This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: aO7hXebo15cgfss5KKIX5lqi+BeIdyVVIAZj7SMOmHY= Subject key identifier: FB:23:BB:7E:E7:DB:2D:AF:9D:A1:E6:5F:CE:26:BD:50:C5:67:93:1F Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 60B8DEC5A2AAEEF5C798B928A200BC9D6672EA1F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 01F9 Signing time: Sat 20 Dec 2025 10:31:40 +0000 Manifest this update: Sat 20 Dec 2025 10:26:40 +0000 Manifest next update: Tue 23 Dec 2025 19:10:40 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: +wVQNs9jIHfwMQg5NQmwi1vSj+7qRWbhhEWaSLPMWi0=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 19:10:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b8:de:c5:a2:aa:ee:f5:c7:98:b9:28:a2:00:bc:9d:66:72:ea:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Dec 20 10:26:40 2025 GMT Not After : Dec 23 19:10:40 2025 GMT Subject: CN=FB23BB7EE7DB2DAF9DA1E65FCE26BD50C567931F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d8:54:61:11:f9:af:d5:61:56:f2:2f:7f:0b: 83:0a:b4:43:47:29:b9:1e:6e:8f:bd:91:bd:97:6e: 0e:2e:0b:94:29:5a:a7:9e:6e:a4:e0:fa:02:1b:fd: 2f:86:fa:90:79:e7:73:2a:c2:29:30:bd:0b:6c:d2: 60:9c:c3:06:7c:12:7e:bc:d8:81:73:2f:6e:61:78: 66:04:9c:83:d6:6e:b8:69:72:8a:dc:70:15:ed:70: 5c:17:cf:79:3c:11:95:31:88:db:6d:28:a1:ef:f2: c3:65:ac:ad:30:ac:74:81:b5:72:32:78:72:e5:b7: a7:b7:c6:50:0a:90:f7:4e:25:da:95:ab:ed:e5:d5: 35:6f:d4:9e:20:96:56:03:f8:7e:ec:03:78:8b:f9: 2c:13:24:41:04:c0:44:98:1b:bd:18:ec:82:13:f0: 22:1a:8f:c0:4c:66:23:c1:29:0f:82:a7:4e:4a:e5: 9b:ce:99:ad:e7:79:f1:a8:ae:4d:1b:20:71:ac:6b: b9:36:df:ee:d7:0f:03:57:79:1c:55:34:42:0e:c5: 1e:f1:90:de:c3:5e:2a:74:0e:f9:d3:25:c6:e8:2b: ab:d4:af:5b:dd:5f:4e:2f:18:75:b3:af:22:96:15: c5:41:b2:2f:f8:a3:e4:19:ed:70:d9:68:4c:e5:8e: 9a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:23:BB:7E:E7:DB:2D:AF:9D:A1:E6:5F:CE:26:BD:50:C5:67:93:1F X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:04:b9:db:53:9c:3a:2a:8d:42:33:9c:21:b6:07:e3:4d:9a: f6:b8:b3:a3:3d:06:de:3d:93:e9:5e:40:aa:c8:72:73:09:bf: e2:27:68:d1:cb:6f:58:09:5a:14:4b:d6:ca:79:dd:5e:30:1b: b8:ef:54:bc:4c:d3:0f:16:69:98:05:87:ec:2b:73:52:14:ef: 1c:9b:cb:d2:fa:e2:fe:63:fc:13:bd:72:a5:be:42:43:ac:96: 6c:09:af:04:0c:b8:58:e8:29:c2:af:3f:42:be:b6:9e:27:a4: 76:15:59:cf:2a:cd:92:61:5b:7b:89:5a:ba:d7:ff:06:1c:f9: 38:44:8b:25:38:30:90:68:19:f6:ba:4a:7f:e4:8d:32:e0:95: ed:4e:b8:09:3a:e9:21:1c:6a:44:17:ee:2c:80:2e:03:ae:cb: 77:64:22:99:f6:6e:81:fd:b1:d3:6a:32:30:86:a2:64:11:99: a3:f9:87:6e:5d:43:87:5f:69:96:aa:16:67:90:0e:81:16:67: a3:33:5c:af:fb:14:52:fb:d2:78:6f:8e:bf:86:b1:5c:be:a4: 25:b1:16:5c:19:a7:25:11:bc:d8:59:e6:31:84:87:1e:c7:43: f4:26:fb:6a:53:c6:68:91:1d:1f:5c:14:b7:6a:c6:4a:f0:83: d2:77:00:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYLjexaKq7vXHmLkoogC8nWZy6h8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTEyMjAxMDI2NDBaFw0yNTEyMjMxOTEwNDBaMDMxMTAvBgNV BAMTKEZCMjNCQjdFRTdEQjJEQUY5REExRTY1RkNFMjZCRDUwQzU2NzkzMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG2FRhEfmv1WFW8i9/C4MKtENH Kbkebo+9kb2Xbg4uC5QpWqeebqTg+gIb/S+G+pB553MqwikwvQts0mCcwwZ8En68 2IFzL25heGYEnIPWbrhpcorccBXtcFwXz3k8EZUxiNttKKHv8sNlrK0wrHSBtXIy eHLlt6e3xlAKkPdOJdqVq+3l1TVv1J4gllYD+H7sA3iL+SwTJEEEwESYG70Y7IIT 8CIaj8BMZiPBKQ+Cp05K5ZvOma3nefGork0bIHGsa7k23+7XDwNXeRxVNEIOxR7x kN7DXip0DvnTJcboK6vUr1vdX04vGHWzryKWFcVBsi/4o+QZ7XDZaEzljpqXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+yO7fufbLa+doeZfzia9UMVnkx8wHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKkEudtTnDoqjUIznCG2B+NNmva4s6M9Bt49 k+leQKrIcnMJv+InaNHLb1gJWhRL1sp53V4wG7jvVLxM0w8WaZgFh+wrc1IU7xyb y9L64v5j/BO9cqW+QkOslmwJrwQMuFjoKcKvP0K+tp4npHYVWc8qzZJhW3uJWrrX /wYc+ThEiyU4MJBoGfa6Sn/kjTLgle1OuAk66SEcakQX7iyALgOuy3dkIpn2boH9 sdNqMjCGomQRmaP5h25dQ4dfaZaqFmeQDoEWZ6MzXK/7FFL70nhvjr+GsVy+pCWx FlwZpyURvNhZ5jGEhx7HQ/Qm+2pTxmiRHR9cFLdqxkrwg9J3AGM= -----END CERTIFICATE-----Generated at Sun Dec 21 23:13:38 2025 by rpki-client