This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft File: AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft (raw, json) Hash identifier: GqpRI5MfXVDSpM3Zh/hcQPgaeUMcJJxz8+ZX7CvTCFQ= Subject key identifier: 83:21:6A:85:B4:F8:CA:F7:4D:50:1B:07:4B:B6:A2:E7:DF:30:58:5B Authority key identifier: AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE Certificate issuer: /CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Certificate serial: 2CEDDA8E80E3C46273DB93B7CD0CD03D9097663D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft Manifest number: 02A1 Signing time: Sun 01 Feb 2026 17:21:44 +0000 Manifest this update: Sun 01 Feb 2026 17:16:44 +0000 Manifest next update: Thu 05 Feb 2026 02:07:44 +0000 Files and hashes: 1: 3130332e3137392e37332e302f32342d3234203d3e2039333431.roa (hash: 36hFp4MNqRDgFjqepz99CP3U7evoSejJQb+GMWj9djo=) 2: 3130332e3137392e37322e302f32332d3233203d3e2039333431.roa (hash: K4U8d+sUzMLgrI4fy436tf9syDLx6SvZlYhSkGTWcb8=) 3: 3130332e3137392e37322e302f32342d3234203d3e2039333431.roa (hash: cvr2rock59oqaJDiE9arMS+Z9L88+lzn8zN5bKyApVs=) 4: AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl (hash: toV/yNfWu4hDoDBkPTVoMZjnFkEFB7XoEKRa5/lGFXE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 02:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ed:da:8e:80:e3:c4:62:73:db:93:b7:cd:0c:d0:3d:90:97:66:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AFEE1C7B016628482294E3D894CFC6851BBB63BE Validity Not Before: Feb 1 17:16:44 2026 GMT Not After : Feb 5 02:07:44 2026 GMT Subject: CN=83216A85B4F8CAF74D501B074BB6A2E7DF30585B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:20:0a:e5:ca:bd:9e:83:62:a7:a7:77:fc:a0: 4c:30:57:a3:44:19:63:df:14:53:2f:26:29:cf:b3: 42:37:24:35:33:07:a4:7e:f4:69:17:3b:5d:41:8f: 95:3f:dc:b5:23:92:a2:3e:07:26:5d:ab:83:31:a6: 5b:4c:48:e5:62:f0:c8:e1:50:53:37:86:ae:fd:9b: f9:0b:bb:4d:5f:83:bc:80:89:3f:ca:f8:39:19:e6: 1f:c8:8c:2c:da:43:34:fb:bb:1a:be:14:f9:b4:db: f7:51:25:01:16:cc:93:11:cb:02:e9:f5:d5:f6:d0: ec:5b:44:f6:9b:38:35:3a:80:70:0f:7f:42:2c:b0: 6d:e1:a8:11:af:fb:a2:f8:35:65:d9:8d:cf:11:41: 5e:44:e3:2f:11:15:d5:0d:b1:a4:50:79:bd:63:f1: bf:70:61:40:e6:3d:a6:f6:f0:df:87:b9:18:93:e4: 1d:27:e3:45:63:87:b3:be:9c:26:b2:3c:66:ac:13: 7d:c0:b7:77:07:a3:46:03:1f:34:7d:3f:02:05:64: 37:d3:29:43:ad:85:40:c9:85:be:23:4b:bc:7a:38: 0c:40:e1:1a:45:04:53:34:31:53:e2:60:8f:31:d8: f5:cf:9d:5b:3a:ac:a7:91:46:54:bf:41:e8:31:a2: 44:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:21:6A:85:B4:F8:CA:F7:4D:50:1B:07:4B:B6:A2:E7:DF:30:58:5B X509v3 Authority Key Identifier: