This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft File: CA978B7ACEF55A251B74721E04A034CA3601A88B.mft (raw, json) Hash identifier: 3mqG4N1o43ZBurnpGW7s9GeQ5XDXw0CcPxlWMPxrLP0= Subject key identifier: 14:52:50:D7:8E:14:87:B6:84:26:C3:8D:31:94:38:0A:8D:D0:FB:0C Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Certificate serial: 0CABE7978EF8FBDCF4400266B9661EDC1B88FE93 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft Manifest number: 0160 Signing time: Sun 25 Jan 2026 11:31:32 +0000 Manifest this update: Sun 25 Jan 2026 11:26:32 +0000 Manifest next update: Wed 28 Jan 2026 12:46:32 +0000 Files and hashes: 1: CA978B7ACEF55A251B74721E04A034CA3601A88B.crl (hash: rFlRqQYnuAIcQBKHmGTh5aVojzO0NtGkcDsGJOMnBDQ=) 2: 3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa (hash: Y1BreLVa1ZjV8+fm+79oJJhjLUjz8il238UQwEnA8vE=) 3: 3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa (hash: 5p6wjGyXDMhYJEnC8e2hHCinkGJrBkWoW7KvueEj5dQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 12:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ab:e7:97:8e:f8:fb:dc:f4:40:02:66:b9:66:1e:dc:1b:88:fe:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Validity Not Before: Jan 25 11:26:32 2026 GMT Not After : Jan 28 12:46:32 2026 GMT Subject: CN=145250D78E1487B68426C38D3194380A8DD0FB0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ab:60:3f:a1:59:27:50:e5:43:f4:11:55:12: 2e:26:8d:5c:59:07:ff:50:06:ce:53:ca:0f:11:4d: 7e:7e:4b:9a:a0:f8:dc:98:3d:00:c5:88:bb:38:a1: 8b:a6:6b:db:c6:c2:3b:07:6c:7d:cf:11:9a:b8:64: b0:82:eb:b3:bb:a3:75:e2:bb:59:b9:1f:b1:21:5c: b0:76:c5:ed:56:d2:25:50:55:d0:03:6c:58:b3:56: f5:14:c5:ca:69:49:b3:6e:4e:5d:63:d0:ab:19:25: 23:7a:f5:ab:15:bb:1c:6a:df:f5:c3:97:61:34:96: 44:c5:3c:65:6a:ae:b5:e4:84:fd:f6:a0:6f:ae:7e: 39:ce:3f:06:fa:8c:fc:c4:6b:bf:68:4d:46:d9:d7: ff:a2:86:8c:56:c0:c4:42:8d:aa:bb:a4:6e:5b:f1: 1d:89:b6:90:c6:45:b9:92:fd:08:d2:7a:12:52:08: e6:7c:ec:c6:72:ae:e6:14:07:55:aa:6d:e5:90:40: cd:04:db:8d:c5:4a:e7:37:8f:4d:db:18:9d:a7:d0: b5:9f:06:79:fa:e1:7f:6f:e2:3b:6c:e1:8c:15:96: 72:59:b9:5e:1b:55:19:0d:e4:d0:e5:ad:04:51:09: 2c:58:52:68:db:df:93:4a:51:a7:57:48:e5:f8:e7: d2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:52:50:D7:8E:14:87:B6:84:26:C3:8D:31:94:38:0A:8D:D0:FB:0C X509v3 Authority Key Identifier: keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:8c:3c:26:33:45:b9:b4:7f:79:4f:ea:c9:1b:ec:e1:8a:be: ce:6c:c1:49:fe:85:5d:e6:ae:71:ef:7c:f0:24:ae:a1:bf:8b: a0:86:7b:c4:3e:c5:e9:31:b3:01:59:a0:8c:2f:57:3c:df:c2: a5:e9:ab:da:8e:61:86:cf:e1:d3:d1:07:9e:16:59:9c:b4:b0: 2a:64:f0:34:cc:95:e3:6b:c6:8a:9f:47:7c:bc:83:ff:81:54: 01:b0:47:d8:c2:77:9b:77:5a:80:c3:d4:29:5e:e5:cf:d4:ab: 5f:91:00:9f:50:74:03:2b:37:33:d3:53:a3:79:41:a5:1e:19: 66:3f:60:00:b1:c8:95:6c:d6:3d:e4:cd:5e:1e:5b:85:be:d4: 75:b5:9c:db:e0:f2:8b:70:4a:18:f3:11:3d:79:a3:1f:f8:8a: e7:91:07:26:a7:1f:2a:bf:a9:3e:d5:00:77:8a:9e:ee:c1:84: 80:fe:1d:e8:f4:94:85:7e:4c:63:fa:b5:16:e0:e4:61:d0:2c: 82:fb:e2:7d:ee:8c:22:99:54:a4:75:06:eb:30:3e:6b:8f:95: ce:bc:75:77:1b:c5:b2:f8:a6:82:48:97:92:51:7c:e5:c3:c3: 6c:a6:75:fb:5b:1d:e1:09:2e:8c:2a:26:84:37:2d:5a:49:06: 3f:14:cc:8c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDKvnl474+9z0QAJmuWYe3BuI/pMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez NjAxQTg4QjAeFw0yNjAxMjUxMTI2MzJaFw0yNjAxMjgxMjQ2MzJaMDMxMTAvBgNV BAMTKDE0NTI1MEQ3OEUxNDg3QjY4NDI2QzM4RDMxOTQzODBBOEREMEZCMEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0q2A/oVknUOVD9BFVEi4mjVxZ B/9QBs5Tyg8RTX5+S5qg+NyYPQDFiLs4oYuma9vGwjsHbH3PEZq4ZLCC67O7o3Xi u1m5H7EhXLB2xe1W0iVQVdADbFizVvUUxcppSbNuTl1j0KsZJSN69asVuxxq3/XD l2E0lkTFPGVqrrXkhP32oG+ufjnOPwb6jPzEa79oTUbZ1/+ihoxWwMRCjaq7pG5b 8R2JtpDGRbmS/QjSehJSCOZ87MZyruYUB1WqbeWQQM0E243FSuc3j03bGJ2n0LWf Bnn64X9v4jts4YwVlnJZuV4bVRkN5NDlrQRRCSxYUmjb35NKUadXSOX459JXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFFJQ144Uh7aEJsONMZQ4Co3Q+wwwHwYDVR0j BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx QTg4Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZhM2NmZjctMmFhMS00NGRmLTkx NGMtZjE5MTg0ZjZmM2IxLzAvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0 Q0EzNjAxQTg4Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAeMPCYzRbm0f3lP6skb7OGKvs5swUn+hV3m rnHvfPAkrqG/i6CGe8Q+xekxswFZoIwvVzzfwqXpq9qOYYbP4dPRB54WWZy0sCpk 8DTMleNrxoqfR3y8g/+BVAGwR9jCd5t3WoDD1Cle5c/Uq1+RAJ9QdAMrNzPTU6N5 QaUeGWY/YACxyJVs1j3kzV4eW4W+1HW1nNvg8otwShjzET15ox/4iueRByanHyq/ qT7VAHeKnu7BhID+Hej0lIV+TGP6tRbg5GHQLIL74n3ujCKZVKR1BuswPmuPlc68 dXcbxbL4poJIl5JRfOXDw2ymdftbHeEJLowqJoQ3LVpJBj8UzIw= -----END CERTIFICATE-----Generated at Sun Jan 25 18:58:35 2026 by rpki-client