This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft File: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft (raw, json) Hash identifier: cFz0GqCDQV5099idGIbeNpfMejZt8gmyzvliIWcTBCc= Subject key identifier: DF:30:97:78:06:5C:29:EA:3E:0B:29:D6:27:1E:EF:68:5D:F6:92:94 Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 6382ECE955D0A92A0AA636B7916FAD7060514B80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft Manifest number: E2 Signing time: Mon 19 Jan 2026 05:42:02 +0000 Manifest this update: Mon 19 Jan 2026 05:37:02 +0000 Manifest next update: Thu 22 Jan 2026 16:58:02 +0000 Files and hashes: 1: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (hash: sRyhu6fDfcemdhV/NAA1n4G4NdnybRSnokvW0ioWtBY=) 2: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl (hash: kW05aVjYdMJ78Nk8cfgvI2npRRgrNuArEUoiSiPd1Dw=) 3: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (hash: IGC+YzF7hbNTh+lU4Xp4ZN99v7lUHzjLqU8mpRmWZMw=) 4: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (hash: mDFd08tPILLw1T3gAXQau9nwubN6g+t2GLdqlL1NiMc=) 5: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (hash: Sds95Ss3ilJlMKDO38Rkj40VQdzRD9GgP564MrRxXGU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 Jan 2026 16:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:82:ec:e9:55:d0:a9:2a:0a:a6:36:b7:91:6f:ad:70:60:51:4b:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Jan 19 05:37:02 2026 GMT Not After : Jan 22 16:58:02 2026 GMT Subject: CN=DF309778065C29EA3E0B29D6271EEF685DF69294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ae:8b:4c:3b:58:1b:c4:73:b2:5a:73:18:58: 0b:2f:93:59:93:88:5f:61:a4:ff:b0:8a:48:88:95: ac:77:89:8a:b9:2c:fa:34:90:f6:c5:bc:dd:54:23: 90:a3:ec:59:8d:4b:22:ef:bd:29:49:67:c1:42:c4: 40:4a:cb:c5:0d:83:56:9e:c7:6b:bb:0b:cb:e9:a2: 31:8c:9c:80:ac:d0:65:b5:25:4d:8e:f3:04:ce:98: dc:ca:1c:ce:2c:95:05:b9:45:17:5a:25:3d:f6:17: 13:fa:84:eb:57:bb:c2:dd:0f:24:17:62:d8:98:08: 40:5b:c3:7b:a7:2a:48:b0:81:e9:8e:5b:8a:57:39: 97:2c:2e:d0:e9:cf:57:60:89:83:7a:b1:22:0d:5b: 8a:96:ee:c0:be:42:33:f8:b1:1d:0f:e8:7a:5b:12: 94:a2:36:4f:69:7c:9b:52:c5:47:93:8a:c1:a5:27: b3:45:18:aa:82:93:30:62:57:bc:cb:78:60:64:f7: ad:c0:ec:7d:53:11:2c:bb:e2:bb:ef:d8:9e:c7:e6: b4:fa:5e:20:f8:ad:49:81:1f:24:d9:66:fe:42:8c: a8:2f:51:1b:14:c5:1b:7b:71:7c:db:1d:e1:e9:bd: 47:43:ec:52:d6:ca:0a:f5:6c:7f:ab:26:36:7c:05: 8f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:30:97:78:06:5C:29:EA:3E:0B:29:D6:27:1E:EF:68:5D:F6:92:94 X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:c7:ec:3a:71:52:c4:3a:f5:bc:c6:13:5c:c9:b7:1f:43:ac: 5c:75:89:e1:14:c3:fc:ad:3c:f0:01:3a:4e:a0:f7:91:aa:0e: 8c:d3:3c:ab:b4:c1:70:c9:f2:98:99:db:2b:ce:c4:22:04:b4: 1c:da:32:3c:6b:ec:53:2b:36:e6:bc:51:82:f9:ef:08:7b:5e: f0:9a:bd:36:ec:38:28:68:ec:fb:d9:f9:bf:0e:3f:07:15:b5: 4d:80:b9:5b:6b:c2:05:10:c7:d7:f1:04:7c:99:c1:2c:8d:e1: c4:e5:21:0f:16:a4:fb:7a:ac:39:0d:ed:6f:8d:8d:9b:32:fa: 0a:d7:1e:89:24:24:a0:57:9a:86:bb:14:8d:9c:54:3e:c8:cd: 85:af:60:13:88:04:34:4b:31:41:34:88:e5:98:fe:8c:29:9c: c0:40:71:01:8a:70:66:a0:96:db:91:2c:e7:04:80:c3:75:21: d5:1c:d1:da:e2:bb:2e:35:fc:7e:ab:48:df:71:37:e9:f5:26: 9a:88:79:bb:0a:d2:72:60:51:e9:75:36:a9:e3:6e:cd:91:23: 7f:24:c2:11:ff:51:6b:ff:9a:08:23:47:60:8d:20:6b:84:92: e8:26:69:4e:e4:50:73:4f:83:94:5c:3f:21:31:1a:d9:6c:96: e9:89:1f:7d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUY4Ls6VXQqSoKpja3kW+tcGBRS4AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNjAxMTkwNTM3MDJaFw0yNjAxMjIxNjU4MDJaMDMxMTAvBgNV BAMTKERGMzA5Nzc4MDY1QzI5RUEzRTBCMjlENjI3MUVFRjY4NURGNjkyOTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVrotMO1gbxHOyWnMYWAsvk1mT iF9hpP+wikiIlax3iYq5LPo0kPbFvN1UI5Cj7FmNSyLvvSlJZ8FCxEBKy8UNg1ae x2u7C8vpojGMnICs0GW1JU2O8wTOmNzKHM4slQW5RRdaJT32FxP6hOtXu8LdDyQX YtiYCEBbw3unKkiwgemOW4pXOZcsLtDpz1dgiYN6sSINW4qW7sC+QjP4sR0P6Hpb EpSiNk9pfJtSxUeTisGlJ7NFGKqCkzBiV7zLeGBk963A7H1TESy74rvv2J7H5rT6 XiD4rUmBHyTZZv5CjKgvURsUxRt7cXzbHeHpvUdD7FLWygr1bH+rJjZ8BY+XAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3zCXeAZcKeo+CynWJx7vaF32kpQwHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDZjOGIzYTktNGVmZi00NjBkLWIw MWQtNmJhNWQ5OWRhZGI5LzAvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcx MTQzNEM0OEFGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIjH7DpxUsQ69bzGE1zJtx9DrFx1ieEUw/yt PPABOk6g95GqDozTPKu0wXDJ8piZ2yvOxCIEtBzaMjxr7FMrNua8UYL57wh7XvCa vTbsOCho7PvZ+b8OPwcVtU2AuVtrwgUQx9fxBHyZwSyN4cTlIQ8WpPt6rDkN7W+N jZsy+grXHokkJKBXmoa7FI2cVD7IzYWvYBOIBDRLMUE0iOWY/owpnMBAcQGKcGag ltuRLOcEgMN1IdUc0driuy41/H6rSN9xN+n1JpqIebsK0nJgUel1Nqnjbs2RI38k whH/UWv/mggjR2CNIGuEkugmaU7kUHNPg5RcPyExGtlslumJH30= -----END CERTIFICATE-----Generated at Wed Jan 21 14:44:21 2026 by rpki-client