This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: LGUrVu/V1HYcXSzbuPcNju0Ea4t0IFlTQVTv0wdxmCU= Subject key identifier: F0:A9:31:F8:1A:92:61:25:15:27:DC:7C:9D:9A:25:B8:68:7C:C5:58 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 1EE8235C720A7E5F4CC88EF52FCA6DD379515960 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 0512 Signing time: Fri 23 Jan 2026 23:22:03 +0000 Manifest this update: Fri 23 Jan 2026 23:17:03 +0000 Manifest next update: Tue 27 Jan 2026 11:10:03 +0000 Files and hashes: 1: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 2: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 3: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 4: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 5: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: Y1oJGRJmF1cwZVpzq5Cm8p69x8UiLcCD/GTuFHiS5pE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 11:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e8:23:5c:72:0a:7e:5f:4c:c8:8e:f5:2f:ca:6d:d3:79:51:59:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Jan 23 23:17:03 2026 GMT Not After : Jan 27 11:10:03 2026 GMT Subject: CN=F0A931F81A9261251527DC7C9D9A25B8687CC558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:25:a6:f2:c9:6a:a9:6c:ca:1e:b1:be:5b:3b: 02:f7:b7:f2:1b:a6:43:28:39:c3:5f:e7:7a:d0:77: 66:66:b1:8c:af:0d:f1:3a:e6:b0:00:8f:6d:64:0a: 8c:ca:4a:b9:7f:f0:38:a7:33:f0:e8:01:d2:72:67: 36:21:b8:57:65:a0:9f:90:76:62:f5:59:b9:c5:8b: d4:c4:dd:cc:0a:bd:d0:43:b7:25:cb:95:7e:c9:66: e9:6c:a5:cc:51:2f:0b:a7:9a:e1:61:f3:25:9c:a4: 84:c0:25:8c:fc:ed:ed:62:02:3b:03:7a:47:74:8f: 45:52:a4:ac:6f:44:5d:ff:1b:60:84:0e:47:4c:63: b2:57:48:0a:1e:d9:e4:97:a3:74:ec:0f:ba:d1:69: 39:2e:34:d3:be:2b:a9:27:d6:1b:44:bd:3a:0b:3f: 61:27:ad:16:2b:a1:3d:86:7a:36:41:65:dd:fd:0a: 00:39:4e:f6:e7:23:3e:9c:7f:f9:47:a7:6a:93:36: 3e:c6:a6:40:ea:ee:d2:45:e3:a7:5c:6d:33:8e:54: 10:5f:bd:f1:74:ab:6b:60:6b:2b:24:06:0a:81:c1: 64:2c:3f:71:5a:65:49:f8:ad:9f:b7:5f:e0:37:33: 5c:a9:aa:89:40:c7:9c:cf:db:b8:84:3f:bb:d9:2a: bf:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:A9:31:F8:1A:92:61:25:15:27:DC:7C:9D:9A:25:B8:68:7C:C5:58 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:7c:dd:5b:62:b3:d5:f7:c2:e2:39:36:5f:aa:53:a5:7f:0b: 38:89:4f:90:28:9f:ee:c8:9a:85:c4:8a:47:12:af:1b:c1:3c: 73:34:c8:68:2c:5c:ce:53:68:61:b8:91:de:c8:e4:15:3a:76: 5a:16:b4:5e:94:c4:fe:44:39:9f:67:2d:4c:30:b7:2f:e0:c1: 0e:bf:61:1f:be:50:91:84:b9:9e:7e:e4:b6:3d:9f:e2:ad:ca: 49:be:17:8a:1b:5a:24:5e:db:81:9d:3a:3d:43:7e:2d:de:32: a4:dd:f0:7c:ef:85:e2:8e:eb:72:82:77:5f:91:7b:bb:bd:6f: de:6c:79:07:2a:42:e5:57:25:f1:42:14:55:34:4b:2e:49:a1: c8:b3:8a:c0:f7:50:e0:6b:2d:b1:d7:e3:b1:d4:ac:e3:51:3a: 95:d0:07:d7:3b:db:1b:82:4a:ca:41:fe:65:8b:80:f6:7d:99: fd:83:64:ba:f6:17:fe:82:dd:29:4c:2d:94:7b:b3:7d:22:9e: 1e:7e:6d:5a:49:28:fe:58:fa:84:37:3e:79:97:91:1c:9d:91: dc:02:53:77:5c:26:db:88:f0:03:a3:b1:d4:c7:e5:71:8d:52: 9c:28:67:8f:a5:a3:e0:23:56:a0:1b:0b:60:fe:30:e8:70:8d: e3:76:6a:54 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHugjXHIKfl9MyI71L8pt03lRWWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNjAxMjMyMzE3MDNaFw0yNjAxMjcxMTEwMDNaMDMxMTAvBgNV BAMTKEYwQTkzMUY4MUE5MjYxMjUxNTI3REM3QzlEOUEyNUI4Njg3Q0M1NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2JabyyWqpbMoesb5bOwL3t/Ib pkMoOcNf53rQd2ZmsYyvDfE65rAAj21kCozKSrl/8DinM/DoAdJyZzYhuFdloJ+Q dmL1WbnFi9TE3cwKvdBDtyXLlX7JZulspcxRLwunmuFh8yWcpITAJYz87e1iAjsD ekd0j0VSpKxvRF3/G2CEDkdMY7JXSAoe2eSXo3TsD7rRaTkuNNO+K6kn1htEvToL P2EnrRYroT2GejZBZd39CgA5TvbnIz6cf/lHp2qTNj7GpkDq7tJF46dcbTOOVBBf vfF0q2tgayskBgqBwWQsP3FaZUn4rZ+3X+A3M1ypqolAx5zP27iEP7vZKr8hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8Kkx+BqSYSUVJ9x8nZoluGh8xVgwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHZ83Vtis9X3wuI5Nl+qU6V/CziJT5Aon+7I moXEikcSrxvBPHM0yGgsXM5TaGG4kd7I5BU6dloWtF6UxP5EOZ9nLUwwty/gwQ6/ YR++UJGEuZ5+5LY9n+Ktykm+F4obWiRe24GdOj1Dfi3eMqTd8HzvheKO63KCd1+R e7u9b95seQcqQuVXJfFCFFU0Sy5JocizisD3UOBrLbHX47HUrONROpXQB9c72xuC SspB/mWLgPZ9mf2DZLr2F/6C3SlMLZR7s30inh5+bVpJKP5Y+oQ3PnmXkRydkdwC U3dcJtuI8AOjsdTH5XGNUpwoZ4+lo+AjVqAbC2D+MOhwjeN2alQ= -----END CERTIFICATE-----Generated at Sun Jan 25 18:55:53 2026 by rpki-client