This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft File: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft (raw, json) Hash identifier: BGP6gSdr8ozjOsFsRPj88aDyuBuOkWaF4r/ztzqklRQ= Subject key identifier: 28:A3:6B:D0:EE:AB:43:3C:1F:80:56:81:3D:F0:9E:A6:DC:4C:AE:6C Authority key identifier: 85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 Certificate issuer: /CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Certificate serial: 306A6BB3541F7FEA742C6D040CF1421A536AC4FB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft Manifest number: 02DA Signing time: Sat 24 Jan 2026 19:11:39 +0000 Manifest this update: Sat 24 Jan 2026 19:06:39 +0000 Manifest next update: Wed 28 Jan 2026 07:00:39 +0000 Files and hashes: 1: 3130332e3137382e3137342e302f32332d3234203d3e20313337333331.roa (hash: gonve5wIJ3O85bDiwHHm2xjnNdsU9xH6JAbxD3Ax5a8=) 2: 85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl (hash: 4/XXh1n3FiKCMbDFGvmHdi3k7qlxdAAkT54/ELmoBUo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 07:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:6a:6b:b3:54:1f:7f:ea:74:2c:6d:04:0c:f1:42:1a:53:6a:c4:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3 Validity Not Before: Jan 24 19:06:39 2026 GMT Not After : Jan 28 07:00:39 2026 GMT Subject: CN=28A36BD0EEAB433C1F8056813DF09EA6DC4CAE6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:56:c3:ba:4e:ec:04:78:4b:51:c1:f2:fa:39: 11:34:83:7f:61:25:4d:4e:1d:28:a4:96:a5:c1:76: 2b:c5:0f:17:35:72:01:4c:5d:f4:78:ce:15:a2:5f: 13:98:21:3e:f5:17:c1:ca:bf:1b:ef:77:44:12:e7: 94:9f:fa:f0:de:f6:9a:a1:d6:96:c0:b4:c9:c5:46: c5:6d:59:18:82:73:e6:05:ef:54:67:13:a3:f7:ea: c5:2b:2d:4a:b0:27:cd:12:7c:ac:0c:13:1d:d9:fd: 81:cf:29:19:e5:2d:68:0a:49:11:70:a3:ba:44:06