This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft File: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft (raw, json) Hash identifier: 6SFYIDmkWldouU6vZkiR5NNH+HRlEHwFcOPpwzJToAM= Subject key identifier: 36:A0:09:EC:66:F4:3E:47:24:D5:C8:B7:C8:F9:F4:62:DD:03:C9:A0 Authority key identifier: 38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C Certificate issuer: /CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Certificate serial: 0F919788DE49AE645C3FBB9A15419485D1E69186 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft Manifest number: 0545 Signing time: Sat 24 Jan 2026 04:42:14 +0000 Manifest this update: Sat 24 Jan 2026 04:37:14 +0000 Manifest next update: Tue 27 Jan 2026 16:38:14 +0000 Files and hashes: 1: 3130332e36302e3138332e302f32342d3234203d3e20313431363330.roa (hash: LfUE4rPNFz/aR5lxsCZpCHmmGGAgXk5P43w+IeyGgRE=) 2: 3130332e36302e3138302e302f32322d3234203d3e203535363835.roa (hash: ShEOWvu/KCYTTrKo5vrKeCwlexfHyDbC4uTV8yZtzEM=) 3: 3130332e38302e39312e302f32342d3234203d3e20313337333033.roa (hash: nLub1P+aFMPWReFe8FfiX+yqIND5D1X2l5ebLcrAixg=) 4: 3138322e35342e3134302e302f32322d3234203d3e203535363835.roa (hash: lX37Ym1HtH8/+BNNZ7vVVvmLTRPAVgTV6qXoJU01xNo=) 5: 3130332e38302e38382e302f32322d3234203d3e203535363835.roa (hash: wlegEJoNWqrWT2tySFrwLRqLsXDXFl0OFT0Nuvvp7LI=) 6: 3130332e38302e39302e302f32342d3234203d3e20313337333033.roa (hash: TuOuwC+HTY3+zsq30NoK3C4u4uR9Kt6tuzw+MAyTb4o=) 7: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl (hash: 4t+GhcgOO0byPbKheiy1Ay7OhReT/7sPOTYeDT9VRlw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 16:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:91:97:88:de:49:ae:64:5c:3f:bb:9a:15:41:94:85:d1:e6:91:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Validity Not Before: Jan 24 04:37:14 2026 GMT Not After : Jan 27 16:38:14 2026 GMT Subject: CN=36A009EC66F43E4724D5C8B7C8F9F462DD03C9A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:17:da:0f:ce:a8:95:a8:57:95:18:70:67:ab: 0b:f9:ac:59:17:47:d0:ef:45:b4:6e:21:14:0a:49: 3d:9d:0f:7a:a1:45:69:31:47:2c:06:e3:48:98:fe: 24:6e:1c:da:cb:1b:98:d6:08:2c:61:d7:83:8f:f3: 37:6a:81:3e:2e:9a:7e:9a:2d:df:e5:07:51:bb:57: cc:c0:29:77:8e:c7:ee:83:2d:bc:b2:19:0a:bf:ed: 4b:af:c7:38:2d:98:25:c7:b5:ca:9b:ac:30:ad:08: 7e:b1:8d:be:93:ae:3f:ab:a9:da:41:84:bf:e8:dd: ee:d9:05:19:33:ad:3b:fc:92:22:03:09:3f:61:93: 5c:f6:cd:1e:e6:6c:e8:df:56:4f:ac:f3:c3:a1:dd: 53:22:74:1e:0d:d9:f0:b8:ed:77:0a:90:f4:4c:a9: 83:e8:4c:29:86:9b:90:f0:9e:4a:46:91:51:17:5b: 27:14:fc:ee:d6:ac:7b:76:0a:23:a2:c8:74:55:db: 58:42:a4:9e:43:af:6d:ea:13:1a:d1:b1:6e:f7:93: a8:5c:d1:97:5a:43:70:a9:bc:9e:c2:43:3e:a5:36: 03:fb:e9:68:3f:e0:75:1a:c5:73:46:f7:10:39:e2: