This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft File: 4AA76DED689FD4420809D0962087A03BCF018FEA.mft (raw, json) Hash identifier: qAh8jQWFaZIqv084Wz/oQGtlwtMUFJe+OOeq8dYk9Y8= Subject key identifier: F2:65:5B:17:4D:BC:76:47:F6:C6:FE:D7:8A:97:B5:F2:CF:7C:B9:1C Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 22F8274FF0A4F1D5750AE9CD4E17009889F24BBB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft Manifest number: 0105 Signing time: Sat 31 Jan 2026 18:41:45 +0000 Manifest this update: Sat 31 Jan 2026 18:36:45 +0000 Manifest next update: Wed 04 Feb 2026 06:23:45 +0000 Files and hashes: 1: 4AA76DED689FD4420809D0962087A03BCF018FEA.crl (hash: Uh7Ttq9lWd9rWkznPgd4nGQ+tZNUx1i3yW1i1KPqC5I=) 2: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (hash: qGUv354O5bgjhTMZ45JMcvyFGWQg1EdVxERPegJoKCQ=) 3: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (hash: 2CpAucK+rvU21eAZmyDV5IqqR6dCAIafzExn8g2LOMw=) 4: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (hash: bYo0zSG/Y+l/kRQWqzhvCy7R5Romzqih1iDCz89t3mk=) 5: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (hash: khEVLFQtH+a45cc9yGf67pi2XkwhJ0LBpc+mc2azWiQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 06:23:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f8:27:4f:f0:a4:f1:d5:75:0a:e9:cd:4e:17:00:98:89:f2:4b:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Jan 31 18:36:45 2026 GMT Not After : Feb 4 06:23:45 2026 GMT Subject: CN=F2655B174DBC7647F6C6FED78A97B5F2CF7CB91C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f9:68:8f:fe:e1:08:f3:4a:b2:d7:4d:c0:56: 3d:02:4a:3f:f5:4b:17:84:7e:16:1d:15:ff:28:2c: f4:bd:81:7a:5b:0c:ad:e7:c3:54:d8:ca:61:0e:2b: ef:e2:7c:eb:20:53:49:43:89:53:0c:e3:40:24:49: a8:ec:17:2b:be:56:cd:b7:08:df:d1:43:06:1f:2a: 09:34:dd:c4:fc:59:56:29:bd:66:56:8c:bc:76:2c: 0c:e4:6b:b2:75:49:95:8d:cd:6b:ec:10:86:59:50: dd:89:23:63:bb:59:46:1b:6c:65:d4:9e:7c:4c:61: a5:79:bc:1b:5c:69:df:20:da:ff:4f:a8:20:5f:68: cb:24:27:83:3f:f4:00:f7:4c:16:08:3a:f0:db:f3: b3:26:86:33:d3:4d:b4:df:7a:ae:d3:28:41:be:4f: f1:c7:cb:29:ed:1b:ca:55:16:91:6c:5c:fe:f9:a2: 43:eb:3c:8d:2c:68:53:92:e2:44:82:3d:6a:15:7e: ee:a6:b5:51:e3:d2:f1:f9:0c:9c:ce:e7:85:48:5e: e3:ee:88:68:13:2d:ec:ba:a8:f9:bc:75:f2:05:c5: a9:a7:d0:87:5c:1b:94:21:78:c3:6a:3f:0a:d1:74: 47:cd:71:9a:e4:92:05:23:1b:b1:f2:ce:6d:9b:5c: 31:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:65:5B:17:4D:BC:76:47:F6:C6:FE:D7:8A:97:B5:F2:CF:7C:B9:1C X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:51:50:b9:cc:ef:bb:50:4d:72:37:2d:08:e0:a5:0b:2b:20: 8e:43:84:47:8f:9f:35:6b:fb:28:e2:4e:07:63:1f:0b:99:5c: 2a:6d:2c:2c:24:6f:69:5c:40:a8:25:1a:61:c0:c0:78:cc:45: de:fd:8a:19:98:b8:8f:83:1d:5e:a6:f0:1a:96:89:3e:92:c5: 35:06:51:df:f3:be:8a:f0:68:27:d4:d9:9f:d6:82:f3:73:ae: 3d:10:e0:d7:59:0e:e1:1f:13:26:21:2b:72:bb:87:91:c7:8e: f9:41:c4:ba:f0:0c:4b:6c:51:43:3e:fa:ce:7c:f0:3f:e9:07: 84:1a:f9:ba:1e:34:6f:b1:5c:c3:da:bf:f0:96:3d:04:95:a6: 25:3a:98:50:4f:1e:4a:97:28:59:a7:ae:e5:e5:3a:de:ee:3b: 48:15:3c:47:ea:87:0f:45:bd:9d:ca:7e:e8:d2:35:91:1d:10: 4c:31:21:04:81:a3:5b:4e:6e:72:dc:9e:92:1e:0a:1b:b7:3c: 6f:95:bf:67:1a:34:7d:95:82:0c:dc:28:4f:c1:da:3b:0a:ae: dd:9f:94:c5:44:95:32:ba:7b:d8:f1:c4:f1:ba:eb:e0:01:1b: 9f:e7:bf:7a:f0:5a:28:e0:ce:eb:ea:22:96:23:1a:bb:ec:94: 35:17:fd:ef -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIvgnT/Ck8dV1CunNThcAmInyS7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNjAxMzExODM2NDVaFw0yNjAyMDQwNjIzNDVaMDMxMTAvBgNV BAMTKEYyNjU1QjE3NERCQzc2NDdGNkM2RkVENzhBOTdCNUYyQ0Y3Q0I5MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp+WiP/uEI80qy103AVj0CSj/1 SxeEfhYdFf8oLPS9gXpbDK3nw1TYymEOK+/ifOsgU0lDiVMM40AkSajsFyu+Vs23 CN/RQwYfKgk03cT8WVYpvWZWjLx2LAzka7J1SZWNzWvsEIZZUN2JI2O7WUYbbGXU nnxMYaV5vBtcad8g2v9PqCBfaMskJ4M/9AD3TBYIOvDb87MmhjPTTbTfeq7TKEG+ T/HHyyntG8pVFpFsXP75okPrPI0saFOS4kSCPWoVfu6mtVHj0vH5DJzO54VIXuPu iGgTLey6qPm8dfIFxamn0IdcG5QheMNqPwrRdEfNcZrkkgUjG7Hyzm2bXDFRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8mVbF028dkf2xv7Xipe18s98uRwwHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMyODBhZjMtYWExZC00MjcxLThj MDYtYTNmYTI4ODk4NDI2LzAvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0Ew M0JDRjAxOEZFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI5RULnM77tQTXI3LQjgpQsrII5DhEePnzVr +yjiTgdjHwuZXCptLCwkb2lcQKglGmHAwHjMRd79ihmYuI+DHV6m8BqWiT6SxTUG Ud/zvorwaCfU2Z/WgvNzrj0Q4NdZDuEfEyYhK3K7h5HHjvlBxLrwDEtsUUM++s58 8D/pB4Qa+boeNG+xXMPav/CWPQSVpiU6mFBPHkqXKFmnruXlOt7uO0gVPEfqhw9F vZ3KfujSNZEdEEwxIQSBo1tObnLcnpIeChu3PG+Vv2caNH2VggzcKE/B2jsKrt2f lMVElTK6e9jxxPG66+ABG5/nv3rwWijgzuvqIpYjGrvslDUX/e8= -----END CERTIFICATE-----Generated at Mon Feb 2 09:43:17 2026 by rpki-client