This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: 1eGy2tFIdfpc5ST5YSH5Gn0BSzsAESHc/qm1BkeaGvI= Subject key identifier: E2:6F:B0:3E:5B:C4:12:CF:BC:40:57:89:BD:B6:CB:9F:20:F4:C9:8C Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 254E6C32F1879D87D2EDA35341DF9DD6E8ABAB22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 0556 Signing time: Sun 25 Jan 2026 16:31:27 +0000 Manifest this update: Sun 25 Jan 2026 16:26:27 +0000 Manifest next update: Wed 28 Jan 2026 18:38:27 +0000 Files and hashes: 1: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: Rs0LWfiwNNbZkFhQpnKccaoKkGxm9G7c/2trDZEeEi0=) 2: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 3: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: FAtVlldec4RoFv3q2j7FVnmrtGRtRRfXUz6I4U8sRwI=) 4: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: ZZmhtd+kvnB+qiIIirmPZ+PBFZw13KvG2RKerxPSCqA=) 5: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo=) 6: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) 7: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: rMaF7Q5MH66fB43sjFU7KFf+jSsxMN2DLHihs4pTcNE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:4e:6c:32:f1:87:9d:87:d2:ed:a3:53:41:df:9d:d6:e8:ab:ab:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Jan 25 16:26:27 2026 GMT Not After : Jan 28 18:38:27 2026 GMT Subject: CN=E26FB03E5BC412CFBC405789BDB6CB9F20F4C98C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ee:61:a5:9b:a8:46:88:f8:c0:3a:e3:0c:e9: 74:3f:4a:31:b2:f3:17:70:24:51:3b:fc:8b:66:b6: a5:ac:5e:49:26:5c:68:b4:80:a8:d4:3d:1a:18:a4: 34:be:f5:46:22:35:d7:e0:89:96:04:b9:1f:76:76: 3d:79:bf:c8:f2:12:f3:91:99:b2:2e:b0:68:e9:d1: bc:b5:d0:18:5b:cc:95:91:dd:3f:c6:1b:d2:30:28: 8e:93:03:8d:d6:61:e8:fa:97:b9:3b:d0:4b:07:3e: 17:76:cb:4b:93:4f:71:83:ac:7c:7a:f6:11:a4:04: af:d6:a3:b2:24:f5:73:73:35:84:76:fe:99:5b:b9: 1f:3d:15:4c:07:d5:45:f6:65:ba:5f:3c:b3:3c:03: 7f:57:28:fc:bd:b3:ad:cf:8f:51:fa:f5:98:ca:db: df:eb:ce:27:58:9c:34:a4:59:8d:34:e0:04:d1:b0: 40:c4:36:f0:9a:99:50:52:fa:7d:3b:cc:92:72:8e: 98:35:77:65:96:fd:94:56:66:4c:15:f2:bc:5d:06: 17:45:a0:d7:c4:06:cb:1c:13:14:06:ec:eb:a6:91: 17:b7:c5:b0:2a:8d:1b:3a:51:2f:dd:72:83:20:c0: 30:ed:e8:86:2b:91:64:da:c8:4c:8b:ff:a6:02:39: 81:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6F:B0:3E:5B:C4:12:CF:BC:40:57:89:BD:B6:CB:9F:20:F4:C9:8C X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:72:f1:d5:ee:88:ef:c8:de:15:16:4c:84:cd:ac:19:27:97: 51:e4:6b:14:d4:d2:e8:c8:7d:b7:e6:cf:47:fd:a8:97:7e:78: 82:23:7b:bf:db:b0:d1:2a:07:ce:b6:f2:50:15:a5:56:96:8c: 77:0a:2a:7b:e7:77:0f:84:7f:98:8d:78:97:88:7e:2c:49:d6: 00:d0:ef:d7:0b:d4:4b:01:dd:92:0d:b3:dc:b2:d5:04:3b:36: f7:e6:3b:97:13:3b:ef:0f:4d:72:44:e9:77:f9:c4:39:fc:b1: 99:b1:87:2f:a6:fd:66:7a:a3:df:6a:93:3f:ad:a9:8f:8d:f3: a1:d7:e7:98:eb:d4:61:06:a7:ef:4c:93:93:ea:d2:61:7d:05: 6c:aa:31:4b:f3:06:7f:46:9f:b1:34:c2:dc:a7:28:df:2a:5f: e3:a8:9a:43:d2:1c:31:e6:e6:d1:83:cb:a8:db:65:d1:04:b8: 8e:c6:b1:31:8b:8f:b9:c2:ff:4f:f0:5c:3e:37:61:16:97:a3: 30:1d:d6:75:ef:3e:a3:61:34:bb:8d:1a:6d:47:e4:f7:40:11: 67:5d:88:6f:a5:a2:5c:39:33:37:75:ef:55:2d:dd:86:82:b2: fa:57:e9:c1:fb:c7:2b:b3:88:22:e2:3f:50:b0:5a:57:29:2d: fb:77:10:61 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJU5sMvGHnYfS7aNTQd+d1uirqyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNjAxMjUxNjI2MjdaFw0yNjAxMjgxODM4MjdaMDMxMTAvBgNV BAMTKEUyNkZCMDNFNUJDNDEyQ0ZCQzQwNTc4OUJEQjZDQjlGMjBGNEM5OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv7mGlm6hGiPjAOuMM6XQ/SjGy 8xdwJFE7/ItmtqWsXkkmXGi0gKjUPRoYpDS+9UYiNdfgiZYEuR92dj15v8jyEvOR mbIusGjp0by10BhbzJWR3T/GG9IwKI6TA43WYej6l7k70EsHPhd2y0uTT3GDrHx6 9hGkBK/Wo7Ik9XNzNYR2/plbuR89FUwH1UX2ZbpfPLM8A39XKPy9s63Pj1H69ZjK 29/rzidYnDSkWY004ATRsEDENvCamVBS+n07zJJyjpg1d2WW/ZRWZkwV8rxdBhdF oNfEBsscExQG7OumkRe3xbAqjRs6US/dcoMgwDDt6IYrkWTayEyL/6YCOYFlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4m+wPlvEEs+8QFeJvbbLnyD0yYwwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGJy8dXuiO/I3hUWTITNrBknl1HkaxTU0ujI fbfmz0f9qJd+eIIje7/bsNEqB8628lAVpVaWjHcKKnvndw+Ef5iNeJeIfixJ1gDQ 79cL1EsB3ZINs9yy1QQ7NvfmO5cTO+8PTXJE6Xf5xDn8sZmxhy+m/WZ6o99qkz+t qY+N86HX55jr1GEGp+9Mk5Pq0mF9BWyqMUvzBn9Gn7E0wtynKN8qX+OomkPSHDHm 5tGDy6jbZdEEuI7GsTGLj7nC/0/wXD43YRaXozAd1nXvPqNhNLuNGm1H5PdAEWdd iG+lolw5Mzd171Ut3YaCsvpX6cH7xyuziCLiP1CwWlcpLft3EGE= -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:25 2026 by rpki-client