This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft File: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft (raw, json) Hash identifier: IWtTS08MFp8SG3QPopQjazaFMSo+RxRLILeG+mpxxBQ= Subject key identifier: 87:EF:7C:A5:34:0E:0F:55:ED:70:09:72:FE:C4:C3:8C:2B:34:EA:07 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 0BF59CA6B62809CDBF292BF2863AF615C5EAE474 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft Manifest number: 0544 Signing time: Sat 24 Jan 2026 12:22:10 +0000 Manifest this update: Sat 24 Jan 2026 12:17:10 +0000 Manifest next update: Tue 27 Jan 2026 22:08:10 +0000 Files and hashes: 1: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (hash: JSx+5xTx71eWK8GnVgu4sokLS7+0LsCbDYaq7VNDJRQ=) 2: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl (hash: mPXT5pE7ljt5myMu2kYjuujWo4aDo8eSWitn4TW7jtM=) 3: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (hash: CeNMr8Y0wuM60Zt6nplzMluIcrI9La3EhazffayBItA=) 4: 32372e3131312e33342e302f32342d3234203d3e203538343737.roa (hash: JY5X7Ni0FqjOLHL/IBAcPoDotTFSEzReZjChPfIbLws=) 5: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (hash: olwDZQoWpFkRsK81GVJEPLld+99Dlx/8F9oVv6zB3jQ=) 6: 34332e3232392e3230342e302f32322d3234203d3e203234353332.roa (hash: WF4j8x2tGr44aFsHKkav+2ARzcYAA9lGEfxLV4cOOpQ=) 7: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (hash: 1GnFCQ0Tavqgsu3zMfhYc58ad3h7NpVZT5asqIEYmDA=) 8: 3131392e3233352e31362e302f32302d3234203d3e203234353332.roa (hash: B78QMc7X1AynG/67CvGHE09qoTlYPrnz5pImIeutRLM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:f5:9c:a6:b6:28:09:cd:bf:29:2b:f2:86:3a:f6:15:c5:ea:e4:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jan 24 12:17:10 2026 GMT Not After : Jan 27 22:08:10 2026 GMT Subject: CN=87EF7CA5340E0F55ED700972FEC4C38C2B34EA07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8c:72:96:b1:29:b7:12:9d:da:ca:fc:48:06: 2b:cd:62:d7:e4:61:ef:ae:7f:26:6f:b9:9e:6e:2f: 9c:18:37:d2:a2:39:34:a1:53:fe:00:21:57:0d:ac: 41:93:82:27:7b:32:fd:1a:b4:3a:c5:46:52:68:cb: 1d:b0:b3:26:d6:3c:c9:ee:09:93:8d:e9:f9:a8:1f: 06:26:dc:b9:d7:46:58:a8:58:39:9d:5e:1f:58:43: c3:5b:dd:f4:c8:89:23:e7:9b:3d:ab:16:42:fe:46: 85:53:b6:b8:b9:f6:12:a7:50:24:4a:97:50:11:04: 1d:1e:35:ad:18:26:bb:e7:43:cf:30:8a:63:6a:7c: b1:d1:e7:42:a2:92:f6:23:3d:62:04:76:af:af:9b: df:32:b0:a2:a9:56:93:22:ab:19:e5:2a:af:c4:a6: dd:5b:5d:70:dc:75:6c:62:ab:3b:23:e8:08:f4:57: 1e:b5:96:0e:a0:6b:4f:c0:14:1c:b5:d5:fe:80:b7: 4c:b2:02:89:3f:c1:49:a9:22:66:48:82:8d:7f:c6: 