This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: djrFi/dQPFNujyB2UG53Kbzs2vLqPu4FIldgIJOQXzo= Subject key identifier: 16:55:AD:F8:E6:9C:12:89:BF:53:FD:33:2A:65:19:24:5D:91:DE:05 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 62AAB5E83A92A7F3D85D24E9DC4F0D6377C66423 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 0553 Signing time: Sun 01 Feb 2026 02:52:12 +0000 Manifest this update: Sun 01 Feb 2026 02:47:12 +0000 Manifest next update: Wed 04 Feb 2026 09:21:12 +0000 Files and hashes: 1: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) 2: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) 3: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 4: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: hGYP6fHkPbSB8UZsMp1ja8OYEAb/P5IKlrTfY2AjOOg=) 5: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 09:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:aa:b5:e8:3a:92:a7:f3:d8:5d:24:e9:dc:4f:0d:63:77:c6:64:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Feb 1 02:47:12 2026 GMT Not After : Feb 4 09:21:12 2026 GMT Subject: CN=1655ADF8E69C1289BF53FD332A6519245D91DE05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b6:40:78:50:be:ac:86:ef:5c:93:6f:6f:da: 0f:d0:74:d0:48:84:b5:9d:91:6d:18:57:b1:e2:7f: f0:97:2c:af:dc:3a:72:3e:39:15:33:94:26:f2:6b: dd:e2:23:dd:98:84:f7:fd:d1:7d:22:e0:ab:d5:91: 10:1a:f1:ae:72:e3:e7:6f:61:23:43:57:4f:82:ae: 7d:0f:46:60:c2:ac:03:25:49:e4:c4:13:b9:53:b6: c8:dd:bb:31:16:f2:ad:e1:df:38:56:7d:2f:11:e1: fe:8a:78:dd:ed:99:60:4a:7a:79:36:59:2a:12:17: da:16:9a:b8:67:06:bc:71:f8:29:15:a7:b9:f3:ae: b4:3c:d4:b0:01:70:88:06:95:a8:a8:04:5e:f2:52: 27:65:ca:da:a5:db:81:f9:13:eb:9a:15:d2:60:7c: e6:f1:b7:f8:12:e9:c3:a2:13:a2:16:ec:e2:de:61: 72:97:d4:59:7f:06:bb:32:cc:77:28:dd:4f:6e:0f: 7d:8c:27:a6:90:8f:9a:46:81:6a:cd:69:c1:73:5a: 5f:79:ed:a1:44:14:ab:96:f3:f8:9f:ae:cf:da:6b: 59:21:af:2f:8e:56:91:44:83:43:4a:56:66:da:46: 9f:a5:cf:ac:b4:2b:6f:2e:a7:eb:3c:a1:93:44:ad: 87:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:55:AD:F8:E6:9C:12:89:BF:53:FD:33:2A:65:19:24:5D:91:DE:05 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:df:1a:27:68:e4:87:df:f2:7b:9d:ba:0f:ec:7a:76:cc:b7: 8c:10:e4:1a:4d:97:c5:3f:3e:83:be:c6:15:77:a3:92:d8:94: 1d:f5:a0:ed:24:0c:b0:af:d9:45:a3:48:fc:20:63:e8:0c:30: a9:32:6d:fc:ef:ac:8a:cf:43:84:42:a8:e3:c9:35:5b:a9:87: e7:50:ba:6f:ba:88:8e:8d:bb:07:ef:02:66:9f:18:c4:82:0c: ac:0c:1a:c6:6e:60:fd:41:1d:91:d1:c2:85:0f:c4:cc:47:30: ef:95:04:89:34:60:96:88:17:5f:95:1b:f2:44:d3:6a:45:18: 85:ab:8d:97:2b:ad:61:7c:12:0d:c7:5b:ae:dc:23:c5:1b:63: 9e:c7:f2:92:bc:a0:d2:9f:1a:cf:3b:62:3e:9f:77:23:05:0a: 55:03:93:14:7f:0a:1f:a4:22:03:22:a6:73:69:19:f1:f5:b6: 5e:3f:d6:da:bf:14:5d:42:61:44:cd:97:aa:ef:41:90:b6:ab: 9b:77:9c:57:35:49:06:89:58:83:d0:da:1c:56:f8:ac:0f:d6: d4:16:7f:6c:f3:04:a7:b4:28:34:9c:0f:c4:dd:6f:de:c8:bc: be:46:31:b6:4d:f0:b6:83:46:12:7f:bf:3f:d6:8d:74:8d:7e: 61:07:6d:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYqq16DqSp/PYXSTp3E8NY3fGZCMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNjAyMDEwMjQ3MTJaFw0yNjAyMDQwOTIxMTJaMDMxMTAvBgNV BAMTKDE2NTVBREY4RTY5QzEyODlCRjUzRkQzMzJBNjUxOTI0NUQ5MURFMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPtkB4UL6shu9ck29v2g/QdNBI hLWdkW0YV7Hif/CXLK/cOnI+ORUzlCbya93iI92YhPf90X0i4KvVkRAa8a5y4+dv YSNDV0+Crn0PRmDCrAMlSeTEE7lTtsjduzEW8q3h3zhWfS8R4f6KeN3tmWBKenk2 WSoSF9oWmrhnBrxx+CkVp7nzrrQ81LABcIgGlaioBF7yUidlytql24H5E+uaFdJg fObxt/gS6cOiE6IW7OLeYXKX1Fl/BrsyzHco3U9uD32MJ6aQj5pGgWrNacFzWl95 7aFEFKuW8/ifrs/aa1khry+OVpFEg0NKVmbaRp+lz6y0K28up+s8oZNErYdTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFlWt+OacEom/U/0zKmUZJF2R3gUwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALHfGido5Iff8nudug/senbMt4wQ5BpNl8U/ PoO+xhV3o5LYlB31oO0kDLCv2UWjSPwgY+gMMKkybfzvrIrPQ4RCqOPJNVuph+dQ um+6iI6NuwfvAmafGMSCDKwMGsZuYP1BHZHRwoUPxMxHMO+VBIk0YJaIF1+VG/JE 02pFGIWrjZcrrWF8Eg3HW67cI8UbY57H8pK8oNKfGs87Yj6fdyMFClUDkxR/Ch+k IgMipnNpGfH1tl4/1tq/FF1CYUTNl6rvQZC2q5t3nFc1SQaJWIPQ2hxW+KwP1tQW f2zzBKe0KDScD8Tdb97IvL5GMbZN8LaDRhJ/vz/WjXSNfmEHbcI= -----END CERTIFICATE-----Generated at Mon Feb 2 09:43:31 2026 by rpki-client