This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft File: BCDF6D8F5670257F852914E87D552983AA37A3A3.mft (raw, json) Hash identifier: PgdMR9eUvH8hzFlyEF9oqaHDUCGtOuAfrm94Wu1lOAg= Subject key identifier: B4:18:A4:69:C9:FA:A1:82:70:18:65:01:E9:32:69:FB:BC:13:CD:27 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 2214999A38720AD986BFC0BDB9BC28B75507A4C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft Manifest number: 0499 Signing time: Tue 20 Jan 2026 08:31:04 +0000 Manifest this update: Tue 20 Jan 2026 08:26:04 +0000 Manifest next update: Fri 23 Jan 2026 16:52:04 +0000 Files and hashes: 1: BCDF6D8F5670257F852914E87D552983AA37A3A3.crl (hash: 5cLaglKpgUDI+S4jHuD+c7MnPVJmMhPeVOmXp41j87Q=) 2: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (hash: 2JYulwUxi2T/jzgAmBWLWpOPU3Z1C06NLPJ2YJd9h44=) 3: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (hash: gks4E4RAlqsYzpMbY7s86LphrkEHlbXfODEV9a6VKSU=) 4: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (hash: ZtfrmcdIDZFk5FXV0vrgffSS//LC3R042y4pGOoRFVw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 16:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:14:99:9a:38:72:0a:d9:86:bf:c0:bd:b9:bc:28:b7:55:07:a4:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Jan 20 08:26:04 2026 GMT Not After : Jan 23 16:52:04 2026 GMT Subject: CN=B418A469C9FAA18270186501E93269FBBC13CD27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3d:1f:c3:1e:59:2f:82:da:91:ad:a2:d0:02: 46:b8:b1:6d:39:57:72:05:4e:08:3d:ff:53:a8:13: 3c:c9:ee:4c:a7:87:ed:fa:9c:83:58:66:58:93:66: 8a:dd:89:3a:3e:45:a0:2e:5c:04:c2:72:36:77:b3: 28:35:bd:cf:71:8f:d4:1a:89:5b:23:53:dd:f7:da: 1d:da:1f:94:95:0a:08:41:50:b2:63:fc:2c:7f:f4: de:3a:47:4f:29:37:4c:d5:81:13:71:3f:25:e7:85: 65:5f:71:c5:69:56:00:39:29:0a:a0:d1:e4:06:c8: 2c:27:ab:73:24:01:ef:f5:6e:33:7e:e0:ad:a7:7d: 0c:85:dd:79:0d:8c:2c:28:cd:aa:41:36:0f:c9:d7: 3c:a8:56:a1:c8:f1:e3:2f:99:4e:76:22:9a:e5:d4: d3:f9:ec:5b:e1:35:8d:f5:64:10:27:b5:87:38:53: 75:0d:5a:73:ec:a9:67:b2:86:db:66:ff:86:60:e5: 97:04:fc:a7:36:89:fd:a3:d0:c4:f1:80:68:73:29: cd:9c:a1:ad:8a:de:9a:c3:18:9c:cd:41:9a:fe:f3: 69:1b:49:6d:cb:a8:7d:8e:c9:7f:d9:ca:e4:cb:55: 06:8e:a7:6d:06:e9:28:c6:04:5b:98:6e:f8:e1:55: 5c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:18:A4:69:C9:FA:A1:82:70:18:65:01:E9:32:69:FB:BC:13:CD:27 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:22:fe:66:46:f4:a7:48:7a:a7:5e:7f:2c:bd:93:37:f4:08: 0f:91:74:c4:4a:a7:66:fd:cd:96:c7:b4:21:2f:fe:00:81:13: d3:92:0f:32:88:ac:18:cb:99:3d:36:59:04:67:38:bb:16:ec: 72:16:15:a9:1d:fa:2d:bb:53:47:36:af:22:b4:61:9e:d1:39: 6d:3a:5e:70:10:65:33:0e:35:ff:5c:0c:ad:8a:20:a5:98:6b: 5c:29:2a:0e:ad:26:5c:3d:cd:50:fa:30:6f:da:f9:bf:2d:13: 5d:ab:0a:0e:91:d8:40:98:a9:f8:de:32:f7:ab:22:27:9a:da: 17:52:7e:bb:f4:d6:92:f8:66:9f:f2:9c:42:70:b5:28:bd:69: e2:bb:d0:bb:d8:cf:f0:c9:79:b0:57:0a:d5:c4:96:28:6d:d7: 2c:5a:97:b2:12:8e:97:ae:5b:42:a0:b0:d8:fe:f1:ec:c5:86: 18:10:a0:8c:30:50:30:ce:2f:41:4d:51:56:18:e6:2f:b4:67: 39:68:bd:ec:0b:1c:2c:06:3c:5a:a5:1d:02:8e:b3:3b:2b:04: 86:c7:d4:bf:6b:43:e2:7d:5d:e9:ef:3f:8e:40:cb:a0:76:a2: 1b:91:5c:93:ef:90:45:06:c6:ea:e4:ce:f7:47:31:c1:d2:54: 83:18:9b:59 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIhSZmjhyCtmGv8C9ubwot1UHpMYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNjAxMjAwODI2MDRaFw0yNjAxMjMxNjUyMDRaMDMxMTAvBgNV BAMTKEI0MThBNDY5QzlGQUExODI3MDE4NjUwMUU5MzI2OUZCQkMxM0NEMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdPR/DHlkvgtqRraLQAka4sW05 V3IFTgg9/1OoEzzJ7kynh+36nINYZliTZordiTo+RaAuXATCcjZ3syg1vc9xj9Qa iVsjU9332h3aH5SVCghBULJj/Cx/9N46R08pN0zVgRNxPyXnhWVfccVpVgA5KQqg 0eQGyCwnq3MkAe/1bjN+4K2nfQyF3XkNjCwozapBNg/J1zyoVqHI8eMvmU52Iprl 1NP57FvhNY31ZBAntYc4U3UNWnPsqWeyhttm/4Zg5ZcE/Kc2if2j0MTxgGhzKc2c oa2K3prDGJzNQZr+82kbSW3LqH2OyX/ZyuTLVQaOp20G6SjGBFuYbvjhVVyhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtBikacn6oYJwGGUB6TJp+7wTzScwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc3YjAxY2YtYjFjOS00NTBmLTg1 NTEtNGRjYjRjYmQ0MjYyLzAvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5 ODNBQTM3QTNBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI4i/mZG9KdIeqdefyy9kzf0CA+RdMRKp2b9 zZbHtCEv/gCBE9OSDzKIrBjLmT02WQRnOLsW7HIWFakd+i27U0c2ryK0YZ7ROW06 XnAQZTMONf9cDK2KIKWYa1wpKg6tJlw9zVD6MG/a+b8tE12rCg6R2ECYqfjeMver Iiea2hdSfrv01pL4Zp/ynEJwtSi9aeK70LvYz/DJebBXCtXEliht1yxal7ISjpeu W0KgsNj+8ezFhhgQoIwwUDDOL0FNUVYY5i+0ZzlovewLHCwGPFqlHQKOszsrBIbH 1L9rQ+J9XenvP45Ay6B2ohuRXJPvkEUGxurkzvdHMcHSVIMYm1k= -----END CERTIFICATE-----Generated at Wed Jan 21 14:45:50 2026 by rpki-client