This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft File: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft (raw, json) Hash identifier: gM66rJPRsfjk+udVXSAE0K15FVujfoJi6d+cnhqxGYA= Subject key identifier: F1:4B:13:9C:99:FE:2B:C4:FE:78:55:1F:F7:F3:40:20:85:CC:5C:27 Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Certificate serial: 126C2C9BF46418A31A73AAA2AB8DDBE94171E62D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft Manifest number: 050A Signing time: Fri 23 Jan 2026 18:21:29 +0000 Manifest this update: Fri 23 Jan 2026 18:16:29 +0000 Manifest next update: Tue 27 Jan 2026 03:27:29 +0000 Files and hashes: 1: 3130332e3133382e3132372e302f32342d3234203d3e20313338383531.roa (hash: 8uluz9oQUOC33A/yP5J6qEWwFa5BN6LUXooNJ8KA6Pw=) 2: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (hash: z4oYCZWDew+XBZrkivYPBIEa8esU/2et9t2LDZPakkY=) 3: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl (hash: pH+VbzRH5qKoDrOXLmNqy0lpIol0pUeDHnoYf6gHa1Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 03:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:6c:2c:9b:f4:64:18:a3:1a:73:aa:a2:ab:8d:db:e9:41:71:e6:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Validity Not Before: Jan 23 18:16:29 2026 GMT Not After : Jan 27 03:27:29 2026 GMT Subject: CN=F14B139C99FE2BC4FE78551FF7F3402085CC5C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:55:7d:ad:c6:71:1f:eb:37:ff:5c:c7:f4:1f: 2c:bf:cd:c6:44:81:d9:21:e0:fd:ec:77:f8:2f:ec: 30:17:c7:8c:39:e2:b2:a3:71:eb:f1:63:7d:43:c0: e1:99:4b:fa:f5:57:73:81:86:da:bb:ad:f0:be:58: 40:f4:4b:c1:54:d4:36:a2:03:7f:8f:91:28:76:19: 37:8a:e6:c1:2a:e7:4e:26:ea:15:aa:e4:c9:6d:dd: eb:3c:50:70:43:1e:e0:36:3b:84:59:ac:05:6c:cd: 6d:f9:5d:5d:a8:58:a7:8a:4e:24:81:c5:ce:21:d3: a2:1e:c0:9f:ae:be:2d:47:26:9b:4a:67:99:19:cb: 67:c8:0b:7e:6b:30:bb:48:a3:bc:f1:f2:44:22:a2: 34:73:b9:b2:0a:51:c1:93:21:95:80:78:34:35:5f: 0f:32:72:a9:39:c1:76:80:e2:ed:8f:a3:7b:e2:9f: ad:3f:1a:9c:de:3b:36:f7:ae:f0:ad:46:eb:99:3c: 47:22:b7:5f:0c:2a:f8:4a:94:90:79:3f:36:21:2d: e7:76:5a:aa:82:44:fe:52:bc:f4:c2:a3:6e:cb:42: 00:38:78:19:74:a0:bb:ba:33:6c:2b:a1:77:61:ab: 13:28:ae:63:2a:9a:26:46:7b:c5:a6:f2:49:72:31: 11:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4B:13:9C:99:FE:2B:C4:FE:78:55:1F:F7:F3:40:20:85:CC:5C:27 X509v3 Authority Key Identifier: keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:98:ee:8a:82:10:22:4b:ba:16:73:92:29:44:f9:83:fd:8d: