This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft File: 157E8817E413B3A8B2866190AD82151E868B1FA7.mft (raw, json) Hash identifier: nSxfu8oSRmTFWIeIFQgWbuG7WCun0lhV2rY8A1TBaas= Subject key identifier: 6F:FA:A5:5E:5E:C1:9C:D7:3E:50:52:0B:A2:DF:ED:F4:91:A1:59:6B Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Certificate serial: 4100ACFE83F52F670CBF6EEDE91F72C95B905D76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft Manifest number: 0231 Signing time: Fri 23 Jan 2026 12:12:25 +0000 Manifest this update: Fri 23 Jan 2026 12:07:25 +0000 Manifest next update: Mon 26 Jan 2026 20:17:25 +0000 Files and hashes: 1: 3130332e3132312e3139362e302f32342d3234203d3e20313439373130.roa (hash: lpSwfmAmKL23RbErKtEZj4srMqeOQng2UqSoQbv0+GE=) 2: 157E8817E413B3A8B2866190AD82151E868B1FA7.crl (hash: w+NaV2VcVLeU5kfVXbWMq/WfBIL16w6mHoZpO05E7oI=) 3: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (hash: 2eKYMh+o40ipOAi8hjr+a/aFZYlLyRfS6uvyieWq8yI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 20:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:00:ac:fe:83:f5:2f:67:0c:bf:6e:ed:e9:1f:72:c9:5b:90:5d:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Validity Not Before: Jan 23 12:07:25 2026 GMT Not After : Jan 26 20:17:25 2026 GMT Subject: CN=6FFAA55E5EC19CD73E50520BA2DFEDF491A1596B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b4:57:58:90:5a:cd:41:aa:b0:2d:ec:ec:88: 40:a1:92:e9:bd:04:ea:62:13:f3:ab:03:84:ea:c5: 44:2b:29:7b:05:4e:3d:bc:0d:87:87:59:9a:71:cf: a1:49:06:20:12:0e:fa:7a:fa:32:64:b7:b9:ba:f0: 79:34:5b:1a:c0:4f:92:ad:f1:9f:67:ba:fd:2d:41: 4c:7e:f1:5c:9a:2f:51:cb:6d:e3:9b:d2:05:98:16: 49:be:9e:cb:2b:67:7e:03:9f:75:d9:cb:8f:2c:ea: 1a:e9:35:57:21:cb:ae:3f:1c:18:69:e6:6d:0d:62: 48:e0:cd:1e:c7:57:57:f7:5e:6b:10:7d:51:aa:f4: 7c:2b:85:9d:1a:2b:d5:40:f6:c1:63:5a:42:cb:7f: eb:7d:3e:db:9b:9c:08:91:98:4f:8e:fc:87:67:47: 41:ee:89:7e:be:d6:93:94:55:c2:2f:96:b6:35:c3: 77:e2:41:42:5d:72:7f:ed:92:4d:88:9a:a2:8f:91: fb:c0:0b:c0:3a:c2:07:9e:88:e4:7d:2b:5d:a4:2e: 97:3d:57:6d:dd:4e:83:02:0c:45:69:b9:b0:39:92: 8f:77:0c:34:8a:4f:23:9c:ea:ed:d0:2a:f2:a1:03: d8:2b:cc:45:0b:a7:db:c2:5b:82:2b:15:b3:6a:e6: 09:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:FA:A5:5E:5E:C1:9C:D7:3E:50:52:0B:A2:DF:ED:F4:91:A1:59:6B X509v3 Authority Key Identifier: keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:c6:4c:35:a5:04:f6:b6:11:d7:3c:e1:6a:12:f4:ed:99:fe: 