This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft File: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft (raw, json) Hash identifier: YZ/DFfD01PUzXPTIcgv97hEp2MNDcW5S3aBrd485Tj4= Subject key identifier: CD:36:61:70:FA:42:45:02:35:44:9A:2A:B1:73:CE:AE:82:22:07:25 Authority key identifier: 2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 Certificate issuer: /CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Certificate serial: 13937EA3E95E39BF9E5A717C885C55016701805B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft Manifest number: CD Signing time: Sun 01 Feb 2026 10:11:58 +0000 Manifest this update: Sun 01 Feb 2026 10:06:58 +0000 Manifest next update: Wed 04 Feb 2026 14:05:58 +0000 Files and hashes: 1: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl (hash: 5pz5lL3/zhb/zFts/h1vl84SYchQe8blsrHGs+M7rjA=) 2: 3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa (hash: 0PyZ1Izmcdz8RbI4pvamYzCkDML//PlzpXnY61vINZs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 14:05:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:93:7e:a3:e9:5e:39:bf:9e:5a:71:7c:88:5c:55:01:67:01:80:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Validity Not Before: Feb 1 10:06:58 2026 GMT Not After : Feb 4 14:05:58 2026 GMT Subject: CN=CD366170FA42450235449A2AB173CEAE82220725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b1:96:d6:da:14:eb:f9:40:8d:df:54:50:b0: 6d:93:ab:d2:5b:d4:6d:8f:a7:4e:f7:77:a5:5a:a1: 9a:b1:de:85:46:1a:65:6b:14:68:2d:7d:bb:eb:c4: 0b:06:db:98:92:25:af:46:62:e0:a0:33:33:d8:ba: 1c:7e:bb:fb:b9:9f:df:e9:5e:bd:e3:4a:41:3a:c5: 22:6d:56:42:91:5c:15:a0:70:a3:34:98:85:8c:42: ad:80:a6:5e:cd:f0:2d:5b:9c:6c:68:79:75:bb:dd: e9:80:ab:aa:6a:7f:08:53:c4:a8:74:92:29:28:1d: b6:9f:71:2a:78:bb:d4:ba:c2:e9:9a:a2:dc:ba:69: 4b:1a:ff:b1:73:5e:e2:04:ce:e9:e9:71:23:fe:3d: 77:aa:10:1b:53:4a:b9:3d:4b:68:36:c9:7b:f9:9d: 73:3d:65:17:57:2f:a1:97:08:9f:20:d2:3b:11:15: 17:bb:14:3c:43:bc:df:b7:5e:90:bf:f0:82:1a:87: 63:2c:f6:d6:a5:d0:0c:f9:22:af:4b:64:2f:cb:26: 06:5d:65:b4:7c:6b:b4:6e:4f:6c:a1:21:1c:a3:7c: 7e:3c:c5:99:c0:eb:f0:b4:4b:77:e2:db:2d:8d:57: 54:15:6a:9b:ee:4c:0b:24:77:d4:3d:cf:ba:03:b2: b6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:36:61:70:FA:42:45:02:35:44:9A:2A:B1:73:CE:AE:82:22:07:25 X509v3 Authority Key Identifier: keyid:2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:68:eb:fd:c9:74:ec:61:de:a6:9d:64:49:9b:02:43:6a:50: 5a:8b:3a:08:85:d4:6f:31:7b:d1:85:d5:df:5b:65:69:0a:6a: e1:93:cf:37:ca:a1:06:7c:e2:bf:eb:54:d6:34:ad:64:93:b1: 59:95:b7:a2:b6:aa:79:e7:9e:a9:6f:de:bb:cb:06:10:65:0c: 5e:6b:fa:3e:d2:70:ca:ac:20:10:86:86:11:3e:05:f1:2e:53: a5:b9:22:1b:3e:61:2a:f1:cb:39:76:3e:63:d9:f7:ee:e2:9e: 4d:05:58:61:15:cf:ae:16:a7:6a:c0:d3:e2:5a:e6:20:b0:8e: 6a:e3:66:40:33:ec:b5:43:22:bb:19:27:1a:9f:2d:84:69:e7: 47:dd:06:fe:4b:a4:0a:1a:0d:22:43:75:b8:33:88:3c:38:03: 31:14:f7:35:b0:72:c1:5d:36:fc:69:da:9d:fa:37:14:91:55: d3:62:8a:46:33:6a:66:bb:a7:dd:73:ca:6e:cb:78:72:8a:e9: 53:fc:1b:fc:da:26:ce:75:e7:30:6a:73:0d:a9:a1:a3:62:bf: c9:3a:45:b0:44:62:a2:1c:2e:6a:ed:9d:97:4d:31:71:90:b0: 52:5a:ac:43:d5:3a:9a:01:79:1b:d3:89:2b:ad:a6:bd:63:dd: 4c:6a:eb:7d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE5N+o+leOb+eWnF8iFxVAWcBgFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDEx MUZERjNCMDAeFw0yNjAyMDExMDA2NThaFw0yNjAyMDQxNDA1NThaMDMxMTAvBgNV BAMTKENEMzY2MTcwRkE0MjQ1MDIzNTQ0OUEyQUIxNzNDRUFFODIyMjA3MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCsZbW2hTr+UCN31RQsG2Tq9Jb 1G2Pp073d6VaoZqx3oVGGmVrFGgtfbvrxAsG25iSJa9GYuCgMzPYuhx+u/u5n9/p Xr3jSkE6xSJtVkKRXBWgcKM0mIWMQq2Apl7N8C1bnGxoeXW73emAq6pqfwhTxKh0 kikoHbafcSp4u9S6wumaoty6aUsa/7FzXuIEzunpcSP+PXeqEBtTSrk9S2g2yXv5 nXM9ZRdXL6GXCJ8g0jsRFRe7FDxDvN+3XpC/8IIah2Ms9tal0Az5Iq9LZC/LJgZd ZbR8a7RuT2yhIRyjfH48xZnA6/C0S3fi2y2NV1QVapvuTAskd9Q9z7oDsrYtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzTZhcPpCRQI1RJoqsXPOroIiByUwHwYDVR0j BBgwFoAUKw09cKAntTx60hf+IsoO0RH987AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzcyZDNmNS1kZDUzLTRiNzQtOTQ3Yy02YmI1MTBmNGY1MDMvMC8yQjBEM0Q3MEEw MjdCNTNDN0FEMjE3RkUyMkNBMEVEMTExRkRGM0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDExMUZE RjNCMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWM3MmQzZjUtZGQ1My00Yjc0LTk0 N2MtNmJiNTEwZjRmNTAzLzAvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBF RDExMUZERjNCMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHFo6/3JdOxh3qadZEmbAkNqUFqLOgiF1G8x e9GF1d9bZWkKauGTzzfKoQZ84r/rVNY0rWSTsVmVt6K2qnnnnqlv3rvLBhBlDF5r +j7ScMqsIBCGhhE+BfEuU6W5Ihs+YSrxyzl2PmPZ9+7ink0FWGEVz64Wp2rA0+Ja 5iCwjmrjZkAz7LVDIrsZJxqfLYRp50fdBv5LpAoaDSJDdbgziDw4AzEU9zWwcsFd Nvxp2p36NxSRVdNiikYzama7p91zym7LeHKK6VP8G/zaJs515zBqcw2poaNiv8k6 RbBEYqIcLmrtnZdNMXGQsFJarEPVOpoBeRvTiSutpr1j3Uxq630= -----END CERTIFICATE-----Generated at Mon Feb 2 10:03:46 2026 by rpki-client