This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: HgS7xg0V7zsDz9+dimqnkUqcJ2SYZUDcPHB89aJxHps= Subject key identifier: 97:19:3D:AA:43:D8:ED:65:22:EF:E9:A2:5C:18:45:25:89:EA:C9:5A Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 13D0E7089040ABA1B7C55B173B3AD01A953AC507 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 01F9 Signing time: Sun 01 Feb 2026 17:31:28 +0000 Manifest this update: Sun 01 Feb 2026 17:26:28 +0000 Manifest next update: Thu 05 Feb 2026 00:49:28 +0000 Files and hashes: 1: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 8iEgHOEIqDfpr7gSt8jxyho1deCIzw83qW565uPVSgs=) 2: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: GKEnuLMQIfxS1P/n9bVzewi7V9AJhaW3JRPp9Z55ROE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 00:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:d0:e7:08:90:40:ab:a1:b7:c5:5b:17:3b:3a:d0:1a:95:3a:c5:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Feb 1 17:26:28 2026 GMT Not After : Feb 5 00:49:28 2026 GMT Subject: CN=97193DAA43D8ED6522EFE9A25C18452589EAC95A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c1:7a:2f:07:d3:b7:91:fb:16:73:f9:44:c3: 94:c3:a5:fd:4c:ea:51:9f:28:ef:d7:0e:e0:fc:79: 64:a9:88:f1:37:c0:4b:50:be:e4:57:06:cc:dc:30: ac:23:da:fe:ce:05:79:ab:05:cc:84:a6:21:d7:43: 69:18:37:7a:79:cd:e7:09:17:7b:a6:b6:82:6e:73: 7c:39:21:73:78:f7:60:9c:fb:b0:35:17:2c:72:7b: f7:d1:96:1d:6a:5b:a3:a6:83:58:68:aa:cf:bb:80: a4:2b:67:bb:53:e0:04:bd:45:2c:ed:36:95:47:b5: 30:0e:78:90:e6:1b:b4:67:b5:4f:58:06:c9:bf:79: 33:0a:3c:2e:63:9e:c9:c7:4f:40:60:3f:5d:a0:6d: f8:94:7e:e8:8b:55:5f:2c:13:f7:3f:4a:e9:ef:81: 5f:88:79:73:3b:08:ee:d6:15:f1:c2:ff:8d:36:b8: ee:a0:a6:f4:f5:2a:c9:2b:62:02:25:e4:be:97:f7: bc:13:9d:38:1c:a2:de:eb:9c:f1:55:28:3f:44:4a: ad:f3:1f:9e:09:12:74:83:f6:c1:68:c5:ef:56:2d: 97:2b:61:12:0c:c9:60:4b:71:81:61:2d:43:eb:7f: 9a:e0:a1:14:9d:0d:47:f9:ff:6b:79:72:49:26:44: 21:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:19:3D:AA:43:D8:ED:65:22:EF:E9:A2:5C:18:45:25:89:EA:C9:5A X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:18:f5:3a:92:92:e0:aa:c9:08:0d:53:a2:bf:61:96:f6:f6: 9a:bf:dd:06:db:ea:8d:e6:89:55:1f:0a:ff:5b:3c:e4:8b:7a: 36:0f:35:b1:b2:62:86:42:65:2a:1e:e9:b8:87:f6:71:1f:93: 22:cd:e8:35:b3:61:58:66:9b:27:34:10:7a:54:c1:38:95:8a: 81:39:1e:22:26:0a:1a:d9:97:f1:da:2a:61:b3:aa:a4:22:e0: e7:ef:9f:45:b4:be:57:06:f5:db:ff:63:14:3a:eb:6f:d2:43: 45:aa:b0:a5:2b:1c:ed:5b:b2:4a:08:23:35:6e:e2:a4:8d:0f: 79:2a:13:43:45:51:a6:62:a6:9f:89:cf:a7:73:5e:e8:0d:48: 70:7d:a2:42:74:da:4f:75:a8:8c:67:fc:25:4d:8a:fd:bd:d9: 94:5a:d1:a5:2b:a4:d1:11:21:d6:0e:f1:0e:ac:62:82:cd:74: 87:3c:97:d7:e1:24:bd:14:ba:22:95:70:99:8a:4c:93:f8:40: 8a:fd:fc:03:dc:27:7c:9c:5f:02:77:a6:4f:f4:9e:70:ba:8d: bb:a4:ea:06:fd:6b:29:8a:6b:4a:0a:04:7a:75:0c:dd:a0:b6: 9e:bd:35:d5:56:21:6d:dd:c0:79:03:24:ce:2b:03:42:7f:73: 42:e8:73:d1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE9DnCJBAq6G3xVsXOzrQGpU6xQcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNjAyMDExNzI2MjhaFw0yNjAyMDUwMDQ5MjhaMDMxMTAvBgNV BAMTKDk3MTkzREFBNDNEOEVENjUyMkVGRTlBMjVDMTg0NTI1ODlFQUM5NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrwXovB9O3kfsWc/lEw5TDpf1M 6lGfKO/XDuD8eWSpiPE3wEtQvuRXBszcMKwj2v7OBXmrBcyEpiHXQ2kYN3p5zecJ F3umtoJuc3w5IXN492Cc+7A1Fyxye/fRlh1qW6Omg1hoqs+7gKQrZ7tT4AS9RSzt NpVHtTAOeJDmG7RntU9YBsm/eTMKPC5jnsnHT0BgP12gbfiUfuiLVV8sE/c/Sunv gV+IeXM7CO7WFfHC/402uO6gpvT1KskrYgIl5L6X97wTnTgcot7rnPFVKD9ESq3z H54JEnSD9sFoxe9WLZcrYRIMyWBLcYFhLUPrf5rgoRSdDUf5/2t5ckkmRCENAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlxk9qkPY7WUi7+miXBhFJYnqyVowHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC4Y9TqSkuCqyQgNU6K/YZb29pq/3Qbb6o3m iVUfCv9bPOSLejYPNbGyYoZCZSoe6biH9nEfkyLN6DWzYVhmmyc0EHpUwTiVioE5 HiImChrZl/HaKmGzqqQi4Ofvn0W0vlcG9dv/YxQ662/SQ0WqsKUrHO1bskoIIzVu 4qSND3kqE0NFUaZipp+Jz6dzXugNSHB9okJ02k91qIxn/CVNiv292ZRa0aUrpNER IdYO8Q6sYoLNdIc8l9fhJL0UuiKVcJmKTJP4QIr9/APcJ3ycXwJ3pk/0nnC6jbuk 6gb9aymKa0oKBHp1DN2gtp69NdVWIW3dwHkDJM4rA0J/c0Loc9E= -----END CERTIFICATE-----Generated at Mon Feb 2 10:03:40 2026 by rpki-client