This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: g9ZNLOmZhEZZHt1ixbjaKkSniyrll16Gsji6Qew4NMU= Subject key identifier: 5A:23:10:EE:0E:1D:D9:67:FD:49:21:6D:36:B1:62:9D:0E:47:BD:F8 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 53AF101867C26E07644546269D8B0FE31619A73F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 0535 Signing time: Wed 24 Dec 2025 20:01:02 +0000 Manifest this update: Wed 24 Dec 2025 19:56:02 +0000 Manifest next update: Sun 28 Dec 2025 07:38:02 +0000 Files and hashes: 1: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c=) 2: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U=) 3: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ=) 4: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: JQJEB/OX3aVNgl3m5yjuMSUKLJNwE5f8y8afR08lRYs=) 5: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 07:38:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:af:10:18:67:c2:6e:07:64:45:46:26:9d:8b:0f:e3:16:19:a7:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Dec 24 19:56:02 2025 GMT Not After : Dec 28 07:38:02 2025 GMT Subject: CN=5A2310EE0E1DD967FD49216D36B1629D0E47BDF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8c:4c:b2:25:90:51:2d:36:ed:8e:3e:57:98: 3d:94:69:42:30:cd:a8:e3:8e:d5:d5:a5:15:8c:14: 33:6c:4a:2d:30:53:3b:32:b1:fc:bd:6a:c7:d8:a6: 79:04:1e:e0:02:da:05:2c:e8:80:c1:89:0f:05:a2: 6c:35:50:73:cc:ae:ee:f6:b6:d3:57:dd:99:46:00: 32:69:7f:01:df:6b:38:64:e8:35:47:98:dd:12:80: a1:cb:e7:d9:49:44:ec:02:46:31:a6:5e:67:66:c9: f6:88:ae:74:70:75:bc:5a:ce:82:48:e2:cb:92:0b: c6:5b:60:43:16:83:ba:94:f1:40:32:b3:1e:5d:27: 92:5e:a3:98:3a:a8:92:00:2d:d1:c0:a8:92:f5:a1: 9a:09:c7:2f:61:80:43:99:43:cf:9e:a1:06:d5:0b: 12:b4:6a:8c:be:ac:38:04:70:bf:20:b1:3a:1c:8e: 57:77:96:5a:17:6b:45:78:ba:fb:50:f1:41:9c:dc: 48:23:09:dd:cb:23:d7:67:fc:59:3e:80:16:26:7d: 78:cd:81:2d:67:f3:f1:13:cb:4a:35:8d:4b:70:95: 3d:19:f2:23:92:47:20:52:d9:78:1b:b7:8e:78:2d: c2:28:6e:ad:32:2c:00:c2:1d:76:12:c7:54:29:eb: 43:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:23:10:EE:0E:1D:D9:67:FD:49:21:6D:36:B1:62:9D:0E:47:BD:F8 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:61:c9:24:f9:f1:24:30:66:f5:6d:ed:f7:04:35:a1:68:e0: cb:45:97:75:63:75:de:85:a4:52:3b:82:7c:10:72:3c:e5:8d: 20:ef:ee:2a:63:40:6f:3f:22:db:b3:c3:cc:d0:dd:cb:06:59: fc:94:ef:4d:2b:5d:39:e0:8a:8a:9d:bf:65:9b:1d:dd:9e:30: 93:c1:23:e5:63:38:a1:41:30:b3:9f:de:08:34:19:5d:e5:86: 9d:1d:81:f4:96:bd:9f:af:a4:61:fb:2f:ac:84:6e:0c:54:35: 80:3b:81:39:e8:f6:df:d3:f4:e9:d2:a5:bc:4f:f5:c0:19:8e: e8:cd:50:65:2b:70:1b:7d:b6:4d:60:7c:50:b7:7a:48:81:24: 59:ad:87:7d:1b:e9:65:a0:ac:bf:21:4c:ba:ba:c3:17:f9:87: af:3b:6d:0d:6e:fb:ef:9c:7e:4b:2a:a8:d5:9a:3f:f9:b6:33: 78:da:d0:d5:f6:b8:34:3f:e8:b2:27:40:ef:db:ba:7b:b4:33: 21:14:b9:6b:7a:3a:c9:f5:19:f2:0b:83:66:b2:b4:5e:b6:04: 6f:fc:4d:6c:f5:22:a1:c9:f7:93:ac:ff:4a:16:e1:78:67:8c: 25:6b:63:2f:98:db:2e:3f:c1:13:9f:28:d8:42:90:a0:fe:5f: 2b:bd:68:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU68QGGfCbgdkRUYmnYsP4xYZpz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTEyMjQxOTU2MDJaFw0yNTEyMjgwNzM4MDJaMDMxMTAvBgNV BAMTKDVBMjMxMEVFMEUxREQ5NjdGRDQ5MjE2RDM2QjE2MjlEMEU0N0JERjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIjEyyJZBRLTbtjj5XmD2UaUIw zajjjtXVpRWMFDNsSi0wUzsysfy9asfYpnkEHuAC2gUs6IDBiQ8Fomw1UHPMru72 ttNX3ZlGADJpfwHfazhk6DVHmN0SgKHL59lJROwCRjGmXmdmyfaIrnRwdbxazoJI 4suSC8ZbYEMWg7qU8UAysx5dJ5Jeo5g6qJIALdHAqJL1oZoJxy9hgEOZQ8+eoQbV CxK0aoy+rDgEcL8gsTocjld3lloXa0V4uvtQ8UGc3EgjCd3LI9dn/Fk+gBYmfXjN gS1n8/ETy0o1jUtwlT0Z8iOSRyBS2Xgbt454LcIobq0yLADCHXYSx1Qp60MBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWiMQ7g4d2Wf9SSFtNrFinQ5HvfgwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB5hyST58SQwZvVt7fcENaFo4MtFl3Vjdd6F pFI7gnwQcjzljSDv7ipjQG8/Ituzw8zQ3csGWfyU700rXTngioqdv2WbHd2eMJPB I+VjOKFBMLOf3gg0GV3lhp0dgfSWvZ+vpGH7L6yEbgxUNYA7gTno9t/T9OnSpbxP 9cAZjujNUGUrcBt9tk1gfFC3ekiBJFmth30b6WWgrL8hTLq6wxf5h687bQ1u+++c fksqqNWaP/m2M3ja0NX2uDQ/6LInQO/bunu0MyEUuWt6Osn1GfILg2aytF62BG/8 TWz1IqHJ95Os/0oW4XhnjCVrYy+Y2y4/wROfKNhCkKD+Xyu9aHo= -----END CERTIFICATE-----Generated at Thu Dec 25 06:57:24 2025 by rpki-client