This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: lK8cxtan11d38TfnSMTjtMZzn3CdZ2epNvssjUNr2hc= Subject key identifier: 10:6D:D7:5B:EB:84:6A:38:02:43:A7:37:64:F6:2E:C8:53:5A:A5:45 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 222F36B2F0054D8138EE258AB509897DE31D73D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 0107 Signing time: Fri 05 Dec 2025 18:02:29 +0000 Manifest this update: Fri 05 Dec 2025 17:57:29 +0000 Manifest next update: Mon 08 Dec 2025 21:23:29 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: rxTbukMTla+enIsc1SYryJdVUl7KivtfZd2Lx4ZLoK0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 21:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:2f:36:b2:f0:05:4d:81:38:ee:25:8a:b5:09:89:7d:e3:1d:73:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Dec 5 17:57:29 2025 GMT Not After : Dec 8 21:23:29 2025 GMT Subject: CN=106DD75BEB846A380243A73764F62EC8535AA545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:20:95:a2:20:62:15:7c:ce:6b:49:e8:32:cf: be:52:f4:f2:97:24:ae:e0:4b:bf:c7:ff:9a:0a:82: c0:f3:a9:40:79:a2:0d:72:6b:5c:c7:a8:b2:9f:97: 7b:8e:5d:a6:37:ad:fd:b0:b6:85:2e:d9:a1:04:ca: cd:32:d4:f7:19:ca:9b:08:1a:5e:96:80:f2:49:06: 6a:7f:4c:3a:e5:0e:f1:75:bc:33:d8:7b:cb:c6:a0: 00:d2:98:af:db:5f:3c:43:6d:b6:49:17:7f:fc:a0: c6:17:c6:78:e7:9e:d6:82:b6:6d:0f:65:38:20:99: 24:3f:3e:d8:76:14:26:12:86:99:77:75:c7:87:25: 25:db:aa:64:b6:d6:e6:c2:61:22:68:0d:4a:47:d3: d6:58:6f:a4:39:59:ec:2f:ba:09:8f:a1:71:d7:58: cc:03:39:11:42:23:b7:17:34:46:96:98:ff:46:e8: 1b:6f:39:0b:38:f1:3e:a4:13:b9:20:59:4b:b5:c2: 80:4f:9d:cb:98:bc:fb:68:fe:d6:15:d5:43:73:c8: ad:a2:95:84:66:75:56:56:a5:e9:96:67:3a:f5:83: 13:ad:18:2a:db:7a:3a:ff:1d:7c:8d:42:fa:14:2d: df:b9:36:0d:2a:13:bb:21:6b:0c:99:eb:e9:eb:f3: 64:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6D:D7:5B:EB:84:6A:38:02:43:A7:37:64:F6:2E:C8:53:5A:A5:45 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:02:bd:fb:df:dd:2f:6e:54:9b:f0:06:c8:2e:0d:97:17:a2: c7:7d:70:7c:39:ba:89:6b:18:fa:76:65:59:80:96:78:b0:ad: fc:aa:7d:a7:d9:4a:2d:e7:32:40:6e:d2:fc:94:6c:16:b2:30: 30:55:1e:8b:c8:34:66:b7:24:c8:c7:d7:a4:09:8e:da:2f:78: 03:c8:5b:9f:57:53:c9:21:4b:45:a5:15:95:bc:8e:b7:ca:c9: df:89:29:fc:a5:68:20:d5:84:b8:d8:dd:73:aa:82:cd:0b:fb: 1c:82:ac:12:a8:66:14:01:02:6a:7a:fe:85:e4:34:b7:f2:04: fe:0e:2e:04:05:95:20:21:f9:fd:b5:b5:df:3f:26:3f:c1:c0: 09:0f:4d:2a:09:b0:68:bb:46:b5:9d:01:47:23:61:e4:c0:74: ad:ea:1b:54:7d:c6:e7:2a:07:62:95:5c:e6:85:79:5a:9f:5e: 1e:29:3b:5f:a4:18:8c:af:5f:59:7d:a1:03:9d:cd:79:f6:f9: d6:e8:53:99:8b:fb:61:05:f7:89:c8:fd:c2:c7:15:77:4a:a4: 92:a8:84:09:0c:e5:fb:fa:64:45:3a:3b:7e:ca:26:df:f8:15: 33:fc:70:6c:2f:1c:39:7f:25:20:35:00:72:70:ab:e4:30:82: 84:ac:05:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIi82svAFTYE47iWKtQmJfeMdc9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTEyMDUxNzU3MjlaFw0yNTEyMDgyMTIzMjlaMDMxMTAvBgNV BAMTKDEwNkRENzVCRUI4NDZBMzgwMjQzQTczNzY0RjYyRUM4NTM1QUE1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcIJWiIGIVfM5rSegyz75S9PKX JK7gS7/H/5oKgsDzqUB5og1ya1zHqLKfl3uOXaY3rf2wtoUu2aEEys0y1PcZypsI Gl6WgPJJBmp/TDrlDvF1vDPYe8vGoADSmK/bXzxDbbZJF3/8oMYXxnjnntaCtm0P ZTggmSQ/Pth2FCYShpl3dceHJSXbqmS21ubCYSJoDUpH09ZYb6Q5WewvugmPoXHX WMwDORFCI7cXNEaWmP9G6BtvOQs48T6kE7kgWUu1woBPncuYvPto/tYV1UNzyK2i lYRmdVZWpemWZzr1gxOtGCrbejr/HXyNQvoULd+5Ng0qE7shawyZ6+nr82SrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEG3XW+uEajgCQ6c3ZPYuyFNapUUwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFUCvfvf3S9uVJvwBsguDZcXosd9cHw5uolr GPp2ZVmAlniwrfyqfafZSi3nMkBu0vyUbBayMDBVHovINGa3JMjH16QJjtoveAPI W59XU8khS0WlFZW8jrfKyd+JKfylaCDVhLjY3XOqgs0L+xyCrBKoZhQBAmp6/oXk NLfyBP4OLgQFlSAh+f21td8/Jj/BwAkPTSoJsGi7RrWdAUcjYeTAdK3qG1R9xucq B2KVXOaFeVqfXh4pO1+kGIyvX1l9oQOdzXn2+dboU5mL+2EF94nI/cLHFXdKpJKo hAkM5fv6ZEU6O37KJt/4FTP8cGwvHDl/JSA1AHJwq+QwgoSsBfI= -----END CERTIFICATE-----Generated at Sat Dec 6 23:53:22 2025 by rpki-client