This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft File: 871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json) Hash identifier: BEOVTy0+3k8ujRJU36v7YOZGlwTU+9gKe0AwkJ1XNfI= Subject key identifier: 73:2D:FD:91:5D:AC:EF:97:6F:B2:BC:C6:25:EC:52:2D:07:38:40:B4 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 09B7DD35335F4D3751FE96DFD23CC7B1CDAAF72C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft Manifest number: 0136 Signing time: Sun 01 Feb 2026 09:12:22 +0000 Manifest this update: Sun 01 Feb 2026 09:07:22 +0000 Manifest next update: Wed 04 Feb 2026 15:05:22 +0000 Files and hashes: 1: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: FaWUdYTpzEF3R95oPTyxp2rV/SHIg2BmXgzjTSLFHtQ=) 2: 3135372e32302e39332e302f32342d3234203d3e20313532343037.roa (hash: 7xhwBLoxBcZfSoTZvdUTvLkraKKygpQjYGPK+6LQ1oA=) 3: 3135372e32302e39322e302f32342d3234203d3e20313532343037.roa (hash: QrSBRaxGaWU8ZoD0zYmeD1ZaWtynoFSmr/bVUUg5r5E=) 4: 3135372e32302e39322e302f32332d3233203d3e20313532343037.roa (hash: P7Y8t8QlzVHnPDCRyEAdHrWqFac2Md1CGzVdP33gimk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 15:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:b7:dd:35:33:5f:4d:37:51:fe:96:df:d2:3c:c7:b1:cd:aa:f7:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Feb 1 09:07:22 2026 GMT Not After : Feb 4 15:05:22 2026 GMT Subject: CN=732DFD915DACEF976FB2BCC625EC522D073840B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9a:08:17:86:97:b8:9a:3e:78:2c:2a:e1:68: d9:7c:92:0f:c0:b0:d8:30:44:6d:77:38:96:0f:24: 32:5c:17:de:f9:aa:92:2c:76:6a:43:e3:ca:43:c0: 7d:72:63:64:25:94:74:1a:b9:a8:b5:50:17:1c:69: 19:d8:fb:81:01:70:9c:a8:63:4e:a8:4f:c5:5d:b0: 5f:2d:0d:37:5c:ed:e0:f4:73:85:55:55:3f:21:a8: 55:24:70:29:6b:8e:10:6f:86:ba:54:f0:63:68:08: 5b:c3:4b:77:39:fa:0f:27:e3:1d:69:bd:6a:33:2e: ab:ea:cf:0e:61:45:08:e3:14:e1:43:55:1d:e5:fb: 7b:8a:5e:a2:9f:34:9e:a9:a5:35:74:68:66:e1:ca: 33:7e:0d:af:f4:89:c2:b1:19:82:f0:6f:52:21:a0: c0:79:36:aa:88:52:60:11:9f:1f:70:8d:f4:4d:35: 04:27:67:f3:ac:0f:00:db:09:d5:55:5a:e4:57:7c: 51:6c:77:1f:a2:47:91:7e:82:fc:f9:c9:25:f5:ba: a3:2c:66:da:03:91:e8:90:0b:03:92:f6:71:31:22: b8:b4:7d:ae:54:83:60:d2:7f:f0:08:99:0a:ac:d1: a6:a6:7b:d0:ee:d0:b4:82:8e:9b:ce:63:43:9c:73: 88:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:2D:FD:91:5D:AC:EF:97:6F:B2:BC:C6:25:EC:52:2D:07:38:40:B4 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:3d:8d:73:a7:58:4c:8d:81:91:8c:41:53:07:e4:81:5c:b2: 3d:21:ed:db:66:82:5a:eb:ba:fd:29:8e:d6:d0:2b:ce:c2:c0: 88:ff:94:7f:0d:b8:02:68:16:46:e6:f3:ac:2a:7c:90:a7:2a: f7:88:ab:75:1f:77:6b:18:3b:a6:c2:7d:02:9d:cb:97:b4:f5: b3:32:3a:7b:96:db:af:26:f5:e7:be:e0:2e:44:74:d8:88:60: e7:3b:f7:f5:2f:bb:01:31:36:0e:90:14:c3:fb:dc:66:c5:bd: d4:c1:1a:49:86:fe:34:4f:b1:43:36:f5:5b:bf:4c:9c:2c:75: 65:32:97:d1:f7:79:d4:77:d7:cc:fe:da:d6:e1:b8:2c:be:6d: e2:fe:e7:93:23:0a:14:0a:75:a4:39:33:58:da:61:c7:12:6d: 79:5d:4a:13:8b:62:a7:d8:fa:bf:1b:76:b0:e1:2a:7d:a5:b8: 87:2f:78:72:f2:07:8f:d2:f6:df:36:06:55:c5:c8:a3:9d:ee: 73:15:ab:0e:44:2e:b5:e1:88:82:85:de:e3:b5:6a:63:e2:d0: ad:53:60:aa:31:82:5b:76:b2:8d:aa:ee:6e:84:7b:d0:74:d9: 19:04:0c:f8:f6:1f:c9:4e:d3:25:d7:58:57:99:b3:89:1f:31: 2f:de:5a:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCbfdNTNfTTdR/pbf0jzHsc2q9ywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNjAyMDEwOTA3MjJaFw0yNjAyMDQxNTA1MjJaMDMxMTAvBgNV BAMTKDczMkRGRDkxNURBQ0VGOTc2RkIyQkNDNjI1RUM1MjJEMDczODQwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgmggXhpe4mj54LCrhaNl8kg/A sNgwRG13OJYPJDJcF975qpIsdmpD48pDwH1yY2QllHQauai1UBccaRnY+4EBcJyo Y06oT8VdsF8tDTdc7eD0c4VVVT8hqFUkcClrjhBvhrpU8GNoCFvDS3c5+g8n4x1p vWozLqvqzw5hRQjjFOFDVR3l+3uKXqKfNJ6ppTV0aGbhyjN+Da/0icKxGYLwb1Ih oMB5NqqIUmARnx9wjfRNNQQnZ/OsDwDbCdVVWuRXfFFsdx+iR5F+gvz5ySX1uqMs ZtoDkeiQCwOS9nExIri0fa5Ug2DSf/AImQqs0aame9Du0LSCjpvOY0Occ4jDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcy39kV2s75dvsrzGJexSLQc4QLQwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2 MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMc9jXOnWEyNgZGMQVMH5IFcsj0h7dtmglrr uv0pjtbQK87CwIj/lH8NuAJoFkbm86wqfJCnKveIq3Ufd2sYO6bCfQKdy5e09bMy OnuW268m9ee+4C5EdNiIYOc79/UvuwExNg6QFMP73GbFvdTBGkmG/jRPsUM29Vu/ TJwsdWUyl9H3edR318z+2tbhuCy+beL+55MjChQKdaQ5M1jaYccSbXldShOLYqfY +r8bdrDhKn2luIcveHLyB4/S9t82BlXFyKOd7nMVqw5ELrXhiIKF3uO1amPi0K1T YKoxglt2so2q7m6Ee9B02RkEDPj2H8lO0yXXWFeZs4kfMS/eWh4= -----END CERTIFICATE-----Generated at Mon Feb 2 15:58:47 2026 by rpki-client