This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft File: 41071AAF0C0E6BD84877680334B4F604B4B4E786.mft (raw, json) Hash identifier: wQW4nEYTvrFl2EWL6IBZlrUHno0IjASV17H29OOpxTk= Subject key identifier: 8D:7A:F3:67:B9:48:8A:CF:23:0A:A3:82:82:6E:8C:7F:AB:DA:6A:2F Authority key identifier: 41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 Certificate issuer: /CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Certificate serial: 682833BF48BCE3E29A508676A22721930809E77E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft Manifest number: 023A Signing time: Sat 24 Jan 2026 07:12:17 +0000 Manifest this update: Sat 24 Jan 2026 07:07:17 +0000 Manifest next update: Tue 27 Jan 2026 09:40:17 +0000 Files and hashes: 1: 3130332e3136372e322e302f32342d3234203d3e20313431393637.roa (hash: S3FgE0+gcaLyx6nH2zsRG+Hi0BgVRkLf/ndGC4F7z/0=) 2: 41071AAF0C0E6BD84877680334B4F604B4B4E786.crl (hash: o4v+ZmvWEAWQDenx5bEVzqKb07D3i25lN1XVTPnRwiE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 09:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:28:33:bf:48:bc:e3:e2:9a:50:86:76:a2:27:21:93:08:09:e7:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Validity Not Before: Jan 24 07:07:17 2026 GMT Not After : Jan 27 09:40:17 2026 GMT Subject: CN=8D7AF367B9488ACF230AA382826E8C7FABDA6A2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:97:08:b3:34:8d:d0:4c:d1:e7:97:e2:38: db:0f:4a:54:b1:fc:51:75:eb:05:6f:8a:17:15:94: 2b:06:b4:47:06:cd:16:ee:e9:26:bb:56:a3:7c:d8: 0a:6c:cc:6f:a4:54:94:24:b3:a9:f7:e8:81:50:1d: c0:bf:d2:f9:02:e5:34:b3:2e:f5:da:2c:02:95:b3: ba:fc:80:c6:1a:19:2a:c2:c9:6d:2f:5d:ad:9a:89: 31:ec:a8:af:c5:b0:65:c8:90:54:86:8b:60:3e:ff: e8:1f:cf:84:4b:37:52:be:2d:76:42:94:5e:9a:5c: 50:8e:0a:8a:00:2a:e7:bb:d3:fc:00:be:fb:79:f7: 0c:8c:d3:fc:74:d6:af:3c:24:9e:9e:d1:f9:7e:70: 34:f4:34:8f:99:67:66:cb:28:76:26:29:92:33:c7: 4a:b9:3b:ec:76:d6:70:36:1d:a7:b8:16:42:74:c3: 1f:0e:6c:f5:9a:66:04:56:10:0b:24:6e:72:dc:89: f5:ba:8e:dd:9a:6c:65:a5:c2:d8:f1:b8:ed:7c:93: b3:31:75:be:ce:f6:0b:73:d3:4b:c9:aa:5d:62:d8: f7:bf:a8:3a:ee:dd:75:8a:d2:58:41:90:b8:33:f7: 24:f3:b3:75:a3:99:d1:a5:67:86:18:2d:eb:7c:dd: 67:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7A:F3:67:B9:48:8A:CF:23:0A:A3:82:82:6E:8C:7F:AB:DA:6A:2F X509v3 Authority Key Identifier: keyid:41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:92:95:c1:12:a1:8a:ba:30:98:3b:cb:b4:a3:dc:53:11:aa: