This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft File: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft (raw, json) Hash identifier: 9BV5hGzYE4QFW46qXlE7TBY4PS1pUdt9BMhPxdURVss= Subject key identifier: 88:43:F8:66:BA:A0:F4:DB:E9:0C:38:CF:01:84:21:5F:C1:74:00:0D Authority key identifier: 42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA Certificate issuer: /CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Certificate serial: 756EA0B7BA2BBEF1919C5C27839F58C8555B810F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft Manifest number: 0219 Signing time: Sun 25 Jan 2026 16:51:26 +0000 Manifest this update: Sun 25 Jan 2026 16:46:26 +0000 Manifest next update: Wed 28 Jan 2026 19:39:26 +0000 Files and hashes: 1: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl (hash: UoLRB8vf/fSvF/oJGNGsX7dsH0rHvaN142f6QNcjSIA=) 2: 3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa (hash: Hm8P4hacYfkZNd8sZfNbLj4+ngt9DzF5s+/x8t3BFqA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:6e:a0:b7:ba:2b:be:f1:91:9c:5c:27:83:9f:58:c8:55:5b:81:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Validity Not Before: Jan 25 16:46:26 2026 GMT Not After : Jan 28 19:39:26 2026 GMT Subject: CN=8843F866BAA0F4DBE90C38CF0184215FC174000D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ea:a4:60:cf:9c:a8:3c:4d:49:51:b1:03:6b: 4f:b8:36:43:1b:ae:2f:25:07:50:47:6b:8b:d5:4a: 02:28:0c:16:c9:0e:72:d6:8c:bc:e5:53:63:c6:69: 1a:96:95:ef:63:19:5a:1e:d9:6f:c7:5e:72:0e:f1: 9f:13:4e:81:f2:de:a8:4a:99:df:c9:70:06:c0:90: 77:a7:2a:f4:b3:32:11:ed:01:5c:28:49:09:56:4b: 10:b8:39:88:14:40:2c:a3:e3:6f:8c:51:51:cf:6c: f4:6b:c9:c2:c1:b2:ac:0e:9b:49:dc:5b:b8:a1:f2: 05:8a:81:a4:69:68:dd:e1:69:74:87:1b:5b:f8:f7: 15:a2:32:fa:7a:3e:b9:e3:71:44:67:e2:d1:b8:8f: c2:70:00:6b:b7:31:ff:36:5f:4f:e1:28:7a:54:b5: 33:2b:1a:82:06:65:16:6c:a7:3f:13:a4:b7:5e:57: b1:00:26:dc:c7:1e:9d:e0:13:08:54:f1:e5:87:7e: 65:3b:c1:99:35:f9:99:04:f4:35:0a:98:ad:df:23: 4e:08:6c:c9:ca:a8:17:16:82:cb:cb:c8:38:35:52: 81:e6:09:ac:37:00:00:82:bd:e7:65:64:49:fa:70: 46:4c:a2:de:d3:cb:2c:bb:f2:0d:71:17:99:e2:a7: 19:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:43:F8:66:BA:A0:F4:DB:E9:0C:38:CF:01:84:21:5F:C1:74:00:0D X509v3 Authority Key Identifier: keyid:42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1b:ef:8c:de:b6:22:de:98:d8:d3:18:03:65:84:32:93:11: a5:d3:a8:89:7a:4f:dc:92:9e:99:f6:cb:e5:48:8b:e4:7e:2e: 9e:d7:4e:00:c0:af:99:e7:05:09:fb:0e:11:21:d5:8c:12:86: 97:a3:2f:3d:60:e5:02:49:c3:6d:eb:27:da:8b:46:3c:4c:88: 51:81:53:2a:2b:9e:a8:e8:8a:f6:cd:75:53:c2:1e:fe:89:6e: 10:58:36:22:81:88:d0:e7:83:0d:e4:46:fc:9e:58:f9:93:41: eb:83:8a:f6:34:ce:bf:29:82:5d:6b:e6:46:af:1a:6b:dd:fa: ce:f8:4e:6b:1a:56:00:28:ce:c5:06:27:17:18:4d:64:50:21: a4:b5:65:24:08:f1:db:b6:a8:5b:17:9a:b2:c9:59:87:b5:ef: 50:a7:f8:50:ff:bd:a0:51:2b:d6:f5:9f:c2:17:61:51:83:ce: f2:e4:ca:b7:af:66:f9:f5:60:b3:fe:f0:d5:7a:30:8d:bb:e7: 5e:4c:ff:aa:fe:af:32:e4:16:2f:f3:48:ee:d1:17:18:6e:ab: ba:03:a4:c5:c7:0e:45:7d:63:e4:9d:b8:b2:72:1f:da:27:38: 92:cd:cc:c4:54:9f:42:21:87:55:10:4c:c9:08:cc:c7:42:7d: ee:22:59:1a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdW6gt7orvvGRnFwng59YyFVbgQ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3 RkIwQ0VDQTAeFw0yNjAxMjUxNjQ2MjZaFw0yNjAxMjgxOTM5MjZaMDMxMTAvBgNV BAMTKDg4NDNGODY2QkFBMEY0REJFOTBDMzhDRjAxODQyMTVGQzE3NDAwMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT6qRgz5yoPE1JUbEDa0+4NkMb ri8lB1BHa4vVSgIoDBbJDnLWjLzlU2PGaRqWle9jGVoe2W/HXnIO8Z8TToHy3qhK md/JcAbAkHenKvSzMhHtAVwoSQlWSxC4OYgUQCyj42+MUVHPbPRrycLBsqwOm0nc W7ih8gWKgaRpaN3haXSHG1v49xWiMvp6PrnjcURn4tG4j8JwAGu3Mf82X0/hKHpU tTMrGoIGZRZspz8TpLdeV7EAJtzHHp3gEwhU8eWHfmU7wZk1+ZkE9DUKmK3fI04I bMnKqBcWgsvLyDg1UoHmCaw3AACCvedlZEn6cEZMot7Tyyy78g1xF5nipxmZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiEP4Zrqg9NvpDDjPAYQhX8F0AA0wHwYDVR0j BBgwFoAUQoFz31iwwW2PuS+B80LWAX+wzsowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWY4NDI3OC1lMDZkLTQxMTktYmE0NC01YzMyOTY4YThiYmQvMC80MjgxNzNERjU4 QjBDMTZEOEZCOTJGODFGMzQyRDYwMTdGQjBDRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3RkIw Q0VDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjVmODQyNzgtZTA2ZC00MTE5LWJh NDQtNWMzMjk2OGE4YmJkLzAvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2 MDE3RkIwQ0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC8b74zetiLemNjTGANlhDKTEaXTqIl6T9yS npn2y+VIi+R+Lp7XTgDAr5nnBQn7DhEh1YwShpejLz1g5QJJw23rJ9qLRjxMiFGB UyornqjoivbNdVPCHv6JbhBYNiKBiNDngw3kRvyeWPmTQeuDivY0zr8pgl1r5kav Gmvd+s74TmsaVgAozsUGJxcYTWRQIaS1ZSQI8du2qFsXmrLJWYe171Cn+FD/vaBR K9b1n8IXYVGDzvLkyrevZvn1YLP+8NV6MI27515M/6r+rzLkFi/zSO7RFxhuq7oD pMXHDkV9Y+SduLJyH9onOJLNzMRUn0Ihh1UQTMkIzMdCfe4iWRo= -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:21 2026 by rpki-client