This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft File: CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json) Hash identifier: RzLTKWFihjx4oaB6Xt7Bx5VaoiKwJ1WYxIATOOrUfn0= Subject key identifier: C4:3F:51:21:6F:A3:38:F4:5C:26:63:23:47:67:4C:3C:F1:69:0F:13 Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 Certificate issuer: /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Certificate serial: 34EA53961E510ADE4BDA776E47EB94152B9F8D68 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft Manifest number: 0100 Signing time: Sun 25 Jan 2026 08:21:13 +0000 Manifest this update: Sun 25 Jan 2026 08:16:13 +0000 Manifest next update: Wed 28 Jan 2026 19:18:13 +0000 Files and hashes: 1: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: 9RVVc2Xr2MwekGBrY5yNpr3rFvtiRcd5hmZ139P9OjQ=) 2: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: lDykVwxJoW4GFsi2L2TOWuZVobAaZLaNG/GuK7uwVOw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ea:53:96:1e:51:0a:de:4b:da:77:6e:47:eb:94:15:2b:9f:8d:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Validity Not Before: Jan 25 08:16:13 2026 GMT Not After : Jan 28 19:18:13 2026 GMT Subject: CN=C43F51216FA338F45C26632347674C3CF1690F13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:22:14:41:38:5b:80:2c:f7:45:c3:b1:0c:1b: e5:d3:13:a9:eb:95:b2:22:6b:9b:57:be:0d:70:df: af:f2:ed:f6:a1:c5:79:c9:05:74:72:ff:85:18:43: 4b:39:de:a3:5f:a5:86:4f:67:d1:e5:75:8d:73:e9: e6:c5:f2:8b:f5:5e:11:27:ce:9f:92:7c:58:bf:c4: ca:64:c9:70:12:6d:93:05:85:7d:4e:9b:14:74:c2: 6e:78:97:b2:c8:a9:d9:34:11:d7:2f:89:40:73:1b: 74:18:01:33:bd:a0:db:e2:6a:4a:3f:eb:e3:5d:57: 07:0b:c4:56:d2:49:bf:ab:a9:3d:07:15:14:cd:ab: 92:4f:26:61:d7:34:4a:f5:2c:bf:2b:24:73:8d:ba: 06:a8:b1:7e:08:49:00:22:cb:88:83:51:0b:41:e0: 26:c4:b8:ea:0f:db:42:6d:63:ed:30:4b:e7:78:c0: 56:83:d0:78:59:0e:e7:9b:ac:9f:f4:de:46:a6:8a: 13:89:81:fd:27:af:3b:90:28:2a:d5:bd:67:39:be: 74:41:c6:67:0e:da:d6:24:3f:d3:96:5f:42:c3:5e: 00:96:65:c0:11:3e:3a:b8:33:25:02:48:27:bd:cf: 74:57:e9:ea:90:24:e6:c8:12:0e:5e:b0:04:d1:d5: 8b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3F:51:21:6F:A3:38:F4:5C:26:63:23:47:67:4C:3C:F1:69:0F:13 X509v3 Authority Key Identifier: keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:88:f2:28:f9:eb:8e:8e:19:d6:71:c5:b9:fc:76:5d:60:3d: 61:0d:0e:f4:16:7b:72:4f:7a:e1:ce:ff:19:33:d9:2b:c0:86: 8e:fd:44:a3:25:08:fc:74:9b:15:5c:df:03:f0:41:fe:ca:68: 65:62:3b:4e:c7:28:0a:6c:a7:21:a7:09:34:e7:b7:ba:54:cd: ec:41:97:5a:5a:ae:64:54:91:42:dc:ed:15:e9:0e:b8:a5:90: d8:df:97:0b:23:d4:2f:eb:ef:58:fd:7a:01:a1:ca:65:c4:c3: fd:2a:81:f3:99:ac:d4:34:e1:b5:03:18:9f:96:f5:4c:0c:22: f0:45:b6:96:57:2c:a6:7a:80:fe:f4:67:f5:74:d6:ba:bd:42: b1:7a:01:ac:04:f1:1b:5c:6c:7c:a9:35:f7:e6:b7:6c:06:ee: 8e:99:83:76:73:61:45:f5:7d:6c:31:28:10:09:c9:21:8e:8f: 98:52:74:77:4f:3a:83:c2:b6:39:6d:7d:7a:c6:17:d8:0a:0a: b3:10:1b:86:9c:3a:4f:3e:fd:d1:cb:ac:6f:80:63:d2:e6:df: 72:22:60:a6:d0:04:72:20:8e:a6:09:e4:d8:fd:12:d3:43:5e: dd:99:d6:03:73:05:1b:37:63:f9:62:cb:5c:2e:6e:8e:fe:3b: b8:18:62:d2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNOpTlh5RCt5L2nduR+uUFSufjWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE NDhGRjRFNzAeFw0yNjAxMjUwODE2MTNaFw0yNjAxMjgxOTE4MTNaMDMxMTAvBgNV BAMTKEM0M0Y1MTIxNkZBMzM4RjQ1QzI2NjMyMzQ3Njc0QzNDRjE2OTBGMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6IhRBOFuALPdFw7EMG+XTE6nr lbIia5tXvg1w36/y7fahxXnJBXRy/4UYQ0s53qNfpYZPZ9HldY1z6ebF8ov1XhEn zp+SfFi/xMpkyXASbZMFhX1OmxR0wm54l7LIqdk0EdcviUBzG3QYATO9oNviako/ 6+NdVwcLxFbSSb+rqT0HFRTNq5JPJmHXNEr1LL8rJHONugaosX4ISQAiy4iDUQtB 4CbEuOoP20JtY+0wS+d4wFaD0HhZDuebrJ/03kamihOJgf0nrzuQKCrVvWc5vnRB xmcO2tYkP9OWX0LDXgCWZcARPjq4MyUCSCe9z3RX6eqQJObIEg5esATR1YsTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxD9RIW+jOPRcJmMjR2dMPPFpDxMwHwYDVR0j BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4 OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMiI8ij5646OGdZxxbn8dl1gPWENDvQWe3JP euHO/xkz2SvAho79RKMlCPx0mxVc3wPwQf7KaGViO07HKApspyGnCTTnt7pUzexB l1parmRUkULc7RXpDrilkNjflwsj1C/r71j9egGhymXEw/0qgfOZrNQ04bUDGJ+W 9UwMIvBFtpZXLKZ6gP70Z/V01rq9QrF6AawE8RtcbHypNffmt2wG7o6Zg3ZzYUX1 fWwxKBAJySGOj5hSdHdPOoPCtjltfXrGF9gKCrMQG4acOk8+/dHLrG+AY9Lm33Ii YKbQBHIgjqYJ5Nj9EtNDXt2Z1gNzBRs3Y/liy1wubo7+O7gYYtI= -----END CERTIFICATE-----Generated at Sun Jan 25 20:23:35 2026 by rpki-client