This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft File: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft (raw, json) Hash identifier: KPYLuhfSvovYP0pjbien3rmBfEAnXLQHypDjHDcchf8= Subject key identifier: DF:53:7C:05:99:E7:ED:E9:34:87:A2:92:FA:B7:47:86:86:9A:11:59 Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 398CE11B231868E898277673C7C7B5061DC85EF8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft Manifest number: 04DE Signing time: Fri 23 Jan 2026 09:11:23 +0000 Manifest this update: Fri 23 Jan 2026 09:06:23 +0000 Manifest next update: Mon 26 Jan 2026 19:58:23 +0000 Files and hashes: 1: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (hash: KEUVODDrcsujN0g1v6DrUa6Mji4U9jJWIyDXhx1aJNY=) 2: 3130332e3134362e3139362e302f32342d3234203d3e20313339393431.roa (hash: WkFNZS79+nq1P3vYzsoqHasGlqkPwC3TJbG5gTcIHd8=) 3: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl (hash: tI5ELMy8DmaDOaCaugV7C5LOQL29iI0ec4liLTHhOHs=) 4: 3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa (hash: p7Jtuo2fT9SMHQpNlniVY5E8TDvsdgf0sorpgXPSACM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 19:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:8c:e1:1b:23:18:68:e8:98:27:76:73:c7:c7:b5:06:1d:c8:5e:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: Jan 23 09:06:23 2026 GMT Not After : Jan 26 19:58:23 2026 GMT Subject: CN=DF537C0599E7EDE93487A292FAB74786869A1159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4c:d8:b5:56:54:c4:81:81:6c:d1:6a:05:90: 69:cb:27:9e:b4:46:3a:48:42:c3:2f:a5:12:9e:4b: 42:3c:65:f8:f0:60:84:f0:36:3b:8b:c1:9a:34:39: dc:b8:0d:32:30:67:69:c7:19:cb:2e:62:02:ac:1c: 25:1e:84:f1:55:44:3c:54:8a:36:0f:42:db:a6:0e: 94:f6:f6:ad:c3:a6:c7:8d:33:f2:7d:91:6f:d1:27: a0:e5:c2:b4:7c:92:ca:39:37:ae:bc:b2:8b:19:26: 76:45:b5:a9:a6:1b:f3:01:39:83:e5:f1:b6:1f:eb: 4e:b7:f1:71:76:9f:f0:13:15:1d:c0:b0:8d:c4:af: fe:f9:42:3d:6f:f2:f4:2e:c4:77:57:3a:d1:41:a7: 82:60:0b:5e:d7:69:0f:e7:fa:b3:9c:0e:be:44:b7: 39:a0:e0:a8:e9:d0:22:87:8b:33:49:42:02:01:a9: 0e:68:7a:06:b5:7f:8a:8c:cb:eb:3f:d8:4d:81:60: 2a:b3:20:ae:5b:35:fe:58:b9:5e:b2:82:17:14:3f: 28:e5:ec:f1:f8:01:c5:21:1b:20:12:13:bd:60:e2: a3:bb:1c:0b:b1:26:46:87:11:8a:e5:38:5d:4a:56: 2e:0d:04:d9:14:70:b8:ba:1a:cf:8e:94:40:20:84: 00:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:53:7C:05:99:E7:ED:E9:34:87:A2:92:FA:B7:47:86:86:9A:11:59 X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:97:33:bc:13:37:51:28:8e:30:9b:0b:62:4b:ba:54:8a:30: f3:2e:44:67:b7:d0:fd:9c:a5:07:bc:d5:05:fe:c4:f5:1f:d5: cc:ba:2f:d8:89:ce:78:b4:11:4b:f6:37:57:ed:2b:01:d8:2d: b2:a1:e6:41:af:17:46:da:1b:b9:f9:3a:78:6b:e8:d5:22:28: 30:9b:15:8e:ec:28:31:47:d7:2e:88:cd:f9:81:9c:de:fa:9a: 26:74:91:8c:03:c5:2f:fd:da:61:24:cf:97:16:f7:77:c8:bd: 4e:42:43:50:a6:ed:26:22:33:40:09:a3:3e:55:86:49:66:d2: 9e:2a:ae:6a:6e:7a:77:03:93:fe:06:d8:78:ce:d2:c3:84:cd: 67:02:38:68:50:0b:e7:17:1e:d5:6e:c7:3f:14:b8:f7:52:a2: ac:42:f5:ef:9f:48:6e:ec:84:90:09:06:46:19:d9:99:ba:43: 6a:aa:5e:2b:16:61:e8:bc:04:fc:6a:ab:a7:0c:d5:4f:7f:1a: 68:59:03:93:6e:4f:26:e6:d0:08:cc:2c:79:8c:be:9f:10:40: b4:5a:85:16:ac:4c:7a:b4:53:9e:57:6b:8d:64:e1:ab:a9:ad: 51:ad:87:ad:e9:1f:73:1e:3b:d1:f4:64:60:cf:c5:88:75:2f: 65:6c:de:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOYzhGyMYaOiYJ3Zzx8e1Bh3IXvgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNjAxMjMwOTA2MjNaFw0yNjAxMjYxOTU4MjNaMDMxMTAvBgNV BAMTKERGNTM3QzA1OTlFN0VERTkzNDg3QTI5MkZBQjc0Nzg2ODY5QTExNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOTNi1VlTEgYFs0WoFkGnLJ560 RjpIQsMvpRKeS0I8ZfjwYITwNjuLwZo0Ody4DTIwZ2nHGcsuYgKsHCUehPFVRDxU ijYPQtumDpT29q3DpseNM/J9kW/RJ6DlwrR8kso5N668sosZJnZFtammG/MBOYPl 8bYf60638XF2n/ATFR3AsI3Er/75Qj1v8vQuxHdXOtFBp4JgC17XaQ/n+rOcDr5E tzmg4Kjp0CKHizNJQgIBqQ5oega1f4qMy+s/2E2BYCqzIK5bNf5YuV6yghcUPyjl 7PH4AcUhGyASE71g4qO7HAuxJkaHEYrlOF1KVi4NBNkUcLi6Gs+OlEAghADdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU31N8BZnn7ek0h6KS+rdHhoaaEVkwHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODM1MDQ4YzYtOGNjZC00NjNkLWFk MzQtYWU3NDI4NjQ3YTljLzAvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4 M0NGNUIyQUE0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKOXM7wTN1EojjCbC2JLulSKMPMuRGe30P2c pQe81QX+xPUf1cy6L9iJzni0EUv2N1ftKwHYLbKh5kGvF0baG7n5Onhr6NUiKDCb FY7sKDFH1y6IzfmBnN76miZ0kYwDxS/92mEkz5cW93fIvU5CQ1Cm7SYiM0AJoz5V hklm0p4qrmpuencDk/4G2HjO0sOEzWcCOGhQC+cXHtVuxz8UuPdSoqxC9e+fSG7s hJAJBkYZ2Zm6Q2qqXisWYei8BPxqq6cM1U9/GmhZA5NuTybm0AjMLHmMvp8QQLRa hRasTHq0U55Xa41k4auprVGth63pH3MeO9H0ZGDPxYh1L2Vs3lA= -----END CERTIFICATE-----Generated at Sun Jan 25 20:39:15 2026 by rpki-client