f1:ab:15:94:54:e3:b8:13:fe:d4:50:c2:41:7a:a8:77:04:77: bb:da:e8:bb:8e:1c:57:7d:60:ce:49:af:8e:7e:e2:7e:70:f6: c1:cd:50:6f:c1:6a:05:95:21:d1:73:c5:de:fe:31:57:8b:c5: a7:2f:2f:9b:dc:5a:a8:06:8a:68:a9:43:90:2e:65:0c:b9:fd: b1:22:69:ab:7b:ae:a0:b4:00:4d:00:3f:60:06:66:91:68:41: c2:58:72:4b:3b:ef:3c:dc:71:2c:e8:df:bf:35:c0:a2:ba:af: 81:60:70:ea:6d:6d:d1:29:e5:49:f9:b0:51:f8:96:62:93:35: 0d:13:67:b7:b5:20:90:c3:e3:62:11:62:de:25:66:a3:83:0a: ea:88:19:4a:0d:60:85:f5:ff:fe:5c:c4:e1:07:9d:b3:cc:a3: e7:3a:bb:07:e0:1b:d4:3c:e5:3d:fc:f6:ae:02:a4:34:55:cd: 61:a5:e8:99:35:0c:b6:1e:2d:40:95:20:0a:23:c1:c4:63:6e: c9:67:3a:9f:c2:4a:ba:a4:06:c1:fc:25:30:5b:6b:12:a3:c5: df:98:1a:e9:55:cc:d1:0c:13:fd:2e:90:fb:23:24:ff:8d:ae: f2:64:b4:be -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaCgzv0i84+KaUIZ2oichkwgJ534wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRC NEI0RTc4NjAeFw0yNjAxMjQwNzA3MTdaFw0yNjAxMjcwOTQwMTdaMDMxMTAvBgNV BAMTKDhEN0FGMzY3Qjk0ODhBQ0YyMzBBQTM4MjgyNkU4QzdGQUJEQTZBMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN5JcIszSN0EzR55fiONsPSlSx /FF16wVvihcVlCsGtEcGzRbu6Sa7VqN82ApszG+kVJQks6n36IFQHcC/0vkC5TSz LvXaLAKVs7r8gMYaGSrCyW0vXa2aiTHsqK/FsGXIkFSGi2A+/+gfz4RLN1K+LXZC lF6aXFCOCooAKue70/wAvvt59wyM0/x01q88JJ6e0fl+cDT0NI+ZZ2bLKHYmKZIz x0q5O+x21nA2Hae4FkJ0wx8ObPWaZgRWEAskbnLcifW6jt2abGWlwtjxuO18k7Mx db7O9gtz00vJql1i2Pe/qDru3XWK0lhBkLgz9yTzs3WjmdGlZ4YYLet83WenAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjXrzZ7lIis8jCqOCgm6Mf6vaai8wHwYDVR0j BBgwFoAUQQcarwwOa9hId2gDNLT2BLS054YwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 ZTI3YjNlMS1mNjExLTRhZmUtOWE0OS01ZmE0ZmQ1NTc2NTMvMC80MTA3MUFBRjBD MEU2QkQ4NDg3NzY4MDMzNEI0RjYwNEI0QjRFNzg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2MDRCNEI0 RTc4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2UyN2IzZTEtZjYxMS00YWZlLTlh NDktNWZhNGZkNTU3NjUzLzAvNDEwNzFBQUYwQzBFNkJEODQ4Nzc2ODAzMzRCNEY2 MDRCNEI0RTc4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJKSlcESoYq6MJg7y7Sj3FMRqvGrFZRU47gT /tRQwkF6qHcEd7va6LuOHFd9YM5Jr45+4n5w9sHNUG/BagWVIdFzxd7+MVeLxacv L5vcWqgGimipQ5AuZQy5/bEiaat7rqC0AE0AP2AGZpFoQcJYcks77zzccSzo3781 wKK6r4FgcOptbdEp5Un5sFH4lmKTNQ0TZ7e1IJDD42IRYt4lZqODCuqIGUoNYIX1 //5cxOEHnbPMo+c6uwfgG9Q85T389q4CpDRVzWGl6Jk1DLYeLUCVIAojwcRjbsln Op/CSrqkBsH8JTBbaxKjxd+YGulVzNEME/0ukPsjJP+NrvJktL4= -----END CERTIFICATE-----Generated at Sun Jan 25 23:57:25 2026 by rpki-client