This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: dusSIB8qEKBm+Fscd2Fc/qpguzD1Rr1WLjKyH30INgI= Subject key identifier: F3:1D:E1:72:6E:FE:C1:42:70:17:E6:27:6E:35:FF:29:4F:96:2C:11 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 78017F8D0AA876C230927613F12D1C0E1734969B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 0543 Signing time: Mon 26 Jan 2026 03:31:00 +0000 Manifest this update: Mon 26 Jan 2026 03:26:00 +0000 Manifest next update: Thu 29 Jan 2026 15:21:00 +0000 Files and hashes: 1: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ=) 2: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U=) 3: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c=) 4: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: QlzsqzFDLp+njs7gRT3XLYAo5sL7Y8U1+yYBxRPZm3k=) 5: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 29 Jan 2026 14:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:01:7f:8d:0a:a8:76:c2:30:92:76:13:f1:2d:1c:0e:17:34:96:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Jan 26 03:26:00 2026 GMT Not After : Jan 29 15:21:00 2026 GMT Subject: CN=F31DE1726EFEC1427017E6276E35FF294F962C11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:09:5e:0d:68:94:f3:e0:91:f5:f2:17:4b:bd: fd:6b:2a:89:31:30:f3:ec:5e:cc:10:b4:09:66:5e: 6b:c8:78:b7:a9:14:0b:68:e1:cb:a8:c8:af:1c:44: 2b:03:37:58:a6:3a:a8:bb:10:91:91:fb:d0:e8:0f: 8e:9f:3d:2c:d9:59:0d:bb:01:01:08:56:aa:66:7b: 1f:0f:32:c8:8f:65:d7:26:cd:26:4c:89:1f:07:85: 2c:1a:b0:a5:73:c4:29:59:87:a2:5c:ba:31:6c:e6: 8b:54:49:ef:95:52:b3:bd:19:23:2e:9b:da:e8:6d: 53:6b:88:f3:76:73:dc:d8:9b:3d:e3:71:5e:01:25: 33:ec:82:96:ea:03:69:09:49:de:cc:d2:b1:95:7e: 13:bd:66:04:52:be:5c:4e:1f:e9:1c:ab:7e:cb:0e: 29:d0:e1:17:00:90:17:2d:8c:3c:e9:1e:65:67:54: 88:90:15:95:de:2d:d3:57:46:bf:83:79:96:49:df: cb:32:8f:d5:08:7f:8f:55:f0:8e:03:d0:fe:38:c1: 53:a7:11:97:7b:76:6c:98:54:8b:80:02:0b:ef:d5: e4:b3:2e:21:c3:3d:7d:6a:4c:4e:8d:5d:00:44:f4: 04:2b:26:e7:fa:a0:37:21:aa:f7:1a:4e:d9:7d:00: fa:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:1D:E1:72:6E:FE:C1:42:70:17:E6:27:6E:35:FF:29:4F:96:2C:11 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:97:d8:56:39:0a:36:e0:da:67:85:52:50:78:a5:1a:f0:36: ac:c2:85:c2:44:c8:f4:63:ea:07:b5:c5:54:63:80:f0:05:4c: 73:27:e4:e3:bf:d1:7b:e5:6e:fe:11:9e:95:0c:50:1d:b9:53: 1e:5d:d5:88:7b:27:ef:27:fe:75:66:8c:de:98:19:35:e0:61: f9:85:52:84:b8:6f:e3:1d:d6:e2:c0:ee:88:e1:8b:4f:95:c0: 4f:38:d8:84:f6:52:94:dc:81:b1:ba:b3:00:b3:f5:76:18:26: 90:39:c5:9e:a4:13:f1:f5:c6:3d:3a:c7:c7:c8:e4:7d:ae:54: 1c:39:19:a1:e1:9b:be:ee:1a:86:24:e0:48:cc:1b:3a:73:77: c0:08:24:5c:5f:be:e9:25:e9:03:ad:c3:b8:c1:cd:f3:1a:0f: 33:46:1b:b1:7b:37:bb:0e:b2:08:49:e6:3a:db:71:f1:13:02: 27:75:3f:26:7a:7b:ba:2c:da:92:ff:52:6a:15:be:94:d0:47: be:5a:4d:55:b7:a7:e4:19:f4:c0:79:3b:5d:25:ef:7b:9d:08: 14:8f:ce:17:ec:c7:6d:dc:aa:e9:60:52:d0:dc:85:11:03:db: e0:c6:6c:f4:7b:1e:1b:e3:0b:53:5d:cb:eb:2b:cb:1f:7e:37: e2:c7:53:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeAF/jQqodsIwknYT8S0cDhc0lpswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNjAxMjYwMzI2MDBaFw0yNjAxMjkxNTIxMDBaMDMxMTAvBgNV BAMTKEYzMURFMTcyNkVGRUMxNDI3MDE3RTYyNzZFMzVGRjI5NEY5NjJDMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbCV4NaJTz4JH18hdLvf1rKokx MPPsXswQtAlmXmvIeLepFAto4cuoyK8cRCsDN1imOqi7EJGR+9DoD46fPSzZWQ27 AQEIVqpmex8PMsiPZdcmzSZMiR8HhSwasKVzxClZh6JcujFs5otUSe+VUrO9GSMu m9robVNriPN2c9zYmz3jcV4BJTPsgpbqA2kJSd7M0rGVfhO9ZgRSvlxOH+kcq37L DinQ4RcAkBctjDzpHmVnVIiQFZXeLdNXRr+DeZZJ38syj9UIf49V8I4D0P44wVOn EZd7dmyYVIuAAgvv1eSzLiHDPX1qTE6NXQBE9AQrJuf6oDchqvcaTtl9APqLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8x3hcm7+wUJwF+YnbjX/KU+WLBEwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEGX2FY5Cjbg2meFUlB4pRrwNqzChcJEyPRj 6ge1xVRjgPAFTHMn5OO/0Xvlbv4RnpUMUB25Ux5d1Yh7J+8n/nVmjN6YGTXgYfmF UoS4b+Md1uLA7ojhi0+VwE842IT2UpTcgbG6swCz9XYYJpA5xZ6kE/H1xj06x8fI 5H2uVBw5GaHhm77uGoYk4EjMGzpzd8AIJFxfvukl6QOtw7jBzfMaDzNGG7F7N7sO sghJ5jrbcfETAid1PyZ6e7os2pL/UmoVvpTQR75aTVW3p+QZ9MB5O10l73udCBSP zhfsx23cqulgUtDchRED2+DGbPR7HhvjC1Ndy+sryx9+N+LHU7g= -----END CERTIFICATE-----Generated at Mon Jan 26 12:59:45 2026 by rpki-client