This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft File: 821049BBD22C335A50850F16AB159C0C6BCC28E5.mft (raw, json) Hash identifier: txkd+jawsHGzyVNwWtSMyyqeGrLx7W535b73KBQBmZU= Subject key identifier: 70:87:98:50:D5:6C:CD:59:94:4E:C9:B3:79:68:75:32:1A:D6:95:60 Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 073D610E774FDFC160DC44FEFBA53918C4B1DCA8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft Manifest number: 0279 Signing time: Sat 24 Jan 2026 16:41:47 +0000 Manifest this update: Sat 24 Jan 2026 16:36:47 +0000 Manifest next update: Wed 28 Jan 2026 01:26:47 +0000 Files and hashes: 1: 3130332e32312e39352e302f32342d3234203d3e203435323935.roa (hash: WHp6+633q2Em0ghmTjJeCMByUXIoDLeS8IvSNmEh0gE=) 2: 821049BBD22C335A50850F16AB159C0C6BCC28E5.crl (hash: 9/l2eI1pdjXbztM1Jvu13uNQ2g5sA6YE2T0q4ZNlTWQ=) 3: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (hash: KCUnGn0DyBychM59+lv18yYznYr1wdm5Tf5W0sYTxbE=) 4: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (hash: ndyvXGLmi+s4jvx/l0C4JrK1SIn52emjpfzG2w+2lsw=) 5: 3130332e32312e39332e302f32342d3234203d3e20313331373338.roa (hash: Hx5e9eX/0MDiWg+S8NREaCwOHPQ1Onm3jq45DAvThoc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 01:26:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3d:61:0e:77:4f:df:c1:60:dc:44:fe:fb:a5:39:18:c4:b1:dc:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Jan 24 16:36:47 2026 GMT Not After : Jan 28 01:26:47 2026 GMT Subject: CN=70879850D56CCD59944EC9B3796875321AD69560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1f:e9:76:08:4a:cc:db:c4:0e:1e:af:85:c6: e4:09:39:b9:81:c8:22:6f:e0:a7:d3:d4:a7:51:81: 95:99:e6:b6:67:e0:a4:af:95:c5:1d:4e:93:52:14: 41:6e:80:b0:72:11:9c:af:51:89:98:7c:5c:c9:dd: d0:5b:6c:4d:e8:7b:76:1f:80:d3:8a:ea:29:ef:71: 2c:87:a5:a1:22:06:5f:8d:c5:06:7d:f3:8d:59:5f: 53:af:af:91:78:fe:87:5e:27:89:6c:c5:3a:f9:6e: 47:96:6c:42:37:b9:bb:8d:0f:74:81:a2:d0:17:83: 25:c4:e9:84:ea:4c:16:1e:c2:96:27:0b:7a:6b:f0: fb:8c:ce:97:b8:89:b0:57:a9:0d:00:a0:b7:13:98: a8:ea:ce:ee:e5:30:ff:52:bd:af:d6:97:28:93:72: 8e:9d:cc:4d:6e:1b:68:27:91:32:70:cd:08:2a:c2: 4f:e4:d7:54:0e:7b:a5:a0:a4:74:2a:94:99:c3:a7: 55:61:90:12:b4:a2:84:c0:11:56:fc:44:26:3c:50: 4f:25:20:2b:ae:6d:71:39:88:0b:29:c5:61:dc:c9: 67:7e:bd:5d:8b:1a:bc:15:f0:44:6c:b7:81:65:89: 1e:68:2f:c6:0c:5d:75:30:ce:1c:51:58:37:71:da: 9a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:87:98:50:D5:6C:CD:59:94:4E:C9:B3:79:68:75:32:1A:D6:95:60 