This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: /EaDtx5ubFHR7hhVziFmv2n6Uyd7sVsBHnv1zV5hZ7Y= Subject key identifier: 45:80:E2:5E:D6:F7:BD:95:10:03:74:5D:91:22:B5:1E:CB:50:33:00 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 05FC8E2CF4DCFD02C74CCC6032332C8CFBD15B1B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 039A Signing time: Sun 25 Jan 2026 19:11:36 +0000 Manifest this update: Sun 25 Jan 2026 19:06:36 +0000 Manifest next update: Wed 28 Jan 2026 21:52:36 +0000 Files and hashes: 1: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: uWBIj34RgZa7w80AMlN0dA1eNOvNXrKEzgzNaGwBR3Q=) 2: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) 3: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) 4: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (hash: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:fc:8e:2c:f4:dc:fd:02:c7:4c:cc:60:32:33:2c:8c:fb:d1:5b:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Jan 25 19:06:36 2026 GMT Not After : Jan 28 21:52:36 2026 GMT Subject: CN=4580E25ED6F7BD951003745D9122B51ECB503300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:67:bb:ef:29:07:51:da:95:da:16:94:fb:f1: 0b:d1:19:a6:d1:34:5c:46:03:08:c9:93:ad:46:c1: ee:7d:3d:e0:d5:a6:9a:46:e6:42:f6:b4:1d:ab:ab: 16:97:0b:98:d2:d0:45:c0:5d:97:9b:d3:d6:53:9d: 88:49:19:5a:b7:9d:8d:a2:60:f0:4b:b2:e2:1d:7a: f2:a6:93:34:75:f4:f9:2e:44:3a:2e:2e:38:e4:a3: ca:9d:cc:f8:62:a9:de:4c:50:05:5a:a6:bf:fd:a8: 99:04:a9:17:73:77:8b:e0:88:7f:c2:98:06:7e:a4: 6d:e5:9a:f4:95:79:15:27:a4:3c:ae:40:83:52:30: eb:0c:31:d6:14:53:02:1b:7c:ff:5d:a6:73:65:f2: d0:fd:b6:36:a5:51:af:47:ad:51:70:c9:60:c1:7c: 7f:4f:dd:86:59:e5:c6:8f:cf:27:19:4c:f1:ed:83: e7:e8:c8:cb:44:fa:54:41:b9:94:ac:b9:6a:d2:22: 25:c3:ea:2e:b3:93:ee:4b:75:d3:ee:e0:db:79:1a: e3:3c:20:72:96:e8:e3:b7:26:f7:c7:8a:e5:00:91: 78:6b:ad:eb:cc:f9:df:12:78:26:31:93:cb:4f:a1: 3e:84:5d:ad:f9:18:3c:5a:bd:2a:ae:fa:37:5a:a8: 39:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:80:E2:5E:D6:F7:BD:95:10:03:74:5D:91:22:B5:1E:CB:50:33:00 X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:66:2e:9d:cf:33:d3:d7:0a:81:7a:7f:bf:41:f4:e2:8d:b3: d6:fa:24:54:f4:4c:96:fc:80:c7:39:3c:7a:97:5d:d3:0b:87: 52:68:7a:4e:a6:fe:63:93:56:2f:02:61:db:39:c1:14:d8:fa: b6:c2:95:28:fa:31:21:b2:79:b0:be:d4:8a:ab:b0:34:c3:4e: 8e:21:09:f9:56:39:49:1b:b3:af:c1:7d:51:6a:0e:58:a3:64: bf:9d:50:ff:19:d8:66:d5:0e:1a:ac:bf:3b:6a:64:43:18:53: 12:5b:19:14:d2:9e:be:ed:13:46:d4:2c:ff:c0:5d:71:67:cc: 19:27:c7:ec:a4:55:97:2e:0f:0f:d7:15:46:5b:1d:45:e4:38: 2e:d6:8d:12:6b:7e:66:81:da:74:55:b9:4b:b4:13:68:df:57: 52:86:4c:ca:23:88:f9:a5:57:29:3d:bc:fd:8f:b3:8a:68:85: 4b:78:11:87:d2:f0:d8:2f:e0:72:fa:98:bf:57:6f:0a:05:d9: ac:d9:1e:76:33:c5:b4:10:b7:9d:ed:22:91:62:93:65:f0:7f: f2:dc:f0:be:d6:28:e0:bf:3e:86:bb:7d:ae:6e:b7:62:83:ac: 3d:24:7c:bc:57:cb:53:94:4a:31:5b:4e:30:40:49:7a:33:12: 36:59:b3:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBfyOLPTc/QLHTMxgMjMsjPvRWxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNjAxMjUxOTA2MzZaFw0yNjAxMjgyMTUyMzZaMDMxMTAvBgNV BAMTKDQ1ODBFMjVFRDZGN0JEOTUxMDAzNzQ1RDkxMjJCNTFFQ0I1MDMzMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUZ7vvKQdR2pXaFpT78QvRGabR NFxGAwjJk61Gwe59PeDVpppG5kL2tB2rqxaXC5jS0EXAXZeb09ZTnYhJGVq3nY2i YPBLsuIdevKmkzR19PkuRDouLjjko8qdzPhiqd5MUAVapr/9qJkEqRdzd4vgiH/C mAZ+pG3lmvSVeRUnpDyuQINSMOsMMdYUUwIbfP9dpnNl8tD9tjalUa9HrVFwyWDB fH9P3YZZ5caPzycZTPHtg+foyMtE+lRBuZSsuWrSIiXD6i6zk+5LddPu4Nt5GuM8 IHKW6OO3JvfHiuUAkXhrrevM+d8SeCYxk8tPoT6EXa35GDxavSqu+jdaqDn5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQURYDiXtb3vZUQA3RdkSK1HstQMwAwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADZmLp3PM9PXCoF6f79B9OKNs9b6JFT0TJb8 gMc5PHqXXdMLh1Joek6m/mOTVi8CYds5wRTY+rbClSj6MSGyebC+1IqrsDTDTo4h CflWOUkbs6/BfVFqDlijZL+dUP8Z2GbVDhqsvztqZEMYUxJbGRTSnr7tE0bULP/A XXFnzBknx+ykVZcuDw/XFUZbHUXkOC7WjRJrfmaB2nRVuUu0E2jfV1KGTMojiPml Vyk9vP2Ps4pohUt4EYfS8Ngv4HL6mL9XbwoF2azZHnYzxbQQt53tIpFik2Xwf/Lc 8L7WKOC/Poa7fa5ut2KDrD0kfLxXy1OUSjFbTjBASXozEjZZs6c= -----END CERTIFICATE-----Generated at Mon Jan 26 04:28:44 2026 by rpki-client