This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: jCRlu1MM2BToAjncTEd0W6BKNNKNIcCUKiNoEBE/+Ys= Subject key identifier: B4:5B:84:4C:19:17:AA:B6:35:FC:30:2B:42:2E:12:16:7A:BA:20:6D Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 12B012D01630F38CD2E353CFF43887CC9DDE30B4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: F3 Signing time: Sun 25 Jan 2026 04:52:09 +0000 Manifest this update: Sun 25 Jan 2026 04:47:09 +0000 Manifest next update: Wed 28 Jan 2026 12:31:09 +0000 Files and hashes: 1: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: UKrYiAqJbUmDCDJ6GaKVUZzHTsPwTyDZCbRxdcTy8PI=) 2: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 3: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) 4: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 5: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 12:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:b0:12:d0:16:30:f3:8c:d2:e3:53:cf:f4:38:87:cc:9d:de:30:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Jan 25 04:47:09 2026 GMT Not After : Jan 28 12:31:09 2026 GMT Subject: CN=B45B844C1917AAB635FC302B422E12167ABA206D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:2d:32:2a:c0:86:37:e4:60:03:19:c3:06: 35:b6:bf:67:ff:9a:9d:0f:21:19:e4:d8:3e:4f:46: 4d:8b:bc:a3:c4:1f:63:cf:34:ed:2d:64:c8:25:a5: c9:f8:73:0b:29:03:fd:8e:f9:69:58:c9:59:53:45: 9b:c3:db:5f:8a:98:9d:47:f1:d9:b1:88:ab:7c:c0: ae:e6:4a:97:52:02:ab:fa:c0:71:58:91:e6:98:52: 13:a1:29:6f:da:13:9a:3c:7d:53:d1:58:74:32:be: f6:c4:b2:6f:e4:12:57:38:b8:9c:24:22:98:d8:1e: 9e:9a:9e:a8:67:6f:9d:0e:22:60:c5:0e:ff:cb:29: 85:92:62:fe:e2:8c:2f:dd:b9:58:8e:ff:f0:50:72: 7a:5d:42:8b:e7:6d:30:24:a3:76:17:9e:96:0f:dd: 89:c9:94:a9:87:0e:6e:4b:1d:3b:e2:09:6d:fa:07: 9e:21:be:a5:74:48:97:c5:f7:74:27:db:0f:0b:88: bf:0a:28:6a:04:74:da:49:48:dc:03:c8:f0:5e:b3: 24:2a:eb:da:b0:e8:de:1e:69:51:8c:04:d4:e4:50: 47:6b:30:a6:17:db:fd:84:25:8b:fe:fb:f1:87:2d: bd:65:ad:74:24:7f:30:f6:74:43:d9:e5:45:33:f4: 41:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:5B:84:4C:19:17:AA:B6:35:FC:30:2B:42:2E:12:16:7A:BA:20:6D X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:ab:e6:1a:1c:53:57:fe:9d:00:fa:9c:fb:5f:a7:21:6b:46: 8d:75:2c:3f:eb:1b:ab:73:8d:ed:cb:22:37:b6:d1:96:70:e3: c7:9c:fb:9b:fb:4d:f5:5c:40:48:ea:39:fb:b8:23:49:c6:e2: bf:17:f7:48:eb:76:60:c0:c9:11:eb:4c:76:64:53:8f:e8:05: 6c:ad:51:51:c9:64:db:c3:55:fa:68:fc:c8:34:71:d6:ce:80: 3f:48:a9:fb:f1:70:3f:c9:a4:f3:97:3d:32:03:45:50:f1:a8: 77:7c:c0:4a:4d:00:d2:45:1b:1d:be:e0:bc:67:c9:89:75:61: f1:c6:c2:04:34:81:b6:ad:af:53:d3:e0:90:f3:54:4d:ea:cf: 71:e2:e5:03:42:f1:25:13:fd:92:d0:b5:fd:f8:a0:94:a3:5a: 53:bf:d9:e6:eb:3e:5f:b4:1b:0e:da:72:b8:1e:ab:37:93:26: 96:c9:7d:5e:d7:02:8d:67:d3:8c:d9:8e:5b:9a:30:cc:d1:54: ac:88:56:0c:00:31:a7:a9:81:5a:c4:d8:de:36:bf:8a:ba:6f: 75:3c:4b:0d:b2:78:63:58:30:ea:1c:c1:93:a1:ff:c0:4c:e9: 28:f4:ee:3a:91:7b:5c:b7:dc:e3:2c:e4:89:64:77:e1:68:f6: fb:1d:8a:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUErAS0BYw84zS41PP9DiHzJ3eMLQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNjAxMjUwNDQ3MDlaFw0yNjAxMjgxMjMxMDlaMDMxMTAvBgNV BAMTKEI0NUI4NDRDMTkxN0FBQjYzNUZDMzAyQjQyMkUxMjE2N0FCQTIwNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPuy0yKsCGN+RgAxnDBjW2v2f/ mp0PIRnk2D5PRk2LvKPEH2PPNO0tZMglpcn4cwspA/2O+WlYyVlTRZvD21+KmJ1H 8dmxiKt8wK7mSpdSAqv6wHFYkeaYUhOhKW/aE5o8fVPRWHQyvvbEsm/kElc4uJwk IpjYHp6anqhnb50OImDFDv/LKYWSYv7ijC/duViO//BQcnpdQovnbTAko3YXnpYP 3YnJlKmHDm5LHTviCW36B54hvqV0SJfF93Qn2w8LiL8KKGoEdNpJSNwDyPBesyQq 69qw6N4eaVGMBNTkUEdrMKYX2/2EJYv++/GHLb1lrXQkfzD2dEPZ5UUz9EEvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtFuETBkXqrY1/DArQi4SFnq6IG0wHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFir5hocU1f+nQD6nPtfpyFrRo11LD/rG6tz je3LIje20ZZw48ec+5v7TfVcQEjqOfu4I0nG4r8X90jrdmDAyRHrTHZkU4/oBWyt UVHJZNvDVfpo/Mg0cdbOgD9IqfvxcD/JpPOXPTIDRVDxqHd8wEpNANJFGx2+4Lxn yYl1YfHGwgQ0gbatr1PT4JDzVE3qz3Hi5QNC8SUT/ZLQtf34oJSjWlO/2ebrPl+0 Gw7acrgeqzeTJpbJfV7XAo1n04zZjluaMMzRVKyIVgwAMaepgVrE2N42v4q6b3U8 Sw2yeGNYMOocwZOh/8BM6Sj07jqRe1y33OMs5Ilkd+Fo9vsdioU= -----END CERTIFICATE-----Generated at Sun Jan 25 23:16:21 2026 by rpki-client