This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: PaD9WAGHJXWxVzaG6Wo1hr9FdBxDego81jnwLcyU4dc= Subject key identifier: DD:7F:C5:53:1C:C9:44:DC:72:63:AC:F8:DF:A0:45:90:F5:3E:A7:33 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 27AA8C2BAE9DAFD8AFB76646FCD8840FA0B469CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: C2 Signing time: Sun 01 Feb 2026 01:30:42 +0000 Manifest this update: Sun 01 Feb 2026 01:25:42 +0000 Manifest next update: Wed 04 Feb 2026 06:09:42 +0000 Files and hashes: 1: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: E7LmVcTtrOc0QLca3OKgAjrGPUq24WcKvpibpJhqwMo=) 2: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: /bOtG6Hq4cCxQBrZ1Nbmvs+Hrm8cpxmM7Q2j13q5aYY=) 3: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: 2XaVDWhJEd9zhSb6pgpl5r1NLt6xU2uc8i3FUkXBc80=) 4: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: E4Gvpo5D/NeUbbz+zUDpV78niTppp2APH+i1gYLD2PM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 06:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:aa:8c:2b:ae:9d:af:d8:af:b7:66:46:fc:d8:84:0f:a0:b4:69:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Feb 1 01:25:42 2026 GMT Not After : Feb 4 06:09:42 2026 GMT Subject: CN=DD7FC5531CC944DC7263ACF8DFA04590F53EA733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4f:b9:30:85:13:19:95:72:9c:3a:0e:7c:1d: 85:b6:92:c5:82:e6:f6:26:d3:86:5f:c1:14:1c:aa: 17:03:c0:5d:a8:5e:03:79:9d:92:be:63:8d:c7:29: 49:c9:33:60:3f:1b:51:df:55:b8:aa:de:a2:21:f2: 6c:96:4d:74:f4:18:33:be:9e:5a:00:5b:7c:63:93: 81:6e:7f:5f:dc:9b:6b:16:bd:e4:ef:07:6b:d4:1a: cf:9a:f7:ce:83:34:76:85:b8:02:7e:49:03:d7:84: 17:0c:e2:35:8b:a2:2a:5e:7a:b9:b5:de:05:5d:41: c5:8f:15:88:bb:ef:17:5a:cd:d4:4d:b9:fe:9d:1f: 54:4b:d9:f7:2b:0b:e6:ec:49:c1:b1:64:73:72:a3: a0:70:e7:9f:e4:b1:26:16:5a:0c:05:35:84:98:6f: 51:72:2c:86:95:70:8a:e0:44:68:a4:96:ef:ea:b0: 5e:ec:d9:36:85:df:b8:b7:ee:02:2d:9c:db:8f:98: 4b:90:ca:0b:0e:fd:3b:8d:7b:3b:0e:48:e8:ff:a8: c0:42:90:22:ab:14:43:dd:15:77:53:11:b7:e6:59: e5:01:2c:8a:bc:40:e7:61:14:7e:c3:e3:fb:84:15: ed:3e:ba:75:9e:d7:9f:4e:d7:a9:0d:b5:0a:2d:f9: 90:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:7F:C5:53:1C:C9:44:DC:72:63:AC:F8:DF:A0:45:90:F5:3E:A7:33 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:e1:eb:ba:73:af:64:21:11:6d:71:a8:63:ee:d1:33:1c:5c: f2:cd:f5:92:cf:3d:89:72:8f:c6:d9:52:e5:33:87:82:8c:84: 4e:8e:f5:28:dd:07:9b:0a:c0:fb:52:00:9d:00:ec:35:21:b1: bb:03:d3:06:d6:be:4f:49:a7:d5:8a:db:01:9d:64:3e:3d:ab: 27:49:1a:1c:18:7b:e1:5d:7c:be:a6:f9:b1:5d:dd:64:1f:e2: df:9b:7b:c0:37:a9:d7:8a:61:42:07:9f:3d:d0:03:2a:ab:35: ea:18:84:96:32:fd:b9:52:ef:33:ad:69:8d:5c:1c:ee:f1:32: e0:8b:64:e2:3e:10:9e:5f:0d:f9:3b:a4:be:af:72:9a:16:6d: da:1d:99:4f:17:10:af:d0:34:37:92:53:28:e7:5b:6f:be:c7: b9:f9:d2:ca:cf:e9:68:a4:8e:db:6a:1a:73:75:5f:de:52:29: eb:a0:20:7d:59:cc:3e:27:d7:01:5b:87:1b:60:d6:54:d7:03: 4e:72:8c:d5:a2:88:7a:81:53:20:c4:61:cf:4d:06:78:ab:3e: 0d:79:60:46:c2:2a:23:b3:b1:ee:d6:cb:87:c8:08:22:69:1b: 88:a7:80:e7:81:09:49:e3:6c:35:26:6c:f3:22:53:0c:3b:37: ec:b1:e3:4a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ6qMK66dr9ivt2ZG/NiED6C0ac4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNjAyMDEwMTI1NDJaFw0yNjAyMDQwNjA5NDJaMDMxMTAvBgNV BAMTKEREN0ZDNTUzMUNDOTQ0REM3MjYzQUNGOERGQTA0NTkwRjUzRUE3MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChT7kwhRMZlXKcOg58HYW2ksWC 5vYm04ZfwRQcqhcDwF2oXgN5nZK+Y43HKUnJM2A/G1HfVbiq3qIh8myWTXT0GDO+ nloAW3xjk4Fuf1/cm2sWveTvB2vUGs+a986DNHaFuAJ+SQPXhBcM4jWLoipeerm1 3gVdQcWPFYi77xdazdRNuf6dH1RL2fcrC+bsScGxZHNyo6Bw55/ksSYWWgwFNYSY b1FyLIaVcIrgRGiklu/qsF7s2TaF37i37gItnNuPmEuQygsO/TuNezsOSOj/qMBC kCKrFEPdFXdTEbfmWeUBLIq8QOdhFH7D4/uEFe0+unWe159O16kNtQot+ZAVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3X/FUxzJRNxyY6z436BFkPU+pzMwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAELh67pzr2QhEW1xqGPu0TMcXPLN9ZLPPYly j8bZUuUzh4KMhE6O9SjdB5sKwPtSAJ0A7DUhsbsD0wbWvk9Jp9WK2wGdZD49qydJ GhwYe+FdfL6m+bFd3WQf4t+be8A3qdeKYUIHnz3QAyqrNeoYhJYy/blS7zOtaY1c HO7xMuCLZOI+EJ5fDfk7pL6vcpoWbdodmU8XEK/QNDeSUyjnW2++x7n50srP6Wik jttqGnN1X95SKeugIH1ZzD4n1wFbhxtg1lTXA05yjNWiiHqBUyDEYc9NBnirPg15 YEbCKiOzse7Wy4fICCJpG4ingOeBCUnjbDUmbPMiUww7N+yx40o= -----END CERTIFICATE-----Generated at Mon Feb 2 09:51:08 2026 by rpki-client