This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft File: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft (raw, json) Hash identifier: hzmmr1DlJMevqaMVohk9EQK1fiy0KttoiwnbMu78gNU= Subject key identifier: A9:FD:34:CB:C8:4D:62:46:44:E2:FA:FE:1F:B5:EA:60:6A:93:E8:D0 Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 4A0B025778487D09C6A0B25C03856EE72B0839A7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft Manifest number: 020C Signing time: Fri 23 Jan 2026 22:11:49 +0000 Manifest this update: Fri 23 Jan 2026 22:06:49 +0000 Manifest next update: Tue 27 Jan 2026 06:14:49 +0000 Files and hashes: 1: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (hash: GQbGwj8/3pFXSYNr52t6SKb3/O8bij4qIjKoYgJR2e8=) 2: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (hash: ZSgY5OMesKAVjFXk2K7xGan10euYjEFEbhi4eeTqUI4=) 3: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl (hash: KYggjfn89IaIgaItQA3v6SGPdlUWfNsU0spcxiU/WQw=) 4: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (hash: ZDbKc+ruTVuJcD/7oHmgIVR/dNEAa6RIgBC5ZgynInI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 06:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:0b:02:57:78:48:7d:09:c6:a0:b2:5c:03:85:6e:e7:2b:08:39:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Jan 23 22:06:49 2026 GMT Not After : Jan 27 06:14:49 2026 GMT Subject: CN=A9FD34CBC84D624644E2FAFE1FB5EA606A93E8D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:33:5a:07:b7:98:86:73:56:fb:7b:ee:4d:90: 78:3c:49:ba:f9:97:9e:ca:97:f1:af:9b:56:1a:15: af:75:db:5c:ae:cc:63:e4:c8:9c:2d:82:d6:bb:46: 05:33:55:5a:f5:48:bc:69:c1:e6:39:27:04:f8:ff: 93:d5:a8:d5:ab:da:df:22:0e:5a:5a:65:70:82:59: f7:8c:f8:34:65:47:18:8a:d0:36:d2:60:c1:7e:e4: 1a:49:d4:a8:61:99:2d:04:c4:8c:9a:0a:a7:00:6d: 43:9c:ad:69:19:4d:97:6a:27:e7:a9:50:08:b7:1c: 51:93:60:37:25:41:d9:60:67:42:6c:f0:fd:7b:cc: 07:3d:5a:e3:ab:50:85:72:3c:fb:4f:ac:9a:1d:f3: 26:d4:15:8b:a2:d6:79:c9:bc:d8:30:f1:8f:c8:90: 6c:af:ee:c1:d9:11:59:25:02:eb:92:6f:cb:70:37: 84:fb:73:70:bc:46:86:1d:44:b7:c1:e0:0a:bf:af: 6d:7e:8e:ed:0f:3b:f4:f5:db:2d:2e:00:67:af:15: 37:db:b5:ba:88:b4:7c:75:e8:96:a7:31:50:ad:24: 53:4a:95:e2:2a:14:26:01:e8:f2:17:3b:77:e9:54: 07:fb:0a:8e:75:ce:6a:8b:ff:3a:13:59:00:8f:be: c1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:FD:34:CB:C8:4D:62:46:44:E2:FA:FE:1F:B5:EA:60:6A:93:E8:D0 X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:ed:32:87:a4:0b:cc:60:83:18:25:ec:93:c0:7a:92:a9:aa: d7:61:cd:b2:8c:6c:3c:64:de:9e:ec:9a:3a:45:01:31:8d:b6: 57:3a:18:72:70:d7:a9:76:8f:fa:1b:09:4b:67:d1:ba:2e:e6: cd:f6:84:4a:e0:04:e3:b8:fa:37:e9:12:9f:7f:c1:3b:cd:16: 94:48:c3:2e:2b:75:08:86:87:ec:95:1b:53:61:45:56:c8:8c: 96:ae:92:64:67:35:48:25:01:42:cc:bf:c0:6a:81:6d:f0:89: ff:60:8a:3c:84:d7:b3:f4:fd:08:3e:82:0e:7d:a3:bb:51:fa: c6:5e:dd:a9:d0:b3:f7:82:a2:ea:36:bb:06:a6:fb:49:57:9d: 41:37:e4:82:9b:1f:d6:80:c8:83:f5:a8:58:6b:1b:7f:a9:21: 08:2e:68:69:d8:00:6e:ad:c3:8b:3f:7a:88:dd:b0:c8:54:15: 03:d5:fc:1e:fa:56:68:6d:e0:ee:37:46:41:a8:66:67:72:d6: 66:a4:49:5d:ca:db:e2:1f:82:76:b5:ff:8b:6b:71:70:6c:ea: 7c:8d:da:8c:ff:b1:a2:98:d7:28:8d:09:44:07:b5:d6:4d:82: 59:67:7d:70:8c:31:14:fe:2d:8d:0c:5f:ec:d6:49:99:7e:2a: bd:81:9f:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSgsCV3hIfQnGoLJcA4Vu5ysIOacwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNjAxMjMyMjA2NDlaFw0yNjAxMjcwNjE0NDlaMDMxMTAvBgNV BAMTKEE5RkQzNENCQzg0RDYyNDY0NEUyRkFGRTFGQjVFQTYwNkE5M0U4RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiM1oHt5iGc1b7e+5NkHg8Sbr5 l57Kl/Gvm1YaFa9121yuzGPkyJwtgta7RgUzVVr1SLxpweY5JwT4/5PVqNWr2t8i DlpaZXCCWfeM+DRlRxiK0DbSYMF+5BpJ1KhhmS0ExIyaCqcAbUOcrWkZTZdqJ+ep UAi3HFGTYDclQdlgZ0Js8P17zAc9WuOrUIVyPPtPrJod8ybUFYui1nnJvNgw8Y/I kGyv7sHZEVklAuuSb8twN4T7c3C8RoYdRLfB4Aq/r21+ju0PO/T12y0uAGevFTfb tbqItHx16JanMVCtJFNKleIqFCYB6PIXO3fpVAf7Co51zmqL/zoTWQCPvsHrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqf00y8hNYkZE4vr+H7XqYGqT6NAwHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWU2MWU1YWUtZTQ1Zi00ZWUzLThm NmItN2NiNTlkNjE3ODNiLzAvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2 REVCNkMyMUM3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHPtMoekC8xggxgl7JPAepKpqtdhzbKMbDxk 3p7smjpFATGNtlc6GHJw16l2j/obCUtn0bou5s32hErgBOO4+jfpEp9/wTvNFpRI wy4rdQiGh+yVG1NhRVbIjJaukmRnNUglAULMv8BqgW3wif9gijyE17P0/Qg+gg59 o7tR+sZe3anQs/eCouo2uwam+0lXnUE35IKbH9aAyIP1qFhrG3+pIQguaGnYAG6t w4s/eojdsMhUFQPV/B76Vmht4O43RkGoZmdy1makSV3K2+Ifgna1/4trcXBs6nyN 2oz/saKY1yiNCUQHtdZNgllnfXCMMRT+LY0MX+zWSZl+Kr2Bn6U= -----END CERTIFICATE-----Generated at Sun Jan 25 23:10:57 2026 by rpki-client