This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: 6//Fg8Qivf6XAdEMzvxPk4RzIW5crhUBPjFhsEmPck8= Subject key identifier: 29:73:8F:2A:33:22:72:35:80:FE:5B:74:A9:02:D8:7A:0C:46:27:BA Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 6A9AD6D066EEDCFF957110004C881DF505620378 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 02A0 Signing time: Sat 24 Jan 2026 08:42:24 +0000 Manifest this update: Sat 24 Jan 2026 08:37:24 +0000 Manifest next update: Tue 27 Jan 2026 14:59:24 +0000 Files and hashes: 1: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: mFq2b38/RUkUkCh1MVybkTba/DYg5kwfb6uDHIQj6Gk=) 2: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Ov8NRVnVqFMBFhQjGCU710LWI7k2FUziabpa7227XyA=) 3: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: +ZStO4qmRvdLYRUifxrnZ6iCCxDWhq1QC8uZT5sFhJk=) 4: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: fpvmWR6U5CFOL5bPAsRUV3FW3U3Qv/lIa+Qiy74om3s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 14:59:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:9a:d6:d0:66:ee:dc:ff:95:71:10:00:4c:88:1d:f5:05:62:03:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Jan 24 08:37:24 2026 GMT Not After : Jan 27 14:59:24 2026 GMT Subject: CN=29738F2A3322723580FE5B74A902D87A0C4627BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:13:5e:30:32:0d:49:ca:a5:56:66:0c:aa:58: a7:1b:93:cb:4e:7a:46:99:4f:e9:71:3b:e6:dc:93: 11:99:be:a8:88:7b:27:db:7a:fa:d8:11:13:a0:9d: 0b:bb:1b:5f:b2:bb:2c:21:c4:d6:da:a2:ea:b8:bb: c3:6e:ff:ff:79:aa:e5:ab:c4:4f:0d:da:41:15:83: 3b:3f:78:36:b7:e1:a1:47:15:e0:a1:a5:20:a0:d1: 23:bc:ab:00:31:69:42:ad:7c:27:b7:19:dc:fe:6e: cd:eb:3e:64:bc:62:31:03:60:ba:92:3d:cb:bd:8b: 72:e6:55:5f:e2:a4:15:df:f9:ea:e4:c5:ce:84:f6: 95:8a:d1:47:62:f3:f7:5b:53:b2:d0:ec:36:04:9b: 51:7e:6d:00:0f:19:15:ac:f0:0d:d7:b5:98:0f:10: fd:77:90:20:9b:60:e6:4a:4d:e3:6d:04:79:f1:c0: ea:6c:d0:c7:8a:ac:75:a6:e6:da:3d:b6:79:f1:e3: b5:d1:94:9b:6e:54:f8:60:2d:5f:e3:79:16:15:44: 38:49:13:a5:30:66:4f:86:bd:4e:44:02:2e:8f:d8: 14:1f:4c:4d:cb:52:41:aa:fb:eb:41:38:3b:f8:1c: 6d:f0:8f:58:4c:e5:5c:c0:82:bf:a0:c4:77:9b:26: b7:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:73:8F:2A:33:22:72:35:80:FE:5B:74:A9:02:D8:7A:0C:46:27:BA X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:90:62:4f:9a:64:2e:99:98:8d:83:64:ec:73:97:83:5b:1e: c6:c0:93:92:5e:c6:ec:47:7d:a0:91:93:64:45:bb:2b:ff:53: d2:61:0f:78:ae:98:13:8c:be:70:da:a7:c6:0a:69:8a:ce:23: 0f:01:6b:61:2a:26:82:26:fc:6b:6b:38:83:4a:64:1d:07:21: 03:db:43:c3:32:35:d0:c3:64:43:7d:ca:ef:61:8b:54:f4:f6: bf:5e:a2:13:a9:fd:c1:55:ca:37:80:56:bc:88:68:a4:ea:cb: c4:69:1f:6c:b6:4c:09:2b:3b:97:bc:94:f2:8a:7b:58:ab:52: f3:49:37:35:09:01:3e:ad:5d:43:23:cb:0e:eb:e7:25:c1:d8: fd:30:e6:9d:40:c2:4e:e0:55:c9:24:4b:58:3b:4b:e8:9c:46: 36:da:1a:aa:ad:c3:78:52:1f:95:ea:c6:d3:4a:3a:9d:c3:35: 16:9e:51:96:73:7d:36:b7:64:ad:e5:f1:e1:20:00:61:54:36: b6:df:d9:6f:3b:40:93:09:48:73:54:b1:bc:0c:32:18:d1:34: 2a:2f:1a:0c:ab:37:4a:0a:c4:93:ca:88:c6:d5:1c:f3:88:6e: 7d:6a:91:1c:cc:19:b5:30:6d:9f:e3:12:66:8e:68:a6:ce:ff: ea:2b:28:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaprW0Gbu3P+VcRAATIgd9QViA3gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNjAxMjQwODM3MjRaFw0yNjAxMjcxNDU5MjRaMDMxMTAvBgNV BAMTKDI5NzM4RjJBMzMyMjcyMzU4MEZFNUI3NEE5MDJEODdBMEM0NjI3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLE14wMg1JyqVWZgyqWKcbk8tO ekaZT+lxO+bckxGZvqiIeyfbevrYEROgnQu7G1+yuywhxNbaouq4u8Nu//95quWr xE8N2kEVgzs/eDa34aFHFeChpSCg0SO8qwAxaUKtfCe3Gdz+bs3rPmS8YjEDYLqS Pcu9i3LmVV/ipBXf+erkxc6E9pWK0Udi8/dbU7LQ7DYEm1F+bQAPGRWs8A3XtZgP EP13kCCbYOZKTeNtBHnxwOps0MeKrHWm5to9tnnx47XRlJtuVPhgLV/jeRYVRDhJ E6UwZk+GvU5EAi6P2BQfTE3LUkGq++tBODv4HG3wj1hM5VzAgr+gxHebJrdhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKXOPKjMicjWA/lt0qQLYegxGJ7owHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJOQYk+aZC6ZmI2DZOxzl4NbHsbAk5JexuxH faCRk2RFuyv/U9JhD3iumBOMvnDap8YKaYrOIw8Ba2EqJoIm/GtrOINKZB0HIQPb Q8MyNdDDZEN9yu9hi1T09r9eohOp/cFVyjeAVryIaKTqy8RpH2y2TAkrO5e8lPKK e1irUvNJNzUJAT6tXUMjyw7r5yXB2P0w5p1Awk7gVckkS1g7S+icRjbaGqqtw3hS H5XqxtNKOp3DNRaeUZZzfTa3ZK3l8eEgAGFUNrbf2W87QJMJSHNUsbwMMhjRNCov GgyrN0oKxJPKiMbVHPOIbn1qkRzMGbUwbZ/jEmaOaKbO/+orKAE= -----END CERTIFICATE-----Generated at Sun Jan 25 17:08:08 2026 by rpki-client