This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft File: 4E52504397B6835784BD4E67D8048C0D1CE3B242.mft (raw, json) Hash identifier: B2QK+nDVAW3DlcdVNamZvDeD3hhLuArZ6ckvuRPq8S0= Subject key identifier: 32:AB:AE:F0:46:0C:19:25:64:58:47:41:83:02:B0:05:35:91:81:90 Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 7522A5CF131FF54B4A0C984FA8090AC44F4E7D4D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft Manifest number: 0545 Signing time: Fri 23 Jan 2026 18:32:20 +0000 Manifest this update: Fri 23 Jan 2026 18:27:20 +0000 Manifest next update: Tue 27 Jan 2026 05:16:20 +0000 Files and hashes: 1: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (hash: AI/USbQ/a0LFBdjZWtV22hxC6HEFmmDia8w1dNa/lbM=) 2: 3130332e32392e3134382e302f32322d3234203d3e203538333736.roa (hash: kZ6+BhGljQylz/AhW+5O41yNHq5oDRG+mIs3e+fq18E=) 3: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (hash: AgqSIkRIGOrQPc+1mZW5lGFc3zRhyUQtTv3vz8FdAPU=) 4: 323430333a653630303a3a2f33322d3332203d3e203538333736.roa (hash: bVu2SaAa9IWvlQ6o6+veKHD0ZA7xlveBNCWEZ2Ja1Z4=) 5: 4E52504397B6835784BD4E67D8048C0D1CE3B242.crl (hash: MPGDldPTEmAW/S2uMa7lBTGJYmto3VMdusacFIcuE+8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 05:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:22:a5:cf:13:1f:f5:4b:4a:0c:98:4f:a8:09:0a:c4:4f:4e:7d:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Jan 23 18:27:20 2026 GMT Not After : Jan 27 05:16:20 2026 GMT Subject: CN=32ABAEF0460C1925645847418302B00535918190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:8b:07:20:94:d5:34:bc:30:38:70:d7:36: 03:c8:16:24:33:99:8e:3e:bd:a0:1e:8b:e4:a4:23: 4f:91:4c:fb:d5:0b:56:c4:d0:c3:2e:6c:56:49:58: 62:57:37:af:d8:4a:97:23:51:0c:28:e5:92:a0:d4: ad:5b:c5:9b:f3:ff:1d:e1:61:27:ee:c0:98:c8:1c: bd:2b:3b:28:81:ef:78:fd:c8:be:1b:ea:8e:5d:60: 61:84:49:cc:fb:1c:d9:6f:35:54:b6:57:2e:8e:a7: 7f:27:32:22:b5:7b:36:56:c2:b5:e9:cc:74:f5:66: 7c:5b:bd:40:8c:60:d4:9d:47:d5:f9:ae:93:f4:2e: 3c:82:67:64:58:f4:b9:31:71:a6:8a:7b:c4:b7:0e: a5:80:ab:46:99:b8:60:8c:76:e0:97:d7:71:1c:38: 6a:2e:b8:2e:89:e4:fa:e7:03:c6:14:1e:e2:35:0a: 4f:b5:0b:11:2c:f9:fe:ab:3a:8e:9c:47:91:34:42: 86:65:e3:09:57:1c:52:e3:bd:67:0d:df:c3:f3:d3: 5c:80:2b:e3:b6:40:ec:77:bf:8c:01:ad:2f:f3:2e: 4d:4c:28:bc:b0:13:30:fd:4b:c5:5a:8f:2e:79:ef: 06:b7:9c:1a:27:ba:a4:4c:a8:26:9d:8d:84:77:09: