This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft File: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft (raw, json) Hash identifier: pAyl/xB15QIKShuH41y0pb8cueBH4aNM0+5PgzMsUcw= Subject key identifier: 17:A8:00:D4:18:FC:6B:3A:C7:1F:BD:68:66:3D:23:02:A6:0E:B3:C1 Authority key identifier: BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE Certificate issuer: /CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Certificate serial: 6304B5D8092549321712EB3987068D7E869D98CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft Manifest number: 0234 Signing time: Sat 24 Jan 2026 21:31:30 +0000 Manifest this update: Sat 24 Jan 2026 21:26:30 +0000 Manifest next update: Wed 28 Jan 2026 05:05:30 +0000 Files and hashes: 1: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl (hash: uGclM8RCl8XGkr153xn+F64IVoMbMqzudOXj/SNOmLU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 05:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:04:b5:d8:09:25:49:32:17:12:eb:39:87:06:8d:7e:86:9d:98:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Validity Not Before: Jan 24 21:26:30 2026 GMT Not After : Jan 28 05:05:30 2026 GMT Subject: CN=17A800D418FC6B3AC71FBD68663D2302A60EB3C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:60:d6:7b:e6:e5:0c:24:49:80:8b:85:3a:23: e0:1c:16:bd:c4:13:f8:e6:e8:7a:6e:aa:2d:1a:e0: 87:3d:12:61:9d:b7:dc:0a:b3:39:b1:eb:0f:21:34: 3f:b9:30:e7:94:58:84:1c:7a:bb:53:62:e2:57:c1: 12:68:f2:8e:ad:bd:42:79:03:ed:61:e8:5d:c8:a3: b6:bc:2c:3b:15:cf:59:cf:a4:c5:4c:6c:c0:5e:2c: 60:02:86:4a:06:11:12:7c:f4:7f:76:73:1c:be:27: ae:7f:84:41:1f:5a:0f:5a:0f:c2:8f:24:7f:9b:e9: 76:d5:ce:26:32:c6:d5:48:a0:56:4a:91:18:fa:0f: 3e:0d:99:e4:5d:ca:ec:1f:35:f3:27:96:09:50:c6: 86:95:8a:03:d5:14:ac:9a:96:52:71:b5:28:12:67: ba:2e:72:38:b5:ae:36:c8:06:8f:52:4b:7a:68:6f: 15:4d:95:33:c5:32:8c:91:93:4e:ff:00:43:1c:77: 6b:6f:27:06:b1:be:16:f7:99:00:ad:57:99:8e:33: f6:c7:37:1a:28:ed:80:d4:9b:0d:4e:f3:2b:ae:bb: 73:40:22:0c:ef:4b:20:20:e2:d4:84:15:63:49:e8: ec:42:37:3c:68:d0:38:d1:e7:de:57:fd:46:8a:f0: 0b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A8:00:D4:18:FC:6B:3A:C7:1F:BD:68:66:3D:23:02:A6:0E:B3:C1 X509v3 Authority Key Identifier: keyid:BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:f2:76:9e:e2:10:22:0f:ba:fa:10:6f:ca:04:d4:01:cb:02: c3:7d:d9:13:8c:93:11:80:39:74:fd:c8:f2:09:e7:18:ee:79: c5:98:12:61:30:10:30:a9:b5:f6:3c:8c:56:c0:06:62:ad:4c: b5:ce:db:fa:19:8f:33:d2:3b:91:df:77:7f:f2:3a:21:cf:d3: 92:5e:2c:3c:36:3a:09:3e:7c:50:30:84:0e:e9:80:ef:e2:1e: ae:6e:9a:f6:2b:28:7b:72:1f:4e:af:2a:9c:7a:0c:3f:68:da: 0f:2e:93:f4:00:64:1c:d2:27:f3:b8:85:49:fc:8d:2b:c5:87: f9:6e:9b:0d:8e:4a:0e:f5:31:ba:a0:dd:18:b1:dc:f1:15:77: 5a:f1:1a:82:45:d2:a3:c1:8f:3b:2c:c2:55:cf:62:92:7d:f0: 03:fe:13:19:28:c9:16:4e:df:33:17:d3:a5:f2:14:c7:2f:cd: 15:90:5d:f9:e8:4c:63:71:08:1f:c0:47:d0:06:6a:28:98:63: f9:ac:6e:69:fb:0a:a1:ff:c4:c1:1b:31:7b:d9:20:2b:f6:97: c1:e4:cc:01:66:a3:da:e3:25:9a:e4:e0:41:08:b9:4a:57:08: 41:98:72:c6:7f:c4:97:51:b2:c3:0b:25:f7:ea:cc:df:ea:d1: 80:fa:b8:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYwS12AklSTIXEus5hwaNfoadmM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5 QUYzQkNCRTAeFw0yNjAxMjQyMTI2MzBaFw0yNjAxMjgwNTA1MzBaMDMxMTAvBgNV BAMTKDE3QTgwMEQ0MThGQzZCM0FDNzFGQkQ2ODY2M0QyMzAyQTYwRUIzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhYNZ75uUMJEmAi4U6I+AcFr3E E/jm6Hpuqi0a4Ic9EmGdt9wKszmx6w8hND+5MOeUWIQcertTYuJXwRJo8o6tvUJ5 A+1h6F3Io7a8LDsVz1nPpMVMbMBeLGAChkoGERJ89H92cxy+J65/hEEfWg9aD8KP JH+b6XbVziYyxtVIoFZKkRj6Dz4NmeRdyuwfNfMnlglQxoaVigPVFKyallJxtSgS Z7oucji1rjbIBo9SS3pobxVNlTPFMoyRk07/AEMcd2tvJwaxvhb3mQCtV5mOM/bH Nxoo7YDUmw1O8yuuu3NAIgzvSyAg4tSEFWNJ6OxCNzxo0DjR595X/UaK8At7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF6gA1Bj8azrHH71oZj0jAqYOs8EwHwYDVR0j BBgwFoAUvA7P3dCBzlEyvsnP3Bo5CprzvL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODZhMTNiZC1iNzlhLTQ1MGUtOWJlMy0zZDVhMDNhYjkzYjEvMC9CQzBFQ0ZEREQw ODFDRTUxMzJCRUM5Q0ZEQzFBMzkwQTlBRjNCQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5QUYz QkNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjg2YTEzYmQtYjc5YS00NTBlLTli ZTMtM2Q1YTAzYWI5M2IxLzAvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5 MEE5QUYzQkNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAbydp7iECIPuvoQb8oE1AHLAsN92ROMkxGA OXT9yPIJ5xjuecWYEmEwEDCptfY8jFbABmKtTLXO2/oZjzPSO5Hfd3/yOiHP05Je LDw2Ogk+fFAwhA7pgO/iHq5umvYrKHtyH06vKpx6DD9o2g8uk/QAZBzSJ/O4hUn8 jSvFh/lumw2OSg71Mbqg3Rix3PEVd1rxGoJF0qPBjzsswlXPYpJ98AP+ExkoyRZO 3zMX06XyFMcvzRWQXfnoTGNxCB/AR9AGaiiYY/msbmn7CqH/xMEbMXvZICv2l8Hk zAFmo9rjJZrk4EEIuUpXCEGYcsZ/xJdRssMLJffqzN/q0YD6uNA= -----END CERTIFICATE-----Generated at Mon Jan 26 01:11:40 2026 by rpki-client