This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft File: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft (raw, json) Hash identifier: IKV2OUAPyvKoiDxgfjsk/FvKdX2x2gQeutvozcvaaz0= Subject key identifier: F3:3B:F8:5F:ED:F8:10:D4:17:33:9C:21:C7:07:DF:DE:3C:9E:F4:86 Authority key identifier: 40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD Certificate issuer: /CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Certificate serial: 304DB97EE27E9910C70289453D622CE0AF1934F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft Manifest number: 0229 Signing time: Sat 24 Jan 2026 18:52:00 +0000 Manifest this update: Sat 24 Jan 2026 18:47:00 +0000 Manifest next update: Tue 27 Jan 2026 22:41:00 +0000 Files and hashes: 1: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl (hash: KGkHvFHHi56L5SKhSlZgZdOEFnr3k2aR+M8WjtQGCvA=) 2: 3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa (hash: HLjZFq4/Jnmag82Gv7W9QKBRIGp+gW90e9wOgTOi2PE=) 3: 3130332e3136302e36382e302f32342d3234203d3e203438343635.roa (hash: s3cZDsm3eCD/zirL0oonykymWlAaugzxDIFPlg5sAUQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 22:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4d:b9:7e:e2:7e:99:10:c7:02:89:45:3d:62:2c:e0:af:19:34:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Validity Not Before: Jan 24 18:47:00 2026 GMT Not After : Jan 27 22:41:00 2026 GMT Subject: CN=F33BF85FEDF810D417339C21C707DFDE3C9EF486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:72:ae:c8:4b:59:5c:3e:63:36:5b:72:f7:81: eb:7b:5e:b0:3e:c8:77:29:29:0f:bb:37:f4:15:32: cb:ee:1e:a3:18:c8:9f:37:b2:8b:c2:9f:b8:44:1f: e2:b2:a3:1e:b6:8a:09:59:1e:d7:ba:40:b9:17:7a: e0:f0:22:85:93:69:3e:ad:0e:22:82:c7:0d:b9:ec: 9a:42:83:17:c3:6c:69:36:f1:d0:7a:8e:ff:4e:53: 9d:50:e2:e6:3d:c0:ff:17:80:c5:25:4c:0d:f6:6c: 4c:95:48:5a:16:6c:0a:fd:f2:35:04:79:2f:fc:d5: 90:9c:8c:c3:7e:e0:d8:a3:7b:e5:51:47:c7:89:b4: e8:eb:a0:85:c2:59:95:bf:8c:68:6a:6c:8d:ea:a8: f6:73:e9:53:7d:17:50:a7:a9:b7:54:2f:df:2d:61: 1d:c4:63:11:2f:44:65:72:93:4f:7a:08:a7:c9:2e: 90:3f:c4:c0:0a:87:3c:2d:75:38:dd:7e:1c:89:50: 5b:4e:12:ab:27:d3:bc:91:22:2c:49:d7:cc:99:62: d7:42:18:a6:eb:7b:0d:96:35:b4:12:1b:ba:a1:e4: fc:fb:d2:ff:92:0b:f5:a0:a4:81:d6:4b:39:5e:41: 81:e4:28:cc:73:45:1a:00:5d:69:e4:4f:25:40:0b: 45:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:3B:F8:5F:ED:F8:10:D4:17:33:9C:21:C7:07:DF:DE:3C:9E:F4:86 X509v3 Authority Key Identifier: keyid:40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:c7:86:a5:3a:73:de:2b:22:88:0b:42:b5:b3:a7:86:1f:f1: f8:9e:0f:d7:93:87:33:1e:82:db:d6:09:5f:72:8c:13:56:7d: 39:4d:42:96:05:35:64:45:33:c7:93:c8:c1:3d:fc:75:a1:5f: 88:dd:74:cb:5e:70:f9:b2:bc:a7:b3:a9:75:1e:26:39:f0:0d: 3e:96:64:f2:60:8a:3c:da:95:4b:c5:30:51:da:e5:f0:7d:1a: ed:13:fb:0f:b9:50:ca:e1:9f:94:b5:19:38:14:48:bd:e5:73: b6:b7:df:52:88:85:fa:ff:05:84:2f:f9:09:6a:0c:5b:82:87: 08:d8:83:f3:70:57:7e:31:3f:e0:54:2f:82:af:38:63:b7:a5: 95:3f:37:48:68:80:bf:4e:9f:27:96:ca:a9:f9:c9:9d:39:89: c0:64:bc:8e:67:e9:65:24:95:23:32:5d:3f:55:41:ee:70:07: f4:0a:56:4a:95:f1:5a:c1:ef:ff:63:b4:ec:27:a5:ea:96:6a: 22:1e:ac:3f:2f:0d:06:01:39:46:dd:64:89:10:58:97:99:47: 7a:c9:8f:81:67:6c:13:79:7b:1a:f7:e5:c6:f0:f6:2d:a4:52: 6b:41:b7:a1:54:cf:61:3e:97:0b:19:77:e0:93:04:8b:a8:8e: ec:04:05:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUME25fuJ+mRDHAolFPWIs4K8ZNPkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZG OURERTNERDAeFw0yNjAxMjQxODQ3MDBaFw0yNjAxMjcyMjQxMDBaMDMxMTAvBgNV BAMTKEYzM0JGODVGRURGODEwRDQxNzMzOUMyMUM3MDdERkRFM0M5RUY0ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqcq7IS1lcPmM2W3L3get7XrA+ yHcpKQ+7N/QVMsvuHqMYyJ83sovCn7hEH+Kyox62iglZHte6QLkXeuDwIoWTaT6t DiKCxw257JpCgxfDbGk28dB6jv9OU51Q4uY9wP8XgMUlTA32bEyVSFoWbAr98jUE eS/81ZCcjMN+4Nije+VRR8eJtOjroIXCWZW/jGhqbI3qqPZz6VN9F1CnqbdUL98t YR3EYxEvRGVyk096CKfJLpA/xMAKhzwtdTjdfhyJUFtOEqsn07yRIixJ18yZYtdC GKbrew2WNbQSG7qh5Pz70v+SC/WgpIHWSzleQYHkKMxzRRoAXWnkTyVAC0XhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8zv4X+34ENQXM5whxwff3jye9IYwHwYDVR0j BBgwFoAUQBqlavWZzKLNcaaE/89T//nd490wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWM3OWZiZS00NzkwLTQ2YmUtYjliMi0wMzU5YjFhMThlMzMvMC80MDFBQTU2QUY1 OTlDQ0EyQ0Q3MUE2ODRGRkNGNTNGRkY5RERFM0RELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZGOURE RTNERC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGFjNzlmYmUtNDc5MC00NmJlLWI5 YjItMDM1OWIxYTE4ZTMzLzAvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUz RkZGOURERTNERC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABbHhqU6c94rIogLQrWzp4Yf8fieD9eThzMe gtvWCV9yjBNWfTlNQpYFNWRFM8eTyME9/HWhX4jddMtecPmyvKezqXUeJjnwDT6W ZPJgijzalUvFMFHa5fB9Gu0T+w+5UMrhn5S1GTgUSL3lc7a331KIhfr/BYQv+Qlq DFuChwjYg/NwV34xP+BUL4KvOGO3pZU/N0hogL9OnyeWyqn5yZ05icBkvI5n6WUk lSMyXT9VQe5wB/QKVkqV8VrB7/9jtOwnpeqWaiIerD8vDQYBOUbdZIkQWJeZR3rJ j4FnbBN5exr35cbw9i2kUmtBt6FUz2E+lwsZd+CTBIuojuwEBdY= -----END CERTIFICATE-----Generated at Sun Jan 25 18:28:18 2026 by rpki-client