This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft File: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft (raw, json) Hash identifier: 9FlxieGSaW1RQZoIDZ+4kjodka3wGKA19JJxspEi9Io= Subject key identifier: 86:52:9B:08:8F:B1:D6:23:13:CA:FD:42:B2:E8:5C:CD:6B:80:89:8B Authority key identifier: 86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 Certificate issuer: /CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Certificate serial: 20E2B6D578D1BBF71F78B81DB70165A756C55365 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft Manifest number: 91 Signing time: Mon 02 Feb 2026 03:42:31 +0000 Manifest this update: Mon 02 Feb 2026 03:37:31 +0000 Manifest next update: Thu 05 Feb 2026 07:30:31 +0000 Files and hashes: 1: 3230322e39302e3139352e302f32342d3234203d3e20313431313134.roa (hash: 1xGJ7Y9+wtKG60b+Nh0uIMBhRuIEyt2WbpPoMcvYL7o=) 2: 8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl (hash: mhdbGjXBK13AvcRg1gB1SQyj6MQlj6+BUdq5Lqdrx80=) 3: 3230322e39302e3139342e302f32342d3234203d3e203435333233.roa (hash: E3gl245QWUOSrRvQIfs41ST6vQLNBujKh2hLnsJBzx8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 05:24:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:e2:b6:d5:78:d1:bb:f7:1f:78:b8:1d:b7:01:65:a7:56:c5:53:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8694CDBB52F4AEA89AF46CA5BFA5A639973D7302 Validity Not Before: Feb 2 03:37:31 2026 GMT Not After : Feb 5 07:30:31 2026 GMT Subject: CN=86529B088FB1D62313CAFD42B2E85CCD6B80898B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:70:aa:6c:d4:32:d2:ba:42:8d:88:c9:f7: a4:78:12:15:5f:69:92:e1:e1:63:c1:66:b7:cc:04: 70:f8:2a:9a:dc:41:2d:40:a1:91:5f:29:74:a4:8e: 60:aa:05:9c:a6:e8:a7:0b:b9:6b:a9:17:00:a4:6e: 2e:af:e9:89:cf:e2:56:aa:d6:7a:10:de:fa:f8:b7: e8:55:81:25:10:28:08:e8:62:94:7e:40:e0:5b:e1: d6:dd:61:d5:94:d6:59:f6:0e:76:18:19:ef:60:5a: b7:e9:03:51:32:45:0c:b6:49:bb:8c:b7:c4:e1:e5: 40:20:a8:89:0e:ca:76:f2:07:b8:66:e8:a4:4c:62: ad:ef:5d:51:02:3b:ae:30:2f:ef:27:b0:c4:d0:29: 7a:b5:40:a1:16:a6:2e:66:4e:75:ca:a1:37:55:14: 6c:a8:90:3c:30:f8:ff:c1:db:28:55:a8:05:b3:0e: 2b:cb:35:49:d6:6e:a1:a1:b6:50:12:d4:9d:47:26: 11:6e:fe:63:72:a8:88:9b:63:53:3f:c8:a4:ec:03: 9c:b1:3a:f4:f6:21:9f:2e:02:2f:7e:37:a9:0b:35: 74:2c:3e:08:69:cb:3d:28:11:9c:7f:6d:62:62:40: 4c:5b:b1:77:eb:41:e6:98:e0:ed:a9:c2:ef:c8:76: 9b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:52:9B:08:8F:B1:D6:23:13:CA:FD:42:B2:E8:5C:CD:6B:80:89:8B X509v3 Authority Key Identifier: keyid:86:94:CD:BB:52:F4:AE:A8:9A:F4:6C:A5:BF:A5:A6:39:97:3D:73:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dcf00f8a-5cbd-460f-bfc6-bd8942b6537c/0/8694CDBB52F4AEA89AF46CA5BFA5A639973D7302.