This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft File: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft (raw, json) Hash identifier: 0lcAI5eOkVj0d6vjfQyUlaGvSUkBbMDflxuTxM7fG84= Subject key identifier: 1F:77:91:29:28:82:90:6D:AF:7A:40:83:FC:11:8F:A8:E0:59:27:43 Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Certificate serial: 3C1EF18DFF312A2CA48F0931B326DDCF28C2CBD8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft Manifest number: 0545 Signing time: Sat 24 Jan 2026 19:41:45 +0000 Manifest this update: Sat 24 Jan 2026 19:36:45 +0000 Manifest next update: Wed 28 Jan 2026 05:02:45 +0000 Files and hashes: 1: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (hash: gI7OgYv6GfwsEVRaXvd5tRlYtRW/gCZ+OwdOGTRV5w8=) 2: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl (hash: tWuCDmSSN+UKyxyLEsMGmHxL/KhyIM4BfbT7h9KzI1M=) 3: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (hash: N2YGkCBG++ItZbATxx+8Wnv+w5mJADtnDrbFxCasjwk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 05:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:1e:f1:8d:ff:31:2a:2c:a4:8f:09:31:b3:26:dd:cf:28:c2:cb:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Validity Not Before: Jan 24 19:36:45 2026 GMT Not After : Jan 28 05:02:45 2026 GMT Subject: CN=1F7791292882906DAF7A4083FC118FA8E0592743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0a:82:62:6b:b3:ab:98:66:09:20:75:db:76: c7:72:f1:6d:82:f1:2b:f5:8b:80:6e:28:2a:a2:04: 2e:fd:4f:0c:d3:50:b7:fb:0c:d7:1e:ac:37:67:62: 24:ba:bd:fc:5a:54:8f:39:99:c2:6c:f7:e4:58:59: 0b:be:96:45:b5:2b:8d:d1:d7:25:ad:c2:d7:c5:94: 19:25:e9:e5:27:c7:a9:07:31:5d:b8:e7:90:e1:0e: 87:c6:a5:5f:26:8d:69:e6:1b:a9:f7:9b:55:39:21: 4c:f9:13:41:7c:09:9e:77:9f:d2:97:6d:e0:73:68: e0:2f:f6:43:12:6b:00:0f:92:0f:88:fe:94:4d:aa: 0d:25:42:a6:d7:d4:cb:da:44:30:c1:28:08:0c:08: 5f:88:9d:85:56:f1:20:4e:75:14:dc:c6:46:b5:ba: bc:28:08:50:f2:b1:64:fd:46:a8:56:2d:80:c5:15: da:65:cb:34:b6:cb:39:35:b6:74:c8:c8:97:2b:9a: 62:ce:4b:32:50:14:dc:a0:fb:98:da:46:e1:63:e2: 70:9c:0f:12:8d:be:f7:5e:2b:f0:1b:ff:34:95:08: ad:7f:16:aa:85:c4:f7:67:d2:6e:3b:f9:62:2d:de: 62:b5:45:5f:7f:71:24:dc:a0:0b:60:a6:95:49:99: 0d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:77:91:29:28:82:90:6D:AF:7A:40:83:FC:11:8F:A8:E0:59:27:43 X509v3 Authority Key Identifier: keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:43:7f:a7:28:6e:45:ff:8e:69:4b:5f:88:cb:ec:a0:1d:47: 03:20:9a:31:cf:57:59:4a:2c:3a:4b:6b:39:25:e8:4c:c3:30: 26:c2:da:a8:05:2a:11:92:9d:93:c1:8d:a0:82:60:20:fe:8e: 7e:c1:23:59:29:a9:0d:c1:01:a7:8d:54:b9:31:e0:a9:dd:de: 95:15:45:a6:64:5f:37:a9:4c:cd:87:57:e9:d3:65:56:f6:46: 64:bf:55:ae:d9:f0:1f:34:14:3a:9a:e1:ca:a0:87:75:81:63: 67:85:c8:83:f4:9a:04:46:8c:5c:e7:1d:1c:8c:a9:32:36:47: df:d3:20:ec:f2:8e:3c:9b:4f:23:83:35:e1:8a:31:0d:88:6c: 54:75:f8:88:be:67:62:21:b9:06:4e:7e:c1:16:f5:59:66:80: da:44:e2:21:cd:13:58:09:9a:90:e8:40:27:6f:17:96:e0:b5: 3c:b4:f2:70:c1:eb:73:d2:6f:bb:55:1a:f8:97:41:6a:b8:b5: f6:f0:47:e9:0f:43:f8:b5:c6:e6:a2:95:cd:c1:28:f7:5a:0c: 87:24:40:ab:10:76:75:7e:10:8c:8b:d9:aa:ed:5c:ec:ed:37: 78:23:1e:cf:c0:e8:33:b7:af:7a:42:4f:c2:f4:9c:18:c7:5f: 13:d4:6e:14 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPB7xjf8xKiykjwkxsybdzyjCy9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQw NThEQTEwMTAeFw0yNjAxMjQxOTM2NDVaFw0yNjAxMjgwNTAyNDVaMDMxMTAvBgNV BAMTKDFGNzc5MTI5Mjg4MjkwNkRBRjdBNDA4M0ZDMTE4RkE4RTA1OTI3NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYCoJia7OrmGYJIHXbdsdy8W2C 8Sv1i4BuKCqiBC79TwzTULf7DNcerDdnYiS6vfxaVI85mcJs9+RYWQu+lkW1K43R 1yWtwtfFlBkl6eUnx6kHMV2455DhDofGpV8mjWnmG6n3m1U5IUz5E0F8CZ53n9KX beBzaOAv9kMSawAPkg+I/pRNqg0lQqbX1MvaRDDBKAgMCF+InYVW8SBOdRTcxka1 urwoCFDysWT9RqhWLYDFFdplyzS2yzk1tnTIyJcrmmLOSzJQFNyg+5jaRuFj4nCc DxKNvvdeK/Ab/zSVCK1/FqqFxPdn0m47+WIt3mK1RV9/cSTcoAtgppVJmQ1FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUH3eRKSiCkG2vekCD/BGPqOBZJ0MwHwYDVR0j BBgwFoAUJT4rtN5GevCPGRr3Yy7jvQWNoQEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y Y2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMC8yNTNFMkJCNERF NDY3QUYwOEYxOTFBRjc2MzJFRTNCRDA1OERBMTAxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUzQkQwNThE QTEwMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmNkNzUzNmQtOWUxMC00ZDQ5LWI2 Y2EtMDQxY2M5YTU5MTRlLzAvMjUzRTJCQjRERTQ2N0FGMDhGMTkxQUY3NjMyRUUz QkQwNThEQTEwMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADtDf6cobkX/jmlLX4jL7KAdRwMgmjHPV1lK LDpLazkl6EzDMCbC2qgFKhGSnZPBjaCCYCD+jn7BI1kpqQ3BAaeNVLkx4Knd3pUV RaZkXzepTM2HV+nTZVb2RmS/Va7Z8B80FDqa4cqgh3WBY2eFyIP0mgRGjFznHRyM qTI2R9/TIOzyjjybTyODNeGKMQ2IbFR1+Ii+Z2IhuQZOfsEW9VlmgNpE4iHNE1gJ mpDoQCdvF5bgtTy08nDB63PSb7tVGviXQWq4tfbwR+kPQ/i1xuailc3BKPdaDIck QKsQdnV+EIyL2artXOztN3gjHs/A6DO3r3pCT8L0nBjHXxPUbhQ= -----END CERTIFICATE-----Generated at Mon Jan 26 01:10:04 2026 by rpki-client