50:a0:70:c8:45:d0:22:8b:3c:b6:4b:70:ab:f7:e9: 6f:cc:25:d5:49:18:6e:57:6e:4d:9b:07:71:d0:ff: 02:02:10:72:f8:ed:de:c4:9c:66:7a:eb:2b:d9:1f: 1a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EF:7C:A5:34:0E:0F:55:ED:70:09:72:FE:C4:C3:8C:2B:34:EA:07 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:8c:81:c1:32:48:56:a5:d8:1b:d6:61:b3:0f:d8:4f:ad:f5: 4d:ec:d8:ce:66:03:45:97:b7:98:23:84:7c:34:9d:b2:a0:65: 0d:da:0b:92:27:f6:2d:a9:e2:c1:a9:7e:92:b1:81:2f:a2:ea: d6:8f:53:4c:72:fd:5e:b7:f7:45:ca:14:00:e2:2d:a4:cb:97: 42:94:f5:ea:7b:a5:a3:0d:ee:d5:86:e5:17:14:25:01:25:3e: 16:68:a1:e3:ab:fa:71:a3:45:63:13:18:6f:1a:eb:54:99:b3: ff:43:73:80:c5:82:d3:13:88:9d:c1:b7:29:b9:29:86:19:e6: e5:8d:81:8f:d3:0d:d5:06:9d:b9:19:ed:6c:93:b0:d7:7a:6e: 26:41:df:7d:89:77:a9:78:f9:cd:ac:36:2f:60:dd:62:47:2a: a8:ee:64:50:a2:24:87:5a:6b:ee:d2:1b:48:3b:cc:d5:d7:f6: 07:63:ca:ab:d4:f3:7a:e4:37:b1:68:aa:4b:3b:96:44:d0:59: cd:56:71:ae:3c:4b:65:02:37:7a:12:c4:17:b3:6f:55:4c:ba: 8e:f1:20:0d:81:fb:a2:10:0a:38:98:c7:71:15:1f:97:51:c9: 8f:c4:04:0c:2b:c6:7e:d6:69:38:f3:7b:99:d0:25:bb:fe:b6: 59:68:cf:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC/WcprYoCc2/KSvyhjr2FcXq5HQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNjAxMjQxMjE3MTBaFw0yNjAxMjcyMjA4MTBaMDMxMTAvBgNV BAMTKDg3RUY3Q0E1MzQwRTBGNTVFRDcwMDk3MkZFQzRDMzhDMkIzNEVBMDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyjHKWsSm3Ep3ayvxIBivNYtfk Ye+ufyZvuZ5uL5wYN9KiOTShU/4AIVcNrEGTgid7Mv0atDrFRlJoyx2wsybWPMnu CZON6fmoHwYm3LnXRlioWDmdXh9YQ8Nb3fTIiSPnmz2rFkL+RoVTtri59hKnUCRK l1ARBB0eNa0YJrvnQ88wimNqfLHR50KikvYjPWIEdq+vm98ysKKpVpMiqxnlKq/E pt1bXXDcdWxiqzsj6Aj0Vx61lg6ga0/AFBy11f6At0yyAok/wUmpImZIgo1/xlCg cMhF0CKLPLZLcKv36W/MJdVJGG5Xbk2bB3HQ/wICEHL47d7EnGZ66yvZHxoNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh+98pTQOD1XtcAly/sTDjCs06gcwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTQzZTJlNjctYTE3MS00ZDllLWE5 MzUtNDA2OTAyYjFlMTNiLzAvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVG MEFFQ0M3RkU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALeMgcEySFal2BvWYbMP2E+t9U3s2M5mA0WX t5gjhHw0nbKgZQ3aC5In9i2p4sGpfpKxgS+i6taPU0xy/V6390XKFADiLaTLl0KU 9ep7paMN7tWG5RcUJQElPhZooeOr+nGjRWMTGG8a61SZs/9Dc4DFgtMTiJ3Btym5 KYYZ5uWNgY/TDdUGnbkZ7WyTsNd6biZB332Jd6l4+c2sNi9g3WJHKqjuZFCiJIda a+7SG0g7zNXX9gdjyqvU83rkN7Foqks7lkTQWc1Wca48S2UCN3oSxBezb1VMuo7x IA2B+6IQCjiYx3EVH5dRyY/EBAwrxn7WaTjze5nQJbv+tlloz9A= -----END CERTIFICATE-----Generated at Mon Jan 26 01:14:03 2026 by rpki-client