This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: XKBKUUU/exmlExh8EwluNkT6ysWmtm2usm91Qsij1uk= Subject key identifier: 17:BC:35:75:3D:85:03:6A:B6:18:78:7C:9E:8D:59:03:48:7E:61:F4 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 2401F82CFC4E17517D8E756433110528475819D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 04D2 Signing time: Sun 01 Feb 2026 17:02:23 +0000 Manifest this update: Sun 01 Feb 2026 16:57:23 +0000 Manifest next update: Thu 05 Feb 2026 04:18:23 +0000 Files and hashes: 1: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: q/CV3YIPQOm1aZYip5fIR1K9i7bDSVO+nIFF+ycG0Go=) 2: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: ceA/XjkZTjtckNNE+B0y8t16H7RYtmT+yFrD+MsXpYk=) 3: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: rkHE7dCGWjwiXKSo5AmkFhmGB4j/W88po8KuTJD9fS0=) 4: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: q0WJTFPmGqlZJeukg5Mu0wp5stJhJmCp8BVYEtG2WWU=) 5: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0yCL5KXTraWL90iq30pQr9XlRbIvmMrP24hOvDxVdWE=) 6: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: zCUg4ypvv2GlwnHN93OEr6YWYy+0fl7UKwqXyrw+mYs=) 7: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: QKBrvi0RsDMYjSNqwszDPfOesbOlEOIHdE8u3xcyVKM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 04:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:01:f8:2c:fc:4e:17:51:7d:8e:75:64:33:11:05:28:47:58:19:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Feb 1 16:57:23 2026 GMT Not After : Feb 5 04:18:23 2026 GMT Subject: CN=17BC35753D85036AB618787C9E8D5903487E61F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:09:84:68:22:69:2c:20:db:c0:4e:cf:c5:b6: b6:08:a1:75:95:91:61:db:17:bb:6d:f2:08:a7:70: 01:bc:9e:71:89:b1:a1:4b:ad:bf:91:5b:67:8b:3f: 85:76:99:b2:08:f8:78:d0:d7:ce:51:63:74:2a:2f: 98:06:36:69:12:76:ed:ec:2a:79:b9:a8:b0:e2:60: 3c:08:02:de:c8:1e:6a:94:41:f4:4e:74:2f:13:58: 51:02:79:30:11:4f:44:fb:5f:20:6c:90:26:73:a1: e6:52:b3:4e:54:4b:cc:d3:67:f2:99:02:ed:a5:d0: ea:04:42:c3:fd:12:5c:b9:c7:8f:64:d1:a1:46:8c: 8a:2f:96:cf:b8:2a:f6:d2:6c:10:0b:4a:ff:24:29: 71:b6:7c:58:29:03:8e:18:6d:be:8e:e5:ec:66:06: 5f:f8:37:cd:59:e0:a0:0e:fb:4a:02:ef:fc:b4:07: f2:6f:9c:3f:79:35:d3:8e:d6:c1:48:ac:af:5d:bb: e0:b7:fa:bb:74:13:be:c3:2e:23:98:c9:ef:2e:44: 1e:db:4e:91:6d:55:a7:5a:66:42:fb:e9:48:c4:f7: 85:04:6a:d9:71:29:9e:c0:18:a4:d2:bf:d7:58:c0: 03:c8:c8:f4:a5:ed:1e:c7:c0:4f:29:f4:ad:4d:31: 0a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BC:35:75:3D:85:03:6A:B6:18:78:7C:9E:8D:59:03:48:7E:61:F4 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:d5:77:ba:69:40:58:9c:d8:58:80:21:35:7f:9b:0f:82:02: f6:f6:b1:56:42:80:74:fe:12:f2:57:18:69:fc:3b:f4:35:71: 90:28:a1:10:00:b9:67:18:bd:1e:09:a9:b9:74:a2:18:a9:7c: 49:7c:e8:74:19:0b:32:30:7b:ab:3e:51:1f:f7:4f:75:18:3c: c6:b4:42:c0:26:7a:c7:99:39:86:bd:b9:09:5d:54:9a:dd:67: 11:37:a2:8b:98:89:33:f3:e4:10:a5:3c:6b:4e:ee:d5:c9:11: 00:98:cf:0f:b1:74:6e:92:b1:18:82:62:43:fa:d0:db:db:8a: 0e:72:21:d5:ec:d3:b3:1a:26:14:df:23:f0:58:1e:5f:8e:ab: c0:c5:26:93:0a:d4:2c:5a:a6:5d:e5:13:03:bb:d5:bf:ce:cd: 47:20:b5:bc:0d:88:78:fc:2c:e8:39:94:62:81:06:0d:7a:be: 84:62:32:a5:8b:c3:76:66:53:3f:b9:36:d5:21:94:50:f4:61: c6:af:22:9b:82:d8:f1:25:bd:6b:02:2c:cd:e5:eb:13:88:8c: 7a:19:ce:de:48:4c:9f:4b:74:70:c2:fb:b1:bc:a0:6c:de:31: 97:b8:72:7d:87:a8:03:b7:18:78:d3:e7:cd:6f:7b:db:49:a2: b4:b1:65:1d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJAH4LPxOF1F9jnVkMxEFKEdYGdQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNjAyMDExNjU3MjNaFw0yNjAyMDUwNDE4MjNaMDMxMTAvBgNV BAMTKDE3QkMzNTc1M0Q4NTAzNkFCNjE4Nzg3QzlFOEQ1OTAzNDg3RTYxRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUCYRoImksINvATs/FtrYIoXWV kWHbF7tt8gincAG8nnGJsaFLrb+RW2eLP4V2mbII+HjQ185RY3QqL5gGNmkSdu3s Knm5qLDiYDwIAt7IHmqUQfROdC8TWFECeTART0T7XyBskCZzoeZSs05US8zTZ/KZ Au2l0OoEQsP9Ely5x49k0aFGjIovls+4KvbSbBALSv8kKXG2fFgpA44Ybb6O5exm Bl/4N81Z4KAO+0oC7/y0B/JvnD95NdOO1sFIrK9du+C3+rt0E77DLiOYye8uRB7b TpFtVadaZkL76UjE94UEatlxKZ7AGKTSv9dYwAPIyPSl7R7HwE8p9K1NMQqVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF7w1dT2FA2q2GHh8no1ZA0h+YfQwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGLVd7ppQFic2FiAITV/mw+CAvb2sVZCgHT+ EvJXGGn8O/Q1cZAooRAAuWcYvR4Jqbl0ohipfEl86HQZCzIwe6s+UR/3T3UYPMa0 QsAmeseZOYa9uQldVJrdZxE3oouYiTPz5BClPGtO7tXJEQCYzw+xdG6SsRiCYkP6 0Nvbig5yIdXs07MaJhTfI/BYHl+Oq8DFJpMK1Cxapl3lEwO71b/OzUcgtbwNiHj8 LOg5lGKBBg16voRiMqWLw3ZmUz+5NtUhlFD0YcavIpuC2PElvWsCLM3l6xOIjHoZ zt5ITJ9LdHDC+7G8oGzeMZe4cn2HqAO3GHjT581ve9tJorSxZR0= -----END CERTIFICATE-----Generated at Mon Feb 2 09:47:08 2026 by rpki-client