This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: M2i5ZqXTkzSglNfUqxU8sW3bMmptUtlTaxo28JcijRE= Subject key identifier: DA:7D:81:CF:09:30:E1:47:BD:23:AC:B9:27:AA:9B:3C:53:33:EF:D6 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 1448686FC4AB076335CC11CCE395FB3386891D4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: BF Signing time: Sun 25 Jan 2026 12:50:41 +0000 Manifest this update: Sun 25 Jan 2026 12:45:41 +0000 Manifest next update: Wed 28 Jan 2026 16:38:41 +0000 Files and hashes: 1: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: bd1m7qy7s+or5CYM1h2i0iynehgYF0tmm4k8M6lTNqk=) 2: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: E4Gvpo5D/NeUbbz+zUDpV78niTppp2APH+i1gYLD2PM=) 3: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: /bOtG6Hq4cCxQBrZ1Nbmvs+Hrm8cpxmM7Q2j13q5aYY=) 4: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: E7LmVcTtrOc0QLca3OKgAjrGPUq24WcKvpibpJhqwMo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:48:68:6f:c4:ab:07:63:35:cc:11:cc:e3:95:fb:33:86:89:1d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Jan 25 12:45:41 2026 GMT Not After : Jan 28 16:38:41 2026 GMT Subject: CN=DA7D81CF0930E147BD23ACB927AA9B3C5333EFD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:79:0d:fb:98:1a:37:ee:f0:21:ba:3c:7d:d4: e4:02:0c:52:fa:e2:da:ef:6f:b9:cc:e0:23:3d:10: 4a:47:fd:0a:55:47:8b:16:ac:43:e6:68:73:54:28: b4:9c:4f:24:65:e0:7f:a6:b3:a4:0d:28:0b:2e:e0: 53:71:35:21:98:cb:79:dd:82:fa:c4:a6:6b:4d:d6: 48:e3:e5:9d:7c:6d:c2:87:84:aa:71:1e:bc:3d:4f: 53:6e:88:91:d3:dd:5c:3a:10:3c:3c:25:fb:af:ab: a9:10:15:00:a0:d1:f0:70:03:19:e4:87:56:45:89: 85:84:d2:c1:62:2a:ac:55:9b:09:06:12:49:41:72: 70:36:af:d6:dc:2f:fb:6f:f1:d4:dc:df:78:8c:01: de:2f:8b:6b:a0:30:85:06:9c:cd:89:e3:54:36:61: ad:5b:0a:33:95:30:9a:09:57:b4:4f:63:4a:11:58: 0f:6f:0e:96:bd:55:24:ce:c1:2e:9d:66:1a:73:10: 5a:ba:85:47:ec:76:66:c3:58:e7:24:e6:90:fc:88: 4e:8b:9c:14:3a:95:83:fe:ed:91:45:f4:26:f1:d1: e1:a6:c8:a9:e0:e4:e4:d7:9e:d9:15:34:96:e9:54: e0:41:fa:e1:8a:dd:00:84:23:51:49:7d:59:79:63: ab:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:7D:81:CF:09:30:E1:47:BD:23:AC:B9:27:AA:9B:3C:53:33:EF:D6 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:5a:85:df:f8:c6:b3:0d:47:44:04:8d:bf:97:e5:55:2d:a6: 61:5e:6e:ba:d1:be:ff:5d:73:d2:cc:1b:c6:19:4b:14:2e:b0: bd:66:e1:03:b4:f4:0e:b5:6a:6d:6c:d6:ca:56:70:a6:89:dc: f9:72:4c:de:05:8c:a1:32:8b:29:f5:87:2c:e1:59:16:01:cb: cf:04:d1:61:55:b9:19:f2:6c:3b:91:7e:9b:4e:21:8f:3d:50: 22:03:bc:2c:46:78:a9:e2:38:14:26:49:28:67:a8:dc:02:5a: be:fa:6a:d4:18:e9:09:09:7d:5a:3e:38:db:0d:06:fd:9a:18: fa:66:6d:1d:87:ec:88:5c:6a:6d:d0:52:9e:1a:4f:c9:2e:63: 06:0e:cd:b2:54:2a:2f:50:d7:67:ec:52:9e:85:83:22:89:a7: bd:41:53:b9:46:da:8c:78:a6:13:7b:87:0d:18:bb:6e:17:c6: 68:8e:ee:a4:f3:6e:f8:8f:29:ee:ec:84:5c:4a:e9:0c:f7:17: 5a:a0:2b:d8:4d:df:46:62:68:51:f8:9b:2a:62:0f:d3:3c:7c: 46:66:4c:b4:45:2b:0a:80:49:6e:1f:5d:81:d4:a8:bf:dd:48: aa:69:1c:68:47:07:d1:e2:00:5a:0b:9d:f4:23:fd:ef:1f:7d: 58:f7:43:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFEhob8SrB2M1zBHM45X7M4aJHU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNjAxMjUxMjQ1NDFaFw0yNjAxMjgxNjM4NDFaMDMxMTAvBgNV BAMTKERBN0Q4MUNGMDkzMEUxNDdCRDIzQUNCOTI3QUE5QjNDNTMzM0VGRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWeQ37mBo37vAhujx91OQCDFL6 4trvb7nM4CM9EEpH/QpVR4sWrEPmaHNUKLScTyRl4H+ms6QNKAsu4FNxNSGYy3nd gvrEpmtN1kjj5Z18bcKHhKpxHrw9T1NuiJHT3Vw6EDw8Jfuvq6kQFQCg0fBwAxnk h1ZFiYWE0sFiKqxVmwkGEklBcnA2r9bcL/tv8dTc33iMAd4vi2ugMIUGnM2J41Q2 Ya1bCjOVMJoJV7RPY0oRWA9vDpa9VSTOwS6dZhpzEFq6hUfsdmbDWOck5pD8iE6L nBQ6lYP+7ZFF9Cbx0eGmyKng5OTXntkVNJbpVOBB+uGK3QCEI1FJfVl5Y6vTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2n2Bzwkw4Ue9I6y5J6qbPFMz79YwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJFahd/4xrMNR0QEjb+X5VUtpmFebrrRvv9d c9LMG8YZSxQusL1m4QO09A61am1s1spWcKaJ3PlyTN4FjKEyiyn1hyzhWRYBy88E 0WFVuRnybDuRfptOIY89UCIDvCxGeKniOBQmSShnqNwCWr76atQY6QkJfVo+ONsN Bv2aGPpmbR2H7Ihcam3QUp4aT8kuYwYOzbJUKi9Q12fsUp6FgyKJp71BU7lG2ox4 phN7hw0Yu24XxmiO7qTzbviPKe7shFxK6Qz3F1qgK9hN30ZiaFH4mypiD9M8fEZm TLRFKwqASW4fXYHUqL/dSKppHGhHB9HiAFoLnfQj/e8ffVj3Qxg= -----END CERTIFICATE-----Generated at Sun Jan 25 19:00:33 2026 by rpki-client