:3b:1b:61:a7:f9:8c:06:00:a5:fd:2f:84:3a:5a: 5c:3c:34:d4:45:15:bc:ba:2b:ed:00:52:dc:30:2b: cc:87:c6:e7:2c:f9:74:c6:3b:11:84:e6:03:a9:a8: c7:ee:28:25:8a:5b:d3:35:2d:d8:04:21:5f:25:d0: a8:54:4d:04:65:97:8b:8c:59:d9:9a:3f:e1:49:eb: 91:ba:a2:68:e2:ad:73:50:da:90:29:7e:e8:db:17: 4d:47:bc:24:7c:be:d7:52:f1:93:d0:79:44:4c:c0: a9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:9C:CB:F5:F9:62:95:89:C3:10:9E:AA:32:84:DA:69:05:49:78:85 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:0f:f0:35:f2:f9:60:27:03:8f:15:88:d9:cd:72:f5:9c:3a: 52:1a:08:8e:82:49:f5:5d:91:87:a8:b0:b1:27:5a:19:c8:3e: ce:8d:df:2d:98:20:fa:b5:36:1e:93:63:a0:f6:24:2f:90:59: e5:79:c2:b6:1f:ae:db:da:80:ab:04:e2:b5:01:47:12:62:00: 1d:4e:7e:b6:58:8e:08:6d:c9:3f:8e:ea:f1:e9:9c:1f:da:90: bd:f1:d5:18:3f:35:75:b4:21:91:8b:b3:10:08:18:b9:cc:b8: 6b:e1:96:63:86:90:1e:4a:26:38:c6:04:19:52:79:0b:a4:a8: cd:ca:99:a4:4d:dd:6b:0f:77:cf:98:fa:50:48:25:0b:a8:0e: 05:cc:d5:d0:c2:61:12:84:39:99:c9:17:a1:44:2a:56:02:0d: a2:fa:68:18:48:2c:9a:57:0e:b1:7d:53:ba:50:7a:e7:42:75: e2:be:33:59:a4:50:9c:2a:59:6a:0a:89:3e:6d:a9:4a:ee:f0: 1c:eb:16:9a:57:5c:3a:da:61:48:5e:96:c8:65:fa:f0:63:06: af:35:31:3a:ba:75:d2:35:d8:2e:c2:51:57:c3:03:84:a9:b0: 93:6a:dc:ad:9f:99:7b:0a:f5:02:03:da:81:2a:ae:64:1f:0e: fd:c0:3b:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSR85ii++aSzejlCO4QrJAhSZUCYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNjAxMjQxMzU2MDlaFw0yNjAxMjcxODQ4MDlaMDMxMTAvBgNV BAMTKDU0OUNDQkY1Rjk2Mjk1ODlDMzEwOUVBQTMyODREQTY5MDU0OTc4ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9CzxMZq364BK103Z3Be9PPshC Y+mNUH0xQUMcAg0a9o5Qv1ime5v/2HVB3M4gUTvQ6HyeDJXPRGdjM3TPQNm3dv2d 5Oc8LSdgE/vNYejAEUtF6MZI1VQeeSxnadZ0rdMBnc6uZ3iXsv7zWDh9i5hIFvVY 7MB82t9jdIsB230s9IZH65P9hH4JV8TFj8vQDALXKDKvkwY7G2Gn+YwGAKX9L4Q6 Wlw8NNRFFby6K+0AUtwwK8yHxucs+XTGOxGE5gOpqMfuKCWKW9M1LdgEIV8l0KhU TQRll4uMWdmaP+FJ65G6omjirXNQ2pApfujbF01HvCR8vtdS8ZPQeURMwKlHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVJzL9flilYnDEJ6qMoTaaQVJeIUwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABYP8DXy+WAnA48ViNnNcvWcOlIaCI6CSfVd kYeosLEnWhnIPs6N3y2YIPq1Nh6TY6D2JC+QWeV5wrYfrtvagKsE4rUBRxJiAB1O frZYjghtyT+O6vHpnB/akL3x1Rg/NXW0IZGLsxAIGLnMuGvhlmOGkB5KJjjGBBlS eQukqM3KmaRN3WsPd8+Y+lBIJQuoDgXM1dDCYRKEOZnJF6FEKlYCDaL6aBhILJpX DrF9U7pQeudCdeK+M1mkUJwqWWoKiT5tqUru8BzrFppXXDraYUhelshl+vBjBq81 MTq6ddI12C7CUVfDA4SpsJNq3K2fmXsK9QID2oEqrmQfDv3AO/Y= -----END CERTIFICATE-----Generated at Mon Jan 26 02:42:17 2026 by rpki-client