This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: klbkGcSO3GzIe9ZpNE8M0s3R6Rx54kmkg0smnj97ezE= Subject key identifier: 4A:67:57:18:17:6A:23:7A:9A:11:01:85:31:28:D4:2F:79:2D:7B:FC Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 21964010836F397D2A0FFA1C8CB7187410D9920A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 026E Signing time: Thu 15 Jan 2026 10:42:05 +0000 Manifest this update: Thu 15 Jan 2026 10:37:05 +0000 Manifest next update: Sun 18 Jan 2026 21:43:05 +0000 Files and hashes: 1: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: 8LsQ0o13l8ogAxOFMBOFo2hrC8bQhG86xqQgvK9Q+lo=) 2: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: pN4ghT04j5zTe3lEB7yWGrreTGcCSMxjpmVgBxWJn+Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 Jan 2026 21:43:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:96:40:10:83:6f:39:7d:2a:0f:fa:1c:8c:b7:18:74:10:d9:92:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Jan 15 10:37:05 2026 GMT Not After : Jan 18 21:43:05 2026 GMT Subject: CN=4A675718176A237A9A1101853128D42F792D7BFC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:36:d4:fb:18:c2:07:ea:b8:f3:6d:6c:0f:44: 8f:51:72:db:5d:a8:74:89:b3:06:30:13:21:3e:64: 2c:a3:b3:c7:88:54:c8:9c:43:6e:de:97:8e:5b:95: ad:f9:38:81:70:80:5d:43:75:f5:1e:4e:19:de:96: a3:7e:9e:ce:d6:4d:71:be:38:21:15:5f:14:64:d3: e2:db:77:4d:a2:6d:ad:ad:78:8b:af:68:d2:80:84: 8e:14:a9:84:7a:ac:67:4d:44:e4:6c:c6:d0:3f:b7: 96:71:d7:97:85:73:7e:06:88:9d:32:bf:d3:e5:fb: 99:16:52:0f:ac:eb:15:d6:c7:8c:d0:f6:4c:83:47: 16:2a:8e:f4:b8:c9:3a:28:21:72:04:e5:cf:c8:f8: 07:fc:9e:6b:c5:cc:95:6c:8d:5f:c6:fb:3f:56:17: 2d:e7:11:cd:2c:a9:1e:4e:66:12:79:27:bb:ef:19: e4:83:f1:46:e8:62:01:bb:a1:bf:05:5c:10:26:ac: 2a:e6:ec:37:3a:1e:7c:7c:61:4f:9d:93:38:03:84: e5:c8:a5:0f:5a:86:74:3c:60:93:f2:dd:61:a7:63: 14:03:b4:cc:f4:3d:dd:cb:24:72:fe:59:0b:44:97: 44:42:b4:4e:bf:8a:7f:64:dc:ea:8c:c4:26:ec:6f: 4a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:67:57:18:17:6A:23:7A:9A:11:01:85:31:28:D4:2F:79:2D:7B:FC X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:64:a1:f8:bd:ae:1c:2f:7c:13:7d:ed:94:61:f4:6f:62:43: 2f:bc:c7:29:54:59:c1:a3:d4:a3:39:d7:6e:85:28:a5:32:ab: 11:ff:b6:3b:dc:c2:78:e5:26:f8:8e:70:ce:03:16:45:f6:2a: 02:84:e1:6a:24:fc:b8:1c:b9:83:1b:3c:84:4c:25:fb:92:5b: bb:f5:5b:bc:de:33:8e:80:ed:0a:27:6f:7e:7b:53:26:bf:70: 56:fe:ea:d6:6a:d2:81:6e:12:04:3e:47:6b:28:c0:0d:84:fe: f8:00:26:a7:f9:bf:58:ce:e6:3e:a2:3b:dc:9b:01:46:03:c2: 04:ca:ee:47:91:7d:f0:83:a2:e6:f2:0f:eb:32:45:a4:40:f0: 0c:70:0c:6d:17:a9:de:5f:3d:93:4f:bf:db:53:f6:99:2e:cc: 8a:d9:22:ce:98:e2:8a:63:d1:68:f6:7c:17:77:2f:1d:78:d9: 8d:29:19:1f:f7:10:7e:d0:76:36:3f:0c:95:9d:66:28:f0:28: f9:77:dc:fc:dc:bb:1d:11:8c:5a:e3:fb:f7:03:39:35:cb:8d: fb:a9:d3:a3:ba:23:d1:46:11:da:57:38:e9:06:e1:b2:47:f8: 6b:1c:e4:53:aa:94:4c:05:5a:30:37:45:3e:53:83:b7:46:be: b0:92:66:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIZZAEINvOX0qD/ocjLcYdBDZkgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNjAxMTUxMDM3MDVaFw0yNjAxMTgyMTQzMDVaMDMxMTAvBgNV BAMTKDRBNjc1NzE4MTc2QTIzN0E5QTExMDE4NTMxMjhENDJGNzkyRDdCRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRNtT7GMIH6rjzbWwPRI9Rcttd qHSJswYwEyE+ZCyjs8eIVMicQ27el45bla35OIFwgF1DdfUeThnelqN+ns7WTXG+ OCEVXxRk0+Lbd02iba2teIuvaNKAhI4UqYR6rGdNRORsxtA/t5Zx15eFc34GiJ0y v9Pl+5kWUg+s6xXWx4zQ9kyDRxYqjvS4yTooIXIE5c/I+Af8nmvFzJVsjV/G+z9W Fy3nEc0sqR5OZhJ5J7vvGeSD8UboYgG7ob8FXBAmrCrm7Dc6Hnx8YU+dkzgDhOXI pQ9ahnQ8YJPy3WGnYxQDtMz0Pd3LJHL+WQtEl0RCtE6/in9k3OqMxCbsb0rJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSmdXGBdqI3qaEQGFMSjUL3kte/wwHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAApkofi9rhwvfBN97ZRh9G9iQy+8xylUWcGj 1KM5126FKKUyqxH/tjvcwnjlJviOcM4DFkX2KgKE4Wok/LgcuYMbPIRMJfuSW7v1 W7zeM46A7Qonb357Uya/cFb+6tZq0oFuEgQ+R2sowA2E/vgAJqf5v1jO5j6iO9yb AUYDwgTK7keRffCDoubyD+syRaRA8AxwDG0Xqd5fPZNPv9tT9pkuzIrZIs6Y4opj 0Wj2fBd3Lx142Y0pGR/3EH7QdjY/DJWdZijwKPl33Pzcux0RjFrj+/cDOTXLjfup 06O6I9FGEdpXOOkG4bJH+Gsc5FOqlEwFWjA3RT5Tg7dGvrCSZq0= -----END CERTIFICATE-----Generated at Fri Jan 16 17:23:06 2026 by rpki-client