This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft File: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft (raw, json) Hash identifier: NfjU1be//W9K6eugZtOMPT40f6YdpB7lRi+j/2voxAE= Subject key identifier: 24:A6:EB:FC:53:DC:55:3C:C1:07:41:60:72:CA:12:64:B8:27:86:64 Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Certificate serial: 068FFFA08AABCABC4C1850DB478B1EE4BA9E742C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft Manifest number: E8 Signing time: Sun 25 Jan 2026 08:10:49 +0000 Manifest this update: Sun 25 Jan 2026 08:05:49 +0000 Manifest next update: Wed 28 Jan 2026 12:18:49 +0000 Files and hashes: 1: 3136302e32322e3235312e302f32342d3234203d3e20313430343536.roa (hash: 9NuukBIDDZ7f6DuKuIwjkGDhtnMzcPyVVkUYuDF3dPM=) 2: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl (hash: 8B93t0wl/i7Vz6bTub+1nYwQt2Mq+hq3nerAapkxhWI=) 3: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (hash: NLnyyxEhnshl8M0vZmmh6y422VBLzdBQzG682UNLOQc=) 4: 3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa (hash: OJeztSNPa6Ny2Jrl9pv1yxSSkQT/t6rbcjh/ieoX/VA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 12:18:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8f:ff:a0:8a:ab:ca:bc:4c:18:50:db:47:8b:1e:e4:ba:9e:74:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Validity Not Before: Jan 25 08:05:49 2026 GMT Not After : Jan 28 12:18:49 2026 GMT Subject: CN=24A6EBFC53DC553CC107416072CA1264B8278664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:67:a4:91:79:32:45:3b:85:7f:67:2e:dd:27: 8b:0f:ab:d6:8d:89:a9:79:15:df:74:db:26:4e:76: 84:be:9c:2d:28:13:34:a0:66:95:4c:5c:a2:b8:78: 4c:17:f5:d3:95:79:34:24:aa:c5:e1:3f:48:d1:92: 62:84:5d:bd:bd:e3:53:41:8f:ff:53:8e:00:bc:61: 5b:84:70:7f:98:44:84:57:de:3c:a6:7b:17:be:3f: cf:d7:a5:49:a9:44:20:cd:0d:4d:24:90:40:78:3d: b8:b2:82:d8:96:17:ab:34:48:bd:3b:d2:3c:a0:94: 55:bb:71:a0:aa:b6:2b:be:ef:0d:f7:21:a7:c4:c6: 8a:1e:3b:c1:ae:d0:ad:5c:04:f1:c6:fc:a3:52:95: 41:1e:ae:7b:ce:34:57:77:a2:31:09:46:b0:c4:07: c0:7a:6d:90:48:e7:65:e6:88:dd:4c:fd:42:9a:fd: 64:57:e7:84:8f:1e:2a:6f:f1:27:7b:12:02:58:bc: 9b:69:b6:22:c0:b8:f2:7e:56:1a:9a:0a:54:e6:b4: 8e:6e:42:82:01:6e:fa:3b:08:71:92:29:c9:f8:bc: f7:c2:35:7b:a3:5c:cb:cb:00:1d:45:9b:7d:2c:97: ec:e4:ff:12:f4:7a:3f:d8:8e:d5:4c:2f:9f:aa:4a: 91:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A6:EB:FC:53:DC:55:3C:C1:07:41:60:72:CA:12:64:B8:27:86:64 X509v3 Authority Key Identifier: keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:c7:f3:d3:6f:3c:cb:29:aa:62:a7:f4:f4:92:07:06:33:89: 8c:02:96:56:19:7e:cd:4a:43:aa:47:96:80:ab:b2:2a:4c:e8: 41:33:50:a8:6b:bb:cf:19:5d:5a:75:93:93:98:37:9e:e5:c3: 6c:5e:0b:a5:bd:22:c5:9d:95:ba:83:63:1e:23:d3:86:d2:6f: b2:f3:98:95:39:74:b1:cf:f3:b9:70:d4:3c:1a:42:e0:4f:c1: e3:8a:d4:48:dc:d5:61:d9:7a:41:0c:98:36:b2:13:78:04:8d: 27:b3:3b:8f:1e:4a:ce:f2:36:99:82:77:28:65:b5:5a:dd:72: 8e:95:31:d1:68:f7:46:60:3a:a4:d9:a8:dd:e7:d5:00:22:9b: 57:e8:31:d2:7e:01:85:1c:b6:e9:96:c8:8a:36:16:25:d3:de: 3c:9b:6e:d7:e0:54:a4:de:b6:7c:d0:80:7f:73:f8:fd:ce:e2: b5:1e:0f:bc:73:f2:b7:1f:6c:95:61:34:e5:9e:19:ce:ab:c9: bb:44:1e:ff:2c:96:f9:1d:1b:02:46:b0:b4:03:4f:b2:8d:70: 26:1c:e4:d1:bc:85:f5:44:cc:d8:9e:20:cd:1a:67:a8:18:7d: 00:76:ed:ac:80:c5:64:7f:05:71:44:b8:af:39:df:2b:9a:3d: bc:ed:3f:e2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBo//oIqryrxMGFDbR4se5LqedCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBF OUIyREEzNjAeFw0yNjAxMjUwODA1NDlaFw0yNjAxMjgxMjE4NDlaMDMxMTAvBgNV BAMTKDI0QTZFQkZDNTNEQzU1M0NDMTA3NDE2MDcyQ0ExMjY0QjgyNzg2NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Z6SReTJFO4V/Zy7dJ4sPq9aN ial5Fd902yZOdoS+nC0oEzSgZpVMXKK4eEwX9dOVeTQkqsXhP0jRkmKEXb2941NB j/9TjgC8YVuEcH+YRIRX3jymexe+P8/XpUmpRCDNDU0kkEB4PbiygtiWF6s0SL07 0jyglFW7caCqtiu+7w33IafExooeO8Gu0K1cBPHG/KNSlUEernvONFd3ojEJRrDE B8B6bZBI52XmiN1M/UKa/WRX54SPHipv8Sd7EgJYvJtptiLAuPJ+VhqaClTmtI5u QoIBbvo7CHGSKcn4vPfCNXujXMvLAB1Fm30sl+zk/xL0ej/YjtVML5+qSpFdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJKbr/FPcVTzBB0FgcsoSZLgnhmQwHwYDVR0j BBgwFoAUjiBZstJEhYXRHtKwFD/vwOmy2jYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMC84RTIwNTlCMkQy NDQ4NTg1RDExRUQyQjAxNDNGRUZDMEU5QjJEQTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBFOUIy REEzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA4YWIxNTctZDgyNy00OWE4LWJi ODYtMjhiZTEzMWMzZDI2LzAvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVG QzBFOUIyREEzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALfH89NvPMspqmKn9PSSBwYziYwCllYZfs1K Q6pHloCrsipM6EEzUKhru88ZXVp1k5OYN57lw2xeC6W9IsWdlbqDYx4j04bSb7Lz mJU5dLHP87lw1DwaQuBPweOK1Ejc1WHZekEMmDayE3gEjSezO48eSs7yNpmCdyhl tVrdco6VMdFo90ZgOqTZqN3n1QAim1foMdJ+AYUctumWyIo2FiXT3jybbtfgVKTe tnzQgH9z+P3O4rUeD7xz8rcfbJVhNOWeGc6rybtEHv8slvkdGwJGsLQDT7KNcCYc 5NG8hfVEzNieIM0aZ6gYfQB27ayAxWR/BXFEuK853yuaPbztP+I= -----END CERTIFICATE-----Generated at Mon Jan 26 12:59:45 2026 by rpki-client