This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: zP0p8G71G1lcSI+f3B28mTTjWGhrO9O2xZ3T6J7TDRk= Subject key identifier: D2:B8:DE:3F:FB:BB:40:85:49:10:03:02:85:34:CA:5D:56:1F:90:B3 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 4BB82BEE784D5C4FDF7DF5C349F7CA27AB496BAD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 0532 Signing time: Wed 17 Dec 2025 22:51:01 +0000 Manifest this update: Wed 17 Dec 2025 22:46:01 +0000 Manifest next update: Sun 21 Dec 2025 03:12:01 +0000 Files and hashes: 1: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: n9V11sQmte1mS4zQG81+yYlRFanQXZ9oT7WVo/3Qo8I=) 2: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ=) 3: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c=) 4: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M=) 5: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 03:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:b8:2b:ee:78:4d:5c:4f:df:7d:f5:c3:49:f7:ca:27:ab:49:6b:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Dec 17 22:46:01 2025 GMT Not After : Dec 21 03:12:01 2025 GMT Subject: CN=D2B8DE3FFBBB4085491003028534CA5D561F90B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:bb:c2:b6:79:20:55:61:23:6e:94:b0:bf:f7: 7f:69:8d:46:51:d7:d6:16:f9:3c:42:44:9b:ab:d6: 10:7b:87:1a:14:55:b5:af:67:44:2d:7b:6d:62:de: 0d:bb:4b:f1:ee:21:35:f6:ce:ab:41:be:79:70:dd: f0:f1:f5:10:b4:01:fb:4f:93:d1:89:bd:0f:45:88: f4:02:2b:58:39:bf:a2:ba:e2:96:15:34:6e:f5:da: 32:9b:36:e8:6c:ee:7f:ca:5d:24:35:b5:85:f9:03: af:13:40:f7:b0:9a:39:ee:ed:01:39:2a:0f:7b:d0: 86:85:89:57:65:c1:16:34:11:97:16:16:2d:97:62: ef:7d:b6:bc:b4:53:05:02:25:82:d9:86:5b:3f:a4: 92:d1:bc:1c:9b:f9:54:6c:04:af:c7:fa:81:49:b5: 3b:bb:85:0b:9d:3e:91:f1:2e:1f:f6:d6:8d:90:f7: 56:ad:61:dc:06:37:a2:ab:7c:cf:e4:05:56:f6:d4: 04:1c:25:f1:d0:f2:5d:36:01:a7:d1:92:91:55:1f: 38:c6:b1:16:6f:3c:99:b4:3c:a6:f6:4b:ba:53:f5: 48:42:eb:0d:fd:68:c1:88:81:6e:9a:d4:37:74:85: 8f:1b:07:e2:3a:6c:e4:81:a5:1e:e3:46:64:05:64: 31:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B8:DE:3F:FB:BB:40:85:49:10:03:02:85:34:CA:5D:56:1F:90:B3 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:54:90:7f:ec:90:46:10:d6:41:cd:1d:9f:fa:dc:69:86:67: 28:01:65:33:8b:26:99:12:1f:23:81:c6:40:fe:2f:80:64:44: 21:00:33:89:c6:c5:18:1a:31:d9:4c:ad:23:7e:97:a4:2d:5f: e8:aa:3b:e6:de:27:6d:cd:ed:f4:1f:6d:bb:fd:eb:bd:28:a5: 0d:6f:24:d7:6b:26:a2:a5:9f:37:41:37:81:a4:5b:d7:1c:de: 93:13:8e:75:9a:c9:b0:67:a0:6a:4c:ae:f2:61:62:65:25:d0: ed:6c:4a:15:1b:9f:60:17:86:6f:86:1a:18:72:59:49:6e:a1: 34:2b:59:67:7e:12:54:06:5e:04:c0:e2:d2:f8:08:1a:22:96: b9:d7:2e:65:a2:4e:73:4d:de:48:d1:e2:3b:9d:85:38:10:de: 1b:21:75:93:2d:75:a3:9b:ed:7c:e4:1b:67:54:64:00:e6:de: e8:1c:b8:28:7c:30:e7:a3:cc:f8:3c:62:92:5a:5c:06:7f:e8: 94:a6:72:ac:22:b6:86:2c:4a:98:5f:23:b1:4c:07:fa:bc:a3: 9f:5f:b7:cd:9b:82:14:6a:24:b5:dc:34:a2:03:86:82:5d:16: 1a:d3:24:1c:85:c6:ef:7c:11:8c:72:c3:05:cf:8d:b1:f4:ae: 74:e5:7b:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS7gr7nhNXE/fffXDSffKJ6tJa60wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNTEyMTcyMjQ2MDFaFw0yNTEyMjEwMzEyMDFaMDMxMTAvBgNV BAMTKEQyQjhERTNGRkJCQjQwODU0OTEwMDMwMjg1MzRDQTVENTYxRjkwQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpu8K2eSBVYSNulLC/939pjUZR 19YW+TxCRJur1hB7hxoUVbWvZ0Qte21i3g27S/HuITX2zqtBvnlw3fDx9RC0AftP k9GJvQ9FiPQCK1g5v6K64pYVNG712jKbNuhs7n/KXSQ1tYX5A68TQPewmjnu7QE5 Kg970IaFiVdlwRY0EZcWFi2XYu99try0UwUCJYLZhls/pJLRvByb+VRsBK/H+oFJ tTu7hQudPpHxLh/21o2Q91atYdwGN6KrfM/kBVb21AQcJfHQ8l02AafRkpFVHzjG sRZvPJm0PKb2S7pT9UhC6w39aMGIgW6a1Dd0hY8bB+I6bOSBpR7jRmQFZDHzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0rjeP/u7QIVJEAMChTTKXVYfkLMwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE9UkH/skEYQ1kHNHZ/63GmGZygBZTOLJpkS HyOBxkD+L4BkRCEAM4nGxRgaMdlMrSN+l6QtX+iqO+beJ23N7fQfbbv9670opQ1v JNdrJqKlnzdBN4GkW9cc3pMTjnWaybBnoGpMrvJhYmUl0O1sShUbn2AXhm+GGhhy WUluoTQrWWd+ElQGXgTA4tL4CBoilrnXLmWiTnNN3kjR4judhTgQ3hshdZMtdaOb 7XzkG2dUZADm3ugcuCh8MOejzPg8YpJaXAZ/6JSmcqwitoYsSphfI7FMB/q8o59f t82bghRqJLXcNKIDhoJdFhrTJByFxu98EYxywwXPjbH0rnTle04= -----END CERTIFICATE-----Generated at Fri Dec 19 08:14:10 2025 by rpki-client