This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft File: 5B558AD01277C8212C974318B6352FB28BF683AD.mft (raw, json) Hash identifier: gRZbMJ67BQ/BpDbMzCCZFLeBlIbJFlrL5XmvvDQD3cE= Subject key identifier: 5D:39:0E:92:CC:83:1D:D2:82:40:56:2B:EE:C6:06:62:F2:5E:FB:E0 Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 3400B227E1F566193109FA864E69FA5B5817A1C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft Manifest number: 01F8 Signing time: Sun 25 Jan 2026 01:00:52 +0000 Manifest this update: Sun 25 Jan 2026 00:55:52 +0000 Manifest next update: Wed 28 Jan 2026 01:30:52 +0000 Files and hashes: 1: 5B558AD01277C8212C974318B6352FB28BF683AD.crl (hash: oRZ3/CVSIvUXl6SEGHfbVkKalUCWs8/WXQbXKIzu0Oo=) 2: 3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa (hash: ZDqeHH9c3Ge8DQKLptNu9Fe3zE45Y025wBi0fQHXBeg=) 3: 3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa (hash: IAfCc36b+ZuLfkNXk9UGXWqhcIrd0+kkw00XJdFWpic=) 4: 3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa (hash: cCo2j3DaRw7ST6xKRFKIc+Fk9WAeawaQpPCFHRoRW38=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 01:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:00:b2:27:e1:f5:66:19:31:09:fa:86:4e:69:fa:5b:58:17:a1:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Jan 25 00:55:52 2026 GMT Not After : Jan 28 01:30:52 2026 GMT Subject: CN=5D390E92CC831DD28240562BEEC60662F25EFBE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e2:38:d1:52:f7:02:c9:de:4c:34:17:ae:48: 5c:00:2d:10:9d:b4:44:54:8a:01:5c:45:cc:26:01: a1:20:63:01:93:72:04:3f:83:46:f2:a1:77:a0:24: c4:d1:a3:9f:e7:95:91:0e:6d:ac:82:c2:02:e2:57: 87:08:52:cf:14:25:4a:99:06:e9:36:6b:00:e8:47: 13:44:36:4d:c2:eb:d6:bf:5b:63:e1:79:c0:af:6e: d7:e6:0d:07:97:96:17:38:1a:f1:82:f9:46:7f:40: fa:b6:f7:3e:eb:75:11:16:7a:4d:4a:75:ae:48:32: 7d:6a:18:e8:ec:81:9a:3c:ab:4b:01:9e:a7:ad:f8: 00:fc:08:69:b5:96:f5:25:e6:e4:c2:00:ec:2c:74: b0:05:b7:fd:3f:4b:c5:77:75:88:3c:5a:2f:c5:bc: a9:0d:3e:ba:2c:e1:e9:64:b0:ca:6e:1d:a0:7d:4a: f2:10:84:7d:53:bb:03:00:8a:00:ff:a5:b6:71:d9: 9a:bd:ed:1f:8f:43:69:db:1d:eb:a6:6d:a4:cb:e1: 36:29:af:6c:9a:a1:08:e6:45:2c:d2:8a:6d:c0:54: 5b:89:11:99:db:b1:8f:69:79:46:6f:d6:69:c5:d8: 79:48:d1:c3:ae:6b:8c:f9:f8:9c:76:d9:17:3e:a0: c9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:39:0E:92:CC:83:1D:D2:82:40:56:2B:EE:C6:06:62:F2:5E:FB:E0 X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:50:df:30:86:c7:1e:67:f5:30:1c:34:e7:f6:dc:20:59:67: da:1d:46:cd:92:57:7c:21:6e:3b:d8:6a:c3:f2:bb:69:09:2a: 07:96:3c:69:ae:45:15:eb:0b:c0:95:86:6b:93:19:c3:aa:dd: ac:f5:4e:ce:f2:4b:6c:f5:30:1e:a7:3b:61:d5:9c:20:d7:2e: 99:1f:bc:57:6c:32:e7:96:d1:d2:d0:ff:68:37:bc:bd:cc:84: 3a:3a:0a:fb:0c:16:11:ff:e8:75:a0:8e:b5:08:40:2f:62:dc: b7:f1:23:04:e3:87:21:79:8c:96:67:1d:11:ba:1b:2a:bf:f7: 08:b3:89:a4:5d:f7:c1:92:d3:73:36:04:8d:9b:bf:d1:a5:19: 34:76:30:27:56:01:c2:60:ec:40:10:56:de:af:78:35:8c:14: 40:4e:2d:9a:dc:ae:65:bc:57:7e:72:2b:da:91:d7:52:b6:d5: 16:db:d3:52:15:e1:ba:44:8d:24:f4:64:0d:6e:e2:9c:52:c6: 3a:77:71:01:c4:24:3b:24:e2:01:e5:4c:a2:ea:29:be:26:0a: 87:d1:1e:5b:d0:d0:39:11:7f:2f:3b:1d:f4:3c:03:74:6a:0c: 51:fd:94:b9:5b:1f:1d:53:84:63:e6:51:36:54:8d:99:7a:06: 61:2d:81:5a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNACyJ+H1ZhkxCfqGTmn6W1gXocUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNjAxMjUwMDU1NTJaFw0yNjAxMjgwMTMwNTJaMDMxMTAvBgNV BAMTKDVEMzkwRTkyQ0M4MzFERDI4MjQwNTYyQkVFQzYwNjYyRjI1RUZCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC94jjRUvcCyd5MNBeuSFwALRCd tERUigFcRcwmAaEgYwGTcgQ/g0byoXegJMTRo5/nlZEObayCwgLiV4cIUs8UJUqZ Buk2awDoRxNENk3C69a/W2PhecCvbtfmDQeXlhc4GvGC+UZ/QPq29z7rdREWek1K da5IMn1qGOjsgZo8q0sBnqet+AD8CGm1lvUl5uTCAOwsdLAFt/0/S8V3dYg8Wi/F vKkNPros4elksMpuHaB9SvIQhH1TuwMAigD/pbZx2Zq97R+PQ2nbHeumbaTL4TYp r2yaoQjmRSzSim3AVFuJEZnbsY9peUZv1mnF2HlI0cOua4z5+Jx22Rc+oMk/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXTkOksyDHdKCQFYr7sYGYvJe++AwHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmE1YjRmYTQtMzI4Yy00Y2YyLWFk ZTMtYzg2ODEzMWQ0ZTBkLzAvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJG QjI4QkY2ODNBRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAExQ3zCGxx5n9TAcNOf23CBZZ9odRs2SV3wh bjvYasPyu2kJKgeWPGmuRRXrC8CVhmuTGcOq3az1Ts7yS2z1MB6nO2HVnCDXLpkf vFdsMueW0dLQ/2g3vL3MhDo6CvsMFhH/6HWgjrUIQC9i3LfxIwTjhyF5jJZnHRG6 Gyq/9wiziaRd98GS03M2BI2bv9GlGTR2MCdWAcJg7EAQVt6veDWMFEBOLZrcrmW8 V35yK9qR11K21Rbb01IV4bpEjST0ZA1u4pxSxjp3cQHEJDsk4gHlTKLqKb4mCofR HlvQ0DkRfy87HfQ8A3RqDFH9lLlbHx1ThGPmUTZUjZl6BmEtgVo= -----END CERTIFICATE-----Generated at Sun Jan 25 20:26:35 2026 by rpki-client