This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft File: 3CA825E93FE8830376EF386786BF847CB239BE70.mft (raw, json) Hash identifier: OTVQLLxi2+YrF/kN4Rt57feGCwD/y4+AiCtWex7uAb8= Subject key identifier: FB:70:74:AD:6F:97:4B:3D:01:A9:D7:41:AC:D9:55:72:AA:03:08:31 Authority key identifier: 3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 Certificate issuer: /CN=3CA825E93FE8830376EF386786BF847CB239BE70 Certificate serial: 30055BB5D06243F05F72D613ED9BF6C9C431A5DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft Manifest number: 0546 Signing time: Mon 02 Feb 2026 07:51:51 +0000 Manifest this update: Mon 02 Feb 2026 07:46:51 +0000 Manifest next update: Thu 05 Feb 2026 18:18:51 +0000 Files and hashes: 1: 3CA825E93FE8830376EF386786BF847CB239BE70.crl (hash: pVoWNAtc3P+2peBbbIMJnKPW5+V1J9QlpT0q7C1Ru5s=) 2: 3131392e38322e3232342e302f32302d3234203d3e203234323133.roa (hash: rMCMSl1s+WWM7uToBUHib02Gf8GW78oaPsE3tZQeKpc=) 3: 3130332e38332e39322e302f32322d3234203d3e20313331313131.roa (hash: 7BaUBkYi576UVLsHbTQQnc27jnKH4uxS8EK0pK4qmYo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 17:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:05:5b:b5:d0:62:43:f0:5f:72:d6:13:ed:9b:f6:c9:c4:31:a5:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CA825E93FE8830376EF386786BF847CB239BE70 Validity Not Before: Feb 2 07:46:51 2026 GMT Not After : Feb 5 18:18:51 2026 GMT Subject: CN=FB7074AD6F974B3D01A9D741ACD95572AA030831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:79:d2:1d:64:a9:16:d5:ad:6f:34:71:07:44: a3:2e:90:54:31:cf:04:95:fa:c8:30:8f:ab:a2:ff: f0:fa:d2:11:f8:59:68:8c:cf:1a:01:3b:29:d2:7e: ce:3a:8e:35:f8:5a:c0:3a:0d:4e:12:78:17:56:d6: 5e:28:f2:e7:cb:b3:ab:12:7d:4f:22:e0:da:2a:45: 11:12:1e:6e:83:4a:3e:a4:b0:9a:0f:8e:44:17:41: f7:33:c2:da:61:d7:95:67:fc:d8:f0:d5:32:64:2b: 51:ea:aa:9a:89:3a:6f:6b:b0:1a:98:37:52:e7:26: 2b:f0:92:5c:5e:3e:13:1a:9c:f0:f8:e2:c5:5b:6e: 2f:14:a2:f8:71:67:a3:38:eb:06:8b:a3:02:22:fc: 98:8f:08:97:a1:94:a2:8a:95:47:0b:e7:f6:b4:d3: 4c:ba:aa:a3:48:6a:35:1f:5f:4e:32:b3:c4:29:c4: 81:45:b9:62:e6:c4:2a:4b:c9:71:11:61:4c:dc:da: 8a:61:cf:41:e9:ed:82:d7:46:7c:b1:b0:6e:72:07: cc:3c:e0:aa:9b:0a:be:ad:af:ec:fe:ce:9e:cc:80: 4f:a2:d5:20:8c:77:82:e3:36:3b:51:98:35:8d:6e: c3:e6:9c:ff:9d:ca:16:96:10:9a:b0:23:8c:0d:fc: dc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:70:74:AD:6F:97:4B:3D:01:A9:D7:41:AC:D9:55:72:AA:03:08:31 X509v3 Authority Key Identifier: keyid:3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:a0:c6:6a:59:9a:85:b3:56:2a:d9:82:29:0f:53:64:f2:ea: 65:63:04:40:7f:c7:bd:43:4a:c9:b0:8e:04:d3:ab:38:75:7f: 1f:f4:6d:7c:bc:a0:19:bc:63:5a:c8:6c:a7:81:2b:ce:c3:7b: 3f:80:ba:88:ea:49:6d:00:67:af:81:54:0a:b7:7d:99:7e:3e: a5:68:3b:36:c5:26:51:8d:84:5e:a3:c5:3f:35:10:a9:a4:f1: e7:54:be:9d:01:65:5d:84:73:0b:1e:37:4c:77:02:62:1b:6b: 1b:c8:31:7e:1d:11:39:b5:9d:c3:69:f8:f3:35:df:20:15:52: b2:a3:51:2f:a5:7f:91:29:60:28:17:1b:24:e8:7d:52:02:34: b2:52:c6:bf:33:05:6f:09:dd:9f:0f:7e:60:38:2e:4e:87:66: 74:1a:e4:6b:c7:ba:dd:43:16:77:aa:e4:f9:76:51:d3:c5:20: b0:7a:1f:d7:60:48:0b:df:02:56:cd:34:c5:a5:92:bf:05:94: 2d:86:65:a6:d5:8e:11:09:4e:6c:e8:c3:42:1f:e2:fd:c0:11: dd:23:1b:3a:06:15:fb:60:24:cb:34:0d:0c:01:2e:b5:b9:a4: bd:4f:a8:f0:79:4d:e1:70:aa:26:5e:59:70:5e:72:bc:d7:b3: ff:78:ef:1f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMAVbtdBiQ/BfctYT7Zv2ycQxpdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NC MjM5QkU3MDAeFw0yNjAyMDIwNzQ2NTFaFw0yNjAyMDUxODE4NTFaMDMxMTAvBgNV BAMTKEZCNzA3NEFENkY5NzRCM0QwMUE5RDc0MUFDRDk1NTcyQUEwMzA4MzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaedIdZKkW1a1vNHEHRKMukFQx zwSV+sgwj6ui//D60hH4WWiMzxoBOynSfs46jjX4WsA6DU4SeBdW1l4o8ufLs6sS fU8i4NoqRRESHm6DSj6ksJoPjkQXQfczwtph15Vn/Njw1TJkK1HqqpqJOm9rsBqY N1LnJivwklxePhManPD44sVbbi8UovhxZ6M46waLowIi/JiPCJehlKKKlUcL5/a0 00y6qqNIajUfX04ys8QpxIFFuWLmxCpLyXERYUzc2ophz0Hp7YLXRnyxsG5yB8w8 4KqbCr6tr+z+zp7MgE+i1SCMd4LjNjtRmDWNbsPmnP+dyhaWEJqwI4wN/NxzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+3B0rW+XSz0BqddBrNlVcqoDCDEwHwYDVR0j BBgwFoAUPKgl6T/ogwN27zhnhr+EfLI5vnAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OGI4YzFiNS0zYmU4LTRhYTctYTRjNi0yMWJjYzhmM2ZhNDAvMC8zQ0E4MjVFOTNG RTg4MzAzNzZFRjM4Njc4NkJGODQ3Q0IyMzlCRTcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NCMjM5 QkU3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDhiOGMxYjUtM2JlOC00YWE3LWE0 YzYtMjFiY2M4ZjNmYTQwLzAvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0 N0NCMjM5QkU3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJagxmpZmoWzVirZgikPU2Ty6mVjBEB/x71D SsmwjgTTqzh1fx/0bXy8oBm8Y1rIbKeBK87Dez+AuojqSW0AZ6+BVAq3fZl+PqVo OzbFJlGNhF6jxT81EKmk8edUvp0BZV2EcwseN0x3AmIbaxvIMX4dETm1ncNp+PM1 3yAVUrKjUS+lf5EpYCgXGyTofVICNLJSxr8zBW8J3Z8PfmA4Lk6HZnQa5GvHut1D Fneq5Pl2UdPFILB6H9dgSAvfAlbNNMWlkr8FlC2GZabVjhEJTmzow0If4v3AEd0j GzoGFftgJMs0DQwBLrW5pL1PqPB5TeFwqiZeWXBecrzXs/947x8= -----END CERTIFICATE-----Generated at Mon Feb 2 16:00:28 2026 by rpki-client