This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: i8myfXAsYPzpl/OUwng5/knOma0l2BgfW14nkMtr4ro= Subject key identifier: E2:75:39:F3:56:7E:F3:BD:D9:F0:12:D1:22:F2:FF:0F:20:88:9D:57 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 24E131BE85B3FC386551B257D7FB470618E24B59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 01F8 Signing time: Thu 18 Dec 2025 00:21:21 +0000 Manifest this update: Thu 18 Dec 2025 00:16:21 +0000 Manifest next update: Sun 21 Dec 2025 10:26:21 +0000 Files and hashes: 1: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: NgO1iHiipwOXithkZvfqlslVT8pD+Q443AYBhdRu+Kg=) 2: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 10:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:e1:31:be:85:b3:fc:38:65:51:b2:57:d7:fb:47:06:18:e2:4b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Dec 18 00:16:21 2025 GMT Not After : Dec 21 10:26:21 2025 GMT Subject: CN=E27539F3567EF3BDD9F012D122F2FF0F20889D57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a2:d2:7d:ac:f4:fc:87:59:f0:5d:53:d1:a0: 77:02:b9:7a:c5:ed:ce:53:f4:ad:b4:ea:a3:52:54: fd:b2:60:4f:81:14:d9:6a:25:a1:a9:2a:5d:7c:73: 59:9b:92:59:e8:7b:d6:39:8c:c8:a7:d0:8b:37:07: c9:3d:91:15:21:82:dd:62:5f:7c:ec:10:55:57:10: d9:cd:09:13:3b:d7:52:1e:47:25:df:67:6b:d4:fe: a3:89:0f:50:6f:57:da:d7:d3:b6:0a:9a:5b:4a:e1: bb:af:ef:b1:95:4b:bc:be:2a:11:b9:e0:d5:de:67: 71:3e:c8:49:8f:43:fe:4c:c3:d9:5c:1b:9e:e7:76: aa:75:21:65:da:4e:8a:b1:27:c8:16:29:f3:50:59: 31:96:ce:e2:75:44:93:5e:0d:b5:5f:98:a6:b6:62: e8:49:df:1b:f6:d2:38:be:3b:76:65:a1:f2:fc:39: 9b:8d:e7:49:eb:eb:f7:7c:a3:e6:15:f8:98:0f:e2: 2b:88:be:c0:ed:88:48:e9:16:c5:ec:e7:15:4f:b2: 00:bd:9d:d3:c5:f1:18:4d:68:b8:b7:76:86:9e:e6: 5d:e8:50:5f:82:ca:2d:8e:6b:e1:93:e2:9c:c8:c5: 22:14:5b:6e:90:21:4f:11:8d:0b:f5:b7:4a:f7:4c: 78:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:75:39:F3:56:7E:F3:BD:D9:F0:12:D1:22:F2:FF:0F:20:88:9D:57 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:4b:50:c2:ca:4f:58:1a:29:53:4f:28:19:d9:03:13:53:86: 3c:7c:76:55:2c:ed:58:5c:6c:b7:39:8d:57:30:56:7d:35:b2: 77:10:55:22:d5:b4:cb:3b:4c:bf:a4:3c:b4:7d:0b:31:f2:7a: 20:1e:17:91:c0:3c:55:52:fa:b2:58:94:26:25:b1:b2:5d:f1: 58:fb:49:16:30:bc:68:f4:aa:a1:e4:2b:22:6c:ca:72:05:4a: e4:2f:ba:2f:0b:93:ae:bd:44:09:35:c6:0e:07:df:88:1b:e4: c5:83:c5:10:63:ce:03:d8:94:23:cb:c5:8f:64:76:e8:88:ff: 21:53:6b:3c:cf:2d:d7:c8:7b:77:2b:f8:cd:ef:bb:1a:67:f5: 29:f7:69:7f:0a:26:fd:39:ef:7a:63:c0:87:73:f3:cd:26:9b: 88:55:42:36:d6:36:fa:05:89:4e:9b:2b:59:cd:2c:b9:47:8e: 05:84:23:2c:2e:58:05:82:c8:eb:61:a0:d7:0c:b7:94:84:84: 27:8a:28:ee:da:b5:56:0a:55:24:b5:27:2b:b6:98:b7:25:f8: 56:ab:6e:02:02:68:0e:13:9f:10:e4:f0:5f:a9:3e:38:33:2d: 71:40:8a:c0:40:c7:e9:9f:b4:8a:50:05:68:d8:fa:45:9d:05: 0e:a8:bc:26 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJOExvoWz/DhlUbJX1/tHBhjiS1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNTEyMTgwMDE2MjFaFw0yNTEyMjExMDI2MjFaMDMxMTAvBgNV BAMTKEUyNzUzOUYzNTY3RUYzQkREOUYwMTJEMTIyRjJGRjBGMjA4ODlENTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOotJ9rPT8h1nwXVPRoHcCuXrF 7c5T9K206qNSVP2yYE+BFNlqJaGpKl18c1mbklnoe9Y5jMin0Is3B8k9kRUhgt1i X3zsEFVXENnNCRM711IeRyXfZ2vU/qOJD1BvV9rX07YKmltK4buv77GVS7y+KhG5 4NXeZ3E+yEmPQ/5Mw9lcG57ndqp1IWXaToqxJ8gWKfNQWTGWzuJ1RJNeDbVfmKa2 YuhJ3xv20ji+O3ZlofL8OZuN50nr6/d8o+YV+JgP4iuIvsDtiEjpFsXs5xVPsgC9 ndPF8RhNaLi3doae5l3oUF+Cyi2Oa+GT4pzIxSIUW26QIU8RjQv1t0r3THgNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4nU581Z+873Z8BLRIvL/DyCInVcwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABpLUMLKT1gaKVNPKBnZAxNThjx8dlUs7Vhc bLc5jVcwVn01sncQVSLVtMs7TL+kPLR9CzHyeiAeF5HAPFVS+rJYlCYlsbJd8Vj7 SRYwvGj0qqHkKyJsynIFSuQvui8Lk669RAk1xg4H34gb5MWDxRBjzgPYlCPLxY9k duiI/yFTazzPLdfIe3cr+M3vuxpn9Sn3aX8KJv0573pjwIdz880mm4hVQjbWNvoF iU6bK1nNLLlHjgWEIywuWAWCyOthoNcMt5SEhCeKKO7atVYKVSS1Jyu2mLcl+Far bgICaA4TnxDk8F+pPjgzLXFAisBAx+mftIpQBWjY+kWdBQ6ovCY= -----END CERTIFICATE-----Generated at Fri Dec 19 11:19:03 2025 by rpki-client