This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft File: 4B35C20AD3085CF1B9FAEA049AD742539E090205.mft (raw, json) Hash identifier: mlnBR00UFIxA5H25uZjQPl2WcRbTk0W3E41zUa4mqD0= Subject key identifier: 09:68:30:ED:43:F4:76:B2:45:C6:1B:AB:84:31:60:F8:5B:AE:85:36 Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 3779366B5DEC1D814A8B16A303070F9BE7055940 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft Manifest number: 02A8 Signing time: Mon 02 Feb 2026 03:51:14 +0000 Manifest this update: Mon 02 Feb 2026 03:46:14 +0000 Manifest next update: Thu 05 Feb 2026 08:32:14 +0000 Files and hashes: 1: 4B35C20AD3085CF1B9FAEA049AD742539E090205.crl (hash: zQy9v5ypkdTmGCAvexys2UjfJMuMUnJmBDIjRBkSrWw=) 2: 3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa (hash: T9YXzECK/+yPsc0MjXlDkJh+Di90dnJO766syYdRfEY=) 3: 3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa (hash: MmuXAKKjfDSx5uMJ92RoI47O3gaQ+ApBdube+8uCMpY=) 4: 3130332e3137392e36352e302f32342d3234203d3e20313439333335.roa (hash: ym37SSdo2iVsDC1Dln3Pafguv+BU6JfKF0m5JjGwHHs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:79:36:6b:5d:ec:1d:81:4a:8b:16:a3:03:07:0f:9b:e7:05:59:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Feb 2 03:46:14 2026 GMT Not After : Feb 5 08:32:14 2026 GMT Subject: CN=096830ED43F476B245C61BAB843160F85BAE8536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:5a:c6:f7:ff:7a:fc:40:7a:c1:ac:0f:58: 35:fc:2d:0e:da:db:b3:23:1c:b2:1c:62:b3:e4:db: 66:77:a4:fb:02:fb:b3:d2:07:ee:09:c1:7e:da:97: 12:2d:db:28:87:47:6c:49:0c:fb:b3:03:7e:f8:37: a6:f4:1d:53:f9:0d:56:5a:df:da:8f:8a:05:55:eb: aa:df:9a:ca:10:3c:b5:08:8b:7a:98:e6:e0:6a:ce: af:37:63:96:da:a7:2b:27:dc:d6:69:91:19:ac:92: d5:c9:6f:ed:b0:4f:b6:2b:e5:75:24:9f:cb:e8:5e: 00:7c:8c:b1:99:11:e1:3e:1c:d9:aa:31:cf:63:0c: 70:9d:c7:ec:8a:f5:38:2e:dc:d0:f9:5e:54:b6:27: f5:95:c2:7b:af:d7:5c:c1:a9:80:de:95:ff:a9:7a: d4:1d:b4:a3:d1:e5:97:6d:9f:96:90:63:b6:37:e9: df:2e:b0:cd:68:7a:e9:64:26:91:7a:3e:32:55:c9: d8:ab:a0:8d:f0:7c:ba:b2:d1:36:b5:f3:1b:b1:98: 8f:b1:84:0b:6c:8a:c1:23:af:1c:25:6f:47:2d:35: 5a:1a:35:e8:3b:45:eb:d9:dd:66:7b:f3:16:92:e4: 92:f3:93:73:11:57:22:55:0b:9a:d0:01:1c:7a:71: c1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:68:30:ED:43:F4:76:B2:45:C6:1B:AB:84:31:60:F8:5B:AE:85:36 X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:5d:ef:d0:ff:2a:7e:a5:49:6b:64:7f:00:f2:c2:fc:ff:63: 8e:f4:79:8c:ea:84:fe:36:b8:a7:8e:5d:28:0f:a7:ce:e9:1d: 49:4e:33:c0:11:b5:6b:45:b7:57:e7:7a:73:9a:d4:cb:d7:15: 17:3e:c9:3a:44:68:cb:63:93:4d:7a:03:c0:64:99:ef:d2:f0: 50:00:fa:e2:05:b6:17:38:e7:f6:60:bb:ca:50:f1:93:20:bc: 88:c0:14:12:64:d9:a5:b1:4d:65:4f:d1:5a:8a:af:72:07:54: 75:5d:fd:d6:71:6f:74:eb:98:1b:bc:c2:20:7a:c3:2b:36:3a: 47:87:77:28:41:e2:10:05:92:24:33:95:95:36:b5:50:b6:af: b9:e5:1a:67:54:e4:46:e4:87:96:95:49:8f:fe:ae:5e:70:26: 8f:2f:c6:9f:e1:3e:0d:ce:2a:cc:e6:b7:c8:17:48:4b:83:53: bf:2b:c7:47:58:53:15:8f:6d:72:a2:8d:22:31:71:11:29:bd: 0e:2c:67:fe:da:f3:45:e9:6d:79:24:70:fa:df:07:60:3d:0b: d4:f0:26:f0:db:cf:e7:15:a6:34:79:11:a4:ba:11:bb:b7:37: ee:ac:e1:7c:a2:dd:bd:dd:26:c5:f6:d8:41:07:7f:49:8e:84: 03:cd:a8:4f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN3k2a13sHYFKixajAwcPm+cFWUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNjAyMDIwMzQ2MTRaFw0yNjAyMDUwODMyMTRaMDMxMTAvBgNV BAMTKDA5NjgzMEVENDNGNDc2QjI0NUM2MUJBQjg0MzE2MEY4NUJBRTg1MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4x1rG9/96/EB6wawPWDX8LQ7a 27MjHLIcYrPk22Z3pPsC+7PSB+4JwX7alxIt2yiHR2xJDPuzA374N6b0HVP5DVZa 39qPigVV66rfmsoQPLUIi3qY5uBqzq83Y5bapysn3NZpkRmsktXJb+2wT7Yr5XUk n8voXgB8jLGZEeE+HNmqMc9jDHCdx+yK9Tgu3ND5XlS2J/WVwnuv11zBqYDelf+p etQdtKPR5Zdtn5aQY7Y36d8usM1oeulkJpF6PjJVydiroI3wfLqy0Ta18xuxmI+x hAtsisEjrxwlb0ctNVoaNeg7RevZ3WZ78xaS5JLzk3MRVyJVC5rQARx6ccEtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCWgw7UP0drJFxhurhDFg+FuuhTYwHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzc3ZGUwMTMtOWI1Ni00OWZmLThi NzktMzY2N2EzNDVjYjhkLzAvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQy NTM5RTA5MDIwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFJd79D/Kn6lSWtkfwDywvz/Y470eYzqhP42 uKeOXSgPp87pHUlOM8ARtWtFt1fnenOa1MvXFRc+yTpEaMtjk016A8Bkme/S8FAA +uIFthc45/Zgu8pQ8ZMgvIjAFBJk2aWxTWVP0VqKr3IHVHVd/dZxb3TrmBu8wiB6 wys2OkeHdyhB4hAFkiQzlZU2tVC2r7nlGmdU5Ebkh5aVSY/+rl5wJo8vxp/hPg3O Kszmt8gXSEuDU78rx0dYUxWPbXKijSIxcREpvQ4sZ/7a80XpbXkkcPrfB2A9C9Tw JvDbz+cVpjR5EaS6Ebu3N+6s4Xyi3b3dJsX22EEHf0mOhAPNqE8= -----END CERTIFICATE-----Generated at Mon Feb 2 10:05:09 2026 by rpki-client