This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft File: FA86E23853549D2EF1D9F9C9222147A550E36A38.mft (raw, json) Hash identifier: BMHGXqJQEA1H7ospdU3ffvblX1yESdfMiRamjqTw/nw= Subject key identifier: B2:F0:DB:33:14:AA:99:6C:22:74:A3:16:2D:99:9A:44:8D:ED:98:66 Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: 2E14B7DD636C855F6DAC91DA2AD45B4AA9878F6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft Manifest number: 020C Signing time: Sun 25 Jan 2026 19:30:46 +0000 Manifest this update: Sun 25 Jan 2026 19:25:46 +0000 Manifest next update: Thu 29 Jan 2026 03:30:46 +0000 Files and hashes: 1: FA86E23853549D2EF1D9F9C9222147A550E36A38.crl (hash: q4EzhdjoDyDFugu2oWEL2sMhDKPv1UZCk4OU+DrzlnE=) 2: 3130332e35352e32392e302f32342d3234203d3e20313530343837.roa (hash: Zcui17ZIB7y9MI9lypagYjRYe4mnYqSwkXUNcZtsFwo=) 3: 3130332e35352e32382e302f32342d3234203d3e20313530343837.roa (hash: s4D3k54ePgFL3DJuO1+sPM7ighm+hIZ0dRBFdpACJIQ=) 4: 3130332e35352e32382e302f32332d3234203d3e20313530343837.roa (hash: 8iSBjCuogDhcUBYZIPXuvYllDkYyp+uiEvzE8S7/ER4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:14:b7:dd:63:6c:85:5f:6d:ac:91:da:2a:d4:5b:4a:a9:87:8f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: Jan 25 19:25:46 2026 GMT Not After : Jan 29 03:30:46 2026 GMT Subject: CN=B2F0DB3314AA996C2274A3162D999A448DED9866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d1:2a:d4:d6:05:0b:00:4b:04:c4:b7:f8:69: b6:67:e3:e0:28:20:07:ad:d2:18:fc:fa:ff:fa:46: a6:2b:c8:0e:63:08:d5:fc:bd:e8:a0:b6:2a:1c:aa: fa:32:57:43:7c:9a:c1:58:7f:fc:e6:c9:c1:76:de: 76:e2:36:96:69:9c:64:3f:f8:88:d1:61:d3:ef:6d: 55:37:6c:2a:84:51:df:a1:80:83:da:f6:57:2e:d6: 46:b7:4b:d0:95:d5:12:05:7f:f3:4c:c9:75:3c:5d: 33:a8:47:5b:00:77:07:a1:e8:15:3e:14:ab:af:af: 07:94:9f:42:b5:18:94:0c:f1:95:a9:78:19:00:9c: 24:82:1d:fa:ad:77:97:a8:73:fa:be:7b:a5:63:91: 5e:23:89:15:e1:10:5e:15:24:91:36:91:c7:ea:42: bd:56:c4:99:54:65:c1:8b:cc:6e:c5:a9:c6:60:91: 91:aa:c1:02:60:2d:7c:70:a4:2c:56:3f:0c:d9:3b: 57:b8:82:bb:a9:40:60:ce:a1:d4:a7:8e:ad:7e:ae: cd:d3:57:5a:28:97:ad:ff:78:dd:76:fe:bf:2c:46: 81:bd:82:51:fe:d8:aa:64:48:f6:06:e2:7b:69:dc: 30:ba:a1:eb:a0:c6:33:1c:8c:95:a6:76:0a:9c:92: 48:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F0:DB:33:14:AA:99:6C:22:74:A3:16:2D:99:9A:44:8D:ED:98:66 X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:c7:cf:97:29:db:a3:43:d1:6c:06:80:77:3d:34:72:45:fc: b5:52:cf:67:95:31:85:90:21:85:2a:b1:ee:f9:83:b7:e6:30: fe:31:f6:c7:76:6a:2b:d5:c8:ce:59:48:6b:ca:7f:e6:1c:99: 48:0d:12:7b:00:ba:dc:57:83:bb:b4:21:c9:5e:94:9b:d0:1b: d8:96:b1:10:36:49:89:c7:c1:d0:c5:4e:ca:8d:84:90:f8:d9: 5a:3b:41:95:8c:9e:eb:9b:18:3c:95:cf:9e:d6:e6:b8:b6:bb: 3a:d6:7d:27:33:eb:57:11:a1:91:4c:ef:63:ef:10:80:42:22: ba:a5:c3:a2:0a:77:16:cb:b1:59:62:a1:34:e2:30:3e:14:f7: f9:bf:bc:d4:f1:2b:ad:e5:db:cf:19:7a:48:0e:e6:0c:0d:51: 56:57:36:92:f4:2a:7c:f2:9d:44:25:4f:91:80:b4:6d:ee:b1: fa:de:0f:43:b0:af:f5:23:72:3b:88:66:cf:df:30:f5:5f:9e: 95:2e:9f:5f:96:c0:2f:f0:b0:6a:2b:bd:de:93:9f:37:fe:f2: f4:d1:32:3e:d2:53:22:e1:1b:46:66:86:50:66:9c:64:54:01: 3a:b5:b0:68:e5:95:b5:18:04:67:be:22:cc:4b:fa:9a:13:3b: 04:77:06:8f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULhS33WNshV9trJHaKtRbSqmHj20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yNjAxMjUxOTI1NDZaFw0yNjAxMjkwMzMwNDZaMDMxMTAvBgNV BAMTKEIyRjBEQjMzMTRBQTk5NkMyMjc0QTMxNjJEOTk5QTQ0OERFRDk4NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+0SrU1gULAEsExLf4abZn4+Ao IAet0hj8+v/6RqYryA5jCNX8veigtiocqvoyV0N8msFYf/zmycF23nbiNpZpnGQ/ +IjRYdPvbVU3bCqEUd+hgIPa9lcu1ka3S9CV1RIFf/NMyXU8XTOoR1sAdweh6BU+ FKuvrweUn0K1GJQM8ZWpeBkAnCSCHfqtd5eoc/q+e6VjkV4jiRXhEF4VJJE2kcfq Qr1WxJlUZcGLzG7FqcZgkZGqwQJgLXxwpCxWPwzZO1e4grupQGDOodSnjq1+rs3T V1ool63/eN12/r8sRoG9glH+2KpkSPYG4ntp3DC6oeugxjMcjJWmdgqckkh7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsvDbMxSqmWwidKMWLZmaRI3tmGYwHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTUwNDc5M2MtYzIwOS00NjlhLThl M2MtZWIzZjVhODM4NjNmLzAvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3 QTU1MEUzNkEzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACTHz5cp26ND0WwGgHc9NHJF/LVSz2eVMYWQ IYUqse75g7fmMP4x9sd2aivVyM5ZSGvKf+YcmUgNEnsAutxXg7u0IclelJvQG9iW sRA2SYnHwdDFTsqNhJD42Vo7QZWMnuubGDyVz57W5ri2uzrWfScz61cRoZFM72Pv EIBCIrqlw6IKdxbLsVlioTTiMD4U9/m/vNTxK63l288ZekgO5gwNUVZXNpL0Knzy nUQlT5GAtG3usfreD0Owr/UjcjuIZs/fMPVfnpUun1+WwC/wsGorvd6Tnzf+8vTR Mj7SUyLhG0ZmhlBmnGRUATq1sGjllbUYBGe+IsxL+poTOwR3Bo8= -----END CERTIFICATE-----Generated at Mon Jan 26 03:49:05 2026 by rpki-client