This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: Ijjalgg/30C+a8Q1XRII2Xhxr1WF8nioyRPinT106hw= Subject key identifier: CD:80:87:B9:E2:10:33:3A:9F:31:B4:EF:EA:06:D9:B9:BF:C7:97:8D Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 0994E4490F6F5E0E6B0A447B87EF42CFE70A22AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 0316 Signing time: Wed 21 Jan 2026 11:21:16 +0000 Manifest this update: Wed 21 Jan 2026 11:16:16 +0000 Manifest next update: Sat 24 Jan 2026 19:49:16 +0000 Files and hashes: 1: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (hash: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU=) 2: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: 0qCM2olgS4oE+YIGItrwN9xQiW2Tx+5S0Vcz+QMGK2k=) 3: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: wEdCO3YyXLUpfkiKLdOWDdPh+9yeo9Z0D5c9ufB6gOc=) 4: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: PEmKPOpKgU+WomMORsumpgGx7scV39hivoZxucJ6Akg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 Jan 2026 13:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:94:e4:49:0f:6f:5e:0e:6b:0a:44:7b:87:ef:42:cf:e7:0a:22:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Jan 21 11:16:16 2026 GMT Not After : Jan 24 19:49:16 2026 GMT Subject: CN=CD8087B9E210333A9F31B4EFEA06D9B9BFC7978D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:90:3e:5a:72:4e:9d:8f:bd:87:b0:75:cd:e8: 05:99:ed:49:75:83:f5:b8:e7:a7:a2:67:48:c2:4d: ba:27:3a:e9:ac:0e:31:6d:7b:98:ae:e5:84:5b:ae: e2:bb:d6:e2:c5:90:5f:11:51:70:82:63:96:75:70: 25:96:84:1e:80:bc:12:0c:cc:15:d8:b8:da:8c:99: 36:a8:25:8d:23:42:2a:81:5d:fd:34:aa:ef:f2:a3: 5d:63:94:e4:8f:08:e2:88:44:79:ea:20:15:6a:f1: 73:c5:86:da:f5:02:b3:44:6e:0f:ff:73:78:05:b8: f4:a5:2b:51:87:c0:23:ec:2a:00:a9:f8:5e:27:c1: 89:ed:66:fc:6a:50:44:03:61:e9:7e:cb:f3:0e:62: fb:f9:00:a3:1f:46:d9:8f:92:92:92:1c:ca:db:93: 14:77:ce:95:98:67:75:e4:04:08:95:9c:f9:33:1a: ce:6f:93:a9:72:a6:dd:6b:07:7d:83:c1:f9:04:41: 17:d0:2a:1b:7f:ac:d9:63:62:e2:7b:86:cf:00:a5: 0b:cd:a7:3c:8e:87:f7:b8:1e:b6:03:d0:7d:55:75: 20:ea:f4:aa:8e:5e:c7:0d:61:ce:d1:1d:82:df:cd: c0:82:33:2f:06:9a:23:0a:d4:d0:82:5d:ae:19:f0: 53:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:80:87:B9:E2:10:33:3A:9F:31:B4:EF:EA:06:D9:B9:BF:C7:97:8D X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:a4:44:c4:bd:30:69:b0:0f:1a:ee:fb:73:fa:00:f4:a9:95: 46:9c:7b:1c:a5:af:12:68:87:2a:c0:c5:27:ba:88:eb:68:67: ee:7e:df:ec:97:1e:1a:95:9a:75:29:08:05:51:26:92:47:28: 5e:1f:e7:2f:ba:3e:d7:d0:ca:e8:08:85:79:4b:c5:ac:47:26: a1:fc:a4:da:d5:fd:d5:01:da:fd:a6:0a:f9:55:85:c4:a6:79: cd:c6:3e:a3:c2:ff:ea:46:f7:2b:38:68:27:d9:d2:e5:8c:01: 8a:c0:3f:8d:4b:a7:21:46:db:0d:58:f5:04:fa:67:42:35:a4: 13:62:6e:fe:22:cf:4f:be:53:3c:90:99:10:d8:f4:22:21:88: 9b:4f:15:ee:fc:ab:2b:1d:c6:59:c7:76:57:35:40:18:88:97: d8:46:34:c9:ad:90:07:7e:76:5e:b8:c9:44:3b:c8:4b:d6:fc: 1f:7d:a7:45:d0:67:40:15:97:28:2c:b2:c8:79:12:d5:19:94: d7:d9:48:0d:2e:68:5e:45:d1:1c:40:22:83:bf:ea:08:74:ff: 17:fc:94:e9:f5:f8:1f:4c:77:24:27:cc:4f:93:af:c7:42:5e: 96:c4:9c:f1:07:01:25:6e:c1:91:94:15:81:6b:af:31:c0:07: 4f:98:56:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCZTkSQ9vXg5rCkR7h+9Cz+cKIq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNjAxMjExMTE2MTZaFw0yNjAxMjQxOTQ5MTZaMDMxMTAvBgNV BAMTKENEODA4N0I5RTIxMDMzM0E5RjMxQjRFRkVBMDZEOUI5QkZDNzk3OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmkD5ack6dj72HsHXN6AWZ7Ul1 g/W456eiZ0jCTbonOumsDjFte5iu5YRbruK71uLFkF8RUXCCY5Z1cCWWhB6AvBIM zBXYuNqMmTaoJY0jQiqBXf00qu/yo11jlOSPCOKIRHnqIBVq8XPFhtr1ArNEbg// c3gFuPSlK1GHwCPsKgCp+F4nwYntZvxqUEQDYel+y/MOYvv5AKMfRtmPkpKSHMrb kxR3zpWYZ3XkBAiVnPkzGs5vk6lypt1rB32DwfkEQRfQKht/rNljYuJ7hs8ApQvN pzyOh/e4HrYD0H1VdSDq9KqOXscNYc7RHYLfzcCCMy8GmiMK1NCCXa4Z8FPTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzYCHueIQMzqfMbTv6gbZub/Hl40wHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACGkRMS9MGmwDxru+3P6APSplUacexylrxJo hyrAxSe6iOtoZ+5+3+yXHhqVmnUpCAVRJpJHKF4f5y+6PtfQyugIhXlLxaxHJqH8 pNrV/dUB2v2mCvlVhcSmec3GPqPC/+pG9ys4aCfZ0uWMAYrAP41LpyFG2w1Y9QT6 Z0I1pBNibv4iz0++UzyQmRDY9CIhiJtPFe78qysdxlnHdlc1QBiIl9hGNMmtkAd+ dl64yUQ7yEvW/B99p0XQZ0AVlygsssh5EtUZlNfZSA0uaF5F0RxAIoO/6gh0/xf8 lOn1+B9MdyQnzE+Tr8dCXpbEnPEHASVuwZGUFYFrrzHAB0+YVrk= -----END CERTIFICATE-----Generated at Wed Jan 21 14:45:35 2026 by rpki-client