This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: nPnCMebfjEtB0TPemtfP3JPYI36ViZBb4HB3sKtX/zs= Subject key identifier: 92:3F:CD:A2:FA:92:47:11:0A:17:29:37:84:A9:3A:09:D6:BA:07:01 Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 10B56494E782233C235AA03B73901A5A71F2F1C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: BC Signing time: Mon 02 Feb 2026 06:42:11 +0000 Manifest this update: Mon 02 Feb 2026 06:37:10 +0000 Manifest next update: Thu 05 Feb 2026 16:38:10 +0000 Files and hashes: 1: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: 4k5l0oKGlgrseypJOAcgbZ3voSGQS5pK7FIolyad81E=) 2: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: tGZJC6gHp+rBRUU+fviXr/Qmv6Fq3jy2euNYPnmiMt4=) 3: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: HqTyhMmIQNWyd9Uu39hBDh2ymSKez80mYyj1XdusXb0=) 4: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: oGQ7qinx+Gq/z/OHqCPTDvbbtEcNcZyW0hzO7hvIW/U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:b5:64:94:e7:82:23:3c:23:5a:a0:3b:73:90:1a:5a:71:f2:f1:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Feb 2 06:37:10 2026 GMT Not After : Feb 5 16:38:10 2026 GMT Subject: CN=923FCDA2FA9247110A17293784A93A09D6BA0701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:34:3d:28:50:f5:50:c1:8b:a4:eb:65:08:c6: cd:5f:b1:f3:39:00:98:c3:71:78:a7:73:c5:45:81: 47:ec:84:71:b0:48:ea:a9:72:02:be:26:fc:da:04: 41:a4:17:08:3e:10:17:4d:7a:b9:0d:c7:5e:a4:ff: 5d:e1:e1:49:27:23:2e:8a:23:b1:45:e8:b6:09:27: ac:41:dc:8f:a5:ed:7b:d6:e9:99:58:e3:7e:a8:f0: 9c:dc:12:5b:5b:6e:80:67:71:41:19:66:c9:84:1c: dd:3b:b9:25:10:a0:68:9f:83:eb:3f:27:cc:be:f0: 18:05:45:50:9d:5d:52:9b:7e:31:ac:aa:bf:af:97: e3:28:92:0c:7f:c2:d0:44:4d:a0:9a:ee:7e:43:e4: 39:bf:48:71:df:b7:11:7e:f0:6e:f9:b4:c1:5e:5e: d2:3f:dd:a2:52:90:34:d9:73:5a:90:fc:dd:11:ca: b1:d3:27:81:e2:cc:de:c2:3a:d3:0c:14:9a:da:ee: 17:37:7b:5e:71:03:9b:d4:13:6a:12:17:d5:83:68: 06:7e:e5:db:02:8e:ac:66:5b:aa:a0:a0:bb:c5:c9: 0d:b0:3b:d6:00:e7:d3:36:58:50:ea:4a:5b:85:65: 2b:53:fb:fb:5f:c6:e5:91:da:82:5b:f7:e2:c8:13: 6a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3F:CD:A2:FA:92:47:11:0A:17:29:37:84:A9:3A:09:D6:BA:07:01 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:9f:6f:52:73:70:f6:a1:84:32:04:57:61:cd:0d:5c:a3:86: e7:d1:43:7c:3a:49:f6:7e:fd:9a:7c:fc:ea:b1:f6:94:82:0f: 18:6a:63:4f:2c:17:aa:c3:b1:8f:b8:fd:a4:04:44:cc:02:45: 9f:72:6c:04:b5:fe:6d:8f:a5:87:a2:c0:fd:9e:f9:76:46:e1: 36:3a:71:7b:bb:88:c0:5c:97:ae:09:62:bc:94:70:71:00:10: 3e:e1:f0:fb:22:b1:88:56:82:37:87:cf:12:7f:4e:f1:5d:93: 25:8f:52:66:b9:fe:27:79:b8:73:b0:c0:35:7f:7c:5d:03:52: a0:ed:fe:16:d3:ca:78:ac:78:cc:7c:7f:d6:4c:2e:4a:99:dd: 18:9f:59:78:e7:14:66:13:ba:1a:82:14:09:89:00:c2:b9:9b: 64:ff:3a:f5:d3:31:ca:4d:6b:1f:44:50:ab:5e:77:2f:c9:d0: ca:ab:ea:78:95:31:9f:f2:66:1b:db:6b:b3:38:85:b9:9b:eb: ea:c5:dc:33:84:60:ad:d5:6d:9f:ab:af:b6:d9:6a:dd:78:dc: 7e:f9:a6:ea:6d:f5:92:49:11:fa:bd:62:0b:4c:6c:d9:08:d9: ea:1a:2a:e3:12:c8:29:77:4f:71:88:fb:2d:c7:f4:4e:3e:42: 15:f7:29:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUELVklOeCIzwjWqA7c5AaWnHy8ccwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNjAyMDIwNjM3MTBaFw0yNjAyMDUxNjM4MTBaMDMxMTAvBgNV BAMTKDkyM0ZDREEyRkE5MjQ3MTEwQTE3MjkzNzg0QTkzQTA5RDZCQTA3MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgND0oUPVQwYuk62UIxs1fsfM5 AJjDcXinc8VFgUfshHGwSOqpcgK+JvzaBEGkFwg+EBdNerkNx16k/13h4UknIy6K I7FF6LYJJ6xB3I+l7XvW6ZlY436o8JzcEltbboBncUEZZsmEHN07uSUQoGifg+s/ J8y+8BgFRVCdXVKbfjGsqr+vl+Mokgx/wtBETaCa7n5D5Dm/SHHftxF+8G75tMFe XtI/3aJSkDTZc1qQ/N0RyrHTJ4HizN7COtMMFJra7hc3e15xA5vUE2oSF9WDaAZ+ 5dsCjqxmW6qgoLvFyQ2wO9YA59M2WFDqSluFZStT+/tfxuWR2oJb9+LIE2oJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkj/NovqSRxEKFyk3hKk6Cda6BwEwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALKfb1JzcPahhDIEV2HNDVyjhufRQ3w6SfZ+ /Zp8/Oqx9pSCDxhqY08sF6rDsY+4/aQERMwCRZ9ybAS1/m2PpYeiwP2e+XZG4TY6 cXu7iMBcl64JYryUcHEAED7h8PsisYhWgjeHzxJ/TvFdkyWPUma5/id5uHOwwDV/ fF0DUqDt/hbTyniseMx8f9ZMLkqZ3RifWXjnFGYTuhqCFAmJAMK5m2T/OvXTMcpN ax9EUKtedy/J0Mqr6niVMZ/yZhvba7M4hbmb6+rF3DOEYK3VbZ+rr7bZat143H75 pupt9ZJJEfq9YgtMbNkI2eoaKuMSyCl3T3GI+y3H9E4+QhX3Kec= -----END CERTIFICATE-----Generated at Mon Feb 2 09:48:41 2026 by rpki-client