This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: am+VsUKkJ3u7LgwT5Bnup6B/Xr4dgRBjSswjJkQLK78= Subject key identifier: CA:89:5F:98:1D:B9:FA:C8:11:91:EC:18:24:BD:1E:8B:A4:81:99:15 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 47CB1331CDF8F7EBB47DA54327F69389312B31DB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0214 Signing time: Sun 25 Jan 2026 19:41:55 +0000 Manifest this update: Sun 25 Jan 2026 19:36:55 +0000 Manifest next update: Thu 29 Jan 2026 01:31:55 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: hZrK6cc/hUK4AMs0BM/lNHZ4n1GdASg2QJFPAatNYxI=) 2: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 3: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 4: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 29 Jan 2026 01:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:cb:13:31:cd:f8:f7:eb:b4:7d:a5:43:27:f6:93:89:31:2b:31:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Jan 25 19:36:55 2026 GMT Not After : Jan 29 01:31:55 2026 GMT Subject: CN=CA895F981DB9FAC81191EC1824BD1E8BA4819915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:30:83:bb:87:9c:0a:ce:fb:b4:75:21:51:54: 72:94:8c:d3:d6:11:ca:10:62:07:9d:7a:0f:20:f3: 46:d3:87:96:4e:1d:da:73:44:bd:ec:5b:6b:18:9f: cb:c1:bf:e4:4e:11:67:82:05:4c:b9:e0:b8:52:08: cd:a1:62:4c:a7:81:b6:2e:ea:e3:ac:7c:0c:87:9a: 26:50:36:06:59:6e:8c:18:74:46:31:2e:f5:3e:ad: 23:8c:d3:bd:b5:c3:a0:64:0f:5b:55:b0:bc:ba:fb: e7:e5:88:cb:80:c9:05:36:ee:d6:d0:2b:33:32:db: f3:d2:3f:60:71:3f:51:49:f3:c3:4b:40:89:e8:4c: 53:5e:b2:28:53:9b:fd:e3:15:9d:3b:6f:d0:9c:20: cd:19:df:ad:68:5c:75:9a:f4:80:45:cb:13:0a:a7: 86:9d:4e:6b:e6:c0:44:1d:3f:ac:78:4b:e2:ff:c1: 4a:8e:35:a5:20:68:a7:85:2c:ed:1f:7b:4a:b3:73: 88:23:46:19:d1:b3:3b:fb:51:51:37:49:e3:e3:7a: ed:25:12:08:73:70:92:4e:a4:38:79:2a:e3:8f:b5: 80:6d:b5:2c:5f:3a:0e:bf:41:01:34:eb:96:c2:6c: b8:9c:44:56:68:58:d5:fd:c2:73:b9:b1:c3:89:60: 34:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:89:5F:98:1D:B9:FA:C8:11:91:EC:18:24:BD:1E:8B:A4:81:99:15 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e6:fd:eb:50:e5:17:f7:87:c7:1e:72:1d:35:e7:8f:85:ac:5a: b3:e5:9c:87:12:7e:38:17:19:0f:68:9a:de:b8:fc:0c:74:45: fb:c5:cc:1a:07:89:6e:6c:5d:b6:f5:f6:61:59:c9:4f:13:9a: 94:33:d7:49:75:90:80:4e:54:97:59:2d:57:a3:a4:b8:1c:e7: 8d:da:d9:bc:de:39:1d:6f:ab:2a:01:31:16:b5:78:57:01:ef: 7c:64:1e:8b:5a:f0:32:85:07:ca:87:6c:b1:ed:75:bb:62:83: 91:cc:91:ef:ab:47:f1:9a:bd:07:fc:3a:19:a6:28:7d:a2:22: 8a:e3:da:6e:2e:01:b5:8b:33:c9:83:a8:f5:b9:fb:02:ed:19: 5a:c3:6a:a2:cd:19:de:fe:99:db:3d:df:76:c7:0d:3b:c3:c6: d2:d8:55:7b:f4:ab:db:55:19:c4:d6:de:8d:f6:8f:12:ef:57: 49:20:a4:ca:86:47:75:d5:66:f3:53:1b:e6:47:5a:f0:ca:22: 39:34:78:d4:b8:6d:16:d9:cf:f3:cf:de:05:16:8f:06:62:f3: 10:9e:ec:0f:ec:24:d1:cd:53:0e:9d:10:d9:46:91:ff:ea:36: bc:80:78:3d:07:d4:d5:0e:c9:b3:eb:47:2a:b3:bb:a6:c8:60: 25:7b:bb:40 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR8sTMc349+u0faVDJ/aTiTErMdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNjAxMjUxOTM2NTVaFw0yNjAxMjkwMTMxNTVaMDMxMTAvBgNV BAMTKENBODk1Rjk4MURCOUZBQzgxMTkxRUMxODI0QkQxRThCQTQ4MTk5MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdMIO7h5wKzvu0dSFRVHKUjNPW EcoQYgedeg8g80bTh5ZOHdpzRL3sW2sYn8vBv+ROEWeCBUy54LhSCM2hYkyngbYu 6uOsfAyHmiZQNgZZbowYdEYxLvU+rSOM0721w6BkD1tVsLy6++fliMuAyQU27tbQ KzMy2/PSP2BxP1FJ88NLQInoTFNesihTm/3jFZ07b9CcIM0Z361oXHWa9IBFyxMK p4adTmvmwEQdP6x4S+L/wUqONaUgaKeFLO0fe0qzc4gjRhnRszv7UVE3SePjeu0l EghzcJJOpDh5KuOPtYBttSxfOg6/QQE065bCbLicRFZoWNX9wnO5scOJYDSFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyolfmB25+sgRkewYJL0ei6SBmRUwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOb961DlF/eHxx5yHTXnj4WsWrPlnIcSfjgX GQ9omt64/Ax0RfvFzBoHiW5sXbb19mFZyU8TmpQz10l1kIBOVJdZLVejpLgc543a 2bzeOR1vqyoBMRa1eFcB73xkHota8DKFB8qHbLHtdbtig5HMke+rR/GavQf8Ohmm KH2iIorj2m4uAbWLM8mDqPW5+wLtGVrDaqLNGd7+mds933bHDTvDxtLYVXv0q9tV GcTW3o32jxLvV0kgpMqGR3XVZvNTG+ZHWvDKIjk0eNS4bRbZz/PP3gUWjwZi8xCe 7A/sJNHNUw6dENlGkf/qNryAeD0H1NUOybPrRyqzu6bIYCV7u0A= -----END CERTIFICATE-----Generated at Mon Jan 26 08:42:11 2026 by rpki-client