This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft File: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft (raw, json) Hash identifier: YXbingDtHyu4WtbxnzKFtnZcPPLD0VSB6+fcX183ceA= Subject key identifier: AB:9B:62:BC:35:F5:76:41:07:98:7C:31:95:CA:BE:31:C5:C2:4F:C0 Authority key identifier: 95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 Certificate issuer: /CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Certificate serial: 2FAF9D466ADE77DB591085DB48C257C192C6989C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject info access: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft Manifest number: 010B Signing time: Sun 25 Jan 2026 04:31:29 +0000 Manifest this update: Sun 25 Jan 2026 04:26:29 +0000 Manifest next update: Wed 28 Jan 2026 12:29:29 +0000 Files and hashes: 1: 95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl (hash: c+VkvMov1gxZDont2vU7xL2L+ID8HnrNEwRJb0HZdmQ=) 2: 3136302e31392e38382e302f32342d3234203d3e20313437303838.roa (hash: +Xk0mxGkc/lCxZDeUptrpwZhCqCSnBV/uCVgeNZ+WpY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 12:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:af:9d:46:6a:de:77:db:59:10:85:db:48:c2:57:c1:92:c6:98:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689 Validity Not Before: Jan 25 04:26:29 2026 GMT Not After : Jan 28 12:29:29 2026 GMT Subject: CN=AB9B62BC35F5764107987C3195CABE31C5C24FC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:15:d2:29:c0:c2:81:5d:22:94:e7:99:e0: b3:34:39:7f:21:d1:59:61:d8:5d:b5:4f:83:22:2f: 8d:87:17:89:42:30:3a:cb:ef:34:bf:c8:81:a2:42: 18:2a:a1:a3:27:14:72:de:27:48:67:36:fe:b0:bf: 02:e6:ba:c7:a0:fa:4d:d2:e7:80:9c:76:3e:4b:a5: 1a:fc:83:19:5c:21:70:51:7c:e0:08:09:eb:f4:39: f8:65:8f:93:fe:f1:e1:ab:44:9d:68:60:95:18:b8: c9:64:aa:de:82:7d:98:16:c6:39:f4:90:55:a3:f3: f6:bf:8f:11:58:7a:23:20:88:82:52:97:8b:15:d4: e1:71:22:47:b6:fb:9c:2d:ca:58:0e:1b:87:87:0a: 47:0c:68:2b:4d:66:40:14:44:fb:6f:be:b6:ed:5a: 0c:d4:b1:5d:5e:86:a8:54:fa:f3:2f:25:56:74:0e: 3c:1d:7e:2f:d7:92:be:f6:f0:d9:38:a0:95:70:06: a4:a8:6b:b1:14:a9:29:d4:a4:ad:fc:32:f6:26:8e: d8:70:74:b6:5a:90:73:89:41:39:c8:f1:bf:9b:82: 0f:ba:c9:fd:9e:58:9f:29:fe:91:c1:63:70:ba:30: cb:9f:ff:51:af:54:fe:5b:19:40:6b:4e:4c:62:ae: 3d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9B:62:BC:35:F5:76:41:07:98:7C:31:95:CA:BE:31:C5:C2:4F:C0 X509v3 Authority Key Identifier: keyid:95:FA:C3:8A:5C:B2:CE:A3:E5:FF:E2:49:56:26:A7:BE:A3:28:D6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/84da415b-5f17-4602-9bd9-fd84ac2cae86/0/95FAC38A5CB2CEA3E5FFE2495626A7BEA328D689.