X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5f:47:29:20:e0:37:48:5d:3e:c1:6a:9f:64:4d:ea:69:7e: a5:e1:da:4c:b4:9d:84:98:6f:1a:8d:f7:00:5e:01:e8:89:53: 58:c9:66:19:ef:a3:a2:5b:36:a7:21:a8:2a:5a:33:75:2d:50: 66:1c:c7:39:95:1e:d6:47:af:7a:06:f7:08:14:42:71:22:62: 52:86:13:2f:02:fc:17:3a:0b:f0:86:9a:1d:29:c6:db:e1:3c: ab:9c:1e:2c:6b:41:75:3d:4d:27:cd:8c:72:ab:a3:d5:00:a3: 74:78:60:37:37:06:fc:00:10:44:70:c5:af:a6:05:26:91:00: e8:91:8a:ac:08:48:76:f2:c4:74:81:01:73:21:40:62:ee:d0: 13:2d:c5:38:e8:99:17:10:6b:ce:4f:f7:54:86:3f:17:58:91: 3c:d1:78:17:18:42:24:8b:aa:c5:11:a4:cb:5d:b5:2e:22:f2: 33:00:53:f5:a2:79:33:c8:c0:46:db:eb:13:29:4c:3d:44:3b: 6b:52:40:a3:ae:e0:a6:c0:68:e2:91:eb:53:91:b9:8b:a6:17: ac:9f:cd:28:6e:e8:bb:98:48:c7:a5:cc:d3:85:69:a2:4f:65: 25:fd:5c:a0:99:ca:d7:2e:d1:b5:e6:43:09:04:18:f3:2c:0e: 2e:a2:37:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBz1hDndP38Fg3ET++6U5GMSx3KgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2 QkNDMjhFNTAeFw0yNjAxMjQxNjM2NDdaFw0yNjAxMjgwMTI2NDdaMDMxMTAvBgNV BAMTKDcwODc5ODUwRDU2Q0NENTk5NDRFQzlCMzc5Njg3NTMyMUFENjk1NjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhH+l2CErM28QOHq+FxuQJObmB yCJv4KfT1KdRgZWZ5rZn4KSvlcUdTpNSFEFugLByEZyvUYmYfFzJ3dBbbE3oe3Yf gNOK6invcSyHpaEiBl+NxQZ9841ZX1Ovr5F4/odeJ4lsxTr5bkeWbEI3ubuND3SB otAXgyXE6YTqTBYewpYnC3pr8PuMzpe4ibBXqQ0AoLcTmKjqzu7lMP9Sva/WlyiT co6dzE1uG2gnkTJwzQgqwk/k11QOe6WgpHQqlJnDp1VhkBK0ooTAEVb8RCY8UE8l ICuubXE5iAspxWHcyWd+vV2LGrwV8ERst4FliR5oL8YMXXUwzhxRWDdx2po5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcIeYUNVszVmUTsmzeWh1MhrWlWAwHwYDVR0j BBgwFoAUghBJu9IsM1pQhQ8WqxWcDGvMKOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQy MkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0MyOEU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlDMEM2QkND MjhFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGUxOGQtYTA0Ny00NTkwLTll NTYtNDY0YTczZTIzYzZjLzAvODIxMDQ5QkJEMjJDMzM1QTUwODUwRjE2QUIxNTlD MEM2QkNDMjhFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC1fRykg4DdIXT7Bap9kTeppfqXh2ky0nYSY bxqN9wBeAeiJU1jJZhnvo6JbNqchqCpaM3UtUGYcxzmVHtZHr3oG9wgUQnEiYlKG Ey8C/Bc6C/CGmh0pxtvhPKucHixrQXU9TSfNjHKro9UAo3R4YDc3BvwAEERwxa+m BSaRAOiRiqwISHbyxHSBAXMhQGLu0BMtxTjomRcQa85P91SGPxdYkTzReBcYQiSL qsURpMtdtS4i8jMAU/WieTPIwEbb6xMpTD1EO2tSQKOu4KbAaOKR61ORuYumF6yf zShu6LuYSMelzNOFaaJPZSX9XKCZytcu0bXmQwkEGPMsDi6iN/0= -----END CERTIFICATE-----Generated at Sun Jan 25 22:11:14 2026 by rpki-client