This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft File: D4D0F3E6E684847D602FC73758893CE2BB05D399.mft (raw, json) Hash identifier: G221AsVG5lYAyGDT7CMSW/03SKG8v4uRJ9tr0dsZueI= Subject key identifier: DE:B5:2B:5F:0D:E9:43:15:84:62:C9:F7:AC:16:16:12:82:F8:05:FD Authority key identifier: D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99 Certificate issuer: /CN=D4D0F3E6E684847D602FC73758893CE2BB05D399 Certificate serial: 21D04F6AD980D81030CEB0404FCABB64FABB6BDE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer Subject info access: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft Manifest number: 01E8 Signing time: Fri 23 Jan 2026 19:20:49 +0000 Manifest this update: Fri 23 Jan 2026 19:15:49 +0000 Manifest next update: Mon 26 Jan 2026 21:02:49 +0000 Files and hashes: 1: D4D0F3E6E684847D602FC73758893CE2BB05D399.crl (hash: ECTn9wea97Nwk26VHlBuNLaGObr0+np9+l3EBq0efwU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.crl rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 21:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d0:4f:6a:d9:80:d8:10:30:ce:b0:40:4f:ca:bb:64:fa:bb:6b:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4D0F3E6E684847D602FC73758893CE2BB05D399 Validity Not Before: Jan 23 19:15:49 2026 GMT Not After : Jan 26 21:02:49 2026 GMT Subject: CN=DEB52B5F0DE943158462C9F7AC16161282F805FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:84:a4:ee:ee:e6:0c:7e:d3:94:d7:c6:60:85: 36:6c:f5:69:84:44:41:f4:17:27:e9:29:23:c4:c3: d5:80:1b:1f:0b:61:4d:5c:3f:ac:48:d6:f3:be:4a: 2c:56:7d:a7:9e:1b:b7:d8:49:65:17:ee:40:32:42: 67:1c:04:39:90:1b:ed:a2:e4:68:c0:2c:e1:7d:2b: 52:ef:53:86:fc:92:17:8a:64:62:b8:f9:e1:fa:f2: f7:c8:ee:ab:8c:c1:45:5d:c3:a6:86:01:c6:c8:bb: 14:7b:05:3a:69:c6:b0:7e:fe:c8:d8:1c:4b:31:58: d7:bd:32:c1:65:e5:db:8f:5d:76:5f:cb:e2:5d:70: 64:d8:ac:90:a7:45:c8:8d:35:96:6f:36:db:21:7d: d9:90:10:9f:c1:cb:82:ba:a2:61:f0:50:82:0c:0b: ae:01:50:84:b2:66:4d:ea:32:bd:e0:40:4e:52:66: 00:f8:48:85:e8:d7:b9:0f:0a:2c:82:19:93:60:d3: e9:7b:d2:86:63:cb:1c:19:42:d3:ed:ef:94:68:6d: a9:2b:26:2f:af:6e:84:34:08:ac:c4:f4:62:51:b6: da:03:59:3d:ec:5a:a0:95:a1:91:19:57:c7:27:dd: a3:13:c0:de:2d:88:4e:74:64:22:07:fa:af:da:80: 64:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B5:2B:5F:0D:E9:43:15:84:62:C9:F7:AC:16:16:12:82:F8:05:FD X509v3 Authority Key Identifier: keyid:D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:b3:f0:e6:14:30:f4:c3:71:9d:2b:94:bd:35:8a:42:31:15: 