This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft File: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft (raw, json) Hash identifier: lSnZ4afYGaTYdryalFQD45uZWFkuq+B/nNicNkK61BU= Subject key identifier: FD:98:EB:20:CA:97:17:24:77:04:7A:74:E2:94:8F:64:BA:A5:42:A0 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 74C520D77B0DE16B000813BED0315FA029E86470 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft Manifest number: 01CE Signing time: Sun 25 Jan 2026 15:21:20 +0000 Manifest this update: Sun 25 Jan 2026 15:16:20 +0000 Manifest next update: Wed 28 Jan 2026 16:32:20 +0000 Files and hashes: 1: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (hash: 6gVzJ3lnoTzbRecAFAnRC8x24kDXXXW3lAWqPBdz2dw=) 2: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (hash: 1f4e1XEuXG9su40zHvwmNI+q39l2fKb22IFThBoIE0Y=) 3: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl (hash: p3C+JxOfuXOUC5J0fG3Cv0eVI/6rUYqOjw7Uyn1zFRM=) 4: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (hash: Q3xxSdQXC23vXFGFdHyLQV020HZB9BgH6IL3S5vtQAA=) 5: 3130332e37302e31362e302f32342d3234203d3e20313335343632.roa (hash: JiNsqLJvEYFIyhrR6R0JR1hrj3KWiaaB75HG9L5QPcg=) 6: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (hash: 6N2J2kg+Zlk+0sQHWC1BIhfECV5xjbZiRhQRFmUUNag=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c5:20:d7:7b:0d:e1:6b:00:08:13:be:d0:31:5f:a0:29:e8:64:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Jan 25 15:16:20 2026 GMT Not After : Jan 28 16:32:20 2026 GMT Subject: CN=FD98EB20CA97172477047A74E2948F64BAA542A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:df:18:83:ef:8f:e2:18:5b:6b:df:61:70: bb:04:3c:d0:ea:53:35:f2:9b:fd:5c:d5:8f:9b:cb: 36:a1:85:87:85:4a:9b:08:a0:e4:8a:55:6e:47:35: 4a:3d:bd:01:81:de:68:63:89:f6:ef:93:fb:f2:c9: 22:4d:45:45:2e:5c:06:44:2e:4d:e1:b8:76:c5:97: 92:6f:9a:08:c8:5b:d5:5c:58:34:8e:1c:1c:c2:ca: e0:2b:45:83:ef:21:8a:9c:12:e4:de:84:1f:f9:78: bb:85:03:15:ae:d4:c1:01:c4:8a:16:5d:28:57:94: c7:d0:0e:6e:63:f0:6f:1f:28:71:eb:f8:c2:b5:71: 2d:2f:d4:6a:57:15:fb:63:27:21:ec:a2:ea:85:22: 31:f9:6d:1e:e9:c7:d1:88:6e:2b:1f:a5:51:c5:51: 32:c9:fe:7f:3c:1f:66:13:66:94:91:68:1a:59:b1: 08:56:b8:33:a9:8b:03:95:02:28:03:f6:fc:b4:e4: c8:7d:d8:30:67:ed:38:06:56:8c:b0:e9:4d:e9:d2: 49:1d:95:ad:6c:0f:0d:1b:92:12:26:5b:98:9f:af: 97:b9:ab:8d:70:d7:ab:d5:18:1e:70:d4:f8:85:2f: 07:5b:6b:75:82:3c:d7:52:fc:f8:0c:e5:03:66:89: 15:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:98:EB:20:CA:97:17:24:77:04:7A:74:E2:94:8F:64:BA:A5:42:A0 X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:8e:b2:95:f1:7c:2f:3c:7d:2a:88:de:c9:a9:5c:e1:d0:7b: ef:0c:8b:eb:0c:6a:4d:b8:79:9b:3a:f2:d5:58:04:67:5a:3f: 4b:2d:1e:75:16:7b:00:be:ed:28:be:33:f5:33:87:0c:01:d7: 4b:40:c8:41:d7:70:f2:a4:fa:34:6a:62:a0:87:7d:d4:f5:7d: 11:2e:bd:c4:ad:2c:93:c5:7e:e5:04:38:ed:22:11:c1:ad:df: 8e:7e:58:d4:b1:e2:0e:c0:c3:4e:18:a7:f8:77:4b:18:28:6d: 9f:8c:ee:04:07:4c:69:9c:6b:a0:93:ad:22:d1:15:10:7b:86: 02:8b:63:34:12:1b:e4:7d:da:08:7d:4a:02:ed:af:b8:3b:67: da:51:fc:7e:cd:b9:a7:81:26:82:e3:2e:49:9d:6c:b9:16:bf: 9b:bf:d9:0b:df:ed:d8:fa:3b:fc:7c:58:35:94:78:8d:b2:8a: 45:8f:37:1e:d7:33:85:03:83:04:fe:3f:62:0e:ed:f4:83:71: b2:5b:43:c7:22:66:e8:4d:b2:9a:a8:5b:51:71:07:20:15:12: 33:07:e8:d3:09:99:be:48:91:3e:b9:40:8a:21:f9:d1:02:35: 0e:e9:02:e5:b3:30:3d:16:1d:cb:f7:35:af:76:9f:c2:05:96: d4:a3:59:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdMUg13sN4WsACBO+0DFfoCnoZHAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNjAxMjUxNTE2MjBaFw0yNjAxMjgxNjMyMjBaMDMxMTAvBgNV BAMTKEZEOThFQjIwQ0E5NzE3MjQ3NzA0N0E3NEUyOTQ4RjY0QkFBNTQyQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyoN8Yg++P4hhba99hcLsEPNDq UzXym/1c1Y+byzahhYeFSpsIoOSKVW5HNUo9vQGB3mhjifbvk/vyySJNRUUuXAZE Lk3huHbFl5JvmgjIW9VcWDSOHBzCyuArRYPvIYqcEuTehB/5eLuFAxWu1MEBxIoW XShXlMfQDm5j8G8fKHHr+MK1cS0v1GpXFftjJyHsouqFIjH5bR7px9GIbisfpVHF UTLJ/n88H2YTZpSRaBpZsQhWuDOpiwOVAigD9vy05Mh92DBn7TgGVoyw6U3p0kkd la1sDw0bkhImW5ifr5e5q41w16vVGB5w1PiFLwdba3WCPNdS/PgM5QNmiRUHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/ZjrIMqXFyR3BHp04pSPZLqlQqAwHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4 NDQtNGU2YzdhM2M5N2Q5LzAvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4 MDlCNTM2OTVGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKCOspXxfC88fSqI3smpXOHQe+8Mi+sMak24 eZs68tVYBGdaP0stHnUWewC+7Si+M/UzhwwB10tAyEHXcPKk+jRqYqCHfdT1fREu vcStLJPFfuUEOO0iEcGt345+WNSx4g7Aw04Yp/h3SxgobZ+M7gQHTGmca6CTrSLR FRB7hgKLYzQSG+R92gh9SgLtr7g7Z9pR/H7NuaeBJoLjLkmdbLkWv5u/2Qvf7dj6 O/x8WDWUeI2yikWPNx7XM4UDgwT+P2IO7fSDcbJbQ8ciZuhNspqoW1FxByAVEjMH 6NMJmb5IkT65QIoh+dECNQ7pAuWzMD0WHcv3Na92n8IFltSjWeM= -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:07 2026 by rpki-client