This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft File: 21F5E152BA3E25561EA4D2E2986546412F44F15B.mft (raw, json) Hash identifier: XJfsWt6gP5ar49Eqyh0BCnUFaW6KXadwOriCw7ER0pc= Subject key identifier: 76:BD:3E:51:A3:A1:BC:9B:3F:41:39:A3:1B:40:F8:33:70:E8:D4:C2 Authority key identifier: 21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B Certificate issuer: /CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Certificate serial: 3B9652C4B4316214D3A8BDA492540DA3A39F0C8C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft Manifest number: D2 Signing time: Sun 25 Jan 2026 20:12:02 +0000 Manifest this update: Sun 25 Jan 2026 20:07:02 +0000 Manifest next update: Thu 29 Jan 2026 06:47:02 +0000 Files and hashes: 1: 21F5E152BA3E25561EA4D2E2986546412F44F15B.crl (hash: VdG8CouULxWyrUH7FULMwCeC4pGxGZxnK28q3AFcWXk=) 2: 3130332e3130362e37382e302f32342d3234203d3e203436303233.roa (hash: iSq6NwogxUEJNuToH4CRAdLPA94Ifhymd/i0qK2RpFY=) 3: 3130332e3130362e37362e302f32322d3232203d3e203436303233.roa (hash: juQ/cwjH1toIUGh+4Z6y41hGaf2rFqJaltHbfzkfdBc=) 4: 3130332e3130362e37382e302f32332d3233203d3e203436303233.roa (hash: WYN4mrwjKunsGp4uZVpUx9nBxwBDSeavyWVXTw8bEXE=) 5: 3130332e3130362e37392e302f32342d3234203d3e203436303233.roa (hash: aO0x+zXgbPOIjgzHxX0fAcf+6eJJ6z747uBT9dWocuM=) 6: 3130332e3130362e37372e302f32342d3234203d3e203436303233.roa (hash: CbiBxaX9ddBH1o7nomW/iHw3KqeexSYJrX7KRnYKypE=) 7: 3130332e3130362e37362e302f32342d3234203d3e203436303233.roa (hash: +PmFbdoieOm1HYaiDNoJSgRpm6MfVAVtuXNpglouU7g=) 8: 3130332e3130362e37362e302f32332d3233203d3e203436303233.roa (hash: NaHe5YrxTvb1T+B86yAscpluwifFSNcBhISUAGBKlIw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 29 Jan 2026 05:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:96:52:c4:b4:31:62:14:d3:a8:bd:a4:92:54:0d:a3:a3:9f:0c:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21F5E152BA3E25561EA4D2E2986546412F44F15B Validity Not Before: Jan 25 20:07:02 2026 GMT Not After : Jan 29 06:47:02 2026 GMT Subject: CN=76BD3E51A3A1BC9B3F4139A31B40F83370E8D4C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:80:ca:d5:bf:b0:43:9a:cc:3a:9e:00:e2:62: 41:f7:cb:77:0e:d2:71:99:d1:9d:93:26:4a:fb:80: 8b:ae:51:5b:f1:81:da:48:da:25:92:97:16:02:c0: c8:56:a2:a9:c1:7c:49:95:f9:67:e9:35:fb:79:7d: 45:f6:9f:b8:4d:d7:df:73:ab:da:cc:c9:16:85:5f: 4c:6e:36:0d:eb:2b:8f:58:b5:46:38:38:0b:15:cc: 77:f4:85:2e:dc:e3:86:67:c9:9a:41:c6:22:97:96: 63:ff:41:9e:55:3a:c7:65:95:f8:79:5a:b6:4d:db: 44:31:a1:16:ca:ce:81:db:8a:d6:0d:52:5a:e8:03: 89:1f:2b:55:ab:3b:b0:87:ae:b2:7a:3c:d9:a5:21: 07:82:9b:d2:e3:d9:77:06:65:22:0b:64:fa:28:91: b7:74:a3:0a:7f:94:cd:aa:f7:74:26:a1:5c:21:10: b9:c9:95:3d:ab:f3:aa:ea:2b:ee:75:d9:d5:1c:a8: d1:60:65:c0:b9:a3:27:7d:1c:d3:2e:28:84:b6:14: f4:24:47:67:ec:f1:0e:54:99:73:c6:ca:23:7e:c6: 6d:f3:a7:89:27:25:79:30:70:26:34:45:af:b6:dc: 0b:77:66:dd:f1:b6:de:ee:0d:f0:06:e4:e7:61:03: 74:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BD:3E:51:A3:A1:BC:9B:3F:41:39:A3:1B:40:F8:33:70:E8:D4:C2 X509v3 Authority Key Identifier: keyid:21:F5:E1:52:BA:3E:25:56:1E:A4:D2:E2:98:65:46:41:2F:44:F1:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21F5E152BA3E25561EA4D2E2986546412F44F15B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3dd6135-548c-4881-af78-93af9f2a2516/0/21F5E152BA3E25561EA4D2E2986546412F44F15B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:93:89:93:a6:2e:65:81:8d:cc:a4:d3:ba:70:b7:4e:67:4c: c4:aa:95:94:aa:90:9c:b9:19:a8:14:4c:a6:ab:0e:eb:59:d5: 59:cf:fd:a9:f9:d4:ce:87:d6:e6:b5:99:d0:36:e8:1a:55:6f: ac:9c:28:e6:a1:21:6e:41:ce:c6:5d:f1:56:cc:2c:8a:96:23: 75:b1:25:60:bd:fd:84:0e:ff:cc:54:de:b2:76:e9:8f:5e:9e: 24:b8:48:24:59:f8:08:4e:21:c7:b8:a8:a3:a0:e2:8b:44:36: 2b:32:3f:49:cf:9a:b1:49:37:9c:2e:f8:b2:aa:9c:3a:62:4d: 84:5e:99:94:51:48:27:ea:1e:e7:93:3d:15:04:3a:76:eb:90: 81:70:90:f0:b7:c1:90:96:9a:35:f6:fd:a6:2c:b9:cd:f7:10: 45:63:ad:9f:88:1e:13:cf:23:1d:ec:59:6b:c6:0b:dc:cb:54: 8e:30:a2:7d:56:ba:3a:5e:8c:93:bd:c6:8e:fa:13:13:84:5d: c2:8c:7a:bb:6d:3b:24:19:21:d2:32:0a:6a:5d:b4:68:85:50: 80:71:61:98:59:c2:43:99:62:15:52:5b:79:f2:0f:c4:25:b7: dd:22:e4:43:82:19:7c:dd:80:40:86:02:ab:27:e1:c9:5b:b3: f9:16:ba:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO5ZSxLQxYhTTqL2kklQNo6OfDIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEy RjQ0RjE1QjAeFw0yNjAxMjUyMDA3MDJaFw0yNjAxMjkwNjQ3MDJaMDMxMTAvBgNV BAMTKDc2QkQzRTUxQTNBMUJDOUIzRjQxMzlBMzFCNDBGODMzNzBFOEQ0QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUgMrVv7BDmsw6ngDiYkH3y3cO 0nGZ0Z2TJkr7gIuuUVvxgdpI2iWSlxYCwMhWoqnBfEmV+WfpNft5fUX2n7hN199z q9rMyRaFX0xuNg3rK49YtUY4OAsVzHf0hS7c44ZnyZpBxiKXlmP/QZ5VOsdllfh5 WrZN20QxoRbKzoHbitYNUlroA4kfK1WrO7CHrrJ6PNmlIQeCm9Lj2XcGZSILZPoo kbd0owp/lM2q93QmoVwhELnJlT2r86rqK+512dUcqNFgZcC5oyd9HNMuKIS2FPQk R2fs8Q5UmXPGyiN+xm3zp4knJXkwcCY0Ra+23At3Zt3xtt7uDfAG5OdhA3SLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdr0+UaOhvJs/QTmjG0D4M3Do1MIwHwYDVR0j BBgwFoAUIfXhUro+JVYepNLimGVGQS9E8VswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j M2RkNjEzNS01NDhjLTQ4ODEtYWY3OC05M2FmOWYyYTI1MTYvMC8yMUY1RTE1MkJB M0UyNTU2MUVBNEQyRTI5ODY1NDY0MTJGNDRGMTVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2NDEyRjQ0 RjE1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzNkZDYxMzUtNTQ4Yy00ODgxLWFm NzgtOTNhZjlmMmEyNTE2LzAvMjFGNUUxNTJCQTNFMjU1NjFFQTREMkUyOTg2NTQ2 NDEyRjQ0RjE1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGWTiZOmLmWBjcyk07pwt05nTMSqlZSqkJy5 GagUTKarDutZ1VnP/an51M6H1ua1mdA26BpVb6ycKOahIW5BzsZd8VbMLIqWI3Wx JWC9/YQO/8xU3rJ26Y9eniS4SCRZ+AhOIce4qKOg4otENisyP0nPmrFJN5wu+LKq nDpiTYRemZRRSCfqHueTPRUEOnbrkIFwkPC3wZCWmjX2/aYsuc33EEVjrZ+IHhPP Ix3sWWvGC9zLVI4won1WujpejJO9xo76ExOEXcKMerttOyQZIdIyCmpdtGiFUIBx YZhZwkOZYhVSW3nyD8Qlt90i5EOCGXzdgECGAqsn4clbs/kWuhk= -----END CERTIFICATE-----Generated at Mon Jan 26 07:35:45 2026 by rpki-client