This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: c5bgfzBZE5vGLu2phUGlI1dxrnbi3MQp93ORZmyzPzY= Subject key identifier: C8:3E:8D:40:33:D6:96:A5:AC:D4:D6:0F:14:E1:17:0E:49:8F:24:0C Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 6C0BA398A4A3801012781FCE7674046E03A61894 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 027B Signing time: Sun 25 Jan 2026 12:11:13 +0000 Manifest this update: Sun 25 Jan 2026 12:06:13 +0000 Manifest next update: Wed 28 Jan 2026 16:03:13 +0000 Files and hashes: 1: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: etYodgnJYh3trd5HBJwHsn5n2vL2wMwaYJQCzGIxOug=) 2: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: 0gXOJT38WPRdvZH/mvcMIDFy0eFxFO3CspBZZzjXpXE=) 3: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: RYTqfPbetHr4M45rLy4+KjVIb38cdCepj1lpZcHkwmk=) 4: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: LJlBxq8ymyHGerS3R49fpjBElb4mwDz4wakEqWAnKM4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:0b:a3:98:a4:a3:80:10:12:78:1f:ce:76:74:04:6e:03:a6:18:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Jan 25 12:06:13 2026 GMT Not After : Jan 28 16:03:13 2026 GMT Subject: CN=C83E8D4033D696A5ACD4D60F14E1170E498F240C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f1:6b:a1:7c:bb:f1:fe:46:03:a7:c9:cc:34: 07:19:a0:6a:f5:08:f5:c6:f6:b0:31:ca:3f:ef:88: 3b:6f:8e:2e:12:2f:20:86:8b:5d:a8:e9:59:14:6d: 34:5a:04:d1:d0:79:84:7f:8a:df:2a:72:59:10:c5: 7d:04:3c:8e:7c:dd:20:6c:42:66:7e:60:7b:f6:4a: 62:87:97:27:58:9e:ab:57:b2:0b:ff:b0:88:ea:5e: fe:47:9c:88:4e:a5:77:c3:b3:97:a3:f1:08:0a:fd: 10:ed:36:18:28:59:c9:4d:82:c7:d1:9f:ab:b1:ea: 9d:1c:63:c2:09:e2:94:46:73:99:14:60:ad:63:ab: f7:2e:79:75:1d:c3:7a:55:bb:79:28:22:bb:db:e6: 92:da:ef:0f:96:eb:59:ee:29:3c:a4:61:88:3d:22: 32:7d:f9:5f:60:8d:1a:1e:80:6e:e2:ac:13:ae:3b: ab:b7:04:4a:d3:18:0a:3d:81:5c:de:1b:a9:a4:36: 02:3e:c3:5f:89:26:63:b8:2b:5f:09:e1:44:e0:fe: 67:05:fe:3a:ce:a1:ea:1a:22:a0:d9:68:d7:7b:0a: 20:f1:2e:26:b1:0e:66:ba:7f:f2:40:04:01:6f:3f: 1c:28:de:4d:61:df:8b:49:68:04:6f:07:db:33:65: b5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:3E:8D:40:33:D6:96:A5:AC:D4:D6:0F:14:E1:17:0E:49:8F:24:0C X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:56:68:93:9d:03:d0:04:89:ae:40:41:a0:fb:7d:fc:3e:c3: 1f:7c:72:3c:7a:4f:3e:da:f6:18:b5:8d:35:f0:57:2e:58:d9: 9c:93:bb:a7:73:04:12:b8:88:09:19:61:be:10:8a:f1:f6:5f: 25:8c:e9:cb:f7:63:b4:6e:38:64:bb:96:a5:d8:b9:36:34:bf: 60:22:97:fd:57:64:77:7f:f8:da:94:d7:84:1a:c2:5c:5f:d8: b8:02:a3:b3:53:48:f2:04:12:58:f8:a0:e6:be:32:dc:88:93: a3:33:76:ed:15:fc:f6:17:30:06:fe:7f:27:b5:ce:5a:b2:a1: 86:22:05:09:26:54:4c:12:a2:3a:10:4d:75:70:c5:75:d5:a3: 01:06:c0:fe:3c:c2:a4:f8:20:05:14:3e:27:1f:03:a4:49:ca: 60:9c:58:01:df:fd:87:44:de:06:dc:04:79:60:8c:13:2e:13: 8b:eb:56:12:33:82:86:02:9e:77:fb:91:62:1c:53:c2:7a:a3: a0:18:8d:20:b2:b7:d9:90:0a:96:43:6e:88:7e:9a:0d:3a:5c: 05:12:78:b8:df:80:ff:fe:2e:12:ce:2c:25:ac:79:c6:51:b6: e7:f1:c3:89:8e:b2:fc:d8:65:b0:d9:c9:52:7f:e9:bf:fe:c7: 34:ee:53:a2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbAujmKSjgBASeB/OdnQEbgOmGJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNjAxMjUxMjA2MTNaFw0yNjAxMjgxNjAzMTNaMDMxMTAvBgNV BAMTKEM4M0U4RDQwMzNENjk2QTVBQ0Q0RDYwRjE0RTExNzBFNDk4RjI0MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM8WuhfLvx/kYDp8nMNAcZoGr1 CPXG9rAxyj/viDtvji4SLyCGi12o6VkUbTRaBNHQeYR/it8qclkQxX0EPI583SBs QmZ+YHv2SmKHlydYnqtXsgv/sIjqXv5HnIhOpXfDs5ej8QgK/RDtNhgoWclNgsfR n6ux6p0cY8IJ4pRGc5kUYK1jq/cueXUdw3pVu3koIrvb5pLa7w+W61nuKTykYYg9 IjJ9+V9gjRoegG7irBOuO6u3BErTGAo9gVzeG6mkNgI+w1+JJmO4K18J4UTg/mcF /jrOoeoaIqDZaNd7CiDxLiaxDma6f/JABAFvPxwo3k1h34tJaARvB9szZbU7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyD6NQDPWlqWs1NYPFOEXDkmPJAwwHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABFWaJOdA9AEia5AQaD7ffw+wx98cjx6Tz7a 9hi1jTXwVy5Y2ZyTu6dzBBK4iAkZYb4QivH2XyWM6cv3Y7RuOGS7lqXYuTY0v2Ai l/1XZHd/+NqU14Qawlxf2LgCo7NTSPIEElj4oOa+MtyIk6Mzdu0V/PYXMAb+fye1 zlqyoYYiBQkmVEwSojoQTXVwxXXVowEGwP48wqT4IAUUPicfA6RJymCcWAHf/YdE 3gbcBHlgjBMuE4vrVhIzgoYCnnf7kWIcU8J6o6AYjSCyt9mQCpZDboh+mg06XAUS eLjfgP/+LhLOLCWsecZRtufxw4mOsvzYZbDZyVJ/6b/+xzTuU6I= -----END CERTIFICATE-----Generated at Sun Jan 25 22:59:27 2026 by rpki-client