This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: OR0ryiT9sogphRX/78Q8m+ZJKlrjoYqfRKn9Q7aVhUM= Subject key identifier: 81:ED:4E:A2:87:BE:D1:01:C0:69:C6:EA:C3:31:14:E6:C3:3B:CF:15 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 6DA29BF4F869F7F109F350BC29FD36DCE4A995E6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 04CF Signing time: Sun 25 Jan 2026 20:22:29 +0000 Manifest this update: Sun 25 Jan 2026 20:17:29 +0000 Manifest next update: Thu 29 Jan 2026 06:21:29 +0000 Files and hashes: 1: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: q/CV3YIPQOm1aZYip5fIR1K9i7bDSVO+nIFF+ycG0Go=) 2: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: AY19VkqueMvcRByahBfLMpyiZpzG3QjubIAHSL5Eo4A=) 3: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0yCL5KXTraWL90iq30pQr9XlRbIvmMrP24hOvDxVdWE=) 4: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: ceA/XjkZTjtckNNE+B0y8t16H7RYtmT+yFrD+MsXpYk=) 5: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: rkHE7dCGWjwiXKSo5AmkFhmGB4j/W88po8KuTJD9fS0=) 6: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: zCUg4ypvv2GlwnHN93OEr6YWYy+0fl7UKwqXyrw+mYs=) 7: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: QKBrvi0RsDMYjSNqwszDPfOesbOlEOIHdE8u3xcyVKM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a2:9b:f4:f8:69:f7:f1:09:f3:50:bc:29:fd:36:dc:e4:a9:95:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Jan 25 20:17:29 2026 GMT Not After : Jan 29 06:21:29 2026 GMT Subject: CN=81ED4EA287BED101C069C6EAC33114E6C33BCF15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7f:58:ef:82:c2:9f:16:53:10:a6:f8:69:ad: f0:f7:db:95:57:c6:47:4b:c8:c6:fa:b6:68:2a:bb: 88:26:f7:6b:d3:4e:8a:5d:a1:75:6e:48:24:79:89: 22:7c:2b:6d:81:b6:e2:ef:81:bf:03:29:e0:36:f9: 80:0d:5c:5e:bc:7d:fa:17:02:21:c6:46:7a:24:77: 34:10:48:fb:fe:d9:8e:3e:41:bb:97:56:b6:30:d4: a4:79:b0:82:1e:6a:aa:7e:5a:25:30:c7:6d:64:9c: ea:b9:44:12:87:0b:bd:27:50:24:7e:fc:d6:c3:4c: 02:42:5b:63:93:12:e0:e8:b7:c2:e6:62:9f:9a:c0: 21:c0:de:84:22:54:45:0f:fe:17:ca:00:7e:ef:81: fb:de:8d:19:41:6f:69:96:a5:96:b6:8d:d2:4f:57: ac:83:90:e1:63:67:15:61:37:a4:c8:0c:12:a0:5a: 56:06:f5:1a:2b:fa:5b:99:c2:4b:f0:17:89:2a:d7: 42:81:28:69:5a:de:b4:08:a8:3a:21:4c:c8:77:41: 2d:2e:28:92:54:61:a1:69:86:f8:44:44:ac:48:e7: 9f:85:9e:f3:4a:10:9c:29:ec:e6:94:3f:7b:2f:40: 5a:15:6e:fd:07:eb:e2:93:30:41:ab:25:ee:15:7f: ba:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:ED:4E:A2:87:BE:D1:01:C0:69:C6:EA:C3:31:14:E6:C3:3B:CF:15 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:6d:b8:46:a0:6b:d2:27:84:ae:34:bc:65:37:53:96:28:bc: fe:40:04:6a:9e:5d:a6:ea:14:3d:22:cc:95:9e:7e:da:e3:22: d6:c1:d2:3a:d1:48:f5:4b:f9:68:92:b3:b7:43:7b:1b:ba:34: 69:96:47:0e:f5:0b:3a:c2:d4:b0:6d:36:db:9f:d5:5d:59:fe: f2:47:e3:ab:9f:19:05:95:87:bf:c7:43:48:b3:dc:5e:3f:0d: 6b:b9:c3:e6:7e:81:b7:72:d1:52:b4:37:7c:71:06:fc:5c:fc: 68:4d:af:43:b9:78:53:80:cc:fe:0c:a5:52:2d:4e:f1:5f:e5: 22:cf:e3:51:d6:e5:4e:56:4e:40:09:56:f1:82:38:f8:16:91: de:6b:03:ce:2d:f1:02:c1:a8:7a:77:71:3d:d5:52:d0:f1:26: 8b:38:34:4d:0f:24:f7:ea:12:8b:0c:38:10:8e:34:f1:9c:ff: f1:2c:56:af:2c:35:b7:eb:78:ba:dc:fa:9c:2c:a0:7f:a4:b6: 4a:35:16:64:e4:5e:0f:a5:df:87:15:e3:1b:6c:08:4e:62:6c: 6d:e3:c0:7f:35:55:7d:9a:21:31:b5:6e:2c:3e:07:5a:ba:9f: c4:3a:cc:24:6c:23:e3:ed:f9:64:74:0b:27:0e:9c:7b:2d:91: 6e:52:58:dd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbaKb9Php9/EJ81C8Kf023OSpleYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNjAxMjUyMDE3MjlaFw0yNjAxMjkwNjIxMjlaMDMxMTAvBgNV BAMTKDgxRUQ0RUEyODdCRUQxMDFDMDY5QzZFQUMzMzExNEU2QzMzQkNGMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJf1jvgsKfFlMQpvhprfD325VX xkdLyMb6tmgqu4gm92vTTopdoXVuSCR5iSJ8K22BtuLvgb8DKeA2+YANXF68ffoX AiHGRnokdzQQSPv+2Y4+QbuXVrYw1KR5sIIeaqp+WiUwx21knOq5RBKHC70nUCR+ /NbDTAJCW2OTEuDot8LmYp+awCHA3oQiVEUP/hfKAH7vgfvejRlBb2mWpZa2jdJP V6yDkOFjZxVhN6TIDBKgWlYG9Ror+luZwkvwF4kq10KBKGla3rQIqDohTMh3QS0u KJJUYaFphvhERKxI55+FnvNKEJwp7OaUP3svQFoVbv0H6+KTMEGrJe4Vf7rhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUge1Oooe+0QHAacbqwzEU5sM7zxUwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAABtuEaga9InhK40vGU3U5YovP5ABGqeXabq FD0izJWeftrjItbB0jrRSPVL+WiSs7dDexu6NGmWRw71CzrC1LBtNtuf1V1Z/vJH 46ufGQWVh7/HQ0iz3F4/DWu5w+Z+gbdy0VK0N3xxBvxc/GhNr0O5eFOAzP4MpVIt TvFf5SLP41HW5U5WTkAJVvGCOPgWkd5rA84t8QLBqHp3cT3VUtDxJos4NE0PJPfq EosMOBCONPGc//EsVq8sNbfreLrc+pwsoH+ktko1FmTkXg+l34cV4xtsCE5ibG3j wH81VX2aITG1biw+B1q6n8Q6zCRsI+Pt+WR0CycOnHstkW5SWN0= -----END CERTIFICATE-----Generated at Mon Jan 26 05:37:22 2026 by rpki-client