This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: w/hsB/rgr95oDpRT/GdTHXNHE/w26L5wG7dTmXC1PFU= Subject key identifier: 59:22:1A:B2:A9:96:DA:03:64:41:B6:15:73:3E:09:CE:7E:A6:22:85 Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 7AEA6052D0700AE085236C643F71BF19F8713244 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 029F Signing time: Sat 24 Jan 2026 08:52:07 +0000 Manifest this update: Sat 24 Jan 2026 08:47:07 +0000 Manifest next update: Tue 27 Jan 2026 17:29:07 +0000 Files and hashes: 1: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: /4UyRwKaymXO7wCeB0iwJukR4vrx2YQtUzMCQpYmaAU=) 2: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 3: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: Y0QuciRTpFDwvV/OBPdTjgLcEkiudatiiHEhsbTutWI=) 4: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: kzF5yTng2nsAricqtS3yvK+w9DfNlAwfQFzAL4v5DWA=) 5: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: 2PpG67/Hif4l3pFwRCwEQ7HNcb5HgHsPLTC3ZJMlI9c=) 6: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: btn366wZk5X/LbhkknHgrSEj+dlkWgK4+w6HiC3XS9g=) 7: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: t1OWN6gm90SvImzwws28CQ53gTfOaLXKxfqrgXh94Y4=) 8: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: g6JykGSCyvPJN6suwP4pksfv3CU4McJpDF6g+WQNj7o=) 9: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: G0y3tssGsefR1ItOMtc1BYHuZ0hgATuC18s9snklT+E=) 10: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: FyCE3LyMNMrGnPbdrpK5+sH4y62xX8bxVpZUT6w7BJU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 17:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ea:60:52:d0:70:0a:e0:85:23:6c:64:3f:71:bf:19:f8:71:32:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Jan 24 08:47:07 2026 GMT Not After : Jan 27 17:29:07 2026 GMT Subject: CN=59221AB2A996DA036441B615733E09CE7EA62285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ce:11:04:6a:41:1b:16:e5:40:28:5a:29:e5: 1d:83:3b:05:ff:b3:ab:29:e8:52:32:07:d0:2a:7d: c8:df:23:7f:4d:81:f2:9b:5b:3f:fc:75:36:d4:48: 22:14:a0:2e:39:5b:35:32:3c:db:bd:18:47:dd:81: 2f:2f:44:0b:0e:4e:d0:ff:40:95:cf:6a:6e:88:d1: 98:fc:15:8a:8a:28:58:69:2a:5a:9d:90:8e:55:5d: 5d:02:77:98:a4:f6:d1:75:7b:94:50:0f:99:1d:c8: 00:50:ea:b7:36:ab:01:9a:99:f8:ab:89:7c:74:ef: a1:d7:4e:8a:81:f0:5f:69:1c:57:ad:62:46:c9:2e: 9f:a2:e2:c6:13:b9:9e:cf:ae:38:ef:38:09:9d:a0: da:98:4f:e0:89:b9:bf:25:b0:cc:4d:02:9f:a9:c9: 85:4f:7b:3c:6b:02:93:0d:0d:c0:1a:ea:34:34:29: 17:a7:51:c3:be:a6:90:f3:0f:8a:88:20:88:a1:c5: 75:e0:93:34:f7:a8:38:9d:cc:4e:18:e1:18:50:54: 6b:4e:1a:ee:b1:99:3c:ba:0e:1e:29:4c:18:37:a9: fb:ab:5f:d5:a5:de:c9:e4:66:da:a0:00:1d:a1:dc: d3:07:b5:73:df:af:27:26:3e:c3:d9:35:94:ac:15: 09:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:22:1A:B2:A9:96:DA:03:64:41:B6:15:73:3E:09:CE:7E:A6:22:85 X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:37:b5:ce:5c:4a:7a:83:13:09:b0:f7:b4:eb:87:02:ed:d4: 39:c7:c0:85:6d:03:02:7d:33:de:49:64:64:eb:75:89:33:58: 11:90:7a:cf:02:46:d0:4e:66:53:f7:4e:d6:22:89:70:f5:36: 14:5e:58:58:17:46:d4:53:3b:20:f0:de:c6:58:1c:a4:40:21: 89:f7:2e:27:1b:b9:13:31:56:96:c6:e8:32:b2:ac:d4:06:6f: 17:4f:6c:37:c9:83:5f:13:df:2d:5e:22:5e:79:17:31:c5:51: c8:3d:7f:ea:7a:81:2c:ff:d4:0c:e5:64:11:93:82:c6:b3:3f: fd:19:85:3b:13:d6:85:9f:aa:d9:2c:72:d5:ad:de:53:25:33: 5d:28:89:88:91:84:bf:e5:34:60:15:1e:75:3b:f4:bf:95:f4: eb:37:69:66:73:d1:c1:b8:1c:ed:6d:de:cf:5c:29:99:ed:55: a5:64:cc:34:0d:24:cb:d7:aa:1a:e7:c7:3c:35:e4:18:fd:01: 08:fc:46:29:81:66:48:1c:e9:e5:22:64:a9:16:5b:8b:93:68: 3a:e7:77:53:ae:2e:38:1b:ec:5b:e5:1a:73:44:27:d8:13:3c: dc:5d:53:8f:e4:bc:43:e1:8d:6d:80:21:d8:48:09:ee:f2:45: b6:16:a4:86 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeupgUtBwCuCFI2xkP3G/GfhxMkQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNjAxMjQwODQ3MDdaFw0yNjAxMjcxNzI5MDdaMDMxMTAvBgNV BAMTKDU5MjIxQUIyQTk5NkRBMDM2NDQxQjYxNTczM0UwOUNFN0VBNjIyODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4zhEEakEbFuVAKFop5R2DOwX/ s6sp6FIyB9AqfcjfI39NgfKbWz/8dTbUSCIUoC45WzUyPNu9GEfdgS8vRAsOTtD/ QJXPam6I0Zj8FYqKKFhpKlqdkI5VXV0Cd5ik9tF1e5RQD5kdyABQ6rc2qwGamfir iXx076HXToqB8F9pHFetYkbJLp+i4sYTuZ7PrjjvOAmdoNqYT+CJub8lsMxNAp+p yYVPezxrApMNDcAa6jQ0KRenUcO+ppDzD4qIIIihxXXgkzT3qDidzE4Y4RhQVGtO Gu6xmTy6Dh4pTBg3qfurX9Wl3snkZtqgAB2h3NMHtXPfrycmPsPZNZSsFQnxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWSIasqmW2gNkQbYVcz4Jzn6mIoUwHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH83tc5cSnqDEwmw97TrhwLt1DnHwIVtAwJ9 M95JZGTrdYkzWBGQes8CRtBOZlP3TtYiiXD1NhReWFgXRtRTOyDw3sZYHKRAIYn3 LicbuRMxVpbG6DKyrNQGbxdPbDfJg18T3y1eIl55FzHFUcg9f+p6gSz/1AzlZBGT gsazP/0ZhTsT1oWfqtksctWt3lMlM10oiYiRhL/lNGAVHnU79L+V9Os3aWZz0cG4 HO1t3s9cKZntVaVkzDQNJMvXqhrnxzw15Bj9AQj8RimBZkgc6eUiZKkWW4uTaDrn d1OuLjgb7FvlGnNEJ9gTPNxdU4/kvEPhjW2AIdhICe7yRbYWpIY= -----END CERTIFICATE-----Generated at Sun Jan 25 20:34:32 2026 by rpki-client