This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft File: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft (raw, json) Hash identifier: 9bd6p1YtYEL7aJd28fS5d5YKjyF5yxUcwpb+sTPFwjo= Subject key identifier: 89:23:33:C1:1D:C6:81:A6:D3:23:8C:98:B4:32:63:BE:4D:F4:D2:87 Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 3A841AA985A93730484C0226B1C49E8397C36D05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft Manifest number: 023E Signing time: Fri 23 Jan 2026 18:01:01 +0000 Manifest this update: Fri 23 Jan 2026 17:56:01 +0000 Manifest next update: Tue 27 Jan 2026 06:00:01 +0000 Files and hashes: 1: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (hash: 5ODCvpJsl+XnXZcZjU6a9g5frNriLFm4lEWGxVY15JQ=) 2: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (hash: 6pWVSpFXVKH6EqJrCt3rmPa2Bj+n9pO/wL1SNQ2qvtg=) 3: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl (hash: 6ShtGGzm3kQbipU9d00WMzzYrQfDYvoDgjeD/xAop7E=) 4: 3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa (hash: YfWdCVoIH1DQu9Nb8zknsBq3gjAx6STdl7+GflAiVVY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 06:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:84:1a:a9:85:a9:37:30:48:4c:02:26:b1:c4:9e:83:97:c3:6d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: Jan 23 17:56:01 2026 GMT Not After : Jan 27 06:00:01 2026 GMT Subject: CN=892333C11DC681A6D3238C98B43263BE4DF4D287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b7:9d:b5:c8:ba:83:a9:83:4b:34:d2:4f:38: 50:e0:1d:b9:e9:68:09:66:34:e2:d9:7e:8e:27:57: 52:36:be:a2:4b:a9:b0:b9:fe:d7:e6:02:03:c4:93: 5a:7b:b9:bd:8e:4e:db:e7:e6:68:82:04:a9:71:60: 55:ef:64:32:a2:49:73:6f:14:b5:22:ee:97:97:fa: 21:dc:a7:4b:c6:ba:47:13:78:1e:5f:1d:50:b7:52: 3a:2f:2b:8f:bd:6e:3c:cc:c3:cf:8d:63:80:53:4e: 27:2f:44:0b:fa:3b:29:e8:a1:ce:2b:13:f4:44:91: ce:9c:33:5d:7e:2f:45:e6:e5:1c:67:fe:4a:a0:3f: 51:a7:ae:1b:e6:58:cb:d4:bb:07:6f:54:1f:6f:11: 18:10:c0:43:5d:b4:51:26:50:41:51:c5:ae:be:26: 4e:73:a6:e5:ee:7a:88:08:6a:c3:3f:80:fd:9e:e7: 05:e7:8f:bd:70:2c:03:ce:c9:b9:51:52:7b:a9:d2: 06:e9:96:3a:81:97:25:21:5a:a9:0b:40:d5:8e:aa: 84:65:f7:b2:63:69:3a:ea:74:9a:f5:24:f3:1e:eb: 13:dc:67:d0:ab:50:23:eb:2a:2f:61:cb:08:8f:5f: 1f:e4:8f:78:60:a1:17:47:ff:ca:45:f4:e0:5b:12: e0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:23:33:C1:1D:C6:81:A6:D3:23:8C:98:B4:32:63:BE:4D:F4:D2:87 X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:66:fd:17:81:de:9e:76:de:2e:4b:b0:c7:66:1c:89:68:95: a0:54:2a:96:b0:0c:ce:5f:6a:e5:88:bd:18:7c:ae:c1:25:1d: a0:5a:81:b5:73:80:ba:6c:76:19:f5:dd:69:38:55:af:3a:39: fa:13:f5:ab:28:e3:d6:99:e7:d3:f5:da:38:b0:79:c6:5d:78: 5b:f5:94:57:48:45:6f:74:fc:e6:e5:ae:a5:f5:f4:05:44:45: c7:ac:58:6b:81:61:0c:b8:f8:f8:c4:59:b9:8b:1d:c0:a9:4a: 0c:56:02:36:d0:86:00:aa:55:34:2f:88:cb:cc:0d:a0:d5:81: 92:b6:fd:d2:b8:d8:b5:a5:18:7a:71:e1:2b:3f:f6:2d:bd:98: d3:20:ec:92:09:b7:08:bd:f5:04:45:97:94:b5:a0:cb:27:9a: 58:5f:ba:3f:45:94:63:ec:0e:df:79:8f:5c:f9:cf:0b:76:e3: aa:ad:dd:8a:81:bb:9c:93:18:e0:66:f5:f4:d0:c1:8a:eb:a6: 75:38:64:53:47:19:c1:44:86:03:74:74:d6:fd:ed:5f:4c:9f: 75:68:fa:0f:f4:ba:5b:1d:38:0d:1f:89:28:21:12:89:05:62: dd:bf:5e:f5:bd:3e:91:05:24:77:86:4d:a3:2d:8a:7a:c4:e7: c8:30:b1:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOoQaqYWpNzBITAImscSeg5fDbQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNjAxMjMxNzU2MDFaFw0yNjAxMjcwNjAwMDFaMDMxMTAvBgNV BAMTKDg5MjMzM0MxMURDNjgxQTZEMzIzOEM5OEI0MzI2M0JFNERGNEQyODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCut521yLqDqYNLNNJPOFDgHbnp aAlmNOLZfo4nV1I2vqJLqbC5/tfmAgPEk1p7ub2OTtvn5miCBKlxYFXvZDKiSXNv FLUi7peX+iHcp0vGukcTeB5fHVC3UjovK4+9bjzMw8+NY4BTTicvRAv6Oynooc4r E/REkc6cM11+L0Xm5Rxn/kqgP1GnrhvmWMvUuwdvVB9vERgQwENdtFEmUEFRxa6+ Jk5zpuXueogIasM/gP2e5wXnj71wLAPOyblRUnup0gbpljqBlyUhWqkLQNWOqoRl 97JjaTrqdJr1JPMe6xPcZ9CrUCPrKi9hywiPXx/kj3hgoRdH/8pF9OBbEuCtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiSMzwR3GgabTI4yYtDJjvk300ocwHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTIyOWNhNTAtZTk1Yy00NWJiLTlj MzAtNjNlMTJhZjdhNWUxLzAvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRC OUZCQTBCMzlCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFVm/ReB3p523i5LsMdmHIlolaBUKpawDM5f auWIvRh8rsElHaBagbVzgLpsdhn13Wk4Va86OfoT9aso49aZ59P12jiwecZdeFv1 lFdIRW90/OblrqX19AVERcesWGuBYQy4+PjEWbmLHcCpSgxWAjbQhgCqVTQviMvM DaDVgZK2/dK42LWlGHpx4Ss/9i29mNMg7JIJtwi99QRFl5S1oMsnmlhfuj9FlGPs Dt95j1z5zwt246qt3YqBu5yTGOBm9fTQwYrrpnU4ZFNHGcFEhgN0dNb97V9Mn3Vo +g/0ulsdOA0fiSghEokFYt2/XvW9PpEFJHeGTaMtinrE58gwsW8= -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:26 2026 by rpki-client