This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: gF2I1usKy3VTPw8sFMgxHWrnfOpFTrdDYutS6b4srRY= Subject key identifier: A6:5A:4F:42:95:4C:65:13:E0:E2:F9:4C:94:B8:85:19:D3:B6:BC:29 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 041EBA3381109164E13D635442E4F292DB2E40B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 0209 Signing time: Sun 25 Jan 2026 11:31:20 +0000 Manifest this update: Sun 25 Jan 2026 11:26:20 +0000 Manifest next update: Wed 28 Jan 2026 21:50:20 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: fVxY69c4XY6dI70zKyiLTOtqvq6rWYELeY5oAQfvicE=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 14:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:1e:ba:33:81:10:91:64:e1:3d:63:54:42:e4:f2:92:db:2e:40:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Jan 25 11:26:20 2026 GMT Not After : Jan 28 21:50:20 2026 GMT Subject: CN=A65A4F42954C6513E0E2F94C94B88519D3B6BC29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c9:33:00:fb:e7:9a:37:69:fd:d5:13:65:e6: 4d:c6:56:64:6b:d2:98:19:43:c1:6a:07:31:0c:73: 6d:dc:66:8e:a4:fb:9a:d5:bd:73:d3:09:8a:d9:54: f9:13:0c:14:d8:12:b0:36:1c:3e:0b:da:04:5c:1c: f3:7d:db:b1:07:66:cc:b7:73:3e:99:ff:9f:82:14: b6:3e:d4:53:6d:94:66:7b:12:21:0f:a5:4c:9e:d3: 34:fc:f1:de:32:b5:52:af:6b:95:06:3b:6c:eb:59: d4:43:97:e0:6c:9c:93:72:63:3b:d1:9e:cf:d3:07: 26:8b:a0:9e:5b:82:e7:ba:14:5b:5c:55:e8:2c:f9: ca:e3:83:30:83:c8:74:ff:9c:4e:02:ea:c4:43:cd: 13:d1:0e:58:85:20:fb:36:3c:f2:70:15:c6:6f:f2: df:20:38:0b:6f:5b:2c:48:c1:e6:cd:a6:1c:81:e1: 8d:f3:f5:17:e8:35:58:1c:fb:88:b3:c2:10:e8:19: 03:0f:8e:78:c4:dc:54:27:a3:ff:1e:86:7b:cb:bd: 07:97:5e:91:94:65:c4:d8:39:c9:9c:eb:58:ea:63: 4b:11:14:ff:d4:cb:95:95:c2:5c:c4:cf:35:f0:5b: 1a:fa:60:3b:19:f8:60:33:8c:c3:93:b6:b4:87:a9: 8a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5A:4F:42:95:4C:65:13:E0:E2:F9:4C:94:B8:85:19:D3:B6:BC:29 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b7:79:d2:1e:d9:aa:2d:32:d6:e8:6e:2c:02:13:c3:4f:48:16: e6:de:61:30:bc:f7:57:be:90:6a:ea:a3:70:47:2e:b6:1b:03: ad:4c:07:9f:22:f5:11:dd:1d:09:20:5b:4d:16:4f:b6:29:b8: ea:0c:02:b6:fa:0d:21:de:fd:25:09:5f:28:bb:60:31:27:53: ff:f3:ee:6b:a0:84:64:00:ce:ce:ec:06:b4:f4:e0:25:25:f5: 64:b6:6a:20:80:e6:11:04:b5:bd:e9:63:4a:29:02:c4:fe:c6: 7a:36:64:0d:aa:89:7e:4d:ff:ea:85:ac:e1:b7:f9:be:55:92: 57:73:be:24:96:4b:50:3e:f4:24:46:cf:2f:2e:45:b5:71:73: f3:ac:f3:b4:b7:f0:bd:9d:2a:63:98:a9:b9:4e:70:65:2e:7e: 7a:64:3f:bc:6f:8c:fe:4b:da:4e:86:ff:f0:67:19:6e:08:bf: ac:61:75:02:e0:92:b5:1d:06:95:47:f7:70:b8:df:cd:e5:bc: 03:30:de:5d:b7:87:97:07:7b:c1:2a:0a:b8:aa:ff:72:25:75: 0b:21:07:c6:ab:ea:f3:67:79:6b:13:0f:c2:cd:4b:4b:9c:c4: ee:93:fc:60:e9:4f:7d:a4:37:22:39:56:69:a0:f9:13:5f:ae: 36:05:a2:b5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBB66M4EQkWThPWNUQuTyktsuQLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNjAxMjUxMTI2MjBaFw0yNjAxMjgyMTUwMjBaMDMxMTAvBgNV BAMTKEE2NUE0RjQyOTU0QzY1MTNFMEUyRjk0Qzk0Qjg4NTE5RDNCNkJDMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyyTMA++eaN2n91RNl5k3GVmRr 0pgZQ8FqBzEMc23cZo6k+5rVvXPTCYrZVPkTDBTYErA2HD4L2gRcHPN927EHZsy3 cz6Z/5+CFLY+1FNtlGZ7EiEPpUye0zT88d4ytVKva5UGO2zrWdRDl+BsnJNyYzvR ns/TByaLoJ5bgue6FFtcVegs+crjgzCDyHT/nE4C6sRDzRPRDliFIPs2PPJwFcZv 8t8gOAtvWyxIwebNphyB4Y3z9RfoNVgc+4izwhDoGQMPjnjE3FQno/8ehnvLvQeX XpGUZcTYOcmc61jqY0sRFP/Uy5WVwlzEzzXwWxr6YDsZ+GAzjMOTtrSHqYpTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUplpPQpVMZRPg4vlMlLiFGdO2vCkwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALd50h7Zqi0y1uhuLAITw09IFubeYTC891e+ kGrqo3BHLrYbA61MB58i9RHdHQkgW00WT7YpuOoMArb6DSHe/SUJXyi7YDEnU//z 7mughGQAzs7sBrT04CUl9WS2aiCA5hEEtb3pY0opAsT+xno2ZA2qiX5N/+qFrOG3 +b5VkldzviSWS1A+9CRGzy8uRbVxc/Os87S38L2dKmOYqblOcGUufnpkP7xvjP5L 2k6G//BnGW4Iv6xhdQLgkrUdBpVH93C4383lvAMw3l23h5cHe8EqCriq/3IldQsh B8ar6vNneWsTD8LNS0ucxO6T/GDpT32kNyI5Vmmg+RNfrjYForU= -----END CERTIFICATE-----Generated at Sun Jan 25 18:52:59 2026 by rpki-client