This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: 1MoOjakhW5tIymMFS91IfMh9W3fJYDHHC7QehqhTeXI= Subject key identifier: 0B:F2:50:1A:8C:50:28:DA:55:C6:2C:91:23:31:77:F5:69:85:34:F2 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 5FA67A3C25B85D2F920AEDFD26F317433D4097C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 0546 Signing time: Sun 01 Feb 2026 18:31:01 +0000 Manifest this update: Sun 01 Feb 2026 18:26:01 +0000 Manifest next update: Thu 05 Feb 2026 02:47:01 +0000 Files and hashes: 1: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: x131am9xGmevjUSWCaQ/gs9DiHDddj5ETPCjDpCfElA=) 2: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ=) 3: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c=) 4: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U=) 5: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Feb 2026 02:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a6:7a:3c:25:b8:5d:2f:92:0a:ed:fd:26:f3:17:43:3d:40:97:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Feb 1 18:26:01 2026 GMT Not After : Feb 5 02:47:01 2026 GMT Subject: CN=0BF2501A8C5028DA55C62C91233177F5698534F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:07:f3:d0:44:a1:aa:ac:3d:15:eb:0b:1f:6d: 2c:85:ee:09:90:5a:eb:58:d7:9c:a2:34:da:88:37: c8:eb:3b:a0:41:1b:94:23:4e:4a:d6:d1:e5:c0:9a: d5:fd:4b:fc:8c:9f:80:f5:32:f8:eb:9b:ea:de:76: db:e6:5c:66:dd:e7:24:6a:4c:7a:15:df:2c:e3:91: 80:fd:43:46:be:bc:b3:82:48:b2:12:08:19:b0:78: c2:27:72:86:44:8b:c7:04:57:1b:84:93:be:70:83: 3c:72:de:d3:5c:84:0f:84:a0:55:8f:f4:02:0c:34: 19:c2:bb:52:47:3d:42:30:ca:a0:60:4e:59:2a:85: e3:8e:a4:2c:1d:82:f1:c6:23:35:dd:c4:ea:1d:c4: 07:a2:bd:57:ce:6d:e1:a6:57:aa:88:fa:e1:39:8d: 92:4b:6e:fd:55:fe:fc:72:64:82:e0:27:eb:87:f3: ba:f1:37:31:20:8f:a7:ba:4a:21:66:05:62:8b:b5: 38:92:6b:a3:5f:b3:07:1c:e4:fd:ba:6f:59:02:a2: 2f:41:b3:65:cf:77:1a:de:09:f1:89:12:19:4b:dc: e6:89:51:08:ba:e8:57:3f:09:ff:73:0e:df:26:4f: 7e:35:dc:85:31:47:5e:ef:8e:5f:fd:e2:77:91:5e: e5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F2:50:1A:8C:50:28:DA:55:C6:2C:91:23:31:77:F5:69:85:34:F2 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:d2:da:f6:e1:b4:ea:39:b4:f7:a4:1b:65:d3:db:db:67:03: 57:de:5c:a4:bd:58:f1:f2:c3:00:93:8a:b8:cd:d8:df:35:51: 76:79:f6:34:01:48:9d:ff:a6:2d:7d:b3:7a:bb:e0:62:3d:6e: fa:25:16:e5:b5:fa:83:7f:3e:df:f3:26:dc:6f:01:db:8c:aa: e5:72:9c:3a:3a:65:1a:d2:ac:68:a4:66:dc:68:6a:45:a2:e7: 61:6c:d7:af:13:bf:06:ab:40:62:3e:3c:56:86:11:25:f0:5e: a9:3f:03:2e:61:48:50:95:20:53:5b:9c:56:22:b7:92:b1:09: 76:9c:dc:b6:71:d1:31:53:05:00:21:73:55:fb:51:90:c3:44: 21:89:90:16:3b:7f:1a:36:69:da:77:01:fc:50:49:a0:6d:4a: 93:0a:65:d3:c9:23:1d:a3:06:77:ed:97:20:35:78:73:ee:65: af:92:b6:02:87:22:ca:e7:ef:0f:fa:43:f4:af:50:21:d0:12: e6:a2:98:71:f5:82:fe:97:b1:50:98:b0:4e:1a:57:49:e9:39: 59:d6:ff:68:c4:f4:b3:dc:c6:2e:34:a3:f9:5b:23:4e:fc:81: a8:a6:51:29:7d:3c:b8:f6:be:59:53:f7:84:4e:be:c3:5f:a6: c1:22:e9:62 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX6Z6PCW4XS+SCu39JvMXQz1Al8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNjAyMDExODI2MDFaFw0yNjAyMDUwMjQ3MDFaMDMxMTAvBgNV BAMTKDBCRjI1MDFBOEM1MDI4REE1NUM2MkM5MTIzMzE3N0Y1Njk4NTM0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwB/PQRKGqrD0V6wsfbSyF7gmQ WutY15yiNNqIN8jrO6BBG5QjTkrW0eXAmtX9S/yMn4D1Mvjrm+redtvmXGbd5yRq THoV3yzjkYD9Q0a+vLOCSLISCBmweMIncoZEi8cEVxuEk75wgzxy3tNchA+EoFWP 9AIMNBnCu1JHPUIwyqBgTlkqheOOpCwdgvHGIzXdxOodxAeivVfObeGmV6qI+uE5 jZJLbv1V/vxyZILgJ+uH87rxNzEgj6e6SiFmBWKLtTiSa6Nfswcc5P26b1kCoi9B s2XPdxreCfGJEhlL3OaJUQi66Fc/Cf9zDt8mT3413IUxR17vjl/94neRXuWfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUC/JQGoxQKNpVxiyRIzF39WmFNPIwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEnS2vbhtOo5tPekG2XT29tnA1feXKS9WPHy wwCTirjN2N81UXZ59jQBSJ3/pi19s3q74GI9bvolFuW1+oN/Pt/zJtxvAduMquVy nDo6ZRrSrGikZtxoakWi52Fs168TvwarQGI+PFaGESXwXqk/Ay5hSFCVIFNbnFYi t5KxCXac3LZx0TFTBQAhc1X7UZDDRCGJkBY7fxo2adp3AfxQSaBtSpMKZdPJIx2j BnftlyA1eHPuZa+StgKHIsrn7w/6Q/SvUCHQEuaimHH1gv6XsVCYsE4aV0npOVnW /2jE9LPcxi40o/lbI078gaimUSl9PLj2vllT94ROvsNfpsEi6WI= -----END CERTIFICATE-----Generated at Mon Feb 2 20:55:47 2026 by rpki-client