This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft File: 16889A9053AE7EB169CF822E9EE670A5C618F97E.mft (raw, json) Hash identifier: JK4fu44k4Bfsrys+OM60ixgZPz8PEnoudEwqv9A1mbk= Subject key identifier: A4:0B:43:72:D7:E1:35:FC:13:3A:9D:26:2B:22:74:0C:A7:B6:D0:21 Authority key identifier: 16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E Certificate issuer: /CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Certificate serial: 3927A07E6E3901E07AD38063E49A02FAB67CA096 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft Manifest number: 0167 Signing time: Fri 23 Jan 2026 07:21:17 +0000 Manifest this update: Fri 23 Jan 2026 07:16:17 +0000 Manifest next update: Mon 26 Jan 2026 18:38:17 +0000 Files and hashes: 1: 16889A9053AE7EB169CF822E9EE670A5C618F97E.crl (hash: fBbpLqxFu6sRSNMQgbVIHGMaTGenfRnEx3NbFNmkibw=) 2: 3130332e36372e38302e302f32342d3234203d3e20313532303031.roa (hash: u3jgsDSo3O7gCdt5jEOR1X0Y8olBMi4/W5ZYcUsryek=) 3: 3130332e36372e38302e302f32332d3233203d3e20313532303031.roa (hash: hdkprfHwU4RXLgXXOBxZ9L/4dynqLbbepC7imEy91UI=) 4: 3130332e36372e38312e302f32342d3234203d3e20313532303031.roa (hash: q8j/X9Ua/0mbnku+j9y9HsFIzPIhDRyObBOKzKCiRT8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 26 Jan 2026 18:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:27:a0:7e:6e:39:01:e0:7a:d3:80:63:e4:9a:02:fa:b6:7c:a0:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=16889A9053AE7EB169CF822E9EE670A5C618F97E Validity Not Before: Jan 23 07:16:17 2026 GMT Not After : Jan 26 18:38:17 2026 GMT Subject: CN=A40B4372D7E135FC133A9D262B22740CA7B6D021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f7:67:10:8a:8f:f8:ac:a8:a6:40:0d:ab:fe: f3:2c:95:29:8c:29:0e:a2:1d:76:5f:92:aa:dd:fa: 3c:c5:29:54:e1:89:9c:f3:81:62:64:8e:e0:e5:68: cd:95:cb:17:40:0b:77:37:2d:bc:02:3f:d3:a6:62: c7:7b:e8:e6:c3:28:b8:10:89:4b:2a:1e:5c:c2:1f: f0:1d:6d:d8:5b:e7:dd:5b:30:db:65:c4:e9:47:ef: e4:aa:ba:76:db:97:39:dc:38:6c:28:49:4c:ec:39: 6f:f2:f3:10:29:fc:5d:ca:0e:99:af:78:17:e1:3a: ab:f1:2e:2c:36:c9:61:fe:46:d5:d9:37:d6:d2:a2: bb:39:35:06:bf:c5:09:19:5b:d2:0f:bd:40:49:fc: d8:6d:d8:93:84:c1:14:92:05:ff:43:74:db:58:5b: ff:89:94:6e:fc:0d:24:c5:95:c8:bc:a3:80:80:a3: 0d:2a:7d:6c:10:5c:28:54:99:24:5e:8a:92:36:0e: d2:2f:01:84:f7:59:bf:b7:03:ae:e8:68:45:7d:24: 2b:28:5c:e6:46:96:b7:2b:d6:93:f5:6e:82:1c:2a: d2:f0:65:15:e8:de:1a:91:32:9c:5b:dd:ff:d4:dc: 50:9b:a1:a4:fd:c1:6e:7a:c7:f9:3c:af:1a:45:f8: ea:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0B:43:72:D7:E1:35:FC:13:3A:9D:26:2B:22:74:0C:A7:B6:D0:21 X509v3 Authority Key Identifier: