This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft File: 523EE8D6F461B8FD4106F482C46C1029B1013145.mft (raw, json) Hash identifier: PHPs6rjEnLavuKzVGp3u+ZppmdVq0AAMOfchWeVNsZI= Subject key identifier: D5:0E:C3:04:67:10:FE:7D:88:02:D2:E6:26:E4:D9:B2:E6:DF:70:EE Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 Certificate issuer: /CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Certificate serial: 68FF5F1FF4B4C0C23D535C44757B01202010BCF0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft Manifest number: FA Signing time: Sat 24 Jan 2026 11:00:39 +0000 Manifest this update: Sat 24 Jan 2026 10:55:39 +0000 Manifest next update: Tue 27 Jan 2026 15:37:39 +0000 Files and hashes: 1: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: zP2/XdcDOhp440RXruEyN+zWviJE7i53kBfkBKlQJ0I=) 2: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: jKwlGthiQpzXwnHyIqfnx5NGkz2sE+y3uVu40s6f6sc=) 3: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: jWc0sz86L+eDtr+nDMgQgH+2S7uRf5Y8Wu7u8v4zz0Q=) 4: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: YEDjMiqzXqQQzIDtWpx+jx5Bn+2TYkAiFHsRj0775yM=) 5: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: z0HZjcHieRuZ5HHeSmTqSUrJvHMtgbLp6o8sJVRupVI=) 6: 523EE8D6F461B8FD4106F482C46C1029B1013145.crl (hash: p+FA6oRhlc+L/Y+bFCgbSVIi8VpiVVuBdmPAd1k5YuE=) 7: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: H0hxzRE1P/k0NGsIoy/0kaAKznrWHPdRQxgiRW4T5Qo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 15:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ff:5f:1f:f4:b4:c0:c2:3d:53:5c:44:75:7b:01:20:20:10:bc:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145 Validity Not Before: Jan 24 10:55:39 2026 GMT Not After : Jan 27 15:37:39 2026 GMT Subject: CN=D50EC3046710FE7D8802D2E626E4D9B2E6DF70EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b6:86:fd:ed:75:fc:07:be:c5:f2:d3:24:b9: a5:67:70:ac:6a:54:48:13:91:d9:c5:0c:79:8a:0f: 68:d5:74:7c:41:45:80:43:6f:f1:a1:f6:40:65:cf: bd:b5:81:04:c0:ee:d8:e6:d6:ae:ae:6c:7e:25:04: ea:d4:3a:71:7b:59:fb:7b:53:06:19:07:2c:9f:96: 56:46:67:18:b6:75:da:3c:f8:5d:f5:b8:45:e2:f3: f2:ac:09:fd:66:6c:0e:61:39:a0:34:20:ca:60:0c: 9d:88:98:6e:92:de:19:23:67:2f:eb:49:e9:3d:95: 46:32:e5:2e:36:33:5b:65:19:a3:60:04:9e:d1:e1: 79:ea:91:bf:da:a4:3d:93:a8:d7:c9:e7:1b:46:84: 04:34:2c:e3:3b:d8:3f:fa:af:42:fc:68:e7:37:61: d3:cd:b0:0e:3f:a8:83:8c:7c:12:55:8d:39:ab:e2: 88:bc:a9:18:6e:22:43:00:96:6e:a4:05:0f:3a:d1: 48:8c:58:da:ee:ff:07:f5:ee:63:39:0f:a5:80:9c: 2d:33:73:1c:67:73:96:a3:6f:c1:67:50:96:7b:92: cc:68:59:b3:53:69:7e:44:10:ff:48:7a:eb:48:84: 