d4:3f:c2:1f:6a:55:16:2d:69:e3:c5:9d:df:37:1a: 93:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A0:09:EC:66:F4:3E:47:24:D5:C8:B7:C8:F9:F4:62:DD:03:C9:A0 X509v3 Authority Key Identifier: keyid:38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:7d:cc:d1:dc:88:fd:f3:ab:36:9b:2d:92:e2:73:c2:ae:39: a9:49:3a:b3:8f:8b:1c:ba:36:e7:32:f8:9c:30:5d:d4:65:35: fc:f0:53:ba:a3:f6:28:42:db:4c:7b:2a:48:bf:dd:13:6a:f6: ed:3e:1b:9c:67:de:76:f5:bb:d7:fe:7f:62:16:8a:1a:1c:93: 4c:1f:73:e9:3e:ae:c6:5f:2e:35:66:11:f1:57:f8:55:70:88: e5:ba:a3:01:61:bc:ba:12:16:b2:eb:2a:3b:7a:45:30:2d:bc: 93:8e:1f:99:24:95:fc:b7:80:d6:57:02:5a:61:99:f7:53:08: 43:a2:ca:18:1d:8f:ea:a5:2f:80:9d:91:a2:7b:81:0d:21:07: 5c:c0:93:2f:36:f9:e4:e4:b4:c4:8c:a0:4d:34:3b:58:4c:5f: 4f:f4:f5:99:19:6b:72:42:23:02:c1:71:90:24:10:26:56:23: 1a:80:40:a4:68:01:dd:6b:d3:36:7f:f6:e8:f6:b0:65:1d:56: 46:08:1d:39:81:33:1b:2e:06:e7:ad:82:19:db:23:06:39:ca: b0:e8:a3:d7:5d:e0:99:03:ed:8d:04:ae:c0:71:1e:38:85:56: 0b:c0:68:7d:82:32:27:73:ea:12:52:cc:43:a3:22:ca:29:99: 5c:88:7c:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD5GXiN5JrmRcP7uaFUGUhdHmkYYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQw MTI1MkE1QzAeFw0yNjAxMjQwNDM3MTRaFw0yNjAxMjcxNjM4MTRaMDMxMTAvBgNV BAMTKDM2QTAwOUVDNjZGNDNFNDcyNEQ1QzhCN0M4RjlGNDYyREQwM0M5QTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpF9oPzqiVqFeVGHBnqwv5rFkX R9DvRbRuIRQKST2dD3qhRWkxRywG40iY/iRuHNrLG5jWCCxh14OP8zdqgT4umn6a Ld/lB1G7V8zAKXeOx+6DLbyyGQq/7UuvxzgtmCXHtcqbrDCtCH6xjb6Trj+rqdpB hL/o3e7ZBRkzrTv8kiIDCT9hk1z2zR7mbOjfVk+s88Oh3VMidB4N2fC47XcKkPRM qYPoTCmGm5DwnkpGkVEXWycU/O7WrHt2CiOiyHRV21hCpJ5Dr23qExrRsW73k6hc 0ZdaQ3CpvJ7CQz6lNgP76Wg/4HUaxXNG9xA54tQ/wh9qVRYtaePFnd83GpPZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNqAJ7Gb0Pkck1ci3yPn0Yt0DyaAwHwYDVR0j BBgwFoAUOJ58E89jRK65MAHNTFrHlAElKlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjAzMmJjOS02MDVhLTQyNTMtYTRjZC02MmYxMjQxMjZlYWMvMC8zODlFN0MxM0NG NjM0NEFFQjkzMDAxQ0Q0QzVBQzc5NDAxMjUyQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQwMTI1 MkE1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIwMzJiYzktNjA1YS00MjUzLWE0 Y2QtNjJmMTI0MTI2ZWFjLzAvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3 OTQwMTI1MkE1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAR9zNHciP3zqzabLZLic8KuOalJOrOPixy6 Nucy+JwwXdRlNfzwU7qj9ihC20x7Kki/3RNq9u0+G5xn3nb1u9f+f2IWihock0wf c+k+rsZfLjVmEfFX+FVwiOW6owFhvLoSFrLrKjt6RTAtvJOOH5kklfy3gNZXAlph mfdTCEOiyhgdj+qlL4CdkaJ7gQ0hB1zAky82+eTktMSMoE00O1hMX0/09ZkZa3JC IwLBcZAkECZWIxqAQKRoAd1r0zZ/9uj2sGUdVkYIHTmBMxsuBuetghnbIwY5yrDo o9dd4JkD7Y0ErsBxHjiFVgvAaH2CMidz6hJSzEOjIsopmVyIfOk= -----END CERTIFICATE-----Generated at Sun Jan 25 20:21:21 2026 by rpki-client