This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft File: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft (raw, json) Hash identifier: ajmEwxsGPR/ZLyLnZGeMMYqsCpVNdvCRLBLC1ojZ0C0= Subject key identifier: F2:43:71:B3:A2:FD:78:E8:8A:13:41:3C:C6:E6:3A:A3:8B:3E:90:F0 Authority key identifier: 10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B Certificate issuer: /CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Certificate serial: 075440A6B9F5CE0794A6DE2CDA9F082398393C23 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft Manifest number: D0 Signing time: Sat 24 Jan 2026 11:31:43 +0000 Manifest this update: Sat 24 Jan 2026 11:26:42 +0000 Manifest next update: Tue 27 Jan 2026 22:49:42 +0000 Files and hashes: 1: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl (hash: NOdCd+SJaF/OYoFGCMT5RDZQm+l9ctuy9oGzSo9ElFk=) 2: 3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa (hash: lR/hW+eaZsPiXrhVudMo+pOinjFXG0anTiMBOASqmGk=) 3: 3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa (hash: HSGQJXythRbZW0WejIr3eu8cpvINsUXbBgpQ3Hdpzbo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:54:40:a6:b9:f5:ce:07:94:a6:de:2c:da:9f:08:23:98:39:3c:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Validity Not Before: Jan 24 11:26:42 2026 GMT Not After : Jan 27 22:49:42 2026 GMT Subject: CN=F24371B3A2FD78E88A13413CC6E63AA38B3E90F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fc:a8:87:ad:cc:84:b8:79:d8:e9:db:1c:01: 1e:91:44:8e:ab:e2:23:fa:65:7a:d6:e8:74:23:b8: 19:04:88:30:3a:f7:93:10:a0:30:d9:c8:66:23:a2: 6e:77:63:c2:1a:bf:72:1c:c4:d5:cd:16:d3:9e:48: 49:b5:fb:f8:8b:ed:9e:15:ef:da:44:de:54:c4:79: ab:22:58:32:e6:f1:71:ba:49:af:38:46:dc:2b:1c: ea:6b:73:66:7d:ab:1d:60:a4:36:26:a5:11:ea:95: ad:eb:5b:47:a9:7c:11:c9:02:d2:1c:57:60:9e:3d: 42:59:71:a1:49:54:60:6f:d6:f3:19:a0:be:c3:8a: 53:0e:48:ba:48:19:82:9f:3b:38:83:60:87:1f:21: b9:a7:02:cd:8b:a6:8f:ae:31:64:55:6e:24:cc:c7: b0:8d:41:2d:5f:2a:09:d6:74:a5:bd:d2:83:aa:5e: 0d:6f:36:0b:fc:e7:70:45:13:ff:d8:37:b6:2f:f8: 43:eb:63:2b:22:93:fd:07:59:70:2b:4d:e7:62:c8: d1:7a:bd:52:c8:39:ed:75:c2:87:54:82:81:87:75: 6c:96:b7:d8:33:51:9c:9c:4c:9a:3b:ae:58:08:6b: 55:0c:d3:c4:3c:85:1f:d4:4b:62:b7:07:5c:4f:62: 82:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:43:71:B3:A2:FD:78:E8:8A:13:41:3C:C6:E6:3A:A3:8B:3E:90:F0 X509v3 Authority Key Identifier: keyid:10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:8d:34:31:a5:79:80:83:15:5a:8b:5b:42:98:bd:93:c0:85: 5d:3f:31:36:d0:5a:66:9e:3f:14:14:8d:b1:25:35:35:57:55: 5a:73:e8:49:98:35:ce:7c:cf:ec:1f:ca:dc:7f:b5:4d:5a:a6: 76:da:e0:68:63:1d:d9:8a:53:d8:8d:da:a1:62:05:30:da:7f: c5:67:98:13:87:eb:66:85:a5:4e:1f:4e:0e:d0:91:96:71:31: 95:07:e6:81:95:14:d3:7f:de:e4:cf:56:20:f7:5a:b6:6b:5c: 65:69:9b:90:a8:4a:06:97:69:89:8d:75:04:19:0f:35:13:fe: 83:02:18:92:86:9b:9d:94:3a:d6:4d:b6:4c:6c:42:72:af:f5: 57:0c:e3:20:9d:8a:a6:cd:b3:d6:73:43:a1:cd:26:0f:71:42: 43:01:bf:79:7d:85:36:cf:78:97:03:0f:6d:a9:4c:b6:46:2a: 4d:d7:2b:69:32:62:43:59:6e:c7:aa:2d:4a:33:69:2f:2e:bc: ea:ea:50:0f:39:67:c8:20:70:57:bf:52:62:08:01:d6:3e:06: 98:09:22:8e:be:c1:43:1b:1f:b3:d7:8b:83:f2:2f:35:ae:ca: e5:bc:ee:d7:34:70:02:81:99:c4:da:c5:3e:12:ec:8d:26:38: 60:a0:ea:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB1RAprn1zgeUpt4s2p8II5g5PCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0 Q0ZBMzE3QjAeFw0yNjAxMjQxMTI2NDJaFw0yNjAxMjcyMjQ5NDJaMDMxMTAvBgNV BAMTKEYyNDM3MUIzQTJGRDc4RTg4QTEzNDEzQ0M2RTYzQUEzOEIzRTkwRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg/KiHrcyEuHnY6dscAR6RRI6r 4iP6ZXrW6HQjuBkEiDA695MQoDDZyGYjom53Y8Iav3IcxNXNFtOeSEm1+/iL7Z4V 79pE3lTEeasiWDLm8XG6Sa84RtwrHOprc2Z9qx1gpDYmpRHqla3rW0epfBHJAtIc V2CePUJZcaFJVGBv1vMZoL7DilMOSLpIGYKfOziDYIcfIbmnAs2Lpo+uMWRVbiTM x7CNQS1fKgnWdKW90oOqXg1vNgv853BFE//YN7Yv+EPrYysik/0HWXArTediyNF6 vVLIOe11wodUgoGHdWyWt9gzUZycTJo7rlgIa1UM08Q8hR/US2K3B1xPYoL3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8kNxs6L9eOiKE0E8xuY6o4s+kPAwHwYDVR0j BBgwFoAUENNTbz0L9/eszopoUF7AMUz6MXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjAxYzk2Ny05OWQwLTRjMjEtOTY0Mi04N2FkYTY3MTU1YzgvMC8xMEQzNTM2RjNE MEJGN0Y3QUNDRThBNjg1MDVFQzAzMTRDRkEzMTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0Q0ZB MzE3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2IwMWM5NjctOTlkMC00YzIxLTk2 NDItODdhZGE2NzE1NWM4LzAvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMw MzE0Q0ZBMzE3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABeNNDGleYCDFVqLW0KYvZPAhV0/MTbQWmae PxQUjbElNTVXVVpz6EmYNc58z+wfytx/tU1apnba4GhjHdmKU9iN2qFiBTDaf8Vn mBOH62aFpU4fTg7QkZZxMZUH5oGVFNN/3uTPViD3WrZrXGVpm5CoSgaXaYmNdQQZ DzUT/oMCGJKGm52UOtZNtkxsQnKv9VcM4yCdiqbNs9ZzQ6HNJg9xQkMBv3l9hTbP eJcDD22pTLZGKk3XK2kyYkNZbseqLUozaS8uvOrqUA85Z8ggcFe/UmIIAdY+BpgJ Io6+wUMbH7PXi4PyLzWuyuW87tc0cAKBmcTaxT4S7I0mOGCg6gI= -----END CERTIFICATE-----Generated at Sun Jan 25 18:56:59 2026 by rpki-client