This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft File: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft (raw, json) Hash identifier: LCp2C5+7P6kr2hWO0CMGXZ/3iTS+7pOt7tAHggAdhRU= Subject key identifier: 65:37:84:F7:CD:7A:E9:89:B1:67:BF:A4:8A:22:2B:45:FD:C3:9C:89 Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 14E8C72244CC1BDB2C738E8712F965FC92366F8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft Manifest number: 04D6 Signing time: Sat 24 Jan 2026 07:21:23 +0000 Manifest this update: Sat 24 Jan 2026 07:16:23 +0000 Manifest next update: Tue 27 Jan 2026 09:04:23 +0000 Files and hashes: 1: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (hash: j9xUg13KQEtQqrg9g3ERUl0kaedTdjzl5FAcPmtGqCE=) 2: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (hash: q5CuF5e5qYX8bk7E7KseYjajuExzeTaBW1PNtQOhgkQ=) 3: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl (hash: 1k6E0y5ieUcnQch5A91BI0jjDgWOtBcAEs4T3GkDZ+Y=) 4: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (hash: e3tuv4bUE+5sOOhpfdGmGuOFPlroiW0z6wkdn0Eg6vM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 09:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e8:c7:22:44:cc:1b:db:2c:73:8e:87:12:f9:65:fc:92:36:6f:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Jan 24 07:16:23 2026 GMT Not After : Jan 27 09:04:23 2026 GMT Subject: CN=653784F7CD7AE989B167BFA48A222B45FDC39C89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:79:04:40:0c:61:dc:05:2d:72:a9:e8:48:6c: b4:f0:9a:19:e0:47:d8:ed:09:22:fd:9c:8b:38:6a: 66:15:0e:30:28:7d:bd:51:da:38:77:59:1a:2b:ab: 9c:22:ad:c5:4d:1f:fb:79:7c:15:0b:94:07:13:9b: 7a:ae:d8:72:89:79:80:26:d7:f4:12:c5:43:44:f2: e7:30:f0:37:70:c2:8a:1e:94:47:c0:03:fc:16:fd: 42:bf:30:3b:80:77:26:e9:6a:d3:3a:c6:60:a2:ed: 76:ce:04:9e:f5:21:9a:e8:08:74:5c:c6:76:b0:db: 5b:14:16:83:58:86:09:f9:f1:1d:e1:2e:d8:8e:ff: e6:14:4e:f7:f5:b8:8f:a8:8f:4e:da:ce:e0:0a:2e: f8:25:0d:b0:25:00:48:50:f2:ab:0d:9d:27:7f:be: 0d:67:d7:fc:c2:ae:8a:9d:95:4f:c4:6b:a4:98:c5: da:76:a6:c1:d6:85:2b:dd:87:a2:b6:a8:87:b3:34: 9f:c0:a2:94:08:6b:cf:58:b5:8c:38:97:ff:86:3f: 30:3d:d9:de:73:fc:bd:91:a4:1a:1e:01:47:63:55: 77:ec:4c:e0:6c:24:fe:04:64:a4:bd:51:f1:f7:6e: 1c:0e:ea:6f:d2:8e:df:47:fc:48:55:89:8a:d6:0f: 68:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:37:84:F7:CD:7A:E9:89:B1:67:BF:A4:8A:22:2B:45:FD:C3:9C:89 X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:aa:45:19:b8:8e:99:aa:f7:5e:0b:fd:04:e6:6f:a5:5a:84: 96:35:e5:30:a7:b2:16:9e:5a:15:0a:08:1c:f3:dd:42:01:0c: 36:26:c9:52:6b:3d:ed:06:59:1a:41:6e:71:5f:de:15:99:0d: a6:d8:43:b1:71:eb:0b:2b:ed:94:a8:c5:54:f1:0f:82:93:12: ac:d2:49:a7:65:e8:8f:87:38:bb:db:67:31:ca:ea:7f:34:f9: f7:e2:ef:c9:a3:7d:6c:8d:76:06:15:e8:94:ba:f6:27:2f:18: e3:de:fb:5e:fd:04:0b:cf:4f:21:ac:bb:64:4c:b8:66:57:19: a1:9a:68:a8:e9:53:6a:82:2f:76:3c:a7:66:c4:21:16:9d:e9: 6a:72:77:71:b2:d0:69:74:d7:04:68:1c:1f:b0:8a:a6:88:e5: ac:54:80:af:02:57:3c:00:f2:25:e0:f5:2c:5b:ac:d3:02:37: 32:1a:60:c1:2f:ba:da:6f:de:a3:70:30:14:0a:90:9b:52:3e: 38:47:8b:de:e0:04:78:e1:61:23:c6:66:d2:c1:72:ad:88:57: 3a:b7:79:c4:05:29:20:b2:9a:95:03:f8:4e:b5:b7:48:6e:dc: c1:b1:15:cf:5c:31:4e:9c:9f:d1:e6:31:cb:b3:b5:3b:f6:a1: b6:46:7e:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFOjHIkTMG9ssc46HEvll/JI2b4owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNjAxMjQwNzE2MjNaFw0yNjAxMjcwOTA0MjNaMDMxMTAvBgNV BAMTKDY1Mzc4NEY3Q0Q3QUU5ODlCMTY3QkZBNDhBMjIyQjQ1RkRDMzlDODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkeQRADGHcBS1yqehIbLTwmhng R9jtCSL9nIs4amYVDjAofb1R2jh3WRorq5wircVNH/t5fBULlAcTm3qu2HKJeYAm 1/QSxUNE8ucw8DdwwooelEfAA/wW/UK/MDuAdybpatM6xmCi7XbOBJ71IZroCHRc xnaw21sUFoNYhgn58R3hLtiO/+YUTvf1uI+oj07azuAKLvglDbAlAEhQ8qsNnSd/ vg1n1/zCroqdlU/Ea6SYxdp2psHWhSvdh6K2qIezNJ/AopQIa89YtYw4l/+GPzA9 2d5z/L2RpBoeAUdjVXfsTOBsJP4EZKS9UfH3bhwO6m/Sjt9H/EhViYrWD2jFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZTeE98166YmxZ7+kiiIrRf3DnIkwHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjNiYWJmMGItMTEwMS00YWE5LWE0 ZGYtNTI3MTQ5MzRkYjdjLzAvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYz M0RBNTVGMjA3Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHOqRRm4jpmq914L/QTmb6VahJY15TCnshae WhUKCBzz3UIBDDYmyVJrPe0GWRpBbnFf3hWZDabYQ7Fx6wsr7ZSoxVTxD4KTEqzS Sadl6I+HOLvbZzHK6n80+ffi78mjfWyNdgYV6JS69icvGOPe+179BAvPTyGsu2RM uGZXGaGaaKjpU2qCL3Y8p2bEIRad6Wpyd3Gy0Gl01wRoHB+wiqaI5axUgK8CVzwA 8iXg9SxbrNMCNzIaYMEvutpv3qNwMBQKkJtSPjhHi97gBHjhYSPGZtLBcq2IVzq3 ecQFKSCympUD+E61t0hu3MGxFc9cMU6cn9HmMcuztTv2obZGft8= -----END CERTIFICATE-----Generated at Sun Jan 25 22:00:48 2026 by rpki-client