This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft File: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft (raw, json) Hash identifier: qA72NiPw1OxppSbgMhB2QgWMdQZay36v5nmvrV+FYCQ= Subject key identifier: DD:63:5D:7C:7C:83:F1:82:50:4B:C3:E5:27:3D:4C:6C:54:78:7D:0D Authority key identifier: 0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C Certificate issuer: /CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Certificate serial: 3287A9F37737C5142BB5AFF0542A2CCE27D30AAB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft Manifest number: 0175 Signing time: Fri 23 Jan 2026 21:51:53 +0000 Manifest this update: Fri 23 Jan 2026 21:46:53 +0000 Manifest next update: Mon 26 Jan 2026 23:27:53 +0000 Files and hashes: 1: 3130332e3139302e3131322e302f32332d3234203d3e20313439393037.roa (hash: ki0hIXEeGo8cU77Xr7lKfx7zoFMhB4mSH2tdcqcaUcQ=) 2: 323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa (hash: dQqh/UiHoQw/70mJd+ZId7SvE382IQVHD0RnWmbxwtI=) 3: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl (hash: buiYdKbN5MQKOeYqhSM1CjK4DEb2+7HrPXARKySIxuI=) 4: 3130332e3139302e3131322e302f32342d3234203d3e20313439393037.roa (hash: RiJQOn+iteWsGaHDQ7CJgxTOw5x3cmMgsW4Cbj99H/E=) 5: 3130332e3139302e3131332e302f32342d3234203d3e20313439393037.roa (hash: 3qwvc0M9032XGDH7vraV4T7cy4QhAdHQHEpVds7HICk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 23:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:87:a9:f3:77:37:c5:14:2b:b5:af:f0:54:2a:2c:ce:27:d3:0a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Validity Not Before: Jan 23 21:46:53 2026 GMT Not After : Jan 26 23:27:53 2026 GMT Subject: CN=DD635D7C7C83F182504BC3E5273D4C6C54787D0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:bc:2d:3d:e0:24:ea:e9:76:d8:d2:3b:e9:d6: b3:48:05:a5:1c:16:4c:db:69:52:08:57:30:6a:96: 84:75:ef:35:55:60:5e:4c:6e:c9:56:62:dd:9a:eb: 3a:e8:ac:fd:77:d0:32:c7:27:69:08:32:4d:5b:6a: 24:86:4b:c4:e2:83:a3:76:24:75:82:88:31:fb:67: e6:12:fa:5b:df:12:2c:db:70:af:0d:df:a4:78:72: 01:c0:56:2d:f0:9e:bb:01:79:f5:47:67:1f:e2:65: 94:4f:c6:6d:9b:b1:ea:7e:4b:a5:21:8a:4e:76:a2: cc:79:0a:49:93:4a:8a:20:f3:3f:26:77:3f:6e:63: e1:ac:d5:05:38:9d:71:32:26:b8:ad:4a:f2:57:b9: ac:28:a9:03:61:8e:69:11:71:00:f7:ac:36:d4:c3: 2e:e5:80:fd:e8:fa:5e:b6:f7:71:f9:6d:d4:70:9a: e1:46:92:c5:3b:a7:67:cf:9e:1b:28:45:91:af:e1: 6d:60:db:91:7a:58:97:07:a0:bd:fa:b4:3f:65:db: f5:c3:39:75:6a:0d:de:bf:1c:f9:94:35:1b:63:2d: 18:62:8e:4f:13:01:06:a4:7d:3a:45:32:04:22:33: 0d:b1:a7:c7:a1:42:bb:8c:cc:b4:83:11:f4:16:03: 45:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:63:5D:7C:7C:83:F1:82:50:4B:C3:E5:27:3D:4C:6C:54:78:7D:0D