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:98:58:86:f9:48:bb:81:a8:18:06:b1:0d:dc:4f:b5:74:db: 01:e1:36:c0:0b:69:7b:07:27:7c:b9:4d:bd:65:c3:50:77:af: ed:96:ea:38:57:f3:ed:ac:5f:a5:26:c8:7a:aa:68:72:f3:5f: c2:83:13:10:7d:7a:1f:be:30:b5:dd:60:9c:1a:b4:e1:0b:37: 1d:ef:95:fc:76:09:da:23:a0:71:5a:ba:45:7d:60:8e:fe:e6: af:32:f0:11:43:29:67:ea:7e:74:ba:3d:9f:d7:19:bc:68:cb: 67:8c:10:75:a5:32:4a:17:7e:dc:57:48:3d:dd:9c:3f:98:c6: b9:f0:9b:12:b1:16:87:01:e4:32:9f:47:ff:08:ed:d1:30:9d: f8:89:78:9f:31:c1:c7:5f:bf:93:4d:38:67:9e:1b:08:2e:2e: 47:a4:33:52:5d:45:6f:4a:18:ce:a7:d5:62:fb:b4:3d:3d:10: 33:31:01:ac:90:c5:a4:3d:59:c5:a6:57:a3:2c:cf:e9:d0:a7: 09:61:67:b2:af:d6:ac:7c:51:7e:d8:c1:61:73:0f:51:b6:64: 00:99:01:24:50:be:3e:89:c9:a4:b7:3e:ea:84:c5:45:fc:6f: d8:bc:e0:7f:9a:8d:e7:60:25:41:3d:ff:1c:8c:60:f9:52:64: 07:9d:06:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIOK21XjRu/cfeLgdtwFlp1bFU2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5 NzNENzMwMjAeFw0yNjAyMDIwMzM3MzFaFw0yNjAyMDUwNzMwMzFaMDMxMTAvBgNV BAMTKDg2NTI5QjA4OEZCMUQ2MjMxM0NBRkQ0MkIyRTg1Q0NENkI4MDg5OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC9nCqbNQy0rpCjYjJ96R4EhVf aZLh4WPBZrfMBHD4KprcQS1AoZFfKXSkjmCqBZym6KcLuWupFwCkbi6v6YnP4laq 1noQ3vr4t+hVgSUQKAjoYpR+QOBb4dbdYdWU1ln2DnYYGe9gWrfpA1EyRQy2SbuM t8Th5UAgqIkOynbyB7hm6KRMYq3vXVECO64wL+8nsMTQKXq1QKEWpi5mTnXKoTdV FGyokDww+P/B2yhVqAWzDivLNUnWbqGhtlAS1J1HJhFu/mNyqIibY1M/yKTsA5yx OvT2IZ8uAi9+N6kLNXQsPghpyz0oEZx/bWJiQExbsXfrQeaY4O2pwu/Idpt9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhlKbCI+x1iMTyv1CsuhczWuAiYswHwYDVR0j BBgwFoAUhpTNu1L0rqia9Gylv6WmOZc9cwIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k Y2YwMGY4YS01Y2JkLTQ2MGYtYmZjNi1iZDg5NDJiNjUzN2MvMC84Njk0Q0RCQjUy RjRBRUE4OUFGNDZDQTVCRkE1QTYzOTk3M0Q3MzAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2Mzk5NzNE NzMwMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGNmMDBmOGEtNWNiZC00NjBmLWJm YzYtYmQ4OTQyYjY1MzdjLzAvODY5NENEQkI1MkY0QUVBODlBRjQ2Q0E1QkZBNUE2 Mzk5NzNENzMwMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGGYWIb5SLuBqBgGsQ3cT7V02wHhNsALaXsH J3y5Tb1lw1B3r+2W6jhX8+2sX6UmyHqqaHLzX8KDExB9eh++MLXdYJwatOELNx3v lfx2CdojoHFaukV9YI7+5q8y8BFDKWfqfnS6PZ/XGbxoy2eMEHWlMkoXftxXSD3d nD+YxrnwmxKxFocB5DKfR/8I7dEwnfiJeJ8xwcdfv5NNOGeeGwguLkekM1JdRW9K GM6n1WL7tD09EDMxAayQxaQ9WcWmV6Msz+nQpwlhZ7Kv1qx8UX7YwWFzD1G2ZACZ ASRQvj6JyaS3PuqExUX8b9i84H+ajedgJUE9/xyMYPlSZAedBoU= -----END CERTIFICATE-----Generated at Mon Feb 2 09:47:19 2026 by rpki-client