ad:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AB:AE:F0:46:0C:19:25:64:58:47:41:83:02:B0:05:35:91:81:90 X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:68:79:88:6b:a1:c0:d3:82:d2:a8:6b:9e:dd:ea:28:b2:73: cc:16:74:81:66:00:93:93:da:c2:38:c8:ca:15:8f:48:1d:3f: da:77:37:eb:59:f8:e1:9a:c6:f2:8e:b4:1d:30:05:b1:97:05: 52:2c:8b:af:d0:6f:73:e5:58:bc:7c:4e:e6:d9:50:ba:84:b3: c3:96:14:b9:27:c2:f0:22:ca:02:8e:16:06:3f:e3:09:0d:48: 7f:0d:ab:df:65:9c:89:34:3e:87:a5:75:a0:65:56:77:e0:7f: 60:c1:71:5f:9c:a9:a2:51:e1:95:bb:fb:ee:ad:c4:ab:26:c3: e8:9f:ed:e8:a9:ff:75:dd:d5:f5:e1:f1:7b:a6:b6:f0:a1:d4: e2:2c:c9:f2:f4:91:bf:65:a9:48:cd:d2:ca:12:34:1e:64:7e: 82:9d:5e:ee:61:2b:c8:45:53:80:98:68:53:2c:a5:8f:b9:00: 9a:e6:94:fa:5d:53:4c:2a:c5:8a:fc:57:70:bc:02:40:90:2d: 05:f4:a4:3a:af:5d:a8:36:ce:2b:5e:07:d1:da:5a:b4:d5:10: c5:f5:a3:c3:68:e4:d9:9c:10:1b:fe:32:34:f3:e2:f3:44:d6: 7d:d5:2f:cc:b6:ae:d5:be:93:91:55:ce:5e:32:f0:00:cc:4c: ff:82:aa:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdSKlzxMf9UtKDJhPqAkKxE9OfU0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNjAxMjMxODI3MjBaFw0yNjAxMjcwNTE2MjBaMDMxMTAvBgNV BAMTKDMyQUJBRUYwNDYwQzE5MjU2NDU4NDc0MTgzMDJCMDA1MzU5MTgxOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3n4sHIJTVNLwwOHDXNgPIFiQz mY4+vaAei+SkI0+RTPvVC1bE0MMubFZJWGJXN6/YSpcjUQwo5ZKg1K1bxZvz/x3h YSfuwJjIHL0rOyiB73j9yL4b6o5dYGGEScz7HNlvNVS2Vy6Op38nMiK1ezZWwrXp zHT1ZnxbvUCMYNSdR9X5rpP0LjyCZ2RY9LkxcaaKe8S3DqWAq0aZuGCMduCX13Ec OGouuC6J5PrnA8YUHuI1Ck+1CxEs+f6rOo6cR5E0QoZl4wlXHFLjvWcN38Pz01yA K+O2QOx3v4wBrS/zLk1MKLywEzD9S8Vajy557wa3nBonuqRMqCadjYR3Ca2VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMquu8EYMGSVkWEdBgwKwBTWRgZAwHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODkxZDNjMzAtOTVkYy00YjcyLWFl MWItYWQxZTk4YjBlMTc5LzAvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhD MEQxQ0UzQjI0Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIdoeYhrocDTgtKoa57d6iiyc8wWdIFmAJOT 2sI4yMoVj0gdP9p3N+tZ+OGaxvKOtB0wBbGXBVIsi6/Qb3PlWLx8TubZULqEs8OW FLknwvAiygKOFgY/4wkNSH8Nq99lnIk0PoeldaBlVnfgf2DBcV+cqaJR4ZW7++6t xKsmw+if7eip/3Xd1fXh8XumtvCh1OIsyfL0kb9lqUjN0soSNB5kfoKdXu5hK8hF U4CYaFMspY+5AJrmlPpdU0wqxYr8V3C8AkCQLQX0pDqvXag2ziteB9HaWrTVEMX1 o8No5NmcEBv+MjTz4vNE1n3VL8y2rtW+k5FVzl4y8ADMTP+Cqoc= -----END CERTIFICATE-----Generated at Mon Jan 26 01:06:07 2026 by rpki-client