This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft File: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft (raw, json) Hash identifier: Dgk84kSK2YbCI+mt5QjLW+hfZnm/vVE4sLSNl3lMzHU= Subject key identifier: F6:20:EA:5F:0F:22:81:79:24:0B:22:32:F8:CC:49:75:13:B2:92:CC Authority key identifier: 2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 Certificate issuer: /CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Certificate serial: 72A8BA66CBDA7C14CDBE998E4D20D2DB8056248D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft Manifest number: 0518 Signing time: Fri 23 Jan 2026 23:51:29 +0000 Manifest this update: Fri 23 Jan 2026 23:46:29 +0000 Manifest next update: Tue 27 Jan 2026 00:20:29 +0000 Files and hashes: 1: 2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl (hash: RuqXtiOxbUjKX5pUVECApKRmxsxfLtMDlVnzWDoZrec=) 2: 323430343a613463303a666163653a3a2f34382d3438203d3e20313338383232.roa (hash: Ymw3mKUJLuc3UElUh0Nq2GfPGIEzD27CcOXD4JJbHT8=) 3: 323430343a613463303a3a2f33322d3438203d3e20313338383232.roa (hash: jd8RzIV4pb6xOSx8M2iJByCvMa7m6mddhFLRaUaFvoI=) 4: 3130332e3133372e33382e302f32332d3234203d3e20313338383232.roa (hash: mA/rP0hr8/EieVP2HKsGbfcjdkP2Kd8or4Jc67/Y7I0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 00:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a8:ba:66:cb:da:7c:14:cd:be:99:8e:4d:20:d2:db:80:56:24:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4 Validity Not Before: Jan 23 23:46:29 2026 GMT Not After : Jan 27 00:20:29 2026 GMT Subject: CN=F620EA5F0F228179240B2232F8CC497513B292CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3b:51:a8:b6:0a:ea:7e:fe:15:0d:2a:d5:b9: 84:2c:9a:f0:b9:e8:47:0c:e1:58:30:51:35:26:11: 85:81:07:4d:88:f7:25:29:e2:ee:14:97:cf:bc:bc: 3b:d9:09:30:3a:eb:ba:fa:58:d8:d1:85:4b:b5:a9: f8:37:4d:64:aa:ef:4c:2d:d1:98:15:92:07:98:3f: c7:76:44:aa:26:c7:9c:7c:51:c6:b0:53:eb:97:d1: 70:e1:f1:03:97:76:6c:18:12:95:5d:fc:40:e8:29: 0e:61:77:78:1e:26:b8:02:d7:1f:0c:05:e6:19:3c: 58:57:fe:86:68:44:fe:c2:ed:60:87:2d:30:1c:14: f8:3b:18:d0:fe:d2:3f:85:9d:6f:7f:a1:30:55:73: 73:bf:82:c3:52:7c:a7:87:bc:35:6e:4f:be:8b:5a: 60:70:5a:b1:31:1c:a9:73:92:10:1d:2c:77:3b:00: 0e:b9:b9:cb:80:bf:0d:a1:13:65:7f:79:26:17:af: 47:b4:65:fe:3e:3a:cc:97:bd:3c:04:8c:2f:98:85: e7:2c:f3:c6:e3:87:d9:9d:25:b0:5a:9b:41:31:37: 00:9f:15:5d:74:cb:57:cf:73:cd:3f:71:3d:1b:91: 49:c5:0b:ad:36:c0:8a:7c:9e:b6:51:b1:ba:5d:34: 9d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:20:EA:5F:0F:22:81:79:24:0B:22:32:F8:CC:49:75:13:B2:92:CC X509v3 Authority Key Identifier: