This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft File: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft (raw, json) Hash identifier: ngAnHM2CRgIzQGXMRNmSZFccb3DCe/IcURusJJNU/e4= Subject key identifier: 65:67:67:3A:57:47:DF:50:A2:89:41:9F:90:6C:17:DC:ED:37:DC:C3 Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 20DE886739DED90283A97B1DF710BFC187C3464D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft Manifest number: 02C4 Signing time: Sat 06 Dec 2025 10:31:40 +0000 Manifest this update: Sat 06 Dec 2025 10:26:40 +0000 Manifest next update: Tue 09 Dec 2025 12:44:40 +0000 Files and hashes: 1: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (hash: gonve5wIJ3O85bDiwHHm2xjnNdsU9xH6JAbxD3Ax5a8=) 2: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl (hash: 7Cd7NBD2WgAIRO0bY9ls7+3xcLtlhs8gpTsn+jYs/RY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 12:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:de:88:67:39:de:d9:02:83:a9:7b:1d:f7:10:bf:c1:87:c3:46:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: Dec 6 10:26:40 2025 GMT Not After : Dec 9 12:44:40 2025 GMT Subject: CN=6567673A5747DF50A289419F906C17DCED37DCC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:94:33:73:fb:29:7a:87:f5:89:ea:a9:37:13: bc:46:c2:fe:b0:82:bb:cf:74:a2:e5:68:64:f1:76: c6:d7:11:bc:93:a4:62:99:8a:55:93:7f:39:c1:3b: cf:8a:e3:34:99:e5:4c:43:8d:8a:81:ad:d8:31:de: be:aa:0b:83:50:51:5f:c0:cd:f5:fb:8e:99:53:a4: a5:10:1a:e7:1d:a0:72:27:a8:14:36:d3:11:87:e5: af:69:58:5d:da:b2:14:20:f2:76:35:19:87:2c:f8: 35:f2:bc:76:77:cf:bb:c8:8e:c5:62:79:76:3e:83: 6c:d6:be:bd:87:9c:6d:fb:5b:75:10:e9:6d:d6:f1: 90:81:e0:78:85:aa:34:c1:bc:ea:cb:1d:ae:29:3d: 9a:d9:71:bd:4f:e0:b9:f2:82:c2:d1:81:59:8b:4d: 07:ad:01:cd:bd:ed:1a:75:f4:9f:71:60:bd:03:ed: 03:35:09:32:a4:9d:1d:c9:58:8f:08:93:06:73:2f: 66:be:96:20:67:ce:37:49:a8:3b:65:f7:5c:f4:77: 5e:67:30:00:51:cc:c4:63:89:b0:70:64:b7:7d:95: e9:13:24:3d:c2:ef:34:9e:c9:4f:23:cd:f8:22:e5: b2:cb:56:51:d9:74:73:fa:f2:09:bc:5d:1c:f8:88: 25:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:67:67:3A:57:47:DF:50:A2:89:41:9F:90:6C:17:DC:ED:37:DC:C3 X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:8f:a5:5e:27:c7:50:9e:4b:f4:5e:aa:94:61:e6:0d:55:a1: 93:76:a9:a9:b9:0d:2e:58:5e:38:6c:a3:2a:1e:e8:99:9c:76: 0a:ba:0b:71:c9:93:77:a0:7b:68:7d:30:0c:ec:9f:69:0d:55: 27:70:ae:c8:a0:34:f7:0f:0b:fb:74:e9:34:18:9e:6e:2c:e8: b0:b6:bc:79:48:f5:7a:53:f8:3b:8c:ba:ae:4a:57:52:09:de: c3:ec:f5:43:c4:08:0f:ac:2e:c5:75:a0:f0:be:fe:eb:d1:71: c1:26:db:4a:d2:a8:49:2c:db:51:b1:a4:02:3e:fa:b0:27:3d: 6a:b9:11:a0:fd:67:1e:ab:43:34:e6:79:d5:11:93:72:e9:cf: a9:23:fb:86:ff:d2:04:f0:73:d1:8f:c1:80:6a:0b:2f:5a:2e: ce:d6:63:9d:e3:ad:96:0a:58:92:11:21:ef:56:8b:e9:e5:52: dd:94:6e:34:38:b2:1d:1f:48:ec:da:15:31:cd:6f:52:fd:47: 6e:c3:c8:16:d7:78:04:31:c3:d5:de:4f:e1:cb:c5:1a:7e:a2: e8:f2:88:c0:36:b0:d9:6b:c2:03:4c:84:4e:6a:65:d3:97:2f: fa:3a:1d:3b:61:50:f4:08:25:f9:89:c2:11:2e:e6:48:6b:9e: 93:d5:3b:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIN6IZzne2QKDqXsd9xC/wYfDRk0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yNTEyMDYxMDI2NDBaFw0yNTEyMDkxMjQ0NDBaMDMxMTAvBgNV BAMTKDY1Njc2NzNBNTc0N0RGNTBBMjg5NDE5RjkwNkMxN0RDRUQzN0RDQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrlDNz+yl6h/WJ6qk3E7xGwv6w grvPdKLlaGTxdsbXEbyTpGKZilWTfznBO8+K4zSZ5UxDjYqBrdgx3r6qC4NQUV/A zfX7jplTpKUQGucdoHInqBQ20xGH5a9pWF3ashQg8nY1GYcs+DXyvHZ3z7vIjsVi eXY+g2zWvr2HnG37W3UQ6W3W8ZCB4HiFqjTBvOrLHa4pPZrZcb1P4LnygsLRgVmL TQetAc297Rp19J9xYL0D7QM1CTKknR3JWI8IkwZzL2a+liBnzjdJqDtl91z0d15n MABRzMRjibBwZLd9lekTJD3C7zSeyU8jzfgi5bLLVlHZdHP68gm8XRz4iCVZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZWdnOldH31CiiUGfkGwX3O033MMwHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmQ3ZjllZjQtZjk5Zi00NGZmLWI5 NjgtNzBkNDUyNGQ3MjA3LzAvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJB QzMxRDMzN0FDMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFuPpV4nx1CeS/ReqpRh5g1VoZN2qam5DS5Y Xjhsoyoe6Jmcdgq6C3HJk3ege2h9MAzsn2kNVSdwrsigNPcPC/t06TQYnm4s6LC2 vHlI9XpT+DuMuq5KV1IJ3sPs9UPECA+sLsV1oPC+/uvRccEm20rSqEks21GxpAI+ +rAnPWq5EaD9Zx6rQzTmedURk3Lpz6kj+4b/0gTwc9GPwYBqCy9aLs7WY53jrZYK WJIRIe9Wi+nlUt2UbjQ4sh0fSOzaFTHNb1L9R27DyBbXeAQxw9XeT+HLxRp+oujy iMA2sNlrwgNMhE5qZdOXL/o6HTthUPQIJfmJwhEu5khrnpPVO0g= -----END CERTIFICATE-----Generated at Sun Dec 7 02:07:53 2025 by rpki-client