keyid:AF:EE:1C:7B:01:66:28:48:22:94:E3:D8:94:CF:C6:85:1B:BB:63:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AFEE1C7B016628482294E3D894CFC6851BBB63BE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/31ab8a58-f13f-4f71-9dde-aed57ea6dca7/0/AFEE1C7B016628482294E3D894CFC6851BBB63BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:63:ca:c7:1c:d1:99:53:71:11:09:06:16:14:42:49:e1:16: ba:f1:29:e8:4e:19:20:d1:ad:b9:1e:0b:50:3a:f7:a8:6d:5b: 6e:a2:05:a2:5c:c6:f6:86:d1:56:9b:6a:b3:4d:8d:20:6c:4e: ad:2d:75:1d:c1:bf:81:ce:39:c6:ff:8f:7d:34:3d:aa:af:9b: ec:0b:c6:53:98:b5:30:b5:82:23:1f:17:9a:5a:ab:d5:07:44: 1d:bb:49:0a:5d:9c:9c:e9:57:9e:70:58:06:b1:6f:89:92:ab: 29:62:87:d7:7b:69:13:c0:58:07:f4:ca:33:85:c2:c2:d2:e4: ea:7e:de:9b:4f:48:ec:51:8a:8d:da:42:9b:56:4f:91:e3:09: 7a:d1:85:d3:58:ed:c9:3a:04:43:a6:10:fd:a5:a9:d9:44:5f: 42:90:16:09:8c:7f:6f:2c:0c:1c:7e:6e:e8:57:7c:91:2e:15: ac:99:d5:a2:0f:bc:88:e4:7f:b1:7f:6b:fe:c1:74:b3:cb:c5: 1e:c6:94:59:b3:10:68:64:f3:19:2b:11:27:47:5f:0e:78:77: d2:b8:1d:dc:79:02:52:f3:8c:6a:b8:50:42:35:53:7b:5e:a0: e0:e9:fe:1b:ca:74:4c:49:61:d7:90:da:c8:42:73:3d:94:c8: 2c:bb:c2:de -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULO3ajoDjxGJz25O3zQzQPZCXZj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUx QkJCNjNCRTAeFw0yNjAyMDExNzE2NDRaFw0yNjAyMDUwMjA3NDRaMDMxMTAvBgNV BAMTKDgzMjE2QTg1QjRGOENBRjc0RDUwMUIwNzRCQjZBMkU3REYzMDU4NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbIArlyr2eg2Knp3f8oEwwV6NE GWPfFFMvJinPs0I3JDUzB6R+9GkXO11Bj5U/3LUjkqI+ByZdq4MxpltMSOVi8Mjh UFM3hq79m/kLu01fg7yAiT/K+DkZ5h/IjCzaQzT7uxq+FPm02/dRJQEWzJMRywLp 9dX20OxbRPabODU6gHAPf0IssG3hqBGv+6L4NWXZjc8RQV5E4y8RFdUNsaRQeb1j 8b9wYUDmPab28N+HuRiT5B0n40Vjh7O+nCayPGasE33At3cHo0YDHzR9PwIFZDfT KUOthUDJhb4jS7x6OAxA4RpFBFM0MVPiYI8x2PXPnVs6rKeRRlS/QegxokT/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgyFqhbT4yvdNUBsHS7ai598wWFswHwYDVR0j BBgwFoAUr+4cewFmKEgilOPYlM/GhRu7Y74wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MWFiOGE1OC1mMTNmLTRmNzEtOWRkZS1hZWQ1N2VhNmRjYTcvMC9BRkVFMUM3QjAx NjYyODQ4MjI5NEUzRDg5NENGQzY4NTFCQkI2M0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2ODUxQkJC NjNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzFhYjhhNTgtZjEzZi00ZjcxLTlk ZGUtYWVkNTdlYTZkY2E3LzAvQUZFRTFDN0IwMTY2Mjg0ODIyOTRFM0Q4OTRDRkM2 ODUxQkJCNjNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABBjyscc0ZlTcREJBhYUQknhFrrxKehOGSDR rbkeC1A696htW26iBaJcxvaG0VabarNNjSBsTq0tdR3Bv4HOOcb/j300Paqvm+wL xlOYtTC1giMfF5paq9UHRB27SQpdnJzpV55wWAaxb4mSqylih9d7aRPAWAf0yjOF wsLS5Op+3ptPSOxRio3aQptWT5HjCXrRhdNY7ck6BEOmEP2lqdlEX0KQFgmMf28s DBx+buhXfJEuFayZ1aIPvIjkf7F/a/7BdLPLxR7GlFmzEGhk8xkrESdHXw54d9K4 Hdx5AlLzjGq4UEI1U3teoODp/hvKdExJYdeQ2shCcz2UyCy7wt4= -----END CERTIFICATE-----Generated at Mon Feb 2 10:05:15 2026 by rpki-client