This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: syC4C3Qln9LIXVLZ1jzTf8ac86/1Uh6xdlC5W8iYq1g= Subject key identifier: 7C:2E:64:7E:8A:8C:D0:AD:F9:AE:DE:61:B5:B3:BF:EF:11:DE:A8:92 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 1DF22031D9A4AAD2833535117BB66F5EDDDBB447 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 0119 Signing time: Sun 18 Jan 2026 11:11:10 +0000 Manifest this update: Sun 18 Jan 2026 11:06:10 +0000 Manifest next update: Wed 21 Jan 2026 17:04:10 +0000 Files and hashes: 1: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) 2: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: vV2GNIc6IRsPMJ1nd4LAgbaTwihj/7SNEAPo9Gbvz7E=) 3: 3135372e32302e34352e302f32342d3234203d3e20323035343232.roa (hash: 0BKZVYiTiHtgjZEUGoDI40NlGQFEUeOEKE+t8AaJ1+k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 Jan 2026 17:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:f2:20:31:d9:a4:aa:d2:83:35:35:11:7b:b6:6f:5e:dd:db:b4:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Jan 18 11:06:10 2026 GMT Not After : Jan 21 17:04:10 2026 GMT Subject: CN=7C2E647E8A8CD0ADF9AEDE61B5B3BFEF11DEA892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:50:d1:66:16:20:a2:1b:1c:77:aa:95:f8: 32:7d:15:15:17:23:b5:3f:1a:96:ff:22:2c:1b:08: 85:c8:9b:fb:30:06:64:c4:fb:24:dd:e5:ea:c0:74: df:92:ad:7a:d8:12:6c:32:df:4c:76:fa:b7:29:39: ce:a0:56:6e:34:fa:3d:13:92:a6:e8:e9:1a:d8:c9: e7:76:4b:40:32:c5:cc:70:fd:b7:12:3f:7d:ea:29: 2f:dd:d0:fd:fe:44:f3:7f:40:3c:d9:f4:16:ca:1e: c8:cf:74:95:47:89:a8:b1:52:ab:24:b3:77:43:a2: 50:3b:9b:7b:28:45:4b:fb:9f:b6:b5:68:ba:80:db: 2e:e9:39:50:3f:13:ff:69:a7:6d:d7:54:b2:9c:f6: c7:6a:ae:22:4d:4f:7f:50:62:38:db:70:d6:9f:1d: f2:e2:2a:da:99:16:9e:7b:2d:ff:28:dc:3a:30:b1: 01:0b:04:6f:e0:ff:de:14:0f:17:b3:bf:e2:7b:93: 44:ab:1c:3e:1a:47:63:06:d0:82:0e:50:1b:60:02: f9:75:50:81:b4:b5:08:ab:2e:aa:8a:e7:87:9a:4a: 47:3b:72:c6:da:ee:8f:c0:bc:c1:9b:de:9d:65:0c: 9a:5f:59:6a:e7:b4:9f:78:f3:f3:9b:4f:4e:32:08: 5c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:2E:64:7E:8A:8C:D0:AD:F9:AE:DE:61:B5:B3:BF:EF:11:DE:A8:92 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:23:d0:15:10:0e:2c:3b:8d:73:ef:64:b0:82:44:18:18:ee: 09:ca:f5:92:78:2f:29:af:0e:26:cc:90:bd:95:59:a2:e6:90: 15:81:07:43:50:55:9a:46:f7:00:b0:7b:7a:2e:a1:76:61:1d: d5:2b:56:dd:92:b4:ad:9d:0c:84:d3:14:f9:37:88:89:1a:84: 2e:6a:43:2f:d8:65:c8:5d:61:7f:e7:ec:e5:ee:ba:d2:39:2e: 80:17:90:f1:f1:35:ca:15:22:e5:63:1b:7f:88:78:20:51:2e: 36:1c:a0:72:94:1f:42:5f:72:44:fb:11:3f:ac:8c:87:57:ec: 94:2d:b9:c0:06:0f:dd:b6:4d:af:b3:5b:f4:6e:a6:17:f6:27: 99:8e:45:73:6b:99:56:b3:23:c4:be:8f:cd:98:a5:f1:80:ce: 56:f6:9a:82:c2:54:9f:cd:30:6e:39:90:5c:90:eb:60:7f:87: 71:29:bd:12:b3:89:78:d8:82:bc:91:3d:0f:95:ab:5d:4c:c3: f7:b0:6c:24:30:5e:27:51:a5:99:f4:2b:4a:d3:c6:97:33:11: e7:a9:b0:4f:d6:db:b1:76:ef:9e:c2:9e:76:21:b0:dd:2c:db: 40:26:81:9e:6e:c9:bc:73:e1:17:ce:d9:bc:42:ee:da:3a:bf: 44:25:ad:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHfIgMdmkqtKDNTURe7ZvXt3btEcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNjAxMTgxMTA2MTBaFw0yNjAxMjExNzA0MTBaMDMxMTAvBgNV BAMTKDdDMkU2NDdFOEE4Q0QwQURGOUFFREU2MUI1QjNCRkVGMTFERUE4OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBTVDRZhYgohscd6qV+DJ9FRUX I7U/Gpb/IiwbCIXIm/swBmTE+yTd5erAdN+SrXrYEmwy30x2+rcpOc6gVm40+j0T kqbo6RrYyed2S0Ayxcxw/bcSP33qKS/d0P3+RPN/QDzZ9BbKHsjPdJVHiaixUqsk s3dDolA7m3soRUv7n7a1aLqA2y7pOVA/E/9pp23XVLKc9sdqriJNT39QYjjbcNaf HfLiKtqZFp57Lf8o3DowsQELBG/g/94UDxezv+J7k0SrHD4aR2MG0IIOUBtgAvl1 UIG0tQirLqqK54eaSkc7csba7o/AvMGb3p1lDJpfWWrntJ948/ObT04yCFxBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfC5kfoqM0K35rt5htbO/7xHeqJIwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEgj0BUQDiw7jXPvZLCCRBgY7gnK9ZJ4Lymv DibMkL2VWaLmkBWBB0NQVZpG9wCwe3ouoXZhHdUrVt2StK2dDITTFPk3iIkahC5q Qy/YZchdYX/n7OXuutI5LoAXkPHxNcoVIuVjG3+IeCBRLjYcoHKUH0JfckT7ET+s jIdX7JQtucAGD922Ta+zW/Ruphf2J5mORXNrmVazI8S+j82YpfGAzlb2moLCVJ/N MG45kFyQ62B/h3EpvRKziXjYgryRPQ+Vq11Mw/ewbCQwXidRpZn0K0rTxpczEeep sE/W27F2757CnnYhsN0s20AmgZ5uybxz4RfO2bxC7to6v0QlrXY= -----END CERTIFICATE-----Generated at Tue Jan 20 02:19:50 2026 by rpki-client