This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft File: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json) Hash identifier: H6Sx+GcNToK/TVe/bgh6NTyh6fsz3mCgcTgG6E7e2Rs= Subject key identifier: 92:E5:78:8D:18:A5:A3:05:6F:B1:AA:93:41:D5:61:57:CE:35:37:5C Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 0AC80A68BB61929DB3E1F5037BFA1779EABAF878 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft Manifest number: 03BD Signing time: Sat 31 Jan 2026 18:42:22 +0000 Manifest this update: Sat 31 Jan 2026 18:37:22 +0000 Manifest next update: Wed 04 Feb 2026 02:17:22 +0000 Files and hashes: 1: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: ylDWnunXe+P0sSpHe2ems7WUQ+PsguFxQzvub0cWxiw=) 2: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: rNa2on5+DMAnzayjr8XpEII8JqHWgOprf/5TlZrlTb0=) 3: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: 64jfCMzS9SNwybhYWGTyCsup5MxrhA9wwSlDSbgml44=) 4: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: fYk1A/6JlSofdoRQTxZ35IGs4jax1F7uqVxTxU6HBk4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 02:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c8:0a:68:bb:61:92:9d:b3:e1:f5:03:7b:fa:17:79:ea:ba:f8:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Jan 31 18:37:22 2026 GMT Not After : Feb 4 02:17:22 2026 GMT Subject: CN=92E5788D18A5A3056FB1AA9341D56157CE35375C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:80:d2:d1:1a:78:a7:0c:ff:c0:75:68:59:ee: 18:96:62:f3:de:16:21:fc:97:f3:08:c5:c1:d2:a1: de:67:ca:59:03:ae:4c:84:e7:14:b9:b6:75:33:07: aa:57:1c:d9:cf:7a:a2:64:f2:60:22:87:44:29:bd: 2b:1e:a6:8a:20:a2:51:d4:b4:29:06:f9:83:80:ca: 0d:df:58:cf:15:1a:57:c8:08:7d:9e:09:88:52:45: aa:db:2b:e8:7f:06:9a:50:15:a2:0d:7c:5d:30:bf: 78:b0:5d:02:1d:72:79:cd:15:75:4a:29:c1:09:71: 30:99:bc:09:9d:3e:ea:2c:6b:33:a3:79:91:ad:58: 3c:dd:a3:41:25:3f:43:ad:cf:3f:18:6a:b2:56:f1: 51:12:b8:94:2b:77:5c:89:14:03:a8:d1:8f:f8:56: 8e:ab:bc:a2:51:d6:ce:dd:d1:c7:ef:ed:88:69:a5: 45:74:c9:6a:fe:72:63:55:9b:28:ef:93:9a:23:e8: d8:a3:ba:ad:96:e3:57:03:be:91:a3:65:32:b9:7d: 2e:8e:a0:3b:18:c0:45:b8:40:57:bd:96:cd:10:3b: fa:21:61:dd:be:58:c8:3c:10:06:3f:1c:e0:d8:0a: 96:4b:ff:59:99:aa:ff:ac:b0:7e:0c:f0:55:88:2c: 29:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:E5:78:8D:18:A5:A3:05:6F:B1:AA:93:41:D5:61:57:CE:35:37:5C X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:41:e1:88:da:64:e0:45:f7:1e:34:a1:4e:58:94:16:ce:b9: 44:06:5c:ac:bd:83:ca:f3:91:bf:88:14:a7:ec:f6:f6:59:37: 2d:09:61:41:4f:89:6f:1b:70:0d:90:97:dd:cb:e4:33:f8:02: 3f:b0:52:b3:7e:63:3d:29:02:92:3f:5e:ef:75:7b:87:5e:ad: e0:c6:0c:7a:fa:a3:5f:65:4b:02:d9:f5:84:48:46:f1:e3:4c: bd:fb:e2:bf:15:2c:b4:5e:8a:36:93:f0:c1:ca:58:bc:c9:37: c8:a4:5a:ba:92:08:32:8a:fc:fe:ee:46:09:68:f3:6e:94:3e: ae:46:6e:47:2c:d3:75:47:ad:be:87:9a:7f:3d:7f:b9:2d:94: 1c:3a:58:71:cd:08:dd:11:dd:ee:b7:44:3a:e3:18:d6:df:1e: ad:62:6b:3b:56:26:3d:7a:2d:06:ad:49:a9:d5:15:b7:c9:a0: 24:aa:bb:91:32:62:ec:a9:47:e6:70:dc:97:b4:2f:c8:32:52: ba:96:c7:a3:a3:25:a8:91:d4:3d:87:39:cd:c0:28:13:07:1a: 3b:51:92:95:3e:4f:e9:89:01:25:a5:82:8a:a6:9a:43:d9:5d: 4b:81:c8:eb:ec:53:56:45:69:37:1d:ec:9f:15:93:c9:3f:bb: 44:a9:27:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCsgKaLthkp2z4fUDe/oXeeq6+HgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNjAxMzExODM3MjJaFw0yNjAyMDQwMjE3MjJaMDMxMTAvBgNV BAMTKDkyRTU3ODhEMThBNUEzMDU2RkIxQUE5MzQxRDU2MTU3Q0UzNTM3NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0gNLRGninDP/AdWhZ7hiWYvPe FiH8l/MIxcHSod5nylkDrkyE5xS5tnUzB6pXHNnPeqJk8mAih0QpvSsepoogolHU tCkG+YOAyg3fWM8VGlfICH2eCYhSRarbK+h/BppQFaINfF0wv3iwXQIdcnnNFXVK KcEJcTCZvAmdPuosazOjeZGtWDzdo0ElP0Otzz8YarJW8VESuJQrd1yJFAOo0Y/4 Vo6rvKJR1s7d0cfv7YhppUV0yWr+cmNVmyjvk5oj6Nijuq2W41cDvpGjZTK5fS6O oDsYwEW4QFe9ls0QO/ohYd2+WMg8EAY/HODYCpZL/1mZqv+ssH4M8FWILCnjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkuV4jRilowVvsaqTQdVhV841N1wwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDQyMTk4NWItYTBlNi00ZTA1LWJl ZjYtZmU2ZjVhNmUyZjQzLzAvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUy RDRDRkQ3RTI2Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADBB4YjaZOBF9x40oU5YlBbOuUQGXKy9g8rz kb+IFKfs9vZZNy0JYUFPiW8bcA2Ql93L5DP4Aj+wUrN+Yz0pApI/Xu91e4dereDG DHr6o19lSwLZ9YRIRvHjTL374r8VLLReijaT8MHKWLzJN8ikWrqSCDKK/P7uRglo 826UPq5Gbkcs03VHrb6Hmn89f7ktlBw6WHHNCN0R3e63RDrjGNbfHq1iaztWJj16 LQatSanVFbfJoCSqu5EyYuypR+Zw3Je0L8gyUrqWx6OjJaiR1D2HOc3AKBMHGjtR kpU+T+mJASWlgoqmmkPZXUuByOvsU1ZFaTcd7J8Vk8k/u0SpJw4= -----END CERTIFICATE-----Generated at Mon Feb 2 09:43:13 2026 by rpki-client