This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft File: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft (raw, json) Hash identifier: UhDfOppq7MA2vvtBuDBLxhc5tF01tjdly80Q90IT+No= Subject key identifier: D0:91:CD:F3:96:97:AE:78:91:4D:2C:EA:C6:CF:E2:26:BF:25:C2:31 Authority key identifier: AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 Certificate issuer: /CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Certificate serial: 0E550A67D02C2C90129FADB01DFEE46B7B042228 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft Manifest number: 02C9 Signing time: Mon 02 Feb 2026 07:52:12 +0000 Manifest this update: Mon 02 Feb 2026 07:47:12 +0000 Manifest next update: Thu 05 Feb 2026 13:43:12 +0000 Files and hashes: 1: 3130332e3137322e32332e302f32342d3234203d3e20313437313237.roa (hash: ZUhqRkopz2aAEIpLVfRWO4+f532BAakRUcbL26qkTI0=) 2: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl (hash: KwMZJQatVqaJEsRHS4xqt6nqfGgyhjfncaM/EYQoYAk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:55:0a:67:d0:2c:2c:90:12:9f:ad:b0:1d:fe:e4:6b:7b:04:22:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Validity Not Before: Feb 2 07:47:12 2026 GMT Not After : Feb 5 13:43:12 2026 GMT Subject: CN=D091CDF39697AE78914D2CEAC6CFE226BF25C231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:67:5b:b3:66:03:31:b9:8c:1c:e8:13:2d: 8c:de:c5:10:c5:41:64:18:a9:16:37:ae:81:b4:d1: f0:33:37:c3:b0:46:bb:1a:8b:0a:55:1a:25:00:57: 93:89:35:dc:67:09:d6:44:1c:e4:bf:d9:b4:8b:cc: 66:f7:79:97:d0:2e:39:95:5b:1b:83:92:01:b1:1a: ee:3a:ce:d5:90:42:4f:bd:0e:5a:3e:37:a9:64:c8: db:2c:ef:48:ea:a2:c3:98:17:b2:d7:8c:73:ca:8f: 56:37:56:f0:bb:84:a1:c1:41:ef:6e:38:b8:b7:7e: 13:e9:7b:b4:b7:a9:45:23:6b:cc:9d:0f:c0:11:ef: eb:00:be:42:4c:c8:f3:ce:4b:d3:73:52:50:63:d7: 5d:df:72:e7:e6:03:75:6d:78:c7:ca:54:b2:72:1d: 46:ba:f7:20:a4:d7:da:77:fb:cc:6c:cb:4e:f6:4e: 7a:19:20:f5:db:41:8c:9c:c0:d2:e7:06:37:58:70: ae:e9:1c:0b:d4:9e:bc:0c:bc:88:3c:32:fc:38:5a: 65:48:e4:58:7c:68:a7:ff:5a:fb:08:2e:dc:49:f5: f1:5f:d6:55:60:69:99:0e:02:22:7c:0b:38:62:2f: 62:e7:0c:04:93:0d:e7:23:08:cf:12:df:f3:b5:e2: 09:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:91:CD:F3:96:97:AE:78:91:4D:2C:EA:C6:CF:E2:26:BF:25:C2:31 X509v3 Authority Key Identifier: keyid:AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:91:94:72:be:71:1c:ef:cd:f2:ed:30:d0:91:e0:d8:ce:19: 7a:f6:a5:bd:68:26:22:30:cc:77:e0:04:d5:bc:46:09:2b:97: 43:52:4c:1c:21:40:2e:0e:5a:8f:50:63:df:56:5b:b5:f3:04: 16:90:e5:e8:e3:ab:0d:36:4a:5e:6a:76:3b:0b:fd:24:bb:7f: a2:b2:ec:5e:ad:89:22:71:61:9e:ac:db:cd:e3:fc:9e:ca:e5: 8c:4d:ed:18:3e:34:6a:89:f5:87:77:ac:95:b7:01:8b:2f:b6: b1:e9:51:ba:c7:b4:ca:e9:58:87:50:80:e0:b8:bf:61:86:c4: 1b:a2:45:fb:50:bc:b5:9a:5a:2c:77:1b:2d:67:37:a4:22:2c: 17:86:a9:78:5b:8c:ac:1d:bd:80:48:8d:1b:4d:88:8b:23:a3: f1:45:e3:81:29:25:5d:62:dd:bf:0a:9b:8f:f0:b9:39:47:f9: f3:d0:db:19:2d:24:f9:8d:54:53:31:e9:68:2b:a4:c7:b5:89: 8e:69:fb:e9:6e:f5:51:c5:70:bb:27:1e:c4:c0:94:de:cf:df: 6f:43:73:fb:63:a4:7b:45:d0:e2:8d:48:c6:51:8a:ec:8f:ce: db:ef:e2:71:2b:75:06:e0:bf:d3:43:16:c4:05:7a:f2:99:e4: bb:47:16:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDlUKZ9AsLJASn62wHf7ka3sEIigwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4 MkMzQzJGNjAeFw0yNjAyMDIwNzQ3MTJaFw0yNjAyMDUxMzQzMTJaMDMxMTAvBgNV BAMTKEQwOTFDREYzOTY5N0FFNzg5MTREMkNFQUM2Q0ZFMjI2QkYyNUMyMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7jWdbs2YDMbmMHOgTLYzexRDF QWQYqRY3roG00fAzN8OwRrsaiwpVGiUAV5OJNdxnCdZEHOS/2bSLzGb3eZfQLjmV WxuDkgGxGu46ztWQQk+9Dlo+N6lkyNss70jqosOYF7LXjHPKj1Y3VvC7hKHBQe9u OLi3fhPpe7S3qUUja8ydD8AR7+sAvkJMyPPOS9NzUlBj113fcufmA3VteMfKVLJy HUa69yCk19p3+8xsy072TnoZIPXbQYycwNLnBjdYcK7pHAvUnrwMvIg8Mvw4WmVI 5Fh8aKf/WvsILtxJ9fFf1lVgaZkOAiJ8CzhiL2LnDASTDecjCM8S3/O14glvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0JHN85aXrniRTSzqxs/iJr8lwjEwHwYDVR0j BBgwFoAUr5WN4OzoMLLAfBpYzpFf24LDwvYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWRlMGMzOS04NGQ1LTQ0MDUtOTU0ZC00ZDNkNzEyNjkzY2UvMC9BRjk1OERFMEVD RTgzMEIyQzA3QzFBNThDRTkxNUZEQjgyQzNDMkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4MkMz QzJGNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzlkZTBjMzktODRkNS00NDA1LTk1 NGQtNGQzZDcxMjY5M2NlLzAvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVG REI4MkMzQzJGNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALyRlHK+cRzvzfLtMNCR4NjOGXr2pb1oJiIw zHfgBNW8Rgkrl0NSTBwhQC4OWo9QY99WW7XzBBaQ5ejjqw02Sl5qdjsL/SS7f6Ky 7F6tiSJxYZ6s283j/J7K5YxN7Rg+NGqJ9Yd3rJW3AYsvtrHpUbrHtMrpWIdQgOC4 v2GGxBuiRftQvLWaWix3Gy1nN6QiLBeGqXhbjKwdvYBIjRtNiIsjo/FF44EpJV1i 3b8Km4/wuTlH+fPQ2xktJPmNVFMx6WgrpMe1iY5p++lu9VHFcLsnHsTAlN7P329D c/tjpHtF0OKNSMZRiuyPztvv4nErdQbgv9NDFsQFevKZ5LtHFqA= -----END CERTIFICATE-----Generated at Mon Feb 2 10:03:44 2026 by rpki-client