This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft File: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft (raw, json) Hash identifier: vYAllry/31w4ieYwU8u6MkCALH0+hvFKxHhPBzZ/ga0= Subject key identifier: EB:C8:48:6E:13:9F:0F:FD:48:E5:3C:B2:C8:BF:C4:1D:89:0F:5F:42 Authority key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Certificate issuer: /CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Certificate serial: 27D7481D0AEF12EEF775763A53DF9CB1A2C53739 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft Manifest number: 016C Signing time: Fri 23 Jan 2026 17:02:13 +0000 Manifest this update: Fri 23 Jan 2026 16:57:13 +0000 Manifest next update: Tue 27 Jan 2026 03:44:13 +0000 Files and hashes: 1: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl (hash: ELruDGPbkpkDn2ifAbMgPNvmlerQZoiiWb05oV2Qqi0=) 2: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (hash: WtVfPZfCZ+ZExAyfqDCdWvXE48LKmIllvsd8uUvXohQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 03:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:d7:48:1d:0a:ef:12:ee:f7:75:76:3a:53:df:9c:b1:a2:c5:37:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Validity Not Before: Jan 23 16:57:13 2026 GMT Not After : Jan 27 03:44:13 2026 GMT Subject: CN=EBC8486E139F0FFD48E53CB2C8BFC41D890F5F42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:f5:7c:d7:7d:a2:e0:34:10:fd:75:2f:5e: 69:c1:cc:18:43:2d:a7:41:64:27:70:0e:07:9e:a1: c9:ae:2f:07:5a:d5:e1:d5:39:64:bd:4d:14:5b:d4: b6:6c:3f:b1:a0:81:15:69:ee:7f:fc:e1:75:7f:38: 6b:c5:6b:c8:ea:f0:e0:2d:08:cc:b6:59:51:a9:13: 9b:ee:4c:25:f0:12:b0:64:26:5f:74:6c:0e:bd:f1: 70:ec:d5:42:bf:a9:e2:f2:71:6a:c7:60:7b:43:80: 81:aa:88:b3:a1:8b:38:c1:94:d5:8c:fd:5f:2d:c6: 08:d0:8d:08:7e:43:30:21:28:c2:e1:c4:71:74:b9: 74:ca:89:66:0b:6b:f6:75:a5:13:4e:ee:01:57:fc: 3d:e2:0f:38:ab:b0:cd:b9:56:dd:50:78:c5:c0:53: dd:4e:2c:3b:7f:2e:16:b7:c2:7b:2d:ba:34:65:6d: f3:c4:79:58:3b:fa:c4:77:b5:ff:99:b5:67:bf:5f: 5f:9b:f6:0f:04:c7:24:d6:bc:d0:99:7b:89:54:b7: ab:f4:03:81:5b:70:bf:9e:7b:f2:2a:c0:7a:a5:e9: 43:61:02:b4:ac:9c:c1:bf:29:8a:1c:b9:f1:e6:a2: bd:3c:3a:2d:2d:c9:40:17:82:ee:d3:06:8c:79:46: 94:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:C8:48:6E:13:9F:0F:FD:48:E5:3C:B2:C8:BF:C4:1D:89:0F:5F:42 X509v3 Authority Key Identifier: keyid:57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:a5:3f:06:72:fe:9b:6f:9d:38:0c:05:b3:01:3b:f6:8d:81: e1:a8:a7:02:9c:1d:56:3c:46:dc:f0:fc:b2:30:a2:82:12:e4: 59:bf:e8:f1:cb:45:c5:07:a2:7d:55:3e:02:d0:09:23:96:e3: ba:67:77:a5:55:bf:01:28:40:ad:9a:26:42:fc:28:98:c4:cd: 42:2a:c2:25:1e:d1:23:c5:cb:4e:c7:3f:0e:ca:ba:3a:8b:c8: d3:97:d4:25:52:82:9e:00:51:ec:3c:13:23:43:5b:89:3c:e7: 9c:05:b8:54:40:d9:9e:54:83:e2:8f:c5:3b:78:24:d4:db:7b: 57:3c:94:51:c9:77:f4:7b:87:68:06:dc:ab:57:e9:aa:a9:28: 37:d5:5e:93:52:78:60:a6:6d:ae:f8:f4:fe:d3:2f:2f:c0:5b: 53:13:d1:e4:43:7f:b3:4f:34:e6:04:93:61:7d:b0:d3:99:32: 6c:ec:30:90:b7:8e:15:1f:cc:33:0b:d9:f5:86:da:36:74:ec: bf:6d:98:38:24:57:c1:86:38:95:fa:4f:3a:7b:dc:dc:da:96: a1:ee:70:43:2b:2a:50:be:c1:12:f7:91:69:26:2d:be:bf:d1: 47:48:28:42:c9:94:b2:3d:06:cf:a8:2c:b5:37:54:af:c8:e2: 53:0f:1a:f0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ9dIHQrvEu73dXY6U9+csaLFNzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZE NDBGQjhDMjAeFw0yNjAxMjMxNjU3MTNaFw0yNjAxMjcwMzQ0MTNaMDMxMTAvBgNV BAMTKEVCQzg0ODZFMTM5RjBGRkQ0OEU1M0NCMkM4QkZDNDFEODkwRjVGNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXkPV8132i4DQQ/XUvXmnBzBhD LadBZCdwDgeeocmuLwda1eHVOWS9TRRb1LZsP7GggRVp7n/84XV/OGvFa8jq8OAt CMy2WVGpE5vuTCXwErBkJl90bA698XDs1UK/qeLycWrHYHtDgIGqiLOhizjBlNWM /V8txgjQjQh+QzAhKMLhxHF0uXTKiWYLa/Z1pRNO7gFX/D3iDzirsM25Vt1QeMXA U91OLDt/Lha3wnstujRlbfPEeVg7+sR3tf+ZtWe/X1+b9g8ExyTWvNCZe4lUt6v0 A4FbcL+ee/IqwHql6UNhArSsnMG/KYocufHmor08Oi0tyUAXgu7TBox5RpRRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU68hIbhOfD/1I5TyyyL/EHYkPX0IwHwYDVR0j BBgwFoAUV1w5hl064j3MwyKtCNFCT9QPuMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMC81NzVDMzk4NjVE M0FFMjNEQ0NDMzIyQUQwOEQxNDI0RkQ0MEZCOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZENDBG QjhDMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODExZDlhYmMtNDk4Ny00ZGJjLTk3 NmQtM2YzMmIyOTE3MTVkLzAvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQy NEZENDBGQjhDMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJelPwZy/ptvnTgMBbMBO/aNgeGopwKcHVY8 Rtzw/LIwooIS5Fm/6PHLRcUHon1VPgLQCSOW47pnd6VVvwEoQK2aJkL8KJjEzUIq wiUe0SPFy07HPw7KujqLyNOX1CVSgp4AUew8EyNDW4k855wFuFRA2Z5Ug+KPxTt4 JNTbe1c8lFHJd/R7h2gG3KtX6aqpKDfVXpNSeGCmba749P7TLy/AW1MT0eRDf7NP NOYEk2F9sNOZMmzsMJC3jhUfzDML2fWG2jZ07L9tmDgkV8GGOJX6Tzp73NzalqHu cEMrKlC+wRL3kWkmLb6/0UdIKELJlLI9Bs+oLLU3VK/I4lMPGvA= -----END CERTIFICATE-----Generated at Sun Jan 25 20:33:13 2026 by rpki-client