This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: DfUIkTpz/LOFHE19GzyHT+j4nhcuM/FPLJNa2oz8gu0= Subject key identifier: EA:D9:82:28:A6:0F:44:EA:D7:2F:F7:CB:93:9A:B4:75:77:3C:A2:BA Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 55F909065E103EE724D2972BCABAEBACD5ACB797 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 01F3 Signing time: Sat 06 Dec 2025 15:31:19 +0000 Manifest this update: Sat 06 Dec 2025 15:26:19 +0000 Manifest next update: Tue 09 Dec 2025 19:18:19 +0000 Files and hashes: 1: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) 2: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: oAV1fQjSYiwHQ/R28Yt5nEzz54eYY73l9OffxSJZ0Pw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:f9:09:06:5e:10:3e:e7:24:d2:97:2b:ca:ba:eb:ac:d5:ac:b7:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Dec 6 15:26:19 2025 GMT Not After : Dec 9 19:18:19 2025 GMT Subject: CN=EAD98228A60F44EAD72FF7CB939AB475773CA2BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:94:bb:13:84:76:55:64:41:a1:d2:e7:b0: 11:73:3a:c2:95:97:16:53:01:c6:af:9e:1f:d3:66: ab:fb:9f:c7:af:50:28:ea:35:c8:37:04:04:72:3e: 19:b9:b0:07:d9:58:7b:da:42:fd:2d:25:61:20:e9: cf:b0:1c:e2:43:54:99:ad:f6:a0:68:7d:52:0b:fe: 5d:f8:b0:b0:e3:3d:0b:c0:4f:51:63:52:19:17:d4: 06:ac:2d:2a:c4:f3:7e:54:5c:53:8d:a2:c2:98:db: ba:b2:31:30:47:0b:3a:c9:9c:e7:e9:7c:e9:f3:bf: 85:c8:13:63:97:b2:2b:96:6e:e8:86:9f:da:28:9e: ce:c8:d8:50:41:29:57:1e:08:8d:8e:fd:e9:55:9c: 71:f2:04:0f:15:5f:57:e4:67:3f:74:ee:fc:28:76: e4:37:bc:f6:18:61:1d:40:b2:d2:76:62:3f:b3:8f: 89:b5:82:0c:c5:19:b3:5a:0e:e3:b9:63:5e:06:27: 9f:8d:ee:ff:5f:bd:78:ca:72:f6:5d:bd:a1:21:c4: 51:6d:6b:34:97:47:22:6b:53:9b:a3:46:b0:3d:e5: 36:51:f4:13:79:a6:e8:eb:cd:4f:66:30:c9:1e:55: 68:f6:84:76:1e:ed:4b:92:65:cd:bd:12:ae:40:04: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:D9:82:28:A6:0F:44:EA:D7:2F:F7:CB:93:9A:B4:75:77:3C:A2:BA X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:b9:1f:bd:ba:22:4f:69:67:12:21:22:31:a8:e0:6f:8c:fe: 1d:50:4e:71:8a:9a:bf:06:5c:c5:9d:b8:ab:15:55:18:df:b6: c7:49:85:aa:1a:ae:c6:5b:76:16:97:56:78:ea:a6:cd:48:03: 20:3b:dd:ec:61:6f:88:76:01:26:95:1e:c9:11:13:29:39:96: ed:23:88:87:10:fc:ed:92:3b:a1:d0:80:cf:dd:7d:ef:3f:8a: b4:b2:e1:82:ff:6a:b2:2a:4a:14:12:8b:38:41:47:75:b1:c7: 2b:c1:2b:33:b9:f0:22:2f:63:9c:7a:6a:e9:e1:1c:08:5b:27: 90:be:00:20:22:6d:aa:d9:6d:79:6c:fa:2f:90:f7:a8:08:a7: d8:f5:d5:9d:db:2b:24:51:e3:3d:a3:c7:2a:42:cd:7f:ae:28: fd:e0:6c:ac:0c:83:a6:f4:c8:75:6a:74:cb:34:44:69:70:1f: ad:ec:8c:52:d3:f5:9d:f5:71:b1:27:e7:cc:e3:c0:96:a7:97: 86:13:c0:a2:28:a1:8a:3c:67:4d:ed:49:a7:eb:eb:3e:d7:d5: d7:5d:62:6f:2b:ab:7e:2a:22:1e:b4:04:96:d0:a4:a3:2f:fc: 2a:ad:da:97:f8:49:80:e5:57:0f:0c:a5:3b:8a:55:f5:7c:f3: 3c:c7:4c:c5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVfkJBl4QPuck0pcryrrrrNWst5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTEyMDYxNTI2MTlaFw0yNTEyMDkxOTE4MTlaMDMxMTAvBgNV BAMTKEVBRDk4MjI4QTYwRjQ0RUFENzJGRjdDQjkzOUFCNDc1NzczQ0EyQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC84pS7E4R2VWRBodLnsBFzOsKV lxZTAcavnh/TZqv7n8evUCjqNcg3BARyPhm5sAfZWHvaQv0tJWEg6c+wHOJDVJmt 9qBofVIL/l34sLDjPQvAT1FjUhkX1AasLSrE835UXFONosKY27qyMTBHCzrJnOfp fOnzv4XIE2OXsiuWbuiGn9oons7I2FBBKVceCI2O/elVnHHyBA8VX1fkZz907vwo duQ3vPYYYR1AstJ2Yj+zj4m1ggzFGbNaDuO5Y14GJ5+N7v9fvXjKcvZdvaEhxFFt azSXRyJrU5ujRrA95TZR9BN5pujrzU9mMMkeVWj2hHYe7UuSZc29Eq5ABHdBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6tmCKKYPROrXL/fLk5q0dXc8orowHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG65H726Ik9pZxIhIjGo4G+M/h1QTnGKmr8G XMWduKsVVRjftsdJhaoarsZbdhaXVnjqps1IAyA73exhb4h2ASaVHskREyk5lu0j iIcQ/O2SO6HQgM/dfe8/irSy4YL/arIqShQSizhBR3WxxyvBKzO58CIvY5x6aunh HAhbJ5C+ACAibarZbXls+i+Q96gIp9j11Z3bKyRR4z2jxypCzX+uKP3gbKwMg6b0 yHVqdMs0RGlwH63sjFLT9Z31cbEn58zjwJanl4YTwKIooYo8Z03tSafr6z7X1ddd Ym8rq34qIh60BJbQpKMv/Cqt2pf4SYDlVw8MpTuKVfV88zzHTMU= -----END CERTIFICATE-----Generated at Sun Dec 7 03:59:42 2025 by rpki-client