8f:f0:20:ca:ef:d4:7f:27:1c:f3:5e:e5:66:c9:3d: b4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0E:C3:04:67:10:FE:7D:88:02:D2:E6:26:E4:D9:B2:E6:DF:70:EE X509v3 Authority Key Identifier: keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:91:d3:41:85:47:ea:4b:a9:85:71:51:0f:27:8b:54:65:dd: c6:c6:c3:42:fe:11:64:5b:69:17:b4:c6:6d:61:2d:b5:7f:be: c2:74:7d:08:64:8d:78:ec:80:90:82:b5:66:46:06:d5:b4:dc: 69:95:02:75:fb:ed:71:93:b1:0d:60:0c:8f:12:6e:70:5f:7f: b9:aa:4c:b8:e6:f7:6c:1f:37:27:17:b8:d6:7a:0b:c1:4e:cf: 5b:41:5d:f4:21:f1:ab:30:6c:3e:24:b3:e6:8d:63:77:0b:fa: 31:32:40:0a:2e:4f:35:8f:e1:67:2a:25:5b:92:3d:f8:f8:df: 00:3c:9f:a8:45:12:1b:57:14:19:0a:46:97:15:3a:3d:07:9a: dd:1e:b9:3e:da:29:72:61:d1:a1:b5:d0:ef:c9:8c:8a:ee:d6: e4:8e:47:c2:2b:d5:20:2a:ab:52:8d:17:2f:23:e7:97:72:85: 50:a7:10:d2:16:48:5c:b0:70:5e:0f:60:c3:b7:ec:79:4e:34: 28:7a:1b:9c:c5:3e:90:17:28:f0:a0:ed:e5:0b:8f:ef:97:42: 5b:c9:3e:38:dd:f7:2c:1c:43:5d:9c:7d:df:89:de:7f:6a:3f: 2d:f7:fc:44:78:db:71:1a:17:42:2e:0b:ae:ad:44:14:f6:a9: c7:0b:d1:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaP9fH/S0wMI9U1xEdXsBICAQvPAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC MTAxMzE0NTAeFw0yNjAxMjQxMDU1MzlaFw0yNjAxMjcxNTM3MzlaMDMxMTAvBgNV BAMTKEQ1MEVDMzA0NjcxMEZFN0Q4ODAyRDJFNjI2RTREOUIyRTZERjcwRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAtob97XX8B77F8tMkuaVncKxq VEgTkdnFDHmKD2jVdHxBRYBDb/Gh9kBlz721gQTA7tjm1q6ubH4lBOrUOnF7Wft7 UwYZByyfllZGZxi2ddo8+F31uEXi8/KsCf1mbA5hOaA0IMpgDJ2ImG6S3hkjZy/r Sek9lUYy5S42M1tlGaNgBJ7R4Xnqkb/apD2TqNfJ5xtGhAQ0LOM72D/6r0L8aOc3 YdPNsA4/qIOMfBJVjTmr4oi8qRhuIkMAlm6kBQ860UiMWNru/wf17mM5D6WAnC0z cxxnc5ajb8FnUJZ7ksxoWbNTaX5EEP9IeutIhI/wIMrv1H8nHPNe5WbJPbQJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1Q7DBGcQ/n2IAtLmJuTZsubfcO4wHwYDVR0j BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0 NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx MzE0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmFhNDI3NDItODlkMi00OWJiLThh M2UtMjk0YzM2ODk3MWY1LzAvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEw MjlCMTAxMzE0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA2R00GFR+pLqYVxUQ8ni1Rl3cbGw0L+EWRb aRe0xm1hLbV/vsJ0fQhkjXjsgJCCtWZGBtW03GmVAnX77XGTsQ1gDI8SbnBff7mq TLjm92wfNycXuNZ6C8FOz1tBXfQh8aswbD4ks+aNY3cL+jEyQAouTzWP4WcqJVuS Pfj43wA8n6hFEhtXFBkKRpcVOj0Hmt0euT7aKXJh0aG10O/JjIru1uSOR8Ir1SAq q1KNFy8j55dyhVCnENIWSFywcF4PYMO37HlONCh6G5zFPpAXKPCg7eULj++XQlvJ Pjjd9ywcQ12cfd+J3n9qPy33/ER423EaF0IuC66tRBT2qccL0dA= -----END CERTIFICATE-----Generated at Sun Jan 25 22:00:16 2026 by rpki-client