35:41:b2:77:f3:6d:f5:07:41:c5:28:67:e8:ef:0d:8a:9c:6e: bd:de:8c:01:59:9f:08:f2:a1:c5:22:81:5b:e4:59:1d:df:18: cd:3a:85:b9:b1:46:5b:41:07:44:ac:7d:46:f5:49:43:6c:6e: d8:1b:fc:c8:58:83:cf:8d:6c:29:89:fb:ee:cd:fb:a1:13:fc: 44:27:57:9f:9f:dc:63:5e:73:1b:f3:e3:e5:5c:b7:6c:27:02: 1f:4c:6d:21:cb:74:fc:61:9b:6a:d0:a3:db:99:17:3f:a7:17: cd:fc:67:ce:d1:15:b7:b8:15:12:b0:2a:7d:ce:02:7b:1c:f8: 2f:9a:a0:c0:e3:00:a9:32:9c:9e:00:7c:4a:65:a3:29:d9:b3: 55:17:42:c3:82:2f:3d:a3:07:81:6c:64:36:3a:90:df:81:e7: e1:c0:eb:6b:3b:f6:a3:90:42:bb:d8:e6:89:e4:9b:45:9e:1b: 01:60:9e:96:8b:6e:68:e0:42:42:05:09:30:75:8f:d4:40:20: 0d:4f:07:e6:a8:52:c3:42:87:a3:24:ca:cb:3f:b4:25:60:9c: 7a:cb:12:bc:60:a9:90:da:d2:87:ca:38:36:bc:c4:d7:b0:ad: 55:82:c8:3e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIdBPatmA2BAwzrBAT8q7ZPq7a94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDREMEYzRTZFNjg0ODQ3RDYwMkZDNzM3NTg4OTNDRTJC QjA1RDM5OTAeFw0yNjAxMjMxOTE1NDlaFw0yNjAxMjYyMTAyNDlaMDMxMTAvBgNV BAMTKERFQjUyQjVGMERFOTQzMTU4NDYyQzlGN0FDMTYxNjEyODJGODA1RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6hKTu7uYMftOU18ZghTZs9WmE REH0FyfpKSPEw9WAGx8LYU1cP6xI1vO+SixWfaeeG7fYSWUX7kAyQmccBDmQG+2i 5GjALOF9K1LvU4b8kheKZGK4+eH68vfI7quMwUVdw6aGAcbIuxR7BTppxrB+/sjY HEsxWNe9MsFl5duPXXZfy+JdcGTYrJCnRciNNZZvNtshfdmQEJ/By4K6omHwUIIM C64BUISyZk3qMr3gQE5SZgD4SIXo17kPCiyCGZNg0+l70oZjyxwZQtPt75Robakr Ji+vboQ0CKzE9GJRttoDWT3sWqCVoZEZV8cn3aMTwN4tiE50ZCIH+q/agGTFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3rUrXw3pQxWEYsn3rBYWEoL4Bf0wHwYDVR0j BBgwFoAU1NDz5uaEhH1gL8c3WIk84rsF05kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjM1MzBlYy05OTBlLTQxZDctOWQ3OC1iNzdlMjBkNzZiY2QvMC9ENEQwRjNFNkU2 ODQ4NDdENjAyRkM3Mzc1ODg5M0NFMkJCMDVEMzk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDREMEYzRTZFNjg0ODQ3RDYwMkZDNzM3NTg4OTNDRTJCQjA1 RDM5OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIzNTMwZWMtOTkwZS00MWQ3LTlk NzgtYjc3ZTIwZDc2YmNkLzAvRDREMEYzRTZFNjg0ODQ3RDYwMkZDNzM3NTg4OTND RTJCQjA1RDM5OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIaz8OYUMPTDcZ0rlL01ikIxFTVBsnfzbfUH QcUoZ+jvDYqcbr3ejAFZnwjyocUigVvkWR3fGM06hbmxRltBB0SsfUb1SUNsbtgb /MhYg8+NbCmJ++7N+6ET/EQnV5+f3GNecxvz4+Vct2wnAh9MbSHLdPxhm2rQo9uZ Fz+nF838Z87RFbe4FRKwKn3OAnsc+C+aoMDjAKkynJ4AfEploynZs1UXQsOCLz2j B4FsZDY6kN+B5+HA62s79qOQQrvY5onkm0WeGwFgnpaLbmjgQkIFCTB1j9RAIA1P B+aoUsNCh6Mkyss/tCVgnHrLErxgqZDa0ofKODa8xNewrVWCyD4= -----END CERTIFICATE-----Generated at Sun Jan 25 18:47:32 2026 by rpki-client