This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft File: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft (raw, json) Hash identifier: bdhCvjVPtjx5IEkzw0S3gVUQib9dbcxrsGb/KlH73Q4= Subject key identifier: C1:C4:90:2B:08:6C:47:94:24:7D:8F:F4:7B:2C:F0:78:DF:B3:2B:28 Authority key identifier: 8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 Certificate issuer: /CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Certificate serial: 3F68B406235D494B49CFABAAEA3DB3235AC3BAA0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft Manifest number: 03C1 Signing time: Sat 24 Jan 2026 22:20:45 +0000 Manifest this update: Sat 24 Jan 2026 22:15:45 +0000 Manifest next update: Wed 28 Jan 2026 01:25:45 +0000 Files and hashes: 1: 3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa (hash: glmRxvHF4g4HTvz1muaudxYOmNWHdjodUPYRc5xhUvY=) 2: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl (hash: T6uj2zX50FxdIsMKtM5yuGd9qTiwrntGmhl8jJABX2I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 15:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:68:b4:06:23:5d:49:4b:49:cf:ab:aa:ea:3d:b3:23:5a:c3:ba:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Validity Not Before: Jan 24 22:15:45 2026 GMT Not After : Jan 28 01:25:45 2026 GMT Subject: CN=C1C4902B086C4794247D8FF47B2CF078DFB32B28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:69:e6:17:c1:c8:8e:bf:dd:76:24:c0:72:07: bd:14:f2:0b:5a:73:e5:f3:9d:9d:20:ea:c2:74:90: bc:6e:be:e4:0e:2e:25:87:3d:8c:f5:91:02:51:22: fb:f2:dc:ce:4e:4b:02:ba:87:22:3b:5f:22:eb:ca: 12:d3:77:f8:08:2c:b8:ba:8f:8e:bb:8f:b2:c0:29: 79:7f:ae:64:13:a3:b2:79:6f:64:6e:a6:8e:ad:da: 54:47:9f:03:85:1f:d9:9d:cd:3b:b8:5c:ef:6a:f3: 43:87:23:d1:64:7e:8a:b5:8b:6e:46:21:61:69:85: 50:96:9b:5f:4f:4c:b1:dd:47:0d:a8:41:b2:f5:85: 56:27:f6:ba:81:74:7c:c2:cc:30:8e:e1:e0:7d:bc: 8d:d5:15:ab:72:7d:b6:c6:76:7d:3d:90:8f:8a:e3: 96:2e:a8:4e:2f:49:7d:db:b7:68:3e:38:45:b7:b1: d9:08:55:a8:5f:92:a2:3c:13:cf:c6:4d:53:52:b4: 29:61:b6:8c:98:23:c2:68:f0:92:40:c5:62:65:63: fa:86:e5:00:99:4c:fc:44:9d:57:b2:e2:0d:8d:be: 5d:97:41:07:7a:70:0f:16:4e:be:f3:6d:b2:34:b5: 82:74:14:9e:c9:a3:6a:f6:f3:dd:0b:c0:52:eb:ac: e6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C4:90:2B:08:6C:47:94:24:7D:8F:F4:7B:2C:F0:78:DF:B3:2B:28 X509v3 Authority Key Identifier: keyid:8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:c5:b2:77:cd:ce:84:b4:ab:f9:b6:07:31:a9:71:25:c8:ff: 3c:26:d3:d7:39:a4:c0:98:05:6b:9c:be:7a:2d:ea:92:63:08: e5:50:c9:99:5f:79:c3:bc:d4:2a:30:4f:b6:9e:4e:c8:32:39: dd:ea:01:71:77:9c:d6:40:80:e2:82:35:17:99:6a:ba:2b:fe: 7c:c7:34:72:ed:46:79:45:26:5c:9d:cc:d8:6b:9e:11:fd:ed: e9:47:c0:90:62:80:d6:d7:95:36:b8:1f:7d:da:2e:e1:38:09: 57:87:5b:c6:b5:55:e5:e0:1d:22:bd:5c:5c:9f:f2:eb:f7:f6: 63:0b:5a:ad:6f:92:df:8d:5d:af:06:1a:81:90:27:b1:48:4d: 91:60:58:bd:0d:c9:30:f6:e1:b5:5c:06:e7:74:69:ed:14:9c: 08:89:4f:b3:87:e0:ca:ff:09:27:62:5a:2a:20:1f:39:63:87: 38:63:f4:b8:e6:00:15:74:a8:80:ce:1f:6c:c6:de:35:69:11: 2b:fd:ba:08:f3:37:93:55:99:19:30:a1:64:6c:e4:36:14:93: 12:26:9f:4a:d3:be:bc:04:58:df:31:a8:0a:64:c3:83:6b:df: c9:e1:d0:ac:2b:89:78:d9:40:b4:09:2f:9d:32:82:da:9a:80: f3:39:cf:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP2i0BiNdSUtJz6uq6j2zI1rDuqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRD REUxRTVEMDAeFw0yNjAxMjQyMjE1NDVaFw0yNjAxMjgwMTI1NDVaMDMxMTAvBgNV BAMTKEMxQzQ5MDJCMDg2QzQ3OTQyNDdEOEZGNDdCMkNGMDc4REZCMzJCMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxaeYXwciOv912JMByB70U8gta c+XznZ0g6sJ0kLxuvuQOLiWHPYz1kQJRIvvy3M5OSwK6hyI7XyLryhLTd/gILLi6 j467j7LAKXl/rmQTo7J5b2Rupo6t2lRHnwOFH9mdzTu4XO9q80OHI9Fkfoq1i25G IWFphVCWm19PTLHdRw2oQbL1hVYn9rqBdHzCzDCO4eB9vI3VFatyfbbGdn09kI+K 45YuqE4vSX3bt2g+OEW3sdkIVahfkqI8E8/GTVNStClhtoyYI8Jo8JJAxWJlY/qG 5QCZTPxEnVey4g2Nvl2XQQd6cA8WTr7zbbI0tYJ0FJ7Jo2r2890LwFLrrOY9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwcSQKwhsR5QkfY/0eyzweN+zKygwHwYDVR0j BBgwFoAUjN9xbyXWTes+EDbmo223JM3h5dAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDUyMGI1NC0zYmE3LTQ2MzEtYWYwYi01NTk4NGIwYmE3ZjIvMC84Q0RGNzE2RjI1 RDY0REVCM0UxMDM2RTZBMzZEQjcyNENERTFFNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRDREUx RTVEMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjA1MjBiNTQtM2JhNy00NjMxLWFm MGItNTU5ODRiMGJhN2YyLzAvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3 MjRDREUxRTVEMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGLFsnfNzoS0q/m2BzGpcSXI/zwm09c5pMCY BWucvnot6pJjCOVQyZlfecO81CowT7aeTsgyOd3qAXF3nNZAgOKCNReZaror/nzH NHLtRnlFJlydzNhrnhH97elHwJBigNbXlTa4H33aLuE4CVeHW8a1VeXgHSK9XFyf 8uv39mMLWq1vkt+NXa8GGoGQJ7FITZFgWL0NyTD24bVcBud0ae0UnAiJT7OH4Mr/ CSdiWiogHzljhzhj9LjmABV0qIDOH2zG3jVpESv9ugjzN5NVmRkwoWRs5DYUkxIm n0rTvrwEWN8xqApkw4Nr38nh0KwriXjZQLQJL50ygtqagPM5zyE= -----END CERTIFICATE-----Generated at Sun Jan 25 11:30:51 2026 by rpki-client