This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft File: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json) Hash identifier: atHNsR0xgQTG4yWl7lQ3stFqYoD/IuAvfHTIkLl2i0U= Subject key identifier: 83:88:6E:63:20:79:DA:68:69:1E:9D:6B:8F:81:FD:4E:26:26:9D:1C Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 216D917B908FE3969DEA0773EB8C07482348FC1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft Manifest number: 010B Signing time: Sun 01 Feb 2026 00:11:12 +0000 Manifest this update: Sun 01 Feb 2026 00:06:12 +0000 Manifest next update: Wed 04 Feb 2026 07:44:12 +0000 Files and hashes: 1: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: XJnZgp5Tc/QkpBqW+ly25tab74TxlFQVeE1Ve39IZgA=) 2: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: nNqPduu/JjsIMhgAQMQxpm1Co5pg16TuoWu2Q/HzWgA=) 3: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: X/C9vXKY/TY9dLHbewA4tddP0TItlp1o/B62rHS1ZLs=) 4: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: 4N3xCB2x4rBoMiXQaq1TIxjQcspdHHBn4voGBhoXwMQ=) 5: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: AZoy99OzaaD9x6sZSBHTE/6tOjO7s0t/ExrzVTGMWVY=) 6: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: aR62APrh1DccZKre5l7C6SLFps3TBPFdm3R3znGJ1fA=) 7: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: A2G6b+fxTo20QvHK7lUw9boisWwmFFcOlzGIN95UCMI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 07:44:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:6d:91:7b:90:8f:e3:96:9d:ea:07:73:eb:8c:07:48:23:48:fc:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Feb 1 00:06:12 2026 GMT Not After : Feb 4 07:44:12 2026 GMT Subject: CN=83886E632079DA68691E9D6B8F81FD4E26269D1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:73:d1:1d:e9:55:63:9b:c5:04:e9:62:9f: 29:d0:bf:3f:38:a0:55:7d:28:8b:9d:d5:30:6b:42: 5a:70:be:30:7a:68:54:cd:46:83:6e:55:a5:4f:8f: c5:f0:32:0a:e7:3a:10:fa:55:9b:e1:b0:11:e3:7f: 95:58:54:76:55:e7:c2:9d:78:81:db:c8:c5:01:32: 34:ba:a5:b8:f4:a2:d8:10:b3:0f:ed:7b:0b:3a:17: 19:c2:31:5b:db:63:dc:73:5a:62:e0:c6:dc:a0:b6: 0c:4f:c3:57:a5:31:92:2c:36:f0:43:5c:e5:a8:aa: 70:20:29:7f:b4:63:d7:83:be:5b:1d:f0:ad:fa:40: 13:fc:3a:ee:e8:d8:7d:8e:8f:69:35:de:15:1c:66: de:9b:6f:56:6b:4d:b1:1f:0e:ff:8b:7f:de:06:cf: 60:c1:37:53:40:66:bf:dc:a5:1d:14:ba:ef:e6:cb: e1:f4:e5:df:29:24:22:99:70:e7:4b:4b:68:ab:a1: a4:f7:93:8b:94:9e:a4:fe:71:1a:25:aa:a4:c2:b0: 7c:8e:93:20:09:40:da:e1:54:61:f6:89:d5:79:6c: 1d:da:d5:d4:84:6b:cf:42:28:88:75:b2:fc:8f:14: 99:76:6a:7e:1b:ee:f0:8b:81:91:b0:3b:cb:3c:e8: 6a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:88:6E:63:20:79:DA:68:69:1E:9D:6B:8F:81:FD:4E:26:26:9D:1C X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:76:d6:b8:6b:57:76:bc:bc:b2:60:7e:16:81:9e:b4:59:54: 9e:5e:26:c7:88:de:5f:37:bb:c1:0c:72:38:c7:a1:34:f1:17: 94:e2:9a:d8:4b:42:67:96:ec:b4:49:16:98:4b:c7:b0:0d:3a: 11:92:29:6e:cf:3d:1f:1f:b1:f1:26:98:83:66:6d:f9:7e:a6: 98:c3:62:73:42:e7:57:07:97:74:f8:66:dd:1a:b8:08:65:cc: 6c:4f:15:cd:cb:bf:e8:d0:29:00:4e:b8:de:8d:b3:dd:8a:d0: 1c:2f:d4:72:80:45:3d:83:1f:69:49:9d:5d:e8:a5:6a:2d:92: 64:62:9e:80:50:e5:f5:42:77:4f:0c:7e:c1:04:3b:22:12:1e: e7:45:0d:d2:ce:98:aa:bd:cc:00:f8:3c:31:14:55:b5:dd:71: f3:88:16:bf:51:92:2e:e8:63:77:22:cc:7c:57:da:50:da:e4: e5:42:b3:ee:14:24:76:53:8c:bb:ce:8b:3f:82:49:92:c1:fa: 21:4d:e9:dc:f4:c8:e4:bb:dc:48:53:d0:1c:6e:f3:e4:bb:a2: 46:b2:c0:cf:88:0e:32:d7:31:a3:76:76:d7:d2:0d:56:6d:c4: bf:04:38:aa:d2:ee:ed:b1:f9:28:25:8c:b3:02:07:03:0f:23: d6:7d:36:0d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIW2Re5CP45ad6gdz64wHSCNI/B0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNjAyMDEwMDA2MTJaFw0yNjAyMDQwNzQ0MTJaMDMxMTAvBgNV BAMTKDgzODg2RTYzMjA3OURBNjg2OTFFOUQ2QjhGODFGRDRFMjYyNjlEMUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6F3PRHelVY5vFBOlinynQvz84 oFV9KIud1TBrQlpwvjB6aFTNRoNuVaVPj8XwMgrnOhD6VZvhsBHjf5VYVHZV58Kd eIHbyMUBMjS6pbj0otgQsw/tews6FxnCMVvbY9xzWmLgxtygtgxPw1elMZIsNvBD XOWoqnAgKX+0Y9eDvlsd8K36QBP8Ou7o2H2Oj2k13hUcZt6bb1ZrTbEfDv+Lf94G z2DBN1NAZr/cpR0Uuu/my+H05d8pJCKZcOdLS2iroaT3k4uUnqT+cRolqqTCsHyO kyAJQNrhVGH2idV5bB3a1dSEa89CKIh1svyPFJl2an4b7vCLgZGwO8s86GoRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUg4huYyB52mhpHp1rj4H9TiYmnRwwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGM3NmM4NWYtOWE0Zi00YWZjLTk2 OWItOGRhMjUzNmM1YzI0LzAvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJE MDQ0MzUzRjZGRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHF21rhrV3a8vLJgfhaBnrRZVJ5eJseI3l83 u8EMcjjHoTTxF5TimthLQmeW7LRJFphLx7ANOhGSKW7PPR8fsfEmmINmbfl+ppjD YnNC51cHl3T4Zt0auAhlzGxPFc3Lv+jQKQBOuN6Ns92K0Bwv1HKART2DH2lJnV3o pWotkmRinoBQ5fVCd08MfsEEOyISHudFDdLOmKq9zAD4PDEUVbXdcfOIFr9Rki7o Y3cizHxX2lDa5OVCs+4UJHZTjLvOiz+CSZLB+iFN6dz0yOS73EhT0Bxu8+S7okay wM+IDjLXMaN2dtfSDVZtxL8EOKrS7u2x+SgljLMCBwMPI9Z9Ng0= -----END CERTIFICATE-----Generated at Mon Feb 2 09:45:18 2026 by rpki-client