This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: D05fGe3LhxR2Q03xm36218n2MKI6BtLLs1/MTvGTU+A= Subject key identifier: 83:C6:E2:5A:27:23:E9:BD:D6:31:2C:8E:34:FE:F2:73:96:84:CF:AB Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 48D3703B003A29784D525EA0C868FA74F1A3213A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0548 Signing time: Sun 25 Jan 2026 12:10:42 +0000 Manifest this update: Sun 25 Jan 2026 12:05:42 +0000 Manifest next update: Wed 28 Jan 2026 12:41:42 +0000 Files and hashes: 1: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) 2: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 3: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: iiaKK0XQ06/aMkjQG9JH4amFyMFVOXUqigMJIAVp1fc=) 4: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 5: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 6: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 7: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 8: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 9: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 10: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 12:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d3:70:3b:00:3a:29:78:4d:52:5e:a0:c8:68:fa:74:f1:a3:21:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Jan 25 12:05:42 2026 GMT Not After : Jan 28 12:41:42 2026 GMT Subject: CN=83C6E25A2723E9BDD6312C8E34FEF2739684CFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ed:70:60:36:ae:9c:4a:a2:b8:ea:95:72:ed: 49:e0:44:ff:57:4a:0f:84:8e:9f:dc:cb:9f:73:ff: 16:2c:21:3b:65:8b:49:5d:8c:53:b9:2f:60:17:db: b2:75:4f:5e:ba:df:29:85:87:f0:17:a6:aa:f1:c9: ef:eb:9b:dd:60:52:10:e1:40:94:c3:67:1c:64:01: 1a:46:f9:a0:ce:c8:43:cd:23:d1:f1:6e:c8:a9:aa: 8f:46:98:25:4f:59:6d:69:e4:bf:db:07:4f:d5:6e: 29:c7:05:c4:15:d5:72:79:0e:4d:4c:cd:d1:8d:09: 9b:52:2f:d8:65:9b:fc:c7:24:b9:f8:a3:0f:c5:60: 21:4e:fd:dd:fd:81:17:1d:bf:61:c7:c3:f2:5f:bf: 19:7c:47:24:c6:7b:42:1b:2a:36:19:03:15:dc:ab: f1:72:c0:52:f3:23:33:bc:c3:18:28:83:90:04:3d: bc:e9:b4:7b:1c:aa:e4:b1:eb:10:0e:d4:ff:ff:ed: 57:df:ab:96:9b:86:54:21:84:e8:6b:06:ab:5a:15: 36:53:d6:fc:84:9e:5e:39:cf:23:e4:57:f9:8a:75: 3a:80:d5:f5:47:34:6a:83:64:ba:81:15:28:30:64: 2d:eb:44:7f:20:ef:d2:a5:4a:d3:85:aa:82:14:48: 36:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C6:E2:5A:27:23:E9:BD:D6:31:2C:8E:34:FE:F2:73:96:84:CF:AB X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:8c:55:d8:89:d5:c9:d1:f4:88:b1:c1:c4:7c:a1:e4:99:dd: e6:56:80:cf:e2:5a:a1:c7:ed:a0:9e:7c:91:dc:21:27:82:6a: 93:50:42:4d:49:6c:c1:fb:17:2d:d5:38:12:f3:9d:6c:6e:50: b0:9d:d4:c9:7c:52:af:9b:b0:0b:ff:de:42:b5:d9:31:36:84: d5:e9:60:21:10:a6:0d:f6:1c:75:16:5a:6c:d7:06:ae:3c:8d: a9:ca:23:2d:48:c5:f1:02:7c:cc:f5:52:43:09:2c:64:39:8e: 6d:24:d9:03:b2:5a:16:f7:11:f7:71:0f:b6:ec:13:03:4f:54: da:29:a9:8a:b7:ed:f4:5a:1c:6a:23:8b:cc:c5:86:15:3e:53: e4:3e:43:94:a4:0e:1a:1f:3b:3a:20:87:81:9a:82:54:ef:4a: 59:0a:14:8b:c1:0a:e0:6d:48:6d:a4:05:46:b9:76:71:e4:97: 47:e0:ac:2b:48:21:09:d7:66:a6:98:67:58:d4:75:a9:e3:22: 68:93:c8:07:71:89:f9:77:b1:ee:13:96:da:57:d9:df:c5:db: 08:0c:38:d6:2b:6f:f9:ea:36:e1:52:bc:d0:a0:a7:2d:38:67: cd:bf:f8:0a:25:55:5d:1c:13:d6:b3:4b:a9:83:02:db:fb:b4: 6f:c4:c9:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSNNwOwA6KXhNUl6gyGj6dPGjITowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNjAxMjUxMjA1NDJaFw0yNjAxMjgxMjQxNDJaMDMxMTAvBgNV BAMTKDgzQzZFMjVBMjcyM0U5QkRENjMxMkM4RTM0RkVGMjczOTY4NENGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd7XBgNq6cSqK46pVy7UngRP9X Sg+Ejp/cy59z/xYsITtli0ldjFO5L2AX27J1T1663ymFh/AXpqrxye/rm91gUhDh QJTDZxxkARpG+aDOyEPNI9Hxbsipqo9GmCVPWW1p5L/bB0/VbinHBcQV1XJ5Dk1M zdGNCZtSL9hlm/zHJLn4ow/FYCFO/d39gRcdv2HHw/Jfvxl8RyTGe0IbKjYZAxXc q/FywFLzIzO8wxgog5AEPbzptHscquSx6xAO1P//7Vffq5abhlQhhOhrBqtaFTZT 1vyEnl45zyPkV/mKdTqA1fVHNGqDZLqBFSgwZC3rRH8g79KlStOFqoIUSDbVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUg8biWicj6b3WMSyONP7yc5aEz6swHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAKMVdiJ1cnR9IixwcR8oeSZ3eZWgM/iWqHH 7aCefJHcISeCapNQQk1JbMH7Fy3VOBLznWxuULCd1Ml8Uq+bsAv/3kK12TE2hNXp YCEQpg32HHUWWmzXBq48janKIy1IxfECfMz1UkMJLGQ5jm0k2QOyWhb3EfdxD7bs EwNPVNopqYq37fRaHGoji8zFhhU+U+Q+Q5SkDhofOzogh4GaglTvSlkKFIvBCuBt SG2kBUa5dnHkl0fgrCtIIQnXZqaYZ1jUdanjImiTyAdxifl3se4TltpX2d/F2wgM ONYrb/nqNuFSvNCgpy04Z82/+AolVV0cE9azS6mDAtv7tG/Eybk= -----END CERTIFICATE-----Generated at Sun Jan 25 18:47:04 2026 by rpki-client