This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: fbikw9cXFT9BUFXEwPUYKBRT3icLqT7oEq+0NL60Yok= Subject key identifier: BF:8A:9E:89:6B:67:49:FB:80:7D:88:B1:E0:1C:F9:0A:E3:7E:5C:A3 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 7963065E8E75873492AE095BD0DA5E6CB3BC6B25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 0295 Signing time: Sun 25 Jan 2026 04:31:02 +0000 Manifest this update: Sun 25 Jan 2026 04:26:02 +0000 Manifest next update: Wed 28 Jan 2026 10:40:02 +0000 Files and hashes: 1: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: VWdyOYYTifudfSUwEVWa9ANGPIHpQabnls++DgVxljE=) 2: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: LV0F6O0JrtgL58ARC8h1flo+UOdpKwAYXIa3PEvRfFg=) 3: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: TW2RLqGqp5GMVEosRG1Cl0owKGLEGJyPDYB2l9dTN4E=) 4: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: Pc8+u8Td58Gt9SoemNeC5yXZBTw+8iQEAs4MZbF63tQ=) 5: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: vJ0JThPWN5z9ya3yGVitmhJSsuKICvURyRQCb1oSUaA=) 6: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: BmTBKF81iqbHECVQY3Ck/WKC+nTPpzrh6SVPoZTsvD4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 10:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:63:06:5e:8e:75:87:34:92:ae:09:5b:d0:da:5e:6c:b3:bc:6b:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Jan 25 04:26:02 2026 GMT Not After : Jan 28 10:40:02 2026 GMT Subject: CN=BF8A9E896B6749FB807D88B1E01CF90AE37E5CA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f3:c3:6a:c6:60:69:0b:6a:58:a6:fa:c5:77: b3:b9:cc:95:5c:29:bf:08:59:47:19:b7:3d:57:cc: 78:16:99:94:ef:82:b3:5e:68:57:3e:99:bf:30:4b: ae:ac:a9:21:3a:cc:09:d9:f7:45:9b:8f:2d:9a:54: bf:20:e0:7b:b5:7c:a0:e5:b7:05:2f:a9:0b:ab:ae: 65:95:c5:45:db:f8:7d:8b:e1:8e:c0:7c:bd:7b:f6: 43:67:60:d4:96:67:f1:d0:30:dd:80:e1:e8:02:ff: 4f:97:6a:2b:ef:85:1c:f5:2b:81:41:93:3b:db:bc: 37:0c:3e:bb:71:d6:57:5e:47:5a:df:0d:c9:a9:4a: 59:c2:50:f7:5d:0a:1a:9b:3a:b2:74:bd:b1:56:68: d5:65:19:cb:5a:2a:38:9e:2d:8a:f4:1b:57:c7:89: 40:a4:b4:01:8d:a2:50:83:c6:75:7e:f0:23:1c:42: 9d:0b:0d:ad:18:23:07:73:1b:6c:da:8b:17:9a:9e: 3e:e8:2c:fd:ff:11:36:6d:8f:32:09:42:c9:47:66: 34:4b:60:c3:29:cf:b5:1a:ba:30:74:15:9c:69:2c: 6f:06:0a:08:e6:16:cb:8a:18:9a:42:52:29:d7:88: 04:8d:f8:27:30:80:a5:3d:c4:4f:a1:4a:f8:1c:72: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8A:9E:89:6B:67:49:FB:80:7D:88:B1:E0:1C:F9:0A:E3:7E:5C:A3 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:80:81:fb:06:2d:55:58:fb:44:29:3b:12:6d:1e:f6:d6:86: 20:ad:32:d8:9c:f8:06:8a:bc:98:2e:d8:b8:1e:5a:34:42:d8: 1e:0c:8d:b9:12:ea:73:5c:98:27:79:06:62:5f:fb:75:ce:0c: e2:24:40:5c:39:8d:87:d1:8e:ee:0b:d2:da:ce:12:70:d1:8a: 75:6d:1f:4c:8b:3a:4a:0d:92:0e:99:c7:90:97:4f:9a:ac:66: 32:18:c6:68:ea:c8:11:8a:e8:32:c4:24:54:97:ff:41:04:ed: cd:c9:c0:5e:6e:18:a5:67:f4:55:48:a2:54:42:ac:4b:62:3c: 36:15:2f:b2:83:a0:88:dc:f4:45:cf:f3:a9:1a:08:23:89:1e: 89:db:d8:05:47:5b:36:d2:4e:19:e7:13:f4:16:5d:5a:49:0a: ef:33:24:41:cf:ac:8a:45:b4:60:ec:47:03:c0:49:3a:8f:cb: ad:c1:d2:f4:d2:81:92:7b:49:be:ef:82:96:cf:5b:41:2e:10: 48:c4:14:1f:2f:3f:d9:08:08:22:37:9b:81:f2:04:4b:36:eb: 29:85:08:e9:b1:c6:14:3b:d5:c1:8c:79:9c:4c:f5:14:44:15: 30:e5:95:af:04:c8:d7:36:33:be:29:36:c4:0b:86:f6:06:ff: 04:f5:b7:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeWMGXo51hzSSrglb0NpebLO8ayUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNjAxMjUwNDI2MDJaFw0yNjAxMjgxMDQwMDJaMDMxMTAvBgNV BAMTKEJGOEE5RTg5NkI2NzQ5RkI4MDdEODhCMUUwMUNGOTBBRTM3RTVDQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+88NqxmBpC2pYpvrFd7O5zJVc Kb8IWUcZtz1XzHgWmZTvgrNeaFc+mb8wS66sqSE6zAnZ90Wbjy2aVL8g4Hu1fKDl twUvqQurrmWVxUXb+H2L4Y7AfL179kNnYNSWZ/HQMN2A4egC/0+XaivvhRz1K4FB kzvbvDcMPrtx1ldeR1rfDcmpSlnCUPddChqbOrJ0vbFWaNVlGctaKjieLYr0G1fH iUCktAGNolCDxnV+8CMcQp0LDa0YIwdzG2zaixeanj7oLP3/ETZtjzIJQslHZjRL YMMpz7UaujB0FZxpLG8GCgjmFsuKGJpCUinXiASN+CcwgKU9xE+hSvgccu8FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUv4qeiWtnSfuAfYix4Bz5CuN+XKMwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL+AgfsGLVVY+0QpOxJtHvbWhiCtMtic+AaK vJgu2LgeWjRC2B4MjbkS6nNcmCd5BmJf+3XODOIkQFw5jYfRju4L0trOEnDRinVt H0yLOkoNkg6Zx5CXT5qsZjIYxmjqyBGK6DLEJFSX/0EE7c3JwF5uGKVn9FVIolRC rEtiPDYVL7KDoIjc9EXP86kaCCOJHonb2AVHWzbSThnnE/QWXVpJCu8zJEHPrIpF tGDsRwPASTqPy63B0vTSgZJ7Sb7vgpbPW0EuEEjEFB8vP9kICCI3m4HyBEs26ymF COmxxhQ71cGMeZxM9RREFTDlla8EyNc2M74pNsQLhvYG/wT1t3Y= -----END CERTIFICATE-----Generated at Mon Jan 26 01:19:26 2026 by rpki-client