This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft File: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft (raw, json) Hash identifier: LVVUqLopeSIvwH1tXri+J4T2P22tL4ISO9ydn8Zp30g= Subject key identifier: 99:E2:DC:47:31:82:D6:03:5C:CD:51:38:63:76:A4:D9:8B:DD:BB:47 Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 61C15E9D9646DE75A68BAF7B31A1FF20DAE04D51 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft Manifest number: 0394 Signing time: Sun 01 Feb 2026 19:22:05 +0000 Manifest this update: Sun 01 Feb 2026 19:17:05 +0000 Manifest next update: Thu 05 Feb 2026 06:10:05 +0000 Files and hashes: 1: 3130332e3136312e37322e302f32342d3234203d3e203538333738.roa (hash: KGeHvvLL7YUj6ruPXwXmEedVa7petv8U3MdeekZgjts=) 2: 3130332e3136312e37332e302f32342d3234203d3e203538333738.roa (hash: yhKeiwU+JCs9UN8oh228h1Q0h11o4+yJwLGZRxsDQjM=) 3: 3130332e3136312e37332e302f32342d3234203d3e20313430333936.roa (hash: /rt35EUSw4Ix6/cmxLUEYEesdVZ42xEum9IJJSBZ0aY=) 4: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl (hash: sxVBzT1cgaUIdGswHJo5SaWcVqO2BX81U6zW0dxRhSI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:c1:5e:9d:96:46:de:75:a6:8b:af:7b:31:a1:ff:20:da:e0:4d:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: Feb 1 19:17:05 2026 GMT Not After : Feb 5 06:10:05 2026 GMT Subject: CN=99E2DC473182D6035CCD51386376A4D98BDDBB47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:48:b3:95:a3:8f:9c:d1:f6:79:24:94:19:ef: 3d:1a:79:48:f8:fb:16:23:85:61:95:16:0e:28:a1: 99:b0:4f:a9:4a:02:79:4c:d2:26:79:a3:d2:1b:7d: e3:a2:8c:eb:2c:23:40:b6:2b:ce:aa:ed:24:94:71: 37:87:a4:70:b3:5c:74:7f:4b:d5:5b:27:bd:37:73: 07:55:89:0a:10:7d:4b:85:76:09:20:f4:e5:d2:58: f5:ae:96:15:66:3b:90:10:bf:be:3f:c9:c8:d5:ad: 59:ca:a9:b9:ea:9b:b7:a6:3d:36:ed:16:83:c5:ef: 83:92:95:91:b2:36:13:34:ae:a6:39:68:5f:b4:f0: 3a:19:55:4a:f7:0c:b6:57:24:2f:73:b9:27:bd:be: 81:5a:d5:0f:6e:2b:37:30:2b:d0:8c:fe:53:5c:73: 1f:5c:e0:29:75:1c:53:f5:14:8e:0f:04:06:7e:0f: ec:4b:cd:7d:2e:cc:12:22:0a:15:f4:11:6f:9b:f9: 1a:8f:fe:aa:be:aa:d2:5f:62:ca:d9:07:e4:c2:9b: 13:af:d0:ca:8a:85:b6:20:72:5f:33:54:88:fc:fb: 2b:a3:24:9b:00:c2:21:58:f2:72:59:8f:78:a3:b0: f8:ec:59:23:f5:e7:ab:56:a2:9d:52:31:e9:d2:4d: f0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E2:DC:47:31:82:D6:03:5C:CD:51:38:63:76:A4:D9:8B:DD:BB:47 X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:3c:5d:17:14:7e:a5:19:8d:f2:61:b4:b8:71:66:90:93:6b: 0d:e9:61:1e:af:ee:d5:81:77:dc:ac:3f:e4:09:bb:e5:64:cb: 89:00:06:58:3e:92:8a:fb:56:f6:e2:56:7c:d5:99:b2:26:97: 74:cf:0a:6e:d5:83:a6:08:d6:3e:ac:6f:e1:35:b3:aa:8b:05: d6:95:5a:9e:f9:eb:66:16:e6:29:38:ca:87:8e:89:87:f1:30: 0b:4d:33:a2:d9:a3:58:3a:39:dc:55:8f:37:45:7c:75:53:ef: ab:ba:41:e2:84:1e:72:fa:63:2c:95:4a:78:ad:3f:64:de:7a: 26:7f:70:35:f4:a7:22:e6:35:af:4c:3a:a5:02:a8:d7:ef:f9: 42:44:9b:51:36:ed:c6:29:5f:45:8e:c7:6f:5c:9d:31:64:be: 70:e7:1d:37:f9:f4:25:72:ea:26:c2:f0:d2:4b:6b:d9:18:57: 4e:6f:3e:08:8a:7e:27:de:13:9d:39:b9:ed:da:23:84:0e:ea: 77:64:47:de:9a:b2:17:83:24:43:25:09:62:70:d6:66:df:1a: 80:63:ca:01:13:4c:e0:0a:60:4e:2c:f8:21:3c:a0:97:bb:a5: 19:49:a6:e7:4c:1b:65:8b:5b:c0:e0:da:e6:32:e6:77:7f:5f: 07:a0:3e:36 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYcFenZZG3nWmi697MaH/INrgTVEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNjAyMDExOTE3MDVaFw0yNjAyMDUwNjEwMDVaMDMxMTAvBgNV BAMTKDk5RTJEQzQ3MzE4MkQ2MDM1Q0NENTEzODYzNzZBNEQ5OEJEREJCNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCySLOVo4+c0fZ5JJQZ7z0aeUj4 +xYjhWGVFg4ooZmwT6lKAnlM0iZ5o9IbfeOijOssI0C2K86q7SSUcTeHpHCzXHR/ S9VbJ703cwdViQoQfUuFdgkg9OXSWPWulhVmO5AQv74/ycjVrVnKqbnqm7emPTbt FoPF74OSlZGyNhM0rqY5aF+08DoZVUr3DLZXJC9zuSe9voFa1Q9uKzcwK9CM/lNc cx9c4Cl1HFP1FI4PBAZ+D+xLzX0uzBIiChX0EW+b+RqP/qq+qtJfYsrZB+TCmxOv 0MqKhbYgcl8zVIj8+yujJJsAwiFY8nJZj3ijsPjsWSP156tWop1SMenSTfAVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmeLcRzGC1gNczVE4Y3ak2Yvdu0cwHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWViZTdhZDgtZTE1Yy00MDE0LWJm YjMtYmU2OWI3ZDVkZTg4LzAvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4 RjA4MTgxOTZGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADw8XRcUfqUZjfJhtLhxZpCTaw3pYR6v7tWB d9ysP+QJu+Vky4kABlg+kor7VvbiVnzVmbIml3TPCm7Vg6YI1j6sb+E1s6qLBdaV Wp7562YW5ik4yoeOiYfxMAtNM6LZo1g6OdxVjzdFfHVT76u6QeKEHnL6YyyVSnit P2TeeiZ/cDX0pyLmNa9MOqUCqNfv+UJEm1E27cYpX0WOx29cnTFkvnDnHTf59CVy 6ibC8NJLa9kYV05vPgiKfifeE505ue3aI4QO6ndkR96asheDJEMlCWJw1mbfGoBj ygETTOAKYE4s+CE8oJe7pRlJpudMG2WLW8Dg2uYy5nd/XwegPjY= -----END CERTIFICATE-----Generated at Mon Feb 2 09:45:25 2026 by rpki-client