1d:48:70:fa:9a:9e:aa:38:9e:c0:c3:e0:81:a0:b5:63:1a:cf: 17:40:b2:b2:97:0e:cf:36:f1:96:9a:1d:0a:ef:c0:90:eb:01: fd:d5:c2:20:3a:cc:f8:b2:6d:7c:9b:41:98:c0:a3:88:51:ea: 15:00:67:d0:93:e4:66:da:64:1d:47:7a:f1:26:95:28:6d:a4: c2:d1:64:aa:c9:44:0b:d0:63:8f:bd:f8:48:cb:a6:8f:5a:5b: 8d:e9:25:6e:04:06:c0:0b:8c:69:2d:09:9e:ca:90:85:e5:68: e3:c4:bf:7c:b7:a1:a3:bd:82:e2:26:0f:3e:04:df:c1:a5:35: 75:16:b0:c4:84:5a:33:7f:45:ee:08:9d:a5:6c:73:c0:72:ce: aa:29:15:c4:19:6b:75:61:83:15:a3:da:1c:05:65:6a:e6:b2: 4f:f7:db:8f:20:cf:54:71:0f:50:81:a3:0e:c4:0d:0f:85:c1: 84:a3:1f:0f:f0:a5:49:af:20:3b:2e:87:d7:24:f6:d6:8a:1d: 12:66:3b:7d:5c:1d:69:8e:5f:f4:3f:be:e7:2a:f0:95:38:7a: 6a:19:00:5b:66:7c:98:23:48:56:9f:f1:e9:78:2c:1d:b2:2b: e8:a0:d4:fc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQQCs/oP1L2cMv27t6R9yyVuQXXYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4 NjhCMUZBNzAeFw0yNjAxMjMxMjA3MjVaFw0yNjAxMjYyMDE3MjVaMDMxMTAvBgNV BAMTKDZGRkFBNTVFNUVDMTlDRDczRTUwNTIwQkEyREZFREY0OTFBMTU5NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCztFdYkFrNQaqwLezsiEChkum9 BOpiE/OrA4TqxUQrKXsFTj28DYeHWZpxz6FJBiASDvp6+jJkt7m68Hk0WxrAT5Kt 8Z9nuv0tQUx+8VyaL1HLbeOb0gWYFkm+nssrZ34Dn3XZy48s6hrpNVchy64/HBhp 5m0NYkjgzR7HV1f3XmsQfVGq9HwrhZ0aK9VA9sFjWkLLf+t9PtubnAiRmE+O/Idn R0HuiX6+1pOUVcIvlrY1w3fiQUJdcn/tkk2ImqKPkfvAC8A6wgeeiOR9K12kLpc9 V23dToMCDEVpubA5ko93DDSKTyOc6u3QKvKhA9grzEULp9vCW4IrFbNq5glpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUb/qlXl7BnNc+UFILot/t9JGhWWswHwYDVR0j BBgwFoAUFX6IF+QTs6iyhmGQrYIVHoaLH6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2NkNjBiMi0wZjU3LTRmYzUtYmM2Mi0xZDliNmM0OGZjZjAvMC8xNTdFODgxN0U0 MTNCM0E4QjI4NjYxOTBBRDgyMTUxRTg2OEIxRkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4NjhC MUZBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODNjZDYwYjItMGY1Ny00ZmM1LWJj NjItMWQ5YjZjNDhmY2YwLzAvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1 MUU4NjhCMUZBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABXGTDWlBPa2Edc84WoS9O2Z/h1IcPqanqo4 nsDD4IGgtWMazxdAsrKXDs828ZaaHQrvwJDrAf3VwiA6zPiybXybQZjAo4hR6hUA Z9CT5GbaZB1HevEmlShtpMLRZKrJRAvQY4+9+EjLpo9aW43pJW4EBsALjGktCZ7K kIXlaOPEv3y3oaO9guImDz4E38GlNXUWsMSEWjN/Re4InaVsc8ByzqopFcQZa3Vh gxWj2hwFZWrmsk/3248gz1RxD1CBow7EDQ+FwYSjHw/wpUmvIDsuh9ck9taKHRJm O31cHWmOX/Q/vucq8JU4emoZAFtmfJgjSFaf8el4LB2yK+ig1Pw= -----END CERTIFICATE-----Generated at Sun Jan 25 18:48:27 2026 by rpki-client