keyid:2D:EC:7D:B2:A5:C9:62:CF:A5:3D:57:8D:EA:7D:C8:43:83:A6:33:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e3bbf1da-e317-48ef-ad6d-fe8a8bf08400/0/2DEC7DB2A5C962CFA53D578DEA7DC84383A633D4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:88:4a:ea:e9:35:d9:d8:2a:b5:90:9a:65:91:7e:32:a0:10: 2f:65:a4:2b:e0:40:de:40:fd:52:1e:b1:7f:5a:66:de:9d:b4: 88:88:e5:47:05:ea:65:45:03:c4:99:74:3b:20:f4:20:41:a4: 6e:d9:78:4a:3c:69:72:0a:ec:fb:76:71:b2:b1:64:e2:36:1c: e8:21:fd:dc:64:ff:fe:5f:bc:e1:a9:be:24:25:2c:0d:ae:2b: a9:2b:3f:f8:62:12:0a:29:9b:f0:af:2b:35:47:98:5b:25:f7: 04:51:c6:ef:36:bf:91:97:d7:00:94:01:5c:10:34:24:dd:c9: e8:ad:ca:eb:d5:68:c4:53:cc:ec:29:17:fc:21:03:61:e8:05: 2c:4b:8c:d6:4a:d1:11:e0:86:93:8f:4b:a5:f3:f9:c7:eb:6b: 84:aa:78:88:1e:55:f7:42:90:f1:bf:0b:7e:13:85:cd:ae:ba: dd:01:30:7b:13:7e:79:41:d5:4c:c5:9d:fe:62:8f:20:a0:43: ef:74:76:d5:aa:95:18:76:8c:9d:60:45:27:c1:97:de:27:6f: 9d:88:27:f8:a8:9f:27:e4:ed:da:5a:1f:95:56:ce:f5:6b:88: 2f:6c:fa:1b:6e:8c:fe:ba:43:a3:62:e7:e4:75:b7:5a:60:71: e9:03:fc:59 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcqi6ZsvafBTNvpmOTSDS24BWJI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4 M0E2MzNENDAeFw0yNjAxMjMyMzQ2MjlaFw0yNjAxMjcwMDIwMjlaMDMxMTAvBgNV BAMTKEY2MjBFQTVGMEYyMjgxNzkyNDBCMjIzMkY4Q0M0OTc1MTNCMjkyQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwO1Gotgrqfv4VDSrVuYQsmvC5 6EcM4VgwUTUmEYWBB02I9yUp4u4Ul8+8vDvZCTA667r6WNjRhUu1qfg3TWSq70wt 0ZgVkgeYP8d2RKomx5x8UcawU+uX0XDh8QOXdmwYEpVd/EDoKQ5hd3geJrgC1x8M BeYZPFhX/oZoRP7C7WCHLTAcFPg7GND+0j+FnW9/oTBVc3O/gsNSfKeHvDVuT76L WmBwWrExHKlzkhAdLHc7AA65ucuAvw2hE2V/eSYXr0e0Zf4+OsyXvTwEjC+Yhecs 88bjh9mdJbBam0ExNwCfFV10y1fPc80/cT0bkUnFC602wIp8nrZRsbpdNJ0tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9iDqXw8igXkkCyIy+MxJdROykswwHwYDVR0j BBgwFoAULex9sqXJYs+lPVeN6n3IQ4OmM9QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l M2JiZjFkYS1lMzE3LTQ4ZWYtYWQ2ZC1mZThhOGJmMDg0MDAvMC8yREVDN0RCMkE1 Qzk2MkNGQTUzRDU3OERFQTdEQzg0MzgzQTYzM0Q0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4NDM4M0E2 MzNENC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTNiYmYxZGEtZTMxNy00OGVmLWFk NmQtZmU4YThiZjA4NDAwLzAvMkRFQzdEQjJBNUM5NjJDRkE1M0Q1NzhERUE3REM4 NDM4M0E2MzNENC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGOISurpNdnYKrWQmmWRfjKgEC9lpCvgQN5A /VIesX9aZt6dtIiI5UcF6mVFA8SZdDsg9CBBpG7ZeEo8aXIK7Pt2cbKxZOI2HOgh /dxk//5fvOGpviQlLA2uK6krP/hiEgopm/CvKzVHmFsl9wRRxu82v5GX1wCUAVwQ NCTdyeityuvVaMRTzOwpF/whA2HoBSxLjNZK0RHghpOPS6Xz+cfra4SqeIgeVfdC kPG/C34Thc2uut0BMHsTfnlB1UzFnf5ijyCgQ+90dtWqlRh2jJ1gRSfBl94nb52I J/ionyfk7dpaH5VWzvVriC9s+htujP66Q6Ni5+R1t1pgcekD/Fk= -----END CERTIFICATE-----Generated at Sun Jan 25 18:53:04 2026 by rpki-client