This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft File: 20B00D67B048DAE581FE60A498995A27878149A7.mft (raw, json) Hash identifier: /731EcAVmMFU6LEvRmpxQEk6OuGD3PYCQzJup3JjvK0= Subject key identifier: 62:42:20:05:60:2D:18:02:55:33:AE:4A:F5:97:1C:DA:A1:79:0C:A6 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 17C08B8DDB4BCA710FD95E2F3F5549431B6559D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft Manifest number: 0203 Signing time: Sun 01 Feb 2026 16:51:08 +0000 Manifest this update: Sun 01 Feb 2026 16:46:08 +0000 Manifest next update: Wed 04 Feb 2026 23:46:08 +0000 Files and hashes: 1: 20B00D67B048DAE581FE60A498995A27878149A7.crl (hash: C44eXmNvWfYXwGBLPFTov7L2lIoQWfeDOnF/TVrpHHo=) 2: 323430313a383234303a3a2f33322d3438203d3e203233393438.roa (hash: G1GO2xkJddb3+Y/gyc1CuMPONDsxmL8d7VQhnKS/oUM=) 3: 3230322e37352e32382e302f32332d3234203d3e20313338383731.roa (hash: gpotogkgRPqhq+iXjlc72dawBwQqgtK3y2i6zL2CYVg=) 4: 3230322e37352e31362e302f32302d3234203d3e203233393438.roa (hash: 9Zia9o6pZwHOK52NvyDCb/uiHgQl9tsHUexz827si5o=) 5: 323430313a383234303a3a2f33322d3438203d3e203338373834.roa (hash: G8PV7882jIzL7DpesLHcinlC2gFpMWki9wF55ivTArc=) 6: 3230322e37352e31362e302f32302d3234203d3e203338373834.roa (hash: lK1vUk86W1WWvANWItOKCTii7JITy4ro2D+rSQqdjDY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 23:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:c0:8b:8d:db:4b:ca:71:0f:d9:5e:2f:3f:55:49:43:1b:65:59:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Feb 1 16:46:08 2026 GMT Not After : Feb 4 23:46:08 2026 GMT Subject: CN=62422005602D18025533AE4AF5971CDAA1790CA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:af:b5:95:3a:93:04:e9:82:d5:44:c1:5b:9d: 00:5c:21:66:47:da:5b:1a:de:81:10:c5:b1:31:80: 38:1d:dd:41:19:ee:0c:53:19:d1:a7:00:78:53:54: 28:31:ab:7c:38:38:4d:cd:4e:6c:a1:3d:23:41:5c: 70:dc:ee:dd:49:75:5c:4f:fc:08:5f:4e:aa:2e:14: 79:40:c3:ab:f3:93:aa:eb:c1:9e:32:cb:26:d6:3d: 85:b7:dd:67:0a:ed:cf:10:0e:ac:e7:61:69:17:3a: 33:da:cb:3a:40:73:4d:f2:72:41:68:5d:a5:80:9b: d0:26:a7:6d:f3:87:40:9c:27:7a:9b:0d:f0:cd:8f: 2c:c1:af:46:5c:50:af:ff:98:e7:98:43:72:32:b5: bf:c6:de:ce:c2:37:c4:b6:4f:68:fd:6d:04:e0:ad: 0e:0e:e5:3b:bc:1c:48:8d:21:19:1a:b8:31:15:4e: b4:52:a7:36:b0:4b:83:03:b5:1a:78:31:a2:94:51: 95:4f:51:17:f9:fb:21:3b:c1:5d:73:34:a8:92:c1: b7:9f:f2:b6:a7:2c:a7:a9:f3:e4:44:e9:24:7e:26: 1e:c6:05:47:4c:37:60:4a:61:af:52:01:4b:cb:80: 