This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft File: A2F125E1CDB95BA2AF5636AF284A399496555F38.mft (raw, json) Hash identifier: QTxx4QH6JK/EsRv1vs6WB541n4PnqgOYFenjRvNDJ8M= Subject key identifier: 6D:F4:C1:CB:A7:20:F4:AD:97:44:AA:EA:FF:34:F9:07:72:CC:06:43 Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 29031B1AB340E0A10320E3A9E7120ABD0AC5379A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft Manifest number: 0232 Signing time: Sat 24 Jan 2026 18:32:04 +0000 Manifest this update: Sat 24 Jan 2026 18:27:04 +0000 Manifest next update: Wed 28 Jan 2026 05:22:04 +0000 Files and hashes: 1: 3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa (hash: GYOdgB5E6zAfN6csGwKvCQu8t1dBnuZsHYI8ZcYsOXc=) 2: 3130332e3139312e3231392e302f32342d3234203d3e20313439393330.roa (hash: wMwayzIPwqMBIP88IOsXTpqmzpX3PVf3WfVEJ/JlX8M=) 3: 3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa (hash: eU4CsIBkCNHWwkLGYk1dQXK+PlYTeSPnN5JLGBDdwoE=) 4: A2F125E1CDB95BA2AF5636AF284A399496555F38.crl (hash: 8HjMYRwHYSpsjYgsm/jIIzMPLY+vE9/UEY+MHAlzJt4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 05:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:03:1b:1a:b3:40:e0:a1:03:20:e3:a9:e7:12:0a:bd:0a:c5:37:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: Jan 24 18:27:04 2026 GMT Not After : Jan 28 05:22:04 2026 GMT Subject: CN=6DF4C1CBA720F4AD9744AAEAFF34F90772CC0643 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:da:71:5c:a4:e1:20:36:71:16:9e:ba:23: f2:05:fb:aa:a8:ad:0d:47:93:7a:17:98:97:87:ce: 91:41:49:e0:86:34:3c:89:63:e4:9d:35:86:fb:ae: f5:2e:c4:94:f1:78:ec:d0:0c:69:7b:ff:32:9f:6d: 26:42:56:0d:14:bc:51:1e:9a:57:c2:16:97:4e:e4: b2:3f:5b:f9:a2:78:6b:15:00:e7:67:3a:9d:71:1d: a3:fe:dd:6d:f4:44:eb:da:06:33:4f:30:fb:f2:b9: 7d:3a:69:df:ce:dd:b5:62:4f:28:f5:b6:3e:91:08: fa:39:76:6d:f9:ba:f7:e5:f8:4e:84:61:89:71:22: 43:07:f4:2c:c4:14:26:26:ff:94:cb:b5:61:87:8d: 0d:20:37:2d:77:bb:11:52:23:5b:cb:30:ed:e6:0a: a9:89:06:ac:09:3a:78:20:80:11:8f:de:c4:4a:5f: c0:04:67:a1:73:70:bb:f8:57:52:e3:7c:a8:2d:9b: c6:b5:92:13:69:59:2d:70:42:35:5b:76:b9:49:6f: 5b:ad:29:7d:9a:25:40:e7:cb:7d:6e:a2:6e:34:6b: ef:1f:38:98:f8:de:32:48:f6:71:f4:41:0e:89:bc: a9:34:04:df:c8:a9:8f:68:ef:c4:b1:78:e3:40:c2: 51:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F4:C1:CB:A7:20:F4:AD:97:44:AA:EA:FF:34:F9:07:72:CC:06:43 X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:b0:9e:67:11:45:bc:76:a8:dc:af:db:7f:f6:84:ae:65:1f: 0c:61:a6:f9:a9:2f:b8:16:84:44:ca:d2:4c:7d:ca:99:cb:ac: ed:99:0a:98:df:95:86:c8:75:7f:7c:32:5a:e3:e0:c9:01:b7: e5:6c:39:19:a6:d8:47:82:06:13:a6:a8:8d:e1:be:43:70:75: 53:77:e2:1d:1e:69:cd:a0:fa:31:f4:b1:59:e2:be:c8:5d:bd: fe:ed:01:ac:80:07:2b:cf:88:73:a1:25:ff:3e:27:ab:72:b4: b5:04:a3:6e:cc:98:7b:59:8e:0f:f4:22:da:b9:70:41:c5:e2: 74:f0:b9:5c:00:a4:02:f4:f2:a2:7d:fc:fb:47:68:fc:7a:ca: 0d:fa:18:0f:33:ff:de:c9:97:e3:82:09:9a:40:77:0f:dd:06: cc:6b:70:4d:5f:de:a0:68:5d:f6:12:ee:e7:1a:3b:4c:32:df: 58:15:9b:44:e7:6e:e3:c7:35:7c:48:a0:36:d3:1e:05:e2:a8: 8a:07:b6:df:bc:ea:5d:12:e7:e1:03:d6:de:d2:34:39:bb:ee: d0:a6:3e:51:7b:fb:6a:2b:07:8f:b4:b0:e0:55:22:31:49:26: 70:4b:7c:26:f0:50:55:e8:6b:f4:d7:bf:07:fc:3d:3a:ee:c6: a6:09:cf:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKQMbGrNA4KEDIOOp5xIKvQrFN5owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNjAxMjQxODI3MDRaFw0yNjAxMjgwNTIyMDRaMDMxMTAvBgNV BAMTKDZERjRDMUNCQTcyMEY0QUQ5NzQ0QUFFQUZGMzRGOTA3NzJDQzA2NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+m9pxXKThIDZxFp66I/IF+6qo rQ1Hk3oXmJeHzpFBSeCGNDyJY+SdNYb7rvUuxJTxeOzQDGl7/zKfbSZCVg0UvFEe mlfCFpdO5LI/W/mieGsVAOdnOp1xHaP+3W30ROvaBjNPMPvyuX06ad/O3bViTyj1 tj6RCPo5dm35uvfl+E6EYYlxIkMH9CzEFCYm/5TLtWGHjQ0gNy13uxFSI1vLMO3m CqmJBqwJOngggBGP3sRKX8AEZ6FzcLv4V1LjfKgtm8a1khNpWS1wQjVbdrlJb1ut KX2aJUDny31uom40a+8fOJj43jJI9nH0QQ6JvKk0BN/IqY9o78SxeONAwlFLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbfTBy6cg9K2XRKrq/zT5B3LMBkMwHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjMzNzBkMjQtYTY1Ni00MzM2LTg0 MmItOWJkNWRjYTJiNDBhLzAvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5 OTQ5NjU1NUYzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAICwnmcRRbx2qNyv23/2hK5lHwxhpvmpL7gW hETK0kx9ypnLrO2ZCpjflYbIdX98Mlrj4MkBt+VsORmm2EeCBhOmqI3hvkNwdVN3 4h0eac2g+jH0sVnivshdvf7tAayAByvPiHOhJf8+J6tytLUEo27MmHtZjg/0Itq5 cEHF4nTwuVwApAL08qJ9/PtHaPx6yg36GA8z/97Jl+OCCZpAdw/dBsxrcE1f3qBo XfYS7ucaO0wy31gVm0TnbuPHNXxIoDbTHgXiqIoHtt+86l0S5+ED1t7SNDm77tCm PlF7+2orB4+0sOBVIjFJJnBLfCbwUFXoa/TXvwf8PTruxqYJz+g= -----END CERTIFICATE-----Generated at Sun Jan 25 22:00:27 2026 by rpki-client