This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: ERjvjDOOkxYdYH7ENYVTHC740mxi3P6S5QBSjCDVkq0= Subject key identifier: 89:A9:B5:68:3B:B6:80:5F:28:47:2A:74:9F:DC:05:14:E1:B4:EE:2A Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 6CBEEC5AD8C083CEBBE3FB8D390F794EE0CC1ECA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 011D Signing time: Sun 25 Jan 2026 01:22:29 +0000 Manifest this update: Sun 25 Jan 2026 01:17:29 +0000 Manifest next update: Wed 28 Jan 2026 07:53:29 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: rWw9JiRTKM+kI++CRA5YxoPOOsRJMzfZHcNgTbwEKX0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 07:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:be:ec:5a:d8:c0:83:ce:bb:e3:fb:8d:39:0f:79:4e:e0:cc:1e:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Jan 25 01:17:29 2026 GMT Not After : Jan 28 07:53:29 2026 GMT Subject: CN=89A9B5683BB6805F28472A749FDC0514E1B4EE2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:16:e1:df:3d:67:04:b3:7a:63:f1:0b:65:b2: 15:f3:aa:85:c6:04:99:77:9b:4a:3c:26:32:37:09: 7b:5a:11:bf:b3:60:5b:5b:38:76:bf:39:89:78:21: 2d:63:39:60:e5:24:5a:51:80:40:94:65:0c:88:96: c6:68:8d:c3:8c:fc:5c:b4:f9:85:0c:56:09:96:db: 25:85:cf:f1:ad:16:56:21:fd:db:d7:9e:77:5f:40: 3d:95:c0:59:11:40:42:0b:a9:51:d2:57:eb:eb:68: 0f:4c:c4:73:4f:aa:98:72:ae:73:75:2c:42:67:b3: 89:a6:6f:6f:ed:e0:96:38:1e:fc:3f:ee:f8:a9:b5: dc:4e:9c:92:7d:e3:9a:5b:86:aa:14:fc:a5:cb:d3: 65:82:00:a6:e3:e8:5e:18:9c:ee:5b:ea:c2:f2:17: 6c:aa:8d:be:04:2c:81:ff:20:66:39:28:c1:ab:3b: 5e:c1:a0:57:c3:d4:3e:88:8f:cb:67:70:2e:bb:6b: a9:3d:1b:96:11:bf:9d:d4:0b:18:9d:a9:2e:8d:6e: 21:45:a7:33:a2:e6:1b:d4:dd:8c:6c:fc:a3:85:9d: 59:e7:ba:78:02:11:c0:48:be:2f:ef:73:1b:bd:48: d6:f5:11:f7:6d:47:55:a1:20:cf:b4:c5:27:d7:ed: 0c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A9:B5:68:3B:B6:80:5F:28:47:2A:74:9F:DC:05:14:E1:B4:EE:2A X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:0b:94:4d:8a:6a:d5:46:03:59:08:1b:ec:cb:d8:8d:ab:3e: 3f:7f:93:e5:2d:24:e6:59:7a:d6:1d:0d:fb:47:26:60:2e:4b: 60:fb:66:5d:e0:b0:db:7a:ae:83:25:f0:e2:38:87:e3:e6:44: fd:40:e4:5b:4a:39:d7:03:b0:7e:e1:46:50:f8:68:73:1c:76: 16:52:b5:b7:03:6c:70:d4:8e:c5:10:e8:05:c4:40:6f:bb:43: 50:c0:e6:71:c8:f0:7f:41:6c:68:ad:a9:59:be:05:c1:8e:d7: 20:a4:ab:fa:52:79:dd:01:59:89:94:d8:e6:60:9c:ee:b5:32: e2:49:ad:7d:11:66:30:78:b0:db:4e:2b:10:4d:49:e2:d6:13: 4f:b1:65:61:62:84:d7:67:20:2f:34:46:67:1a:b1:f9:30:80: 25:7c:7c:6d:94:e5:38:95:8d:97:9c:42:11:57:c8:64:a6:71: 17:b7:1d:89:72:7c:e1:a7:b6:8f:aa:46:6e:4b:2c:53:19:d3: 3a:94:af:1d:a0:cd:0e:c9:e8:e0:ff:fc:30:12:0a:62:27:33: b0:83:ca:a9:73:e6:08:4f:a0:4e:8b:ba:e3:33:a2:5c:e1:9a: 3d:a8:01:6b:10:65:d6:0f:74:1f:8d:d9:b7:0a:db:bd:b7:cb: 7d:17:0b:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbL7sWtjAg8674/uNOQ95TuDMHsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNjAxMjUwMTE3MjlaFw0yNjAxMjgwNzUzMjlaMDMxMTAvBgNV BAMTKDg5QTlCNTY4M0JCNjgwNUYyODQ3MkE3NDlGREMwNTE0RTFCNEVFMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxFuHfPWcEs3pj8QtlshXzqoXG BJl3m0o8JjI3CXtaEb+zYFtbOHa/OYl4IS1jOWDlJFpRgECUZQyIlsZojcOM/Fy0 +YUMVgmW2yWFz/GtFlYh/dvXnndfQD2VwFkRQEILqVHSV+vraA9MxHNPqphyrnN1 LEJns4mmb2/t4JY4Hvw/7viptdxOnJJ945pbhqoU/KXL02WCAKbj6F4YnO5b6sLy F2yqjb4ELIH/IGY5KMGrO17BoFfD1D6Ij8tncC67a6k9G5YRv53UCxidqS6NbiFF pzOi5hvU3Yxs/KOFnVnnungCEcBIvi/vcxu9SNb1EfdtR1WhIM+0xSfX7QwbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiam1aDu2gF8oRyp0n9wFFOG07iowHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC8LlE2KatVGA1kIG+zL2I2rPj9/k+UtJOZZ etYdDftHJmAuS2D7Zl3gsNt6roMl8OI4h+PmRP1A5FtKOdcDsH7hRlD4aHMcdhZS tbcDbHDUjsUQ6AXEQG+7Q1DA5nHI8H9BbGitqVm+BcGO1yCkq/pSed0BWYmU2OZg nO61MuJJrX0RZjB4sNtOKxBNSeLWE0+xZWFihNdnIC80RmcasfkwgCV8fG2U5TiV jZecQhFXyGSmcRe3HYlyfOGnto+qRm5LLFMZ0zqUrx2gzQ7J6OD//DASCmInM7CD yqlz5ghPoE6LuuMzolzhmj2oAWsQZdYPdB+N2bcK2723y30XC8w= -----END CERTIFICATE-----Generated at Mon Jan 26 06:39:50 2026 by rpki-client