0d:64:2a:e1:8d:63:ae:0b:f7:42:03:34:23:50:78: 61:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:42:20:05:60:2D:18:02:55:33:AE:4A:F5:97:1C:DA:A1:79:0C:A6 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:f4:f1:c9:67:41:03:55:a3:e2:e9:c4:b9:1c:64:3a:98:d4: f3:e6:da:23:a4:9e:4a:ee:78:05:71:4f:02:8b:a7:5c:4c:1c: 69:93:4d:11:c2:df:3d:ec:f2:55:17:8b:49:f9:60:9b:89:a5: 45:06:b2:37:d1:ec:c6:61:02:9c:1b:3f:aa:f4:53:5e:8b:12: e4:21:32:0e:aa:84:6e:d4:47:96:03:fd:e0:b1:32:e7:1c:f6: 09:4c:a3:1d:bf:47:87:32:d2:f9:b9:60:63:16:0b:02:be:df: 63:d0:e9:a9:2e:b2:00:3e:a9:ee:12:37:74:68:5e:4d:c7:1e: 9f:18:94:f6:28:46:78:1b:2a:66:61:c0:7d:d1:ef:dc:9a:76: 26:93:eb:3c:6b:a1:63:7a:85:27:d5:f6:9c:bd:c5:d8:0d:75: 78:49:4b:7d:46:bb:bb:cb:c0:82:bc:ce:c4:21:97:c9:ca:81: ba:2d:18:64:a0:ed:a8:15:45:3f:41:c0:7a:8b:91:c3:23:23: 67:d2:23:3d:3b:ab:bd:78:ea:4a:8c:87:d1:6d:b9:9e:bd:5e: 3a:18:3e:62:03:bd:a4:a3:0e:db:f8:cb:02:4b:1e:e5:e3:15: 50:71:c5:aa:78:ca:14:0e:96:bd:8e:a5:54:76:89:70:21:b7: a2:f8:2d:c5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF8CLjdtLynEP2V4vP1VJQxtlWdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNjAyMDExNjQ2MDhaFw0yNjAyMDQyMzQ2MDhaMDMxMTAvBgNV BAMTKDYyNDIyMDA1NjAyRDE4MDI1NTMzQUU0QUY1OTcxQ0RBQTE3OTBDQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTr7WVOpME6YLVRMFbnQBcIWZH 2lsa3oEQxbExgDgd3UEZ7gxTGdGnAHhTVCgxq3w4OE3NTmyhPSNBXHDc7t1JdVxP /AhfTqouFHlAw6vzk6rrwZ4yyybWPYW33WcK7c8QDqznYWkXOjPayzpAc03yckFo XaWAm9Amp23zh0CcJ3qbDfDNjyzBr0ZcUK//mOeYQ3Iytb/G3s7CN8S2T2j9bQTg rQ4O5Tu8HEiNIRkauDEVTrRSpzawS4MDtRp4MaKUUZVPURf5+yE7wV1zNKiSwbef 8ranLKep8+RE6SR+Jh7GBUdMN2BKYa9SAUvLgA1kKuGNY64L90IDNCNQeGF5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYkIgBWAtGAJVM65K9Zcc2qF5DKYwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzQ1NDcxMDQtOTM5ZS00MGUzLThm YzgtNDI1MjI2NDIwNDRiLzAvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVB Mjc4NzgxNDlBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJT08clnQQNVo+LpxLkcZDqY1PPm2iOknkru eAVxTwKLp1xMHGmTTRHC3z3s8lUXi0n5YJuJpUUGsjfR7MZhApwbP6r0U16LEuQh Mg6qhG7UR5YD/eCxMucc9glMox2/R4cy0vm5YGMWCwK+32PQ6akusgA+qe4SN3Ro Xk3HHp8YlPYoRngbKmZhwH3R79yadiaT6zxroWN6hSfV9py9xdgNdXhJS31Gu7vL wIK8zsQhl8nKgbotGGSg7agVRT9BwHqLkcMjI2fSIz07q7146kqMh9FtuZ69XjoY PmIDvaSjDtv4ywJLHuXjFVBxxap4yhQOlr2OpVR2iXAht6L4LcU= -----END CERTIFICATE-----Generated at Mon Feb 2 12:55:41 2026 by rpki-client