e6:b6:b7:42:af:dc:92:98:13:3d:97:ec:b8:6f:7f:ee:5b:25: 2a:97:c1:1d:6e:5f:9a:59:63:c9:f1:b8:8c:a5:aa:9d:c2:ee: 72:db:3d:48:bb:38:23:1e:23:d0:ee:63:82:8b:69:a8:c0:dc: 35:a6:a8:18:38:e9:16:40:5b:aa:9e:c5:6d:8e:d1:51:a1:d6: d9:5b:74:21:e5:c2:24:c5:b0:72:eb:73:b3:5c:0c:b3:08:f0: ba:b8:36:5b:a4:2c:2b:1a:09:fb:3c:28:b3:21:80:00:70:ab: c9:88:60:6d:be:c5:d5:fb:56:51:67:2c:b6:9b:63:d3:c4:59: 6e:c0:63:54:08:f2:a1:17:31:7a:86:b3:f2:f4:18:69:f3:bd: 05:fc:83:dd:35:54:fb:bb:bc:9c:c9:6e:1f:f6:3d:e4:18:dc: 47:0b:d4:32:84:c5:6d:c1:4f:5e:e7:8b:8b:c7:f0:79:6a:1c: 5b:c2:97:74:f4:39:4d:99:92:ed:4d:ee:2c:04:de:f3:d8:30: 16:41:22:46:58:aa:7c:94:a2:91:10:aa:83:40:9d:f3:e8:08: 47:c9:56:82:9e:84:c9:a1:75:82:59:ab:83:c3:b8:70:f9:90: 3c:26:d8:81 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEmwsm/RkGKMac6qiq43b6UFx5i0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIw M0Q1MzVERjAeFw0yNjAxMjMxODE2MjlaFw0yNjAxMjcwMzI3MjlaMDMxMTAvBgNV BAMTKEYxNEIxMzlDOTlGRTJCQzRGRTc4NTUxRkY3RjM0MDIwODVDQzVDMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMVX2txnEf6zf/XMf0Hyy/zcZE gdkh4P3sd/gv7DAXx4w54rKjcevxY31DwOGZS/r1V3OBhtq7rfC+WED0S8FU1Dai A3+PkSh2GTeK5sEq504m6hWq5Mlt3es8UHBDHuA2O4RZrAVszW35XV2oWKeKTiSB xc4h06IewJ+uvi1HJptKZ5kZy2fIC35rMLtIo7zx8kQiojRzubIKUcGTIZWAeDQ1 Xw8ycqk5wXaA4u2Po3vin60/GpzeOzb3rvCtRuuZPEcit18MKvhKlJB5PzYhLed2 WqqCRP5SvPTCo27LQgA4eBl0oLu6M2wroXdhqxMormMqmiZGe8Wm8klyMRGHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8UsTnJn+K8T+eFUf9/NAIIXMXCcwHwYDVR0j BBgwFoAUWG/o0n/01r1PqDn8WIRKSwPVNd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzA3MmRiNy0wMTI3LTQ1NjQtOGQyMC1iY2VkNTI1YTE0YjgvMC81ODZGRThEMjdG RjRENkJENEZBODM5RkM1ODg0NEE0QjAzRDUzNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIwM0Q1 MzVERi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmMwNzJkYjctMDEyNy00NTY0LThk MjAtYmNlZDUyNWExNGI4LzAvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRB NEIwM0Q1MzVERi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAISY7oqCECJLuhZzkilE+YP9jea2t0Kv3JKY Ez2X7Lhvf+5bJSqXwR1uX5pZY8nxuIylqp3C7nLbPUi7OCMeI9DuY4KLaajA3DWm qBg46RZAW6qexW2O0VGh1tlbdCHlwiTFsHLrc7NcDLMI8Lq4NlukLCsaCfs8KLMh gABwq8mIYG2+xdX7VlFnLLabY9PEWW7AY1QI8qEXMXqGs/L0GGnzvQX8g901VPu7 vJzJbh/2PeQY3EcL1DKExW3BT17ni4vH8HlqHFvCl3T0OU2Zku1N7iwE3vPYMBZB IkZYqnyUopEQqoNAnfPoCEfJVoKehMmhdYJZq4PDuHD5kDwm2IE= -----END CERTIFICATE-----Generated at Sun Jan 25 18:46:22 2026 by rpki-client