X509v3 Authority Key Identifier: keyid:0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f5:bd:ec:28:ac:be:64:4a:19:2a:f4:23:19:bd:1e:b8:a5: f8:79:54:c1:1a:58:8f:29:4c:e7:06:b2:af:3c:f1:f7:c9:ad: 18:77:ed:47:67:30:a4:8d:77:06:e8:22:e7:dc:4c:12:85:cf: 9b:7b:9d:60:03:b2:94:0c:9a:5a:ee:56:dc:f6:5f:02:8d:59: d4:14:8f:d6:ac:67:b0:5f:52:13:11:79:94:ed:89:2a:8c:21: 08:ae:94:be:63:a3:a6:f2:10:5d:d3:2d:f0:2e:aa:9f:87:7b: 72:62:51:bc:aa:bc:0e:45:79:8e:e2:57:f4:4c:1b:2a:42:00: 25:81:e1:b4:97:5f:27:82:97:95:09:75:1e:09:45:83:e4:5f: d7:d2:cb:90:e6:92:82:03:72:7b:79:68:e8:19:57:c1:4b:3b: 38:41:42:ec:a5:6e:f9:a9:ee:e8:36:b4:99:e2:4a:9d:5e:e5: 29:5e:05:b2:54:0f:9e:de:ed:a3:4f:b6:07:ef:c3:56:40:b5: d9:9b:37:aa:69:bb:dc:bf:d4:38:ec:a2:f9:2d:68:2a:6d:e0: 92:52:39:c9:b0:b4:77:68:a3:94:3e:18:16:35:b6:89:a5:1b: 39:f0:12:51:04:2c:b4:32:07:a8:0a:1e:33:04:0d:29:07:aa: 40:37:3e:5a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMoep83c3xRQrta/wVCoszifTCqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RC N0UwQkEwQzAeFw0yNjAxMjMyMTQ2NTNaFw0yNjAxMjYyMzI3NTNaMDMxMTAvBgNV BAMTKERENjM1RDdDN0M4M0YxODI1MDRCQzNFNTI3M0Q0QzZDNTQ3ODdEMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfvC094CTq6XbY0jvp1rNIBaUc FkzbaVIIVzBqloR17zVVYF5MbslWYt2a6zrorP130DLHJ2kIMk1baiSGS8Tig6N2 JHWCiDH7Z+YS+lvfEizbcK8N36R4cgHAVi3wnrsBefVHZx/iZZRPxm2bsep+S6Uh ik52osx5CkmTSoog8z8mdz9uY+Gs1QU4nXEyJritSvJXuawoqQNhjmkRcQD3rDbU wy7lgP3o+l6293H5bdRwmuFGksU7p2fPnhsoRZGv4W1g25F6WJcHoL36tD9l2/XD OXVqDd6/HPmUNRtjLRhijk8TAQakfTpFMgQiMw2xp8ehQruMzLSDEfQWA0WZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3WNdfHyD8YJQS8PlJz1MbFR4fQ0wHwYDVR0j BBgwFoAUDOHhEUbiUdDNUr2DehoKzbfgugwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDUxNmE3YS00MTk1LTQ0YjMtYTI0ZS1jZjhlZDU3OGQ3OTEvMC8wQ0UxRTExMTQ2 RTI1MUQwQ0Q1MkJEODM3QTFBMEFDREI3RTBCQTBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RCN0Uw QkEwQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjA1MTZhN2EtNDE5NS00NGIzLWEy NGUtY2Y4ZWQ1NzhkNzkxLzAvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBB Q0RCN0UwQkEwQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB/1veworL5kShkq9CMZvR64pfh5VMEaWI8p TOcGsq888ffJrRh37UdnMKSNdwboIufcTBKFz5t7nWADspQMmlruVtz2XwKNWdQU j9asZ7BfUhMReZTtiSqMIQiulL5jo6byEF3TLfAuqp+He3JiUbyqvA5FeY7iV/RM GypCACWB4bSXXyeCl5UJdR4JRYPkX9fSy5DmkoIDcnt5aOgZV8FLOzhBQuylbvmp 7ug2tJniSp1e5SleBbJUD57e7aNPtgfvw1ZAtdmbN6ppu9y/1DjsovktaCpt4JJS OcmwtHdoo5Q+GBY1tomlGznwElEELLQyB6gKHjMEDSkHqkA3Plo= -----END CERTIFICATE-----Generated at Sun Jan 25 20:39:53 2026 by rpki-client