This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft File: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft (raw, json) Hash identifier: ax8yC2Aj3e1N+dINX7gjFd3gvh0dQUNxd5vEeocUV+g= Subject key identifier: 3F:96:9D:44:E1:D9:95:04:2A:D6:4A:A9:29:04:9D:21:8D:50:48:9D Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 3DA360FED5133E648F98B13B05B10073C9E4CB05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft Manifest number: 0547 Signing time: Sat 31 Jan 2026 06:12:11 +0000 Manifest this update: Sat 31 Jan 2026 06:07:11 +0000 Manifest next update: Tue 03 Feb 2026 15:02:11 +0000 Files and hashes: 1: 32372e3131312e33342e302f32342d3234203d3e203538343737.roa (hash: JY5X7Ni0FqjOLHL/IBAcPoDotTFSEzReZjChPfIbLws=) 2: 3131392e3233352e31362e302f32302d3234203d3e203234353332.roa (hash: B78QMc7X1AynG/67CvGHE09qoTlYPrnz5pImIeutRLM=) 3: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl (hash: aA7lPlmN116W6oRnd4C32lIGTyIiOP+7s8v/orq8lWs=) 4: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (hash: CeNMr8Y0wuM60Zt6nplzMluIcrI9La3EhazffayBItA=) 5: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (hash: JSx+5xTx71eWK8GnVgu4sokLS7+0LsCbDYaq7VNDJRQ=) 6: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (hash: 1GnFCQ0Tavqgsu3zMfhYc58ad3h7NpVZT5asqIEYmDA=) 7: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (hash: olwDZQoWpFkRsK81GVJEPLld+99Dlx/8F9oVv6zB3jQ=) 8: 34332e3232392e3230342e302f32322d3234203d3e203234353332.roa (hash: WF4j8x2tGr44aFsHKkav+2ARzcYAA9lGEfxLV4cOOpQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 15:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a3:60:fe:d5:13:3e:64:8f:98:b1:3b:05:b1:00:73:c9:e4:cb:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Jan 31 06:07:11 2026 GMT Not After : Feb 3 15:02:11 2026 GMT Subject: CN=3F969D44E1D995042AD64AA929049D218D50489D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:92:3c:4a:08:48:c2:2b:fd:99:ad:16:8f:d1: fb:7d:48:0c:78:59:17:ea:03:60:7a:93:19:08:5a: 94:3e:4d:ee:5a:9c:f9:8d:f9:5e:04:8f:69:4c:cf: 46:53:38:c8:96:3b:04:b7:93:cf:f9:80:67:72:4a: 8f:99:63:c6:06:d0:ed:c4:34:f7:5c:5c:22:3b:09: ab:22:38:72:6e:61:f0:bd:c5:94:d3:cf:f8:cb:f9: 3f:3f:51:9c:53:f5:9b:26:b4:99:12:ef:a0:26:75: fa:84:8f:ac:86:bc:68:6d:ac:88:11:c1:9e:92:ea: e4:3b:1d:03:96:cb:b3:ef:e1:ec:03:d8:e6:e4:fe: 13:6b:2e:6f:ea:a0:bb:b1:d7:ea:45:31:16:b0:79: 41:47:f5:d4:65:5c:9a:91:20:2e:03:2d:25:27:18: 03:04:64:74:9a:82:23:91:7e:9c:70:c6:9d:5c:8f: d7:b5:ee:49:85:56:db:d0:98:b2:00:85:d8:1a:cb: 