This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: Ygw0pfCdor5QGDFmCfyblw6BBHWPEFQWAccn6Aunr1Y= Subject key identifier: A6:B3:88:A0:87:E7:C2:9E:8B:F3:31:14:06:B4:67:EC:5E:4B:67:AC Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 7099C249EF98CD2476A0915A86907170C3E2FB84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 014F Signing time: Sun 25 Jan 2026 01:31:59 +0000 Manifest this update: Sun 25 Jan 2026 01:26:59 +0000 Manifest next update: Wed 28 Jan 2026 08:07:59 +0000 Files and hashes: 1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xTPoIlaNmn7dCA4oz4xbGajx7u9U25QUsQJawDHmNA8=) 2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: xROts0QoX3VJoEFRT3np6W5qUQ56ozius6kIaYdD/v4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 08:07:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:99:c2:49:ef:98:cd:24:76:a0:91:5a:86:90:71:70:c3:e2:fb:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Jan 25 01:26:59 2026 GMT Not After : Jan 28 08:07:59 2026 GMT Subject: CN=A6B388A087E7C29E8BF3311406B467EC5E4B67AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:56:1d:d0:aa:6f:f1:99:25:54:99:38:ea:a6: e6:38:9d:9f:bd:b1:9d:0a:c4:09:78:df:03:c6:91: 3c:ac:b5:47:08:f4:d2:f4:7d:28:66:e2:31:16:f6: fb:39:45:f9:84:2e:39:b3:e5:0c:31:ae:14:c8:31: 55:b8:94:03:e2:ab:b9:b3:08:0a:13:86:4f:f0:37: 61:54:40:41:10:8f:d2:79:67:46:28:62:22:c2:1d: 7a:29:c8:94:b0:96:2b:05:34:19:e1:29:90:97:6b: 20:76:03:c2:7f:77:fe:71:45:11:32:7a:f9:0c:37: 6e:e3:34:58:4c:df:bf:34:d3:03:a6:0a:dd:89:d9: 93:87:86:13:8c:ed:13:ab:5f:8e:37:92:3b:26:5f: 9a:23:bd:a9:bf:49:65:3a:0d:a1:ef:c9:f6:46:fe: 7a:72:35:1c:03:38:36:93:53:d1:87:d4:08:4c:33: c3:ba:76:e4:45:f6:2a:31:83:f1:80:44:74:b7:23: 29:9d:ef:bf:3c:26:05:aa:70:dd:88:7f:49:99:dc: 9d:0f:76:77:c1:c0:64:90:32:e2:9e:c4:e2:9a:0c: 8f:28:3a:1f:b6:cf:0a:30:35:4c:60:e2:31:9e:e4: 05:84:b1:37:b6:eb:f9:26:33:b9:05:ef:fc:5a:a3: 3c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B3:88:A0:87:E7:C2:9E:8B:F3:31:14:06:B4:67:EC:5E:4B:67:AC X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:46:05:ea:d3:b5:ff:c0:ed:b6:5f:77:56:40:53:7e:7e:3a: 06:41:06:62:df:0a:8e:77:ae:b5:52:af:b3:aa:bd:30:1f:fc: c4:ec:e9:53:63:23:55:19:36:eb:3b:26:85:84:de:b8:36:4d: 33:f6:fb:38:76:db:ef:78:c4:8d:29:bf:f3:fe:33:69:83:4e: 41:9e:91:d6:49:ec:e4:61:2a:9d:49:d0:cd:0e:94:8e:4d:35: a0:30:1e:66:e8:91:93:7c:34:50:35:af:64:86:94:55:f6:a5: e1:7e:85:96:20:2e:52:23:fd:b8:db:ba:c9:e8:d8:a8:54:50: 3d:cd:48:c4:2d:53:be:38:2a:b3:c7:50:1e:9e:69:9f:ac:8a: 91:83:c1:e1:e2:44:4c:46:ad:d9:b3:80:5a:fb:6a:90:74:c9: 1f:8f:2a:26:b7:c0:40:52:91:a9:ac:72:94:ec:9d:cd:48:94: 28:c6:39:56:1f:48:ee:27:72:bf:13:e2:83:6a:6f:ac:c4:e0: 4b:d1:68:a5:1b:82:a0:b7:eb:be:98:5c:2b:d1:d8:00:29:06: c4:38:67:6e:e6:38:05:42:aa:7a:c0:ff:a8:c9:33:5b:d1:67: 68:9c:f6:0a:8d:05:a6:91:91:50:82:9e:aa:16:61:46:b5:29: 28:db:4d:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcJnCSe+YzSR2oJFahpBxcMPi+4QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNjAxMjUwMTI2NTlaFw0yNjAxMjgwODA3NTlaMDMxMTAvBgNV BAMTKEE2QjM4OEEwODdFN0MyOUU4QkYzMzExNDA2QjQ2N0VDNUU0QjY3QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxVh3Qqm/xmSVUmTjqpuY4nZ+9 sZ0KxAl43wPGkTystUcI9NL0fShm4jEW9vs5RfmELjmz5QwxrhTIMVW4lAPiq7mz CAoThk/wN2FUQEEQj9J5Z0YoYiLCHXopyJSwlisFNBnhKZCXayB2A8J/d/5xRREy evkMN27jNFhM37800wOmCt2J2ZOHhhOM7ROrX443kjsmX5ojvam/SWU6DaHvyfZG /npyNRwDODaTU9GH1AhMM8O6duRF9ioxg/GARHS3Iymd7788JgWqcN2If0mZ3J0P dnfBwGSQMuKexOKaDI8oOh+2zwowNUxg4jGe5AWEsTe26/kmM7kF7/xaozzbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUprOIoIfnwp6L8zEUBrRn7F5LZ6wwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEFGBerTtf/A7bZfd1ZAU35+OgZBBmLfCo53 rrVSr7OqvTAf/MTs6VNjI1UZNus7JoWE3rg2TTP2+zh22+94xI0pv/P+M2mDTkGe kdZJ7ORhKp1J0M0OlI5NNaAwHmbokZN8NFA1r2SGlFX2peF+hZYgLlIj/bjbusno 2KhUUD3NSMQtU744KrPHUB6eaZ+sipGDweHiRExGrdmzgFr7apB0yR+PKia3wEBS kamscpTsnc1IlCjGOVYfSO4ncr8T4oNqb6zE4EvRaKUbgqC3676YXCvR2AApBsQ4 Z27mOAVCqnrA/6jJM1vRZ2ic9gqNBaaRkVCCnqoWYUa1KSjbTeA= -----END CERTIFICATE-----Generated at Mon Jan 26 02:17:03 2026 by rpki-client