keyid:16:88:9A:90:53:AE:7E:B1:69:CF:82:2E:9E:E6:70:A5:C6:18:F9:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/16889A9053AE7EB169CF822E9EE670A5C618F97E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de3f2e9b-1068-4fa9-ba1d-59d071a412a2/0/16889A9053AE7EB169CF822E9EE670A5C618F97E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:a6:5a:48:36:ff:b7:f3:22:75:f6:a5:1d:25:d2:8d:46:d4: c6:d2:9b:9f:16:60:ba:6a:7e:d3:f7:49:aa:62:08:07:89:87: db:47:ba:cf:df:78:8a:cb:af:f7:05:6a:cf:25:73:ad:c0:b4: d3:48:e1:4c:bb:17:47:56:6e:1a:b2:a8:f9:86:4a:73:cb:e4: 6d:8e:22:99:28:44:91:18:70:ac:8e:78:a5:d4:df:66:61:87: 0a:37:36:3a:b9:27:bf:60:e0:f9:35:1b:e5:d1:cb:7a:24:53: 62:ec:61:4d:12:0b:46:fb:93:0b:74:09:13:96:65:bb:78:b0: fa:49:05:de:63:be:48:e3:ff:a3:e3:d0:d5:bb:e9:9b:10:a1: 7e:ea:17:b3:d1:d5:64:d6:1f:8e:47:5d:01:34:43:1c:46:a8: 26:0d:32:8c:84:33:77:83:fb:c1:1c:9e:91:d0:94:7b:46:04: be:78:68:d5:dd:05:44:f7:b5:26:29:50:fe:a2:c7:73:f3:0f: 78:ec:9c:e9:ec:5d:62:da:3b:92:48:17:b3:d2:c4:53:1b:82: 31:33:22:b4:f0:52:17:87:29:d1:de:bb:32:99:f5:79:f9:b3: 03:7f:55:77:9c:6d:0c:ca:c5:78:2e:2b:8a:35:78:15:34:0b: 94:bb:4b:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOSegfm45AeB604Bj5JoC+rZ8oJYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVD NjE4Rjk3RTAeFw0yNjAxMjMwNzE2MTdaFw0yNjAxMjYxODM4MTdaMDMxMTAvBgNV BAMTKEE0MEI0MzcyRDdFMTM1RkMxMzNBOUQyNjJCMjI3NDBDQTdCNkQwMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm92cQio/4rKimQA2r/vMslSmM KQ6iHXZfkqrd+jzFKVThiZzzgWJkjuDlaM2VyxdAC3c3LbwCP9OmYsd76ObDKLgQ iUsqHlzCH/Adbdhb591bMNtlxOlH7+SqunbblzncOGwoSUzsOW/y8xAp/F3KDpmv eBfhOqvxLiw2yWH+RtXZN9bSors5NQa/xQkZW9IPvUBJ/Nht2JOEwRSSBf9DdNtY W/+JlG78DSTFlci8o4CAow0qfWwQXChUmSReipI2DtIvAYT3Wb+3A67oaEV9JCso XOZGlrcr1pP1boIcKtLwZRXo3hqRMpxb3f/U3FCboaT9wW56x/k8rxpF+OoFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpAtDctfhNfwTOp0mKyJ0DKe20CEwHwYDVR0j BBgwFoAUFoiakFOufrFpz4IunuZwpcYY+X4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTNmMmU5Yi0xMDY4LTRmYTktYmExZC01OWQwNzFhNDEyYTIvMC8xNjg4OUE5MDUz QUU3RUIxNjlDRjgyMkU5RUU2NzBBNUM2MThGOTdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcwQTVDNjE4 Rjk3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGUzZjJlOWItMTA2OC00ZmE5LWJh MWQtNTlkMDcxYTQxMmEyLzAvMTY4ODlBOTA1M0FFN0VCMTY5Q0Y4MjJFOUVFNjcw QTVDNjE4Rjk3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGGmWkg2/7fzInX2pR0l0o1G1MbSm58WYLpq ftP3SapiCAeJh9tHus/feIrLr/cFas8lc63AtNNI4Uy7F0dWbhqyqPmGSnPL5G2O IpkoRJEYcKyOeKXU32Zhhwo3Njq5J79g4Pk1G+XRy3okU2LsYU0SC0b7kwt0CROW Zbt4sPpJBd5jvkjj/6Pj0NW76ZsQoX7qF7PR1WTWH45HXQE0QxxGqCYNMoyEM3eD +8EcnpHQlHtGBL54aNXdBUT3tSYpUP6ix3PzD3jsnOnsXWLaO5JIF7PSxFMbgjEz IrTwUheHKdHeuzKZ9Xn5swN/VXecbQzKxXguK4o1eBU0C5S7S6A= -----END CERTIFICATE-----Generated at Sun Jan 25 20:32:46 2026 by rpki-client