This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.mft (raw, json) Hash identifier: WdvvRPfy4Btkgkv2shqra0ihWv5BmlgHHzK3ALjl0PI= Subject key identifier: 1E:5C:DE:9F:49:14:69:10:D2:16:50:CA:2A:91:D8:EC:64:89:89:81 Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 3444B2B64EF60E6280A9184A9847292C3E574C42 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft Manifest number: 0259 Signing time: Sun 25 Jan 2026 20:11:51 +0000 Manifest this update: Sun 25 Jan 2026 20:06:50 +0000 Manifest next update: Thu 29 Jan 2026 05:56:50 +0000 Files and hashes: 1: 5DF7F909917C4DA09D7486E2B70323E7972B7675.crl (hash: dkCdQYKJya8bHu2R+KKT2+sF+XbwTkH7gP98fCjNPNQ=) 2: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (hash: uTV9a8fdyT6ZmJ8NRNVsn4KQvmLK6xkJNJmzdYWe1pQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:44:b2:b6:4e:f6:0e:62:80:a9:18:4a:98:47:29:2c:3e:57:4c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: Jan 25 20:06:50 2026 GMT Not After : Jan 29 05:56:50 2026 GMT Subject: CN=1E5CDE9F49146910D21650CA2A91D8EC64898981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0e:5e:de:d2:16:44:9d:3e:06:5c:af:b7:19: 71:70:b1:fc:e0:77:41:b6:7e:41:d1:61:41:a3:c5: 67:cd:4a:60:97:6d:91:14:99:e4:e5:78:f1:18:27: 02:3e:ad:64:42:34:7d:fb:98:33:7c:3f:5d:7b:00: a1:02:03:2f:18:0d:d4:a9:07:22:cb:76:6a:2a:84: 22:16:3c:9f:79:43:28:cc:0f:5c:c7:b4:fc:0e:a6: 3e:2d:58:45:44:e1:f0:99:e5:ce:64:81:48:e5:99: 0b:2f:ea:e7:f4:ea:aa:66:02:dc:22:c9:d8:7e:38: c3:43:3f:9d:49:7d:51:02:35:1f:47:48:02:4f:93: 01:29:ec:b9:f5:c4:83:1c:6e:88:04:10:69:06:b2: 81:f4:85:bf:2b:01:dd:6d:92:42:e9:be:03:f8:b1: 0c:dd:ab:de:a6:ca:e8:bb:ae:71:60:6d:22:87:0f: a2:f5:a2:73:ee:b6:13:56:e9:f1:24:5e:50:ad:16: bd:14:8c:76:5c:e3:ed:b3:cb:28:88:c4:ae:46:c4: a8:6f:93:24:4e:31:3b:0f:cb:9f:8b:18:c6:83:d4: 09:4d:54:c1:97:d1:94:33:2e:06:c1:4d:05:1f:4d: fe:44:ae:03:a7:46:8b:74:31:da:96:a0:11:09:aa: 97:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5C:DE:9F:49:14:69:10:D2:16:50:CA:2A:91:D8:EC:64:89:89:81 X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4b:b7:06:37:e4:e3:31:be:09:a1:19:bc:3c:fd:75:87:f3: 5d:30:6d:5c:1e:18:66:c3:ea:e7:d7:74:48:3e:fd:3f:14:a9: 5a:e0:f5:0c:ba:ba:c5:7d:4e:53:fe:9c:7d:b0:61:50:b8:d3: 36:03:da:8c:47:b6:16:e5:f8:d0:c3:8f:5e:ed:2a:c6:3d:9a: bd:b7:29:a4:ad:61:e5:bf:eb:dc:fd:57:f3:96:e1:38:c8:9f: 94:37:af:ee:00:56:69:01:1a:6a:a8:58:56:9c:07:79:fa:52: 6b:b6:4e:3a:a2:55:f2:14:e6:00:cc:c5:ad:01:2b:24:46:e7: 56:b1:b5:43:65:b7:21:e8:9c:bc:6f:29:f9:cd:6a:72:78:1b: 32:a8:49:9b:53:7e:9c:61:da:4f:b8:cf:76:1b:8c:08:38:88: 03:2e:33:52:f1:1d:49:a2:d7:e0:f6:e2:b8:73:d0:04:c1:d5: cb:f0:61:7f:a7:6e:c3:36:0a:7b:1f:5a:09:d0:64:e3:59:f0: 8d:b8:ae:a9:3b:0a:e6:a6:24:91:3e:37:ff:1f:30:56:ed:52: 31:3f:22:73:8a:49:3f:23:3f:4b:e4:7a:35:10:de:62:c0:27: f3:08:8b:ff:cc:fe:21:29:f3:4d:49:c5:11:46:38:ae:f2:45: cb:cb:3d:0b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNESytk72DmKAqRhKmEcpLD5XTEIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNjAxMjUyMDA2NTBaFw0yNjAxMjkwNTU2NTBaMDMxMTAvBgNV BAMTKDFFNUNERTlGNDkxNDY5MTBEMjE2NTBDQTJBOTFEOEVDNjQ4OTg5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuDl7e0hZEnT4GXK+3GXFwsfzg d0G2fkHRYUGjxWfNSmCXbZEUmeTlePEYJwI+rWRCNH37mDN8P117AKECAy8YDdSp ByLLdmoqhCIWPJ95QyjMD1zHtPwOpj4tWEVE4fCZ5c5kgUjlmQsv6uf06qpmAtwi ydh+OMNDP51JfVECNR9HSAJPkwEp7Ln1xIMcbogEEGkGsoH0hb8rAd1tkkLpvgP4 sQzdq96myui7rnFgbSKHD6L1onPuthNW6fEkXlCtFr0UjHZc4+2zyyiIxK5GxKhv kyROMTsPy5+LGMaD1AlNVMGX0ZQzLgbBTQUfTf5ErgOnRot0MdqWoBEJqpfvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHlzen0kUaRDSFlDKKpHY7GSJiYEwHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDdiNjRjM2UtYjEzZC00MjdhLWI5 ODItNDM5NDA3M2U1Y2Y1LzAvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIz RTc5NzJCNzY3NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAApLtwY35OMxvgmhGbw8/XWH810wbVweGGbD 6ufXdEg+/T8UqVrg9Qy6usV9TlP+nH2wYVC40zYD2oxHthbl+NDDj17tKsY9mr23 KaStYeW/69z9V/OW4TjIn5Q3r+4AVmkBGmqoWFacB3n6Umu2TjqiVfIU5gDMxa0B KyRG51axtUNltyHonLxvKfnNanJ4GzKoSZtTfpxh2k+4z3YbjAg4iAMuM1LxHUmi 1+D24rhz0ATB1cvwYX+nbsM2CnsfWgnQZONZ8I24rqk7CuamJJE+N/8fMFbtUjE/ InOKST8jP0vkejUQ3mLAJ/MIi//M/iEp801JxRFGOK7yRcvLPQs= -----END CERTIFICATE-----Generated at Mon Jan 26 01:10:12 2026 by rpki-client