This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft File: DE4325727D17555F6DABCC72788E361C741D47CF.mft (raw, json) Hash identifier: Hm2i5HCM2qsmJzyYT6yR7tGw7gxTx0X/I0xfzVAnutI= Subject key identifier: DC:FB:78:86:1A:34:C3:A2:FB:C0:BC:6A:4C:5E:EC:9D:A9:28:BD:55 Authority key identifier: DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF Certificate issuer: /CN=DE4325727D17555F6DABCC72788E361C741D47CF Certificate serial: 765B5E160371B64BDB7956A0ED50486C9E348DD7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft Manifest number: 0203 Signing time: Sun 25 Jan 2026 13:20:03 +0000 Manifest this update: Sun 25 Jan 2026 13:15:03 +0000 Manifest next update: Wed 28 Jan 2026 21:38:03 +0000 Files and hashes: 1: DE4325727D17555F6DABCC72788E361C741D47CF.crl (hash: WFZCRjzGt0uyiWf5UTTiaQY2g3XOtdHc613A1OJCnaM=) 2: 3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa (hash: G51YluNBJVnWJJLUM3oLTxL1SDaPjGOTZwYfGpp2BCE=) 3: 3130332e3135352e32342e302f32332d3233203d3e20313431303734.roa (hash: 6aU9uz5CHHldU1HIevUJsAf5erVKI657uWFvNEr+ic0=) 4: 323430363a363263303a3a2f33322d3332203d3e20313431303734.roa (hash: 2Lk6auTAFU1KMFXNa9pRSBxyYyKqC713tFzsVGAw9EU=) 5: 3130332e3135352e32342e302f32342d3234203d3e20313431303734.roa (hash: frVX3KU+95dnNdoEu8zY99nlhl5o8DK8rzkyAoketnM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:5b:5e:16:03:71:b6:4b:db:79:56:a0:ed:50:48:6c:9e:34:8d:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4325727D17555F6DABCC72788E361C741D47CF Validity Not Before: Jan 25 13:15:03 2026 GMT Not After : Jan 28 21:38:03 2026 GMT Subject: CN=DCFB78861A34C3A2FBC0BC6A4C5EEC9DA928BD55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:89:04:07:0b:bd:ba:68:fd:e4:90:5f:64:3e: 87:dd:57:5f:0a:f9:76:24:95:2e:8a:b9:8a:2b:63: 70:52:6b:6c:04:ff:51:03:a0:9a:ba:43:86:54:33: d9:31:e1:0a:db:d9:ec:bd:fe:4c:2f:d4:3f:1b:3d: a8:19:4f:25:25:d8:b4:22:69:67:33:5f:82:48:b2: 70:7a:5c:f0:a3:0c:e4:05:16:fa:8e:b4:72:16:2e: ef:7c:d0:8d:98:28:75:31:50:e2:27:65:f2:0c:d0: 9c:66:76:ab:35:b5:91:71:d5:d0:d4:f4:e6:93:c4: 19:df:b2:38:d7:43:e9:44:3b:9c:58:16:ef:2f:5b: a7:01:87:b3:7b:03:8b:c9:26:ad:78:b8:d1:c5:2c: e5:6c:e9:ab:26:0e:0b:dd:c5:a6:33:87:11:04:33: 87:a5:5a:13:05:5d:29:d9:11:6d:54:0d:72:ac:19: e9:ef:5e:e9:0e:97:6f:32:19:b3:61:df:7b:c4:ca: 1f:4c:d8:a8:db:6d:c0:3e:a9:68:3e:32:8e:b6:b4: b1:31:a6:a4:12:fb:13:ba:22:11:75:7b:76:1b:fe: 88:4e:f6:05:70:b4:4e:3c:e6:67:49:bb:ae:c1:27: f5:ad:b7:f0:e2:a5:b6:9d:6c:46:db:d6:ba:f4:70: 1d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:FB:78:86:1A:34:C3:A2:FB:C0:BC:6A:4C:5E:EC:9D:A9:28:BD:55 