77:ce:97:4e:86:4b:0d:74:00:73:b8:16:3e:1f:f1: 2e:a0:7b:c7:e2:45:70:95:71:53:cd:22:87:ed:e7: bd:b9:68:43:1a:75:45:49:69:19:bd:ac:ce:61:c8: fc:05:c4:3a:3a:05:d1:3b:b1:09:41:23:a2:7a:fe: 1b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:96:9D:44:E1:D9:95:04:2A:D6:4A:A9:29:04:9D:21:8D:50:48:9D X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:16:e3:38:4c:35:c6:f0:78:5b:41:21:ca:74:97:cc:d1:30: 9a:ee:5e:39:cc:c2:52:48:e7:b0:a6:e3:ee:38:5c:7c:67:c9: b4:e9:cb:c4:47:71:e9:b7:5d:5a:96:f0:a5:dd:bd:c4:f1:5b: cc:8c:1e:96:f0:85:01:c9:27:7c:7d:62:bc:c2:d0:32:f1:a6: 7f:e3:c2:22:5c:d1:c7:b2:4a:a8:f6:cc:60:58:44:42:96:c7: a5:87:47:48:3f:d4:3f:e1:76:cc:c3:a9:ef:a9:9e:3d:7c:17: 99:d6:6c:a9:1a:b4:36:ab:d8:e8:25:4e:e0:d3:10:69:a6:23: a4:25:a0:e3:aa:8b:f2:1a:3a:f2:b9:bf:98:04:c5:14:9d:92: af:a0:1b:bd:12:c9:c3:2d:04:72:12:8b:71:d7:f4:b3:c9:bb: b5:4f:34:6f:7b:07:a7:5f:c4:f6:ed:f5:0a:79:78:7b:88:59: 87:7f:5d:17:19:d6:2f:c0:a3:28:3e:da:a5:fa:3d:ac:82:5c: 14:cc:74:6b:e4:0f:78:cb:18:8c:d0:65:7b:c4:38:01:c8:2d: 5c:96:1e:b4:04:a2:82:72:9f:73:b9:c3:f4:54:e8:cd:e0:6e: 67:33:d7:84:c1:c7:07:d6:d0:1f:7c:6a:aa:20:d4:d8:34:96: a8:63:72:d2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPaNg/tUTPmSPmLE7BbEAc8nkywUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNjAxMzEwNjA3MTFaFw0yNjAyMDMxNTAyMTFaMDMxMTAvBgNV BAMTKDNGOTY5RDQ0RTFEOTk1MDQyQUQ2NEFBOTI5MDQ5RDIxOEQ1MDQ4OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfkjxKCEjCK/2ZrRaP0ft9SAx4 WRfqA2B6kxkIWpQ+Te5anPmN+V4Ej2lMz0ZTOMiWOwS3k8/5gGdySo+ZY8YG0O3E NPdcXCI7CasiOHJuYfC9xZTTz/jL+T8/UZxT9ZsmtJkS76AmdfqEj6yGvGhtrIgR wZ6S6uQ7HQOWy7Pv4ewD2Obk/hNrLm/qoLux1+pFMRaweUFH9dRlXJqRIC4DLSUn GAMEZHSagiORfpxwxp1cj9e17kmFVtvQmLIAhdgay3fOl06GSw10AHO4Fj4f8S6g e8fiRXCVcVPNIoft5725aEMadUVJaRm9rM5hyPwFxDo6BdE7sQlBI6J6/hs/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUP5adROHZlQQq1kqpKQSdIY1QSJ0wHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTQzZTJlNjctYTE3MS00ZDllLWE5 MzUtNDA2OTAyYjFlMTNiLzAvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVG MEFFQ0M3RkU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIAW4zhMNcbweFtBIcp0l8zRMJruXjnMwlJI 57Cm4+44XHxnybTpy8RHcem3XVqW8KXdvcTxW8yMHpbwhQHJJ3x9YrzC0DLxpn/j wiJc0ceySqj2zGBYREKWx6WHR0g/1D/hdszDqe+pnj18F5nWbKkatDar2OglTuDT EGmmI6QloOOqi/IaOvK5v5gExRSdkq+gG70SycMtBHISi3HX9LPJu7VPNG97B6df xPbt9Qp5eHuIWYd/XRcZ1i/Aoyg+2qX6PayCXBTMdGvkD3jLGIzQZXvEOAHILVyW HrQEooJyn3O5w/RU6M3gbmcz14TBxwfW0B98aqog1Ng0lqhjctI= -----END CERTIFICATE-----Generated at Mon Feb 2 12:47:14 2026 by rpki-client