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:cb:3c:41:6b:14:ed:9b:4a:f9:87:aa:66:84:eb:4b:9d:f0: 13:99:be:9a:53:c1:d5:18:cc:3d:76:aa:83:6d:45:80:38:08: 59:0c:a2:81:0a:5c:02:d7:db:c5:bd:a9:46:e6:7a:6c:3f:d0: b4:83:7e:e7:80:b4:1b:97:f2:72:14:f5:e8:eb:d0:f3:7b:b9: 4c:16:b5:66:8c:59:74:b4:ae:40:36:f0:50:2d:76:4e:37:d6: 0f:36:c0:73:b3:48:17:cb:8c:5e:4c:90:b6:1f:df:a9:d3:bb: 76:a5:c4:5a:55:a1:a9:7c:75:46:a9:2b:85:54:33:ec:82:7a: 85:89:15:9f:ff:40:1b:1c:52:33:4c:27:3c:ce:34:30:0c:37: 4c:45:e2:23:5a:d5:a8:3a:53:e8:6b:c5:17:98:6e:ef:06:e8: 68:c0:35:3d:a1:9e:77:46:5e:57:36:18:2f:51:2e:25:5a:eb: c4:96:5b:7b:1b:92:d1:41:2b:ee:4f:6a:a7:bc:5b:5d:58:e4: 86:ba:02:4f:4b:5f:e5:b4:db:dc:ca:9b:37:86:46:9b:7b:ff: 71:18:24:22:87:88:4b:37:ae:9a:6c:3f:ad:af:ba:ab:0c:6e: 76:70:e2:9c:16:b7:6c:e4:e1:01:48:cc:e8:9d:14:9f:d6:9c: d4:1e:21:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL6+dRmred9tZEIXbSMJXwZLGmJwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVB MzI4RDY4OTAeFw0yNjAxMjUwNDI2MjlaFw0yNjAxMjgxMjI5MjlaMDMxMTAvBgNV BAMTKEFCOUI2MkJDMzVGNTc2NDEwNzk4N0MzMTk1Q0FCRTMxQzVDMjRGQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG4RXSKcDCgV0ilOeZ4LM0OX8h 0Vlh2F21T4MiL42HF4lCMDrL7zS/yIGiQhgqoaMnFHLeJ0hnNv6wvwLmuseg+k3S 54Ccdj5LpRr8gxlcIXBRfOAICev0Ofhlj5P+8eGrRJ1oYJUYuMlkqt6CfZgWxjn0 kFWj8/a/jxFYeiMgiIJSl4sV1OFxIke2+5wtylgOG4eHCkcMaCtNZkAURPtvvrbt WgzUsV1ehqhU+vMvJVZ0Djwdfi/Xkr728Nk4oJVwBqSoa7EUqSnUpK38MvYmjthw dLZakHOJQTnI8b+bgg+6yf2eWJ8p/pHBY3C6MMuf/1GvVP5bGUBrTkxirj1pAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUq5tivDX1dkEHmHwxlcq+McXCT8AwHwYDVR0j BBgwFoAUlfrDilyyzqPl/+JJVianvqMo1okwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NGRhNDE1Yi01ZjE3LTQ2MDItOWJkOS1mZDg0YWMyY2FlODYvMC85NUZBQzM4QTVD QjJDRUEzRTVGRkUyNDk1NjI2QTdCRUEzMjhENjg5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3QkVBMzI4 RDY4OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODRkYTQxNWItNWYxNy00NjAyLTli ZDktZmQ4NGFjMmNhZTg2LzAvOTVGQUMzOEE1Q0IyQ0VBM0U1RkZFMjQ5NTYyNkE3 QkVBMzI4RDY4OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJfLPEFrFO2bSvmHqmaE60ud8BOZvppTwdUY zD12qoNtRYA4CFkMooEKXALX28W9qUbmemw/0LSDfueAtBuX8nIU9ejr0PN7uUwW tWaMWXS0rkA28FAtdk431g82wHOzSBfLjF5MkLYf36nTu3alxFpVoal8dUapK4VU M+yCeoWJFZ//QBscUjNMJzzONDAMN0xF4iNa1ag6U+hrxReYbu8G6GjANT2hnndG Xlc2GC9RLiVa68SWW3sbktFBK+5Paqe8W11Y5Ia6Ak9LX+W029zKmzeGRpt7/3EY JCKHiEs3rppsP62vuqsMbnZw4pwWt2zk4QFIzOidFJ/WnNQeIdQ= -----END CERTIFICATE-----Generated at Mon Jan 26 10:30:15 2026 by rpki-client