This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: vS2BaI2RbOIlcl2sQmPWR8wZwvYIoAPVx6cFCxBIL0M= Subject key identifier: 8A:26:62:F4:FC:29:33:98:F9:F4:03:C8:AA:C0:C1:95:71:C9:79:51 Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 479690CFFD39843D4BBF4EFD4124181CFBB6FAD9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 01F5 Signing time: Fri 23 Jan 2026 23:31:34 +0000 Manifest this update: Fri 23 Jan 2026 23:26:34 +0000 Manifest next update: Tue 27 Jan 2026 01:41:34 +0000 Files and hashes: 1: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: rYrUOBgRj5adBbrLwBeJIziYjeauPH53Ur3Cy8wXceM=) 2: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 8iEgHOEIqDfpr7gSt8jxyho1deCIzw83qW565uPVSgs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 01:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:96:90:cf:fd:39:84:3d:4b:bf:4e:fd:41:24:18:1c:fb:b6:fa:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Jan 23 23:26:34 2026 GMT Not After : Jan 27 01:41:34 2026 GMT Subject: CN=8A2662F4FC293398F9F403C8AAC0C19571C97951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5d:fc:b9:f5:10:a8:1d:e7:fe:b3:c0:b0:03: 19:f6:0c:cf:1e:88:f9:76:13:0b:8a:b3:90:5e:58: f5:60:63:56:f9:d9:0d:7f:31:36:56:a3:79:87:53: dc:35:b7:45:52:c6:0f:f1:c6:ef:f2:d6:c3:88:36: d5:2e:83:c3:2e:b6:1a:66:85:ab:76:d5:fa:3a:c2: 20:95:b7:5b:8e:1e:61:13:92:37:5e:e6:7a:30:e5: 1b:93:06:db:94:a9:08:8a:bc:9f:9d:2c:1b:7b:4c: 4d:8b:aa:bb:c6:4a:e0:a3:d7:f0:a1:71:f4:3b:68: f9:24:97:8a:9c:b8:64:08:b8:9d:f3:39:23:96:b5: ca:6a:1e:f3:64:ad:12:75:fb:d6:89:16:5b:22:ef: 3f:6c:43:28:50:1c:0a:b0:45:4f:96:45:91:17:0d: de:f6:3b:2a:e0:eb:ee:41:9f:39:f1:4f:ff:37:b2: 16:6f:69:74:71:65:65:55:9b:7c:a2:8c:8e:93:4d: fb:b2:36:69:94:37:e6:38:ca:0c:ad:5f:66:cf:0a: e3:58:ce:15:f8:40:9f:20:db:2b:cb:66:b3:1c:d2: 66:50:ea:52:59:fc:99:ed:fa:6d:3f:46:a3:61:56: 49:bc:6a:6b:2c:94:62:f6:54:9b:e9:0f:c7:88:08: 24:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:26:62:F4:FC:29:33:98:F9:F4:03:C8:AA:C0:C1:95:71:C9:79:51 X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d6:f0:ff:e7:d0:0a:da:f5:16:48:c8:68:8b:11:f7:76:65: 2c:d5:8c:c6:06:9d:30:49:d3:74:03:e6:5c:94:36:c5:02:ca: 5e:55:ed:91:f5:1d:ef:87:d2:88:7e:c1:87:b7:03:c5:24:f9: 7b:cd:57:e4:0f:99:8f:12:c9:c2:2f:ff:47:95:86:13:30:6c: 9f:4b:d7:80:91:c2:af:be:de:3b:ff:c8:c7:3f:44:58:0d:e3: 53:fe:44:63:f2:e2:1d:c5:10:7b:0f:a0:b9:0c:55:a2:8e:1b: b0:d3:59:e2:99:99:80:3f:b9:78:9f:bd:27:b9:fa:a0:1b:19: b3:78:db:b0:2a:c0:64:83:25:61:e7:1d:91:28:22:0f:93:0f: 16:a5:52:e1:d1:65:a1:24:0a:4d:8a:b0:79:be:7b:7f:c4:b8: 85:5c:9a:5b:fc:13:f1:02:36:45:68:47:e5:f9:88:1a:b5:19: c4:3c:8e:82:fa:3f:39:fc:ff:d1:34:a7:3b:7a:7d:04:f0:a1: 28:95:d6:0c:5f:af:8c:96:ab:f1:e3:9f:37:dd:71:16:8c:71: b1:43:c3:22:82:52:b1:da:9c:ed:3d:8d:c0:67:09:8a:8e:25: a8:46:31:a2:44:3f:30:6d:74:ae:a2:9d:5f:1a:f1:77:8e:e5: 73:83:c8:8c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR5aQz/05hD1Lv079QSQYHPu2+tkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNjAxMjMyMzI2MzRaFw0yNjAxMjcwMTQxMzRaMDMxMTAvBgNV BAMTKDhBMjY2MkY0RkMyOTMzOThGOUY0MDNDOEFBQzBDMTk1NzFDOTc5NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuXfy59RCoHef+s8CwAxn2DM8e iPl2EwuKs5BeWPVgY1b52Q1/MTZWo3mHU9w1t0VSxg/xxu/y1sOINtUug8Muthpm hat21fo6wiCVt1uOHmETkjde5now5RuTBtuUqQiKvJ+dLBt7TE2LqrvGSuCj1/Ch cfQ7aPkkl4qcuGQIuJ3zOSOWtcpqHvNkrRJ1+9aJFlsi7z9sQyhQHAqwRU+WRZEX Dd72Oyrg6+5BnznxT/83shZvaXRxZWVVm3yijI6TTfuyNmmUN+Y4ygytX2bPCuNY zhX4QJ8g2yvLZrMc0mZQ6lJZ/Jnt+m0/RqNhVkm8amsslGL2VJvpD8eICCQ5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiiZi9PwpM5j59APIqsDBlXHJeVEwHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACrW8P/n0Ara9RZIyGiLEfd2ZSzVjMYGnTBJ 03QD5lyUNsUCyl5V7ZH1He+H0oh+wYe3A8Uk+XvNV+QPmY8SycIv/0eVhhMwbJ9L 14CRwq++3jv/yMc/RFgN41P+RGPy4h3FEHsPoLkMVaKOG7DTWeKZmYA/uXifvSe5 +qAbGbN427AqwGSDJWHnHZEoIg+TDxalUuHRZaEkCk2KsHm+e3/EuIVcmlv8E/EC NkVoR+X5iBq1GcQ8joL6Pzn8/9E0pzt6fQTwoSiV1gxfr4yWq/HjnzfdcRaMcbFD wyKCUrHanO09jcBnCYqOJahGMaJEPzBtdK6inV8a8XeO5XODyIw= -----END CERTIFICATE-----Generated at Mon Jan 26 02:28:20 2026 by rpki-client