This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft File: 604C441ACDF554F380D7FED8F68B2EC7FB780413.mft (raw, json) Hash identifier: m5QYoz9dzRnhi0T4iMrclphV1In53xwPWVKvWnfVpnQ= Subject key identifier: F9:60:F3:80:69:0F:04:2F:B6:C3:9C:98:EB:EB:6A:D1:C9:C9:BD:A0 Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 310AB90B245A9E968C6717FDB3F75449AFFCD03E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft Manifest number: 020B Signing time: Sat 24 Jan 2026 22:31:07 +0000 Manifest this update: Sat 24 Jan 2026 22:26:07 +0000 Manifest next update: Wed 28 Jan 2026 06:22:07 +0000 Files and hashes: 1: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (hash: EQbr12ySqIrNTM9njp7Wb0XN8yJtB1BDEx2u9gpZun8=) 2: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (hash: OjD7igAi8uIoux+rVxGtZEh2dpv8xELOea0gwWs5+6I=) 3: 604C441ACDF554F380D7FED8F68B2EC7FB780413.crl (hash: d05cOT6jEhbQ0/fqr75dTAg49YhkzhfFUblTBEbkNa8=) 4: 3130332e3139312e3139372e302f32342d3234203d3e20313439393334.roa (hash: sm8jeStS9mRgsrGl5CeRQ6sBSscm5f2rHE/KQpXoWj8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 06:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:0a:b9:0b:24:5a:9e:96:8c:67:17:fd:b3:f7:54:49:af:fc:d0:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Jan 24 22:26:07 2026 GMT Not After : Jan 28 06:22:07 2026 GMT Subject: CN=F960F380690F042FB6C39C98EBEB6AD1C9C9BDA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d6:39:30:b3:21:25:d3:df:29:d5:ca:26:bb: 65:a7:51:97:1e:ae:3a:ab:00:6c:1f:e9:0d:b6:56: 16:c7:89:6d:28:a3:2b:f7:fb:7f:68:07:15:fc:9d: 13:0d:7f:df:d2:37:69:5e:4d:81:51:fe:0b:40:e5: dd:cf:75:fd:ee:b8:c9:8f:85:25:da:03:d0:77:09: e0:66:2c:4f:df:f5:24:d7:c4:72:61:f5:b2:b6:e4: 4e:c9:44:89:23:46:61:ed:e3:82:43:ea:bb:85:1b: 0b:22:fb:c1:fc:f7:b0:6c:af:18:28:3f:7e:40:aa: cb:da:7f:d8:31:20:68:fd:22:1a:6e:33:ba:ec:e1: 35:4d:0a:1a:a4:ac:82:d3:e8:38:8c:66:b9:25:1b: b9:ca:5b:bd:57:14:03:4c:c6:5e:38:25:28:62:70: 79:dd:68:11:5b:52:66:b1:9a:5b:c8:36:9b:73:28: 1b:5e:4f:c2:b4:74:7f:e0:32:83:bd:5e:4c:18:7a: 89:e0:75:0f:d8:3d:ee:d0:9c:d1:68:22:6d:3a:a8: d3:5f:f7:3f:fc:ef:67:70:e7:71:dd:18:df:17:c0: 3a:8c:db:5f:39:4a:ea:4d:24:38:7c:35:18:36:93: 51:47:22:38:ae:45:86:83:5d:6b:04:fe:bc:f7:a0: f8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:60:F3:80:69:0F:04:2F:B6:C3:9C:98:EB:EB:6A:D1:C9:C9:BD:A0 X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:8f:06:52:5a:cd:c8:a5:48:75:8c:3f:67:ac:ae:9d:19:1c: 93:5e:47:58:7c:2d:4a:93:8d:85:04:bd:e1:b5:63:b6:1f:2b: 68:90:9d:5f:41:00:01:2f:50:2a:30:b9:2a:eb:81:db:08:3d: 33:c8:6a:67:81:11:23:bd:5d:f1:8b:2c:32:ea:c4:9b:12:cd: c8:cd:6d:62:49:81:b9:c4:86:00:26:a5:d2:66:f7:07:c6:60: cb:5f:e0:f9:60:a2:87:8c:0b:88:10:c7:1b:58:0c:88:29:66: 6f:8f:bd:91:27:55:2b:d5:78:78:16:e9:8a:be:a1:09:5d:4f: b6:07:c1:44:73:bb:89:64:56:e6:d5:24:06:fc:59:43:f7:45: 14:ac:1e:26:85:76:28:e6:08:16:f6:ba:67:3c:74:98:9a:87: 7c:6b:41:11:92:97:bb:be:a4:98:15:80:bc:5c:c1:ea:aa:36: 9a:81:5b:30:a6:ea:ba:8e:7f:bf:5b:5b:8c:08:65:5b:0c:91: 34:03:4a:6f:72:63:e2:ed:db:08:8c:bc:ca:35:74:90:2a:f4: e1:47:78:f9:db:f0:4d:27:f1:6d:e3:3e:06:f8:c5:59:64:b2: 91:6f:ae:59:36:4b:c9:03:e1:0d:48:20:2c:c4:fd:51:2e:78: 8d:cf:5a:9d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMQq5CyRanpaMZxf9s/dUSa/80D4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNjAxMjQyMjI2MDdaFw0yNjAxMjgwNjIyMDdaMDMxMTAvBgNV BAMTKEY5NjBGMzgwNjkwRjA0MkZCNkMzOUM5OEVCRUI2QUQxQzlDOUJEQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj1jkwsyEl098p1comu2WnUZce rjqrAGwf6Q22VhbHiW0ooyv3+39oBxX8nRMNf9/SN2leTYFR/gtA5d3Pdf3uuMmP hSXaA9B3CeBmLE/f9STXxHJh9bK25E7JRIkjRmHt44JD6ruFGwsi+8H897Bsrxgo P35Aqsvaf9gxIGj9IhpuM7rs4TVNChqkrILT6DiMZrklG7nKW71XFANMxl44JShi cHndaBFbUmaxmlvINptzKBteT8K0dH/gMoO9XkwYeongdQ/YPe7QnNFoIm06qNNf 9z/872dw53HdGN8XwDqM2185SupNJDh8NRg2k1FHIjiuRYaDXWsE/rz3oPj1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+WDzgGkPBC+2w5yY6+tq0cnJvaAwHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzVkNmVmZmYtODViMi00YWY0LTg5 YWItNmQ5OGM5NTI3ZGE0LzAvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJF QzdGQjc4MDQxMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHKPBlJazcilSHWMP2esrp0ZHJNeR1h8LUqT jYUEveG1Y7YfK2iQnV9BAAEvUCowuSrrgdsIPTPIameBESO9XfGLLDLqxJsSzcjN bWJJgbnEhgAmpdJm9wfGYMtf4PlgooeMC4gQxxtYDIgpZm+PvZEnVSvVeHgW6Yq+ oQldT7YHwURzu4lkVubVJAb8WUP3RRSsHiaFdijmCBb2umc8dJiah3xrQRGSl7u+ pJgVgLxcweqqNpqBWzCm6rqOf79bW4wIZVsMkTQDSm9yY+Lt2wiMvMo1dJAq9OFH ePnb8E0n8W3jPgb4xVlkspFvrlk2S8kD4Q1IICzE/VEueI3PWp0= -----END CERTIFICATE-----Generated at Sun Jan 25 18:52:55 2026 by rpki-client