This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: QKFsnWYs6HHiCy+HXdOEDQMA/l/ayY2YBHQ02eUTF7c= Subject key identifier: CE:AA:C8:D1:69:1E:E2:9F:12:63:F8:D2:9E:21:6F:34:EB:1B:41:1D Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 4C37A4B20B6138A8C4E453E00A75A42CE371D7E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 0152 Signing time: Sat 31 Jan 2026 19:52:01 +0000 Manifest this update: Sat 31 Jan 2026 19:47:01 +0000 Manifest next update: Tue 03 Feb 2026 21:51:01 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: RxMeC2Bf+op4f0V8C2/Z2+TmAvdOXDX6KTiImKWHEgk=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xTPoIlaNmn7dCA4oz4xbGajx7u9U25QUsQJawDHmNA8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Feb 2026 21:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:37:a4:b2:0b:61:38:a8:c4:e4:53:e0:0a:75:a4:2c:e3:71:d7:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Jan 31 19:47:01 2026 GMT Not After : Feb 3 21:51:01 2026 GMT Subject: CN=CEAAC8D1691EE29F1263F8D29E216F34EB1B411D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:2b:30:fa:21:ee:78:d8:05:92:a7:05:e8:1c: 92:ef:7b:b6:bc:72:63:ce:70:7e:7d:04:b3:f8:4d: 7d:51:8c:c4:f9:1d:0b:71:a1:1f:1e:4d:bf:cc:4a: 1a:12:5b:9e:e8:b5:50:90:2f:49:a0:d0:ef:dc:76: e8:d3:94:30:1f:10:c3:c1:33:81:ac:44:0a:f5:ee: 11:80:11:72:5f:10:20:54:5f:7e:85:eb:b9:d3:2e: 29:b8:6c:67:8b:1a:eb:6e:c2:6c:18:d8:c4:e3:b9: 11:e1:27:b3:e5:6d:b2:5f:49:6a:e8:b0:16:1a:98: 12:55:0e:7a:bc:85:b2:cb:19:ea:9d:8f:7b:9d:c9: 57:20:1e:4c:30:3f:01:c0:93:3f:04:dc:07:3d:2a: b3:78:85:d6:e4:0e:87:a0:af:ca:8d:e0:8b:72:8d: 84:86:a6:fe:c7:6f:57:09:66:97:35:71:32:f4:98: ef:71:ea:df:8f:b5:6b:19:49:27:46:83:f9:bd:f3: 71:fb:bf:c6:cc:ef:13:8b:f7:6d:34:93:8a:c5:e4: f2:77:2a:ea:6e:1a:98:4a:fd:d5:92:d8:62:5c:c9: 83:90:89:5c:5a:8b:1c:c3:df:a9:7a:e1:ce:f5:44: 1e:07:62:df:d0:67:d9:3a:a1:87:12:84:e1:e5:69: 8d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:AA:C8:D1:69:1E:E2:9F:12:63:F8:D2:9E:21:6F:34:EB:1B:41:1D X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:ad:3b:9d:93:22:de:20:6a:91:71:06:b5:c5:37:fd:5c:fc: 8b:bb:73:69:2d:b7:b6:95:12:4a:80:15:57:c7:a4:23:d6:ab: 04:ae:69:0c:c5:cb:1a:85:50:1d:7d:25:7b:ff:06:cd:bc:45: 72:01:c2:62:ac:5e:9d:0c:ad:27:d9:1e:eb:bb:97:8b:5a:25: 29:be:d2:b2:35:89:7f:f9:bd:26:21:e3:7d:66:c9:be:fd:eb: b5:27:16:a6:92:88:7d:10:2e:ec:d9:d1:94:0d:09:e9:d1:59: 3c:46:0a:44:fa:96:09:0e:97:6e:9f:e4:4f:5e:92:a3:9e:c5: a3:43:f9:dd:dd:9e:6d:90:ff:33:75:f8:33:57:e9:aa:0d:88: dc:5b:28:bf:dc:32:63:3d:a9:62:e5:42:01:b3:50:ab:97:c0: 26:6d:f6:7d:e5:d6:3a:b1:fd:e4:2e:2d:c2:1b:4c:f4:ae:64: 0d:66:17:3e:e3:18:b7:40:5d:c9:6c:54:08:b9:92:5e:8c:c5: a6:63:de:1d:ac:35:03:e6:42:59:3f:14:16:ca:9a:1e:de:8a: 19:60:dd:e5:69:c4:6b:a0:0d:7d:d8:c4:7e:11:4e:d8:35:f6: 64:da:7f:b4:9b:3f:fd:98:cc:61:cc:f9:1b:a7:bb:c7:f8:e3: ed:d7:5c:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTDeksgthOKjE5FPgCnWkLONx1+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNjAxMzExOTQ3MDFaFw0yNjAyMDMyMTUxMDFaMDMxMTAvBgNV BAMTKENFQUFDOEQxNjkxRUUyOUYxMjYzRjhEMjlFMjE2RjM0RUIxQjQxMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1KzD6Ie542AWSpwXoHJLve7a8 cmPOcH59BLP4TX1RjMT5HQtxoR8eTb/MShoSW57otVCQL0mg0O/cdujTlDAfEMPB M4GsRAr17hGAEXJfECBUX36F67nTLim4bGeLGutuwmwY2MTjuRHhJ7PlbbJfSWro sBYamBJVDnq8hbLLGeqdj3udyVcgHkwwPwHAkz8E3Ac9KrN4hdbkDoegr8qN4Ity jYSGpv7Hb1cJZpc1cTL0mO9x6t+PtWsZSSdGg/m983H7v8bM7xOL9200k4rF5PJ3 KupuGphK/dWS2GJcyYOQiVxaixzD36l64c71RB4HYt/QZ9k6oYcShOHlaY3tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzqrI0Wke4p8SY/jSniFvNOsbQR0wHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIKtO52TIt4gapFxBrXFN/1c/Iu7c2ktt7aV EkqAFVfHpCPWqwSuaQzFyxqFUB19JXv/Bs28RXIBwmKsXp0MrSfZHuu7l4taJSm+ 0rI1iX/5vSYh431myb7967UnFqaSiH0QLuzZ0ZQNCenRWTxGCkT6lgkOl26f5E9e kqOexaND+d3dnm2Q/zN1+DNX6aoNiNxbKL/cMmM9qWLlQgGzUKuXwCZt9n3l1jqx /eQuLcIbTPSuZA1mFz7jGLdAXclsVAi5kl6MxaZj3h2sNQPmQlk/FBbKmh7eihlg 3eVpxGugDX3YxH4RTtg19mTaf7SbP/2YzGHM+Runu8f44+3XXHc= -----END CERTIFICATE-----Generated at Mon Feb 2 15:59:10 2026 by rpki-client