This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft File: BD685C24FF8F432543C3E583484044A44E53067B.mft (raw, json) Hash identifier: bnUzRJ+938bXHTVu13QFbEemQVtuXNuuIHsOT+Vu6Eo= Subject key identifier: 30:56:C2:3E:FC:9F:C6:3E:8E:31:F9:B8:E4:2D:6C:DB:E0:F3:EB:35 Authority key identifier: BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B Certificate issuer: /CN=BD685C24FF8F432543C3E583484044A44E53067B Certificate serial: 04E3F8318D4380D5987CFEC02BEB26E0ABB21D25 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft Manifest number: 29 Signing time: Sun 25 Jan 2026 13:41:19 +0000 Manifest this update: Sun 25 Jan 2026 13:36:19 +0000 Manifest next update: Thu 29 Jan 2026 00:50:19 +0000 Files and hashes: 1: 3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa (hash: dhpkhk04ab2tWVnfTiYy7HAwnFkFS5/nKq6B26Ta2Ao=) 2: BD685C24FF8F432543C3E583484044A44E53067B.crl (hash: yFioSEt8Q6TKTNuuk8wI/dEWpHqMzl7Q6veCKhRUID8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:e3:f8:31:8d:43:80:d5:98:7c:fe:c0:2b:eb:26:e0:ab:b2:1d:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD685C24FF8F432543C3E583484044A44E53067B Validity Not Before: Jan 25 13:36:19 2026 GMT Not After : Jan 29 00:50:19 2026 GMT Subject: CN=3056C23EFC9FC63E8E31F9B8E42D6CDBE0F3EB35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:8b:23:aa:d1:05:f3:ca:91:0c:7b:97:9f: 04:de:09:81:d7:58:62:4c:aa:d0:fc:32:0e:94:5b: 99:b8:49:bc:33:d8:e2:cf:58:20:89:7f:0e:ce:8a: ea:e1:eb:c1:c5:40:f7:14:6a:51:2a:77:bf:ed:b1: da:bb:50:18:1d:b3:55:7a:e1:7b:4b:d1:9e:39:83: 57:d3:39:b8:4a:4f:5e:81:d3:72:c6:d8:31:a3:f7: d9:64:82:06:45:25:1c:e7:ff:d3:35:d8:9c:8c:db: ee:07:3e:1c:ae:25:c0:d3:7d:0c:d7:4f:69:46:a4: 43:ba:e2:47:f1:33:c2:6d:e6:a5:e2:09:54:15:6e: 25:6d:29:c5:af:5f:bb:d0:53:9d:e2:4b:78:9a:35: 0f:c3:09:34:10:aa:3c:81:93:eb:f8:f5:93:d0:9f: ac:07:c2:37:70:14:62:8a:65:5f:fe:bb:7d:eb:fa: d9:ec:fb:b1:ee:66:77:cc:07:59:e8:97:65:12:dc: 95:37:f7:3f:8c:55:7d:cb:bf:de:5b:13:13:3c:80: 7a:26:fd:32:3b:bc:8f:0c:b0:9d:7a:00:25:f8:11: b8:0d:81:58:c8:b0:c1:f4:2b:80:ca:bf:7f:4e:67: d3:a2:1b:ab:a7:70:f1:e3:28:45:13:46:7d:dd:52: ec:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:56:C2:3E:FC:9F:C6:3E:8E:31:F9:B8:E4:2D:6C:DB:E0:F3:EB:35 X509v3 Authority Key Identifier: keyid:BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:11:30:5e:b1:80:f9:82:14:3d:e3:27:48:ef:54:08:95:86: 8f:ed:a5:24:a0:a7:e1:81:09:56:89:3e:24:8c:a8:3d:0a:83: c5:73:e9:65:1e:50:d5:31:90:5e:1c:84:5d:6b:81:df:86:30: 66:08:84:a9:42:48:58:7b:71:06:94:ac:08:44:da:7f:b3:d0: 61:73:04:85:49:77:5e:cb:24:18:39:22:8d:3b:17:9c:85:df: 51:9b:1b:2b:a5:72:a1:d6:43:a4:97:36:35:96:16:c2:10:01: 41:fc:d5:f8:5d:a7:f3:71:3f:0e:0c:35:0a:3f:4a:0c:78:d3: 7e:c7:ad:e6:8c:0a:9b:ab:ea:41:71:58:a5:f7:7d:9c:42:3d: dd:4a:92:2f:74:6a:cc:c3:c3:b9:82:4f:5e:2c:fc:76:b9:dc: 5c:98:00:aa:21:63:39:32:b5:38:c3:6e:26:56:2b:52:dd:ca: 2f:4d:08:1f:ec:60:ea:18:38:43:6e:1d:57:8b:6d:0b:a0:c9: 56:55:40:fd:1f:26:7d:f5:88:72:94:d7:c8:69:9f:85:77:85: 39:4e:e2:a6:4b:11:37:93:bb:c1:b8:46:61:b0:f4:79:b5:5a: 1d:71:ac:42:04:b0:27:e6:37:f4:71:be:3e:19:2a:21:89:9d: 8b:4c:a8:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBOP4MY1DgNWYfP7AK+sm4KuyHSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0 RTUzMDY3QjAeFw0yNjAxMjUxMzM2MTlaFw0yNjAxMjkwMDUwMTlaMDMxMTAvBgNV BAMTKDMwNTZDMjNFRkM5RkM2M0U4RTMxRjlCOEU0MkQ2Q0RCRTBGM0VCMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClnYsjqtEF88qRDHuXnwTeCYHX WGJMqtD8Mg6UW5m4Sbwz2OLPWCCJfw7Oiurh68HFQPcUalEqd7/tsdq7UBgds1V6 4XtL0Z45g1fTObhKT16B03LG2DGj99lkggZFJRzn/9M12JyM2+4HPhyuJcDTfQzX T2lGpEO64kfxM8Jt5qXiCVQVbiVtKcWvX7vQU53iS3iaNQ/DCTQQqjyBk+v49ZPQ n6wHwjdwFGKKZV/+u33r+tns+7HuZnfMB1nol2US3JU39z+MVX3Lv95bExM8gHom /TI7vI8MsJ16ACX4EbgNgVjIsMH0K4DKv39OZ9OiG6uncPHjKEUTRn3dUuyPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMFbCPvyfxj6OMfm45C1s2+Dz6zUwHwYDVR0j BBgwFoAUvWhcJP+PQyVDw+WDSEBEpE5TBnswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGJmODY0MS1iZjcwLTRlM2YtOTg3MS1lZTI2YTMzZGIzYTIvMC9CRDY4NUMyNEZG OEY0MzI1NDNDM0U1ODM0ODQwNDRBNDRFNTMwNjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0RTUz MDY3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjRiZjg2NDEtYmY3MC00ZTNmLTk4 NzEtZWUyNmEzM2RiM2EyLzAvQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0 QTQ0RTUzMDY3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABgRMF6xgPmCFD3jJ0jvVAiVho/tpSSgp+GB CVaJPiSMqD0Kg8Vz6WUeUNUxkF4chF1rgd+GMGYIhKlCSFh7cQaUrAhE2n+z0GFz BIVJd17LJBg5Io07F5yF31GbGyulcqHWQ6SXNjWWFsIQAUH81fhdp/NxPw4MNQo/ Sgx4037HreaMCpur6kFxWKX3fZxCPd1Kki90aszDw7mCT14s/Ha53FyYAKohYzky tTjDbiZWK1Ldyi9NCB/sYOoYOENuHVeLbQugyVZVQP0fJn31iHKU18hpn4V3hTlO 4qZLETeTu8G4RmGw9Hm1Wh1xrEIEsCfmN/Rxvj4ZKiGJnYtMqOg= -----END CERTIFICATE-----Generated at Mon Jan 26 03:44:07 2026 by rpki-client