X509v3 Authority Key Identifier: keyid:DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:cc:4a:03:d6:ce:8b:1e:60:83:1d:3c:c1:c1:8b:f0:1d:b4: 34:f3:70:c8:38:ed:da:aa:a8:a7:73:94:6f:f5:f5:da:00:6b: 54:66:ea:25:38:00:ef:aa:f3:84:e4:14:1b:fc:a1:d2:88:f1: 6f:d5:4a:8c:58:43:c4:55:4b:61:db:c8:37:92:db:d7:4f:67: bb:74:6c:de:fd:a3:a2:21:70:85:c0:2e:7b:2c:32:05:9c:bd: f0:5b:49:f8:b6:1d:90:1c:72:00:5d:92:a8:8a:bc:a4:15:74: 4a:10:57:aa:e9:32:1f:9f:49:7f:35:86:ef:f9:fd:4d:cf:6f: 8d:f8:8a:16:38:0d:77:b5:e4:e4:ad:9a:12:f1:f4:64:7b:72: 70:cc:3b:14:2e:33:93:e1:db:44:54:b5:f8:88:4a:01:5e:b5: c5:99:87:e8:5a:92:0e:f1:18:96:62:3c:5c:9d:1f:47:41:3d: 9b:85:ec:fd:59:4c:c4:06:4f:75:ed:33:90:e1:53:47:26:47: 24:3c:20:1d:62:c7:fa:2f:93:9a:7b:97:59:af:9f:47:73:11: 5b:7d:0d:86:20:4c:02:12:c1:ec:a4:0d:4f:df:21:08:32:2c: eb:e5:95:22:e2:91:e7:a8:b8:eb:6a:79:14:d9:f5:99:fa:f3: 64:40:1c:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdlteFgNxtkvbeVag7VBIbJ40jdcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3 NDFENDdDRjAeFw0yNjAxMjUxMzE1MDNaFw0yNjAxMjgyMTM4MDNaMDMxMTAvBgNV BAMTKERDRkI3ODg2MUEzNEMzQTJGQkMwQkM2QTRDNUVFQzlEQTkyOEJENTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+iQQHC726aP3kkF9kPofdV18K +XYklS6KuYorY3BSa2wE/1EDoJq6Q4ZUM9kx4Qrb2ey9/kwv1D8bPagZTyUl2LQi aWczX4JIsnB6XPCjDOQFFvqOtHIWLu980I2YKHUxUOInZfIM0Jxmdqs1tZFx1dDU 9OaTxBnfsjjXQ+lEO5xYFu8vW6cBh7N7A4vJJq14uNHFLOVs6asmDgvdxaYzhxEE M4elWhMFXSnZEW1UDXKsGenvXukOl28yGbNh33vEyh9M2KjbbcA+qWg+Mo62tLEx pqQS+xO6IhF1e3Yb/ohO9gVwtE485mdJu67BJ/Wtt/DipbadbEbb1rr0cB1TAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3Pt4hho0w6L7wLxqTF7snakovVUwHwYDVR0j BBgwFoAU3kMlcn0XVV9tq8xyeI42HHQdR88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDc2MDhjZS1jM2Y4LTQ0ZWItYWVlNy1iNzg0YWUyMGM5YzcvMC9ERTQzMjU3MjdE MTc1NTVGNkRBQkNDNzI3ODhFMzYxQzc0MUQ0N0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3NDFE NDdDRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA3NjA4Y2UtYzNmOC00NGViLWFl ZTctYjc4NGFlMjBjOWM3LzAvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2 MUM3NDFENDdDRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFDMSgPWzoseYIMdPMHBi/AdtDTzcMg47dqq qKdzlG/19doAa1Rm6iU4AO+q84TkFBv8odKI8W/VSoxYQ8RVS2HbyDeS29dPZ7t0 bN79o6IhcIXALnssMgWcvfBbSfi2HZAccgBdkqiKvKQVdEoQV6rpMh+fSX81hu/5 /U3Pb434ihY4DXe15OStmhLx9GR7cnDMOxQuM5Ph20RUtfiISgFetcWZh+hakg7x GJZiPFydH0dBPZuF7P1ZTMQGT3XtM5DhU0cmRyQ8IB1ix/ovk5p7l1mvn0dzEVt9 DYYgTAISweykDU/fIQgyLOvllSLikeeouOtqeRTZ9Zn682RAHFw= -----END CERTIFICATE-----Generated at Mon Jan 26 06:08:16 2026 by rpki-client