This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: ZtBvzM1o/mbNZvT1DRPdkv7bT4VvC1xuJ9GOMdqHQCs= Subject key identifier: DC:15:9D:5E:AD:AC:45:05:3A:37:80:FC:47:24:BA:FD:E0:9A:6A:EF Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 774A1234303B0548033F9C1A5601827B66742582 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 02C7 Signing time: Wed 21 Jan 2026 07:30:53 +0000 Manifest this update: Wed 21 Jan 2026 07:25:53 +0000 Manifest next update: Sat 24 Jan 2026 19:18:53 +0000 Files and hashes: 1: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) 2: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: 1DYt1xxMhnasQ/ifQV0pprbdZf4PpA2mwvIo8444898=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:4a:12:34:30:3b:05:48:03:3f:9c:1a:56:01:82:7b:66:74:25:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Jan 21 07:25:53 2026 GMT Not After : Jan 24 19:18:53 2026 GMT Subject: CN=DC159D5EADAC45053A3780FC4724BAFDE09A6AEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:38:ce:5c:a9:6f:96:32:39:30:45:ea:c6:e4: 32:29:35:38:2e:ea:f1:8f:4d:dc:93:9a:5c:2f:ba: f7:67:9f:60:4f:66:4a:75:00:9c:13:8c:32:db:70: f5:15:52:ff:19:0d:a4:bc:66:7d:bf:c0:40:ac:63: 6c:6c:31:c6:00:d1:3b:c7:41:c6:e7:26:d1:8d:6d: c6:ea:81:d3:37:08:51:eb:41:ec:47:cf:81:d0:9e: a5:ed:9a:d9:bd:45:db:47:ee:65:29:97:f5:89:9c: a7:b2:d5:e8:d6:7e:0b:92:6d:c1:cd:b0:e1:80:52: 7b:c6:e3:bb:88:ca:ac:20:41:6e:63:0f:49:a0:98: 4d:08:3d:d0:5f:23:ba:be:98:0d:1a:a9:0d:9f:3a: ca:79:50:08:0d:b5:f8:86:82:e4:55:23:1f:99:47: 0a:97:80:e3:c2:07:5e:d0:9f:59:8e:91:29:71:c4: 5d:8d:0e:47:07:40:6d:1f:e3:59:14:37:2f:2a:ff: 5d:a0:78:58:83:6c:45:f6:c8:5d:ac:d9:28:61:b3: 92:cc:7e:2f:53:29:b7:e3:94:58:c1:f8:26:76:98: dc:92:81:68:4c:37:0e:0e:2a:5e:9e:ee:80:97:04: ae:fe:82:09:79:7b:07:a4:34:67:a1:6e:56:8d:d2: b4:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:15:9D:5E:AD:AC:45:05:3A:37:80:FC:47:24:BA:FD:E0:9A:6A:EF X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:90:e5:e2:fb:b7:d6:df:0c:41:29:3c:c6:1b:47:5c:1e:c3: 36:bb:f1:f7:ff:49:55:9b:ee:17:90:c4:91:b3:4b:45:a3:0f: 1b:8c:57:d3:ba:df:41:8b:8b:29:33:08:76:12:28:b9:d7:9c: 96:4b:63:71:a7:54:21:ba:f5:9b:f5:fb:31:0f:5c:28:83:fd: 16:ba:4c:cc:56:76:f1:71:34:16:6d:4c:d6:88:f9:38:a8:d6: 9d:0a:88:9b:0c:f2:2a:28:40:8b:9c:90:c7:4a:77:bd:67:99: 10:2d:08:cd:5f:7f:bb:fd:c4:91:6f:46:9d:d9:b0:77:af:3d: 0f:5a:1c:08:c8:b7:90:51:ec:f2:22:10:e8:78:15:cd:50:38: fc:9b:11:3e:c1:9e:ee:f4:4e:20:e9:a1:17:29:1d:5c:5b:7d: b1:d4:30:d1:17:72:a8:97:06:4a:1e:e8:37:4f:44:be:6f:b6: 79:81:90:01:fa:f7:88:0e:2a:9f:c0:72:a3:9e:db:ed:dc:0f: a5:f9:b0:2d:aa:c2:d8:e9:69:96:21:36:f0:cc:a1:e3:e7:3e: 07:f6:68:f1:6f:bf:95:b7:3a:d5:fb:eb:7a:1d:21:e8:4a:09: ca:00:18:9b:a5:12:f6:89:0f:14:ee:5f:11:e4:ad:d2:cc:ea: b2:06:50:c6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd0oSNDA7BUgDP5waVgGCe2Z0JYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNjAxMjEwNzI1NTNaFw0yNjAxMjQxOTE4NTNaMDMxMTAvBgNV BAMTKERDMTU5RDVFQURBQzQ1MDUzQTM3ODBGQzQ3MjRCQUZERTA5QTZBRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGOM5cqW+WMjkwRerG5DIpNTgu 6vGPTdyTmlwvuvdnn2BPZkp1AJwTjDLbcPUVUv8ZDaS8Zn2/wECsY2xsMcYA0TvH QcbnJtGNbcbqgdM3CFHrQexHz4HQnqXtmtm9RdtH7mUpl/WJnKey1ejWfguSbcHN sOGAUnvG47uIyqwgQW5jD0mgmE0IPdBfI7q+mA0aqQ2fOsp5UAgNtfiGguRVIx+Z RwqXgOPCB17Qn1mOkSlxxF2NDkcHQG0f41kUNy8q/12geFiDbEX2yF2s2Shhs5LM fi9TKbfjlFjB+CZ2mNySgWhMNw4OKl6e7oCXBK7+ggl5ewekNGehblaN0rSRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3BWdXq2sRQU6N4D8RyS6/eCaau8wHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHuQ5eL7t9bfDEEpPMYbR1wewza78ff/SVWb 7heQxJGzS0WjDxuMV9O630GLiykzCHYSKLnXnJZLY3GnVCG69Zv1+zEPXCiD/Ra6 TMxWdvFxNBZtTNaI+Tio1p0KiJsM8iooQIuckMdKd71nmRAtCM1ff7v9xJFvRp3Z sHevPQ9aHAjIt5BR7PIiEOh4Fc1QOPybET7Bnu70TiDpoRcpHVxbfbHUMNEXcqiX Bkoe6DdPRL5vtnmBkAH694gOKp/AcqOe2+3cD6X5sC2qwtjpaZYhNvDMoePnPgf2 aPFvv5W3OtX763odIehKCcoAGJulEvaJDxTuXxHkrdLM6rIGUMY= -----END CERTIFICATE-----Generated at Wed Jan 21 14:45:34 2026 by rpki-client