This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft File: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft (raw, json) Hash identifier: EI6Q/fQTgJXsVb5r0qPFlxzjSLvtvDnvHJYaRaC5s4Y= Subject key identifier: E1:DE:1E:D1:4F:37:3A:B7:E7:BA:08:67:90:B6:B5:22:D4:46:4D:3F Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 70466B17156D37443BD1655D7E14C42001D2A3F2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft Manifest number: 0232 Signing time: Sat 24 Jan 2026 02:32:42 +0000 Manifest this update: Sat 24 Jan 2026 02:27:42 +0000 Manifest next update: Tue 27 Jan 2026 11:26:42 +0000 Files and hashes: 1: 3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa (hash: RK/lRgQFYGeXg6Bzk3ovyOFZdgVFVtKMAYe3R6PnsZs=) 2: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl (hash: OYqJyUrBjluQzdzro2GajTAuTg2PO5fH+ZNZdyuQW78=) 3: 3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa (hash: cqOcJAZKbrP9HYe2ShHrvgf1/zKk7TB83EYec3+QDIo=) 4: 3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa (hash: uL3SdGViVTN4twtj5fvseawDw7MHu5q6qt8dKfGSkqk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 11:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:46:6b:17:15:6d:37:44:3b:d1:65:5d:7e:14:c4:20:01:d2:a3:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: Jan 24 02:27:42 2026 GMT Not After : Jan 27 11:26:42 2026 GMT Subject: CN=E1DE1ED14F373AB7E7BA086790B6B522D4464D3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:86:fd:20:94:e4:81:08:da:28:dc:ee:22:65: 37:dd:49:3d:dd:2e:4d:ae:a6:5c:ce:e8:69:ad:f4: 83:32:7f:da:f6:d7:5c:e2:91:b5:36:cc:7d:42:67: e3:e2:34:92:fc:ba:6b:a4:22:8a:d1:26:55:b5:28: e8:83:ea:bf:91:89:f9:13:73:60:43:98:f4:ef:4f: 1a:cf:5f:29:1b:56:e2:17:46:a5:4e:39:2b:f0:2d: 98:33:5c:f5:5e:d7:fa:1c:eb:5c:f4:21:19:d4:cc: 17:14:94:c4:ed:0a:6e:83:66:b6:32:70:3d:10:a4: a6:3d:4f:43:7a:a8:18:05:4c:6c:13:bf:4b:12:64: 26:31:9c:68:e4:43:9d:5f:ca:4c:19:39:bb:6f:2c: c2:f2:14:0f:2b:54:e0:b2:7f:07:98:39:e5:6c:3c: e6:a7:38:ff:eb:a1:30:92:92:4c:61:e1:a5:bb:53: ca:8f:98:26:54:5c:60:0d:73:bc:32:5e:17:08:aa: e5:f0:49:fd:61:44:07:f1:8c:f4:99:e3:57:de:55: a5:75:cf:14:13:a8:4e:63:9c:90:56:72:71:a4:9d: 3e:f4:47:3c:c0:b9:df:0d:86:b6:ef:cc:18:ad:64: 4d:a4:b2:cc:30:e9:54:35:27:25:20:fe:97:61:0d: 58:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DE:1E:D1:4F:37:3A:B7:E7:BA:08:67:90:B6:B5:22:D4:46:4D:3F X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:3b:b1:0e:5a:1b:2c:c7:df:15:53:fe:27:0b:72:9f:c2:e6: 9e:2c:61:39:e2:86:66:5c:ac:e2:55:ae:3d:56:be:09:53:78: af:67:bf:c3:af:5b:09:e0:1b:ef:37:ce:67:5e:be:8e:68:8a: ab:df:a3:e6:29:03:4d:40:32:3e:fe:7f:01:f2:44:f2:4e:64: 20:ab:19:96:f9:d2:5f:87:12:cd:15:3c:ee:44:c5:fd:38:3b: a3:eb:bd:f6:d3:5b:85:0e:72:02:09:ae:3e:6c:d0:6a:bf:5f: e5:d3:15:61:0f:3c:0d:32:54:b8:a6:3d:a5:28:27:1d:be:55: 09:1e:a5:19:30:48:52:66:5e:08:bb:6f:8a:7d:8f:a2:ce:fd: b4:7c:9a:cb:d8:d9:b5:1d:60:09:64:86:07:47:c4:f5:dc:c1: 83:25:ee:fb:60:29:00:ba:7c:5b:b1:fe:71:ec:74:0b:78:5d: ea:24:ed:3d:8d:8b:09:7e:7d:eb:e4:eb:6a:6b:e1:e3:63:62: ce:6e:b2:e6:8e:77:f1:1e:f8:23:df:ba:94:99:bc:b9:5d:54: bd:8a:cd:6f:cd:1f:95:a2:bc:be:74:79:6b:5a:79:56:51:8f: c4:0f:c0:f1:9f:87:b6:56:57:db:46:a1:a7:a0:cb:9f:17:9d: 8c:24:22:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcEZrFxVtN0Q70WVdfhTEIAHSo/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNjAxMjQwMjI3NDJaFw0yNjAxMjcxMTI2NDJaMDMxMTAvBgNV BAMTKEUxREUxRUQxNEYzNzNBQjdFN0JBMDg2NzkwQjZCNTIyRDQ0NjREM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWhv0glOSBCNoo3O4iZTfdST3d Lk2uplzO6Gmt9IMyf9r211zikbU2zH1CZ+PiNJL8umukIorRJlW1KOiD6r+RifkT c2BDmPTvTxrPXykbVuIXRqVOOSvwLZgzXPVe1/oc61z0IRnUzBcUlMTtCm6DZrYy cD0QpKY9T0N6qBgFTGwTv0sSZCYxnGjkQ51fykwZObtvLMLyFA8rVOCyfweYOeVs POanOP/roTCSkkxh4aW7U8qPmCZUXGANc7wyXhcIquXwSf1hRAfxjPSZ41feVaV1 zxQTqE5jnJBWcnGknT70RzzAud8NhrbvzBitZE2kssww6VQ1JyUg/pdhDVjZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4d4e0U83OrfnughnkLa1ItRGTT8wHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjcwMzY5NzQtODEzMS00NWFmLTk0 Y2UtZjQ5YjQ4MTFjMTczLzAvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1 MjJEQzlCODFBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIg7sQ5aGyzH3xVT/icLcp/C5p4sYTnihmZc rOJVrj1WvglTeK9nv8OvWwngG+83zmdevo5oiqvfo+YpA01AMj7+fwHyRPJOZCCr GZb50l+HEs0VPO5Exf04O6PrvfbTW4UOcgIJrj5s0Gq/X+XTFWEPPA0yVLimPaUo Jx2+VQkepRkwSFJmXgi7b4p9j6LO/bR8msvY2bUdYAlkhgdHxPXcwYMl7vtgKQC6 fFux/nHsdAt4Xeok7T2Niwl+fevk62pr4eNjYs5usuaOd/Ee+CPfupSZvLldVL2K zW/NH5WivL50eWtaeVZRj8QPwPGfh7ZWV9tGoaegy58XnYwkIo4= -----END CERTIFICATE-----Generated at Sun Jan 25 19:00:26 2026 by rpki-client