This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: sjcYbA3Ty8QvP5yQ4P4I+SKyezjHT5EAECH9MyFK4mU= Subject key identifier: 8A:6D:E0:B7:2F:33:94:BF:74:19:C5:50:FE:0A:43:39:4D:4D:9B:E3 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 39386B38D5FC940D46F2AE8EA12CCC4B71196C3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 0506 Signing time: Mon 12 Jan 2026 03:10:53 +0000 Manifest this update: Mon 12 Jan 2026 03:05:53 +0000 Manifest next update: Thu 15 Jan 2026 10:13:53 +0000 Files and hashes: 1: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) 2: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: BUsAcaWbxXFtg5x6EyiqYmAR5YJE+mBTDDapd3AQRqE=) 3: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) 4: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 Jan 2026 10:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:38:6b:38:d5:fc:94:0d:46:f2:ae:8e:a1:2c:cc:4b:71:19:6c:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Jan 12 03:05:53 2026 GMT Not After : Jan 15 10:13:53 2026 GMT Subject: CN=8A6DE0B72F3394BF7419C550FE0A43394D4D9BE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f0:01:a2:7c:fb:84:af:53:77:3b:e1:4a:50: 18:c9:13:9a:64:70:43:5f:50:63:5d:6b:71:f3:03: 80:ce:0a:2f:b3:90:b2:4a:cf:ff:eb:f2:3e:58:1d: 6f:69:8c:3b:b2:a3:1f:70:9c:01:d3:a8:be:5c:0c: 02:ea:df:af:53:2d:ec:5c:e7:2f:94:ee:23:0a:ef: e5:63:7b:3a:c9:b7:de:9b:9d:99:bc:70:c3:6f:60: 66:32:61:3e:8b:ea:f0:82:60:f7:a1:ef:5b:e5:88: ec:fc:3a:96:29:dd:4f:4b:0e:ca:8e:1c:2b:7c:a1: c3:6d:8d:e9:e4:ab:39:57:ee:9d:93:2a:f0:97:34: a1:cc:b7:45:3f:0e:b8:3b:59:fe:d7:02:8c:ce:a4: 3e:60:a1:34:15:fd:71:f9:34:b0:40:f6:97:77:30: 68:ff:04:e2:8d:a8:38:70:b1:79:82:ef:55:6b:62: 2f:c2:ec:b1:24:d4:d8:49:fc:5d:8a:44:1c:36:c9: 5a:b6:11:5c:8e:23:b4:3f:97:03:ca:be:b5:48:11: 11:78:b9:fa:08:54:b8:81:50:93:e5:32:6b:f2:ad: 57:07:32:ed:f7:76:b9:51:5b:76:33:9c:f0:5c:96: 52:cc:d6:16:e5:3e:cc:a7:09:ba:c1:ec:88:7d:99: 21:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:6D:E0:B7:2F:33:94:BF:74:19:C5:50:FE:0A:43:39:4D:4D:9B:E3 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:70:6e:1c:33:b7:16:4f:ca:84:f7:cc:ad:17:d5:67:08:7d: cc:58:e7:ba:24:48:a5:70:0d:04:a3:90:bb:3d:2d:c6:1a:3d: 71:fa:e6:0d:82:b0:b3:c2:af:d7:62:28:5b:04:0d:b5:61:89: 7b:14:75:2c:44:ab:6a:b9:9d:bc:a6:67:15:16:48:2e:0a:34: 06:38:e2:02:1d:53:55:29:aa:06:9b:a3:c0:9f:5c:b4:b7:13: f8:28:f1:24:c3:26:07:d3:ce:c9:78:51:0a:3b:26:31:1e:f6: d6:af:3f:9a:7a:01:89:17:01:3f:cb:81:e7:d1:9f:87:67:65: 0d:d8:74:d0:e9:6f:f8:1a:b5:8c:c0:3c:4c:ef:19:0e:77:98: f6:b7:31:97:49:16:35:48:3e:a3:80:25:3b:4a:db:e2:f0:f6: 5f:38:8a:f9:1e:b5:f3:27:fd:af:f3:c8:80:2a:d9:72:ff:0f: 0d:4f:e6:fb:1d:ac:dc:87:5b:53:09:63:89:65:e8:81:6c:b7: 5c:6e:9f:a6:47:1a:e1:f4:69:19:e1:4a:0e:b6:47:89:d4:57: 78:dc:41:fb:f8:c3:29:59:2a:51:ac:31:d7:65:06:ed:4f:cd: c9:a5:b1:bb:7e:17:45:64:94:b5:64:36:79:65:46:c8:fd:35: 11:55:f2:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOThrONX8lA1G8q6OoSzMS3EZbD4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNjAxMTIwMzA1NTNaFw0yNjAxMTUxMDEzNTNaMDMxMTAvBgNV BAMTKDhBNkRFMEI3MkYzMzk0QkY3NDE5QzU1MEZFMEE0MzM5NEQ0RDlCRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm8AGifPuEr1N3O+FKUBjJE5pk cENfUGNda3HzA4DOCi+zkLJKz//r8j5YHW9pjDuyox9wnAHTqL5cDALq369TLexc 5y+U7iMK7+VjezrJt96bnZm8cMNvYGYyYT6L6vCCYPeh71vliOz8OpYp3U9LDsqO HCt8ocNtjenkqzlX7p2TKvCXNKHMt0U/Drg7Wf7XAozOpD5goTQV/XH5NLBA9pd3 MGj/BOKNqDhwsXmC71VrYi/C7LEk1NhJ/F2KRBw2yVq2EVyOI7Q/lwPKvrVIERF4 ufoIVLiBUJPlMmvyrVcHMu33drlRW3YznPBcllLM1hblPsynCbrB7Ih9mSEFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUim3gty8zlL90GcVQ/gpDOU1Nm+MwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALRwbhwztxZPyoT3zK0X1WcIfcxY57okSKVw DQSjkLs9LcYaPXH65g2CsLPCr9diKFsEDbVhiXsUdSxEq2q5nbymZxUWSC4KNAY4 4gIdU1Upqgabo8CfXLS3E/go8STDJgfTzsl4UQo7JjEe9tavP5p6AYkXAT/LgefR n4dnZQ3YdNDpb/gatYzAPEzvGQ53mPa3MZdJFjVIPqOAJTtK2+Lw9l84ivketfMn /a/zyIAq2XL/Dw1P5vsdrNyHW1MJY4ll6IFst1xun6ZHGuH0aRnhSg62R4nUV3jc Qfv4wylZKlGsMddlBu1Pzcmlsbt+F0VklLVkNnllRsj9NRFV8ik= -----END CERTIFICATE-----Generated at Tue Jan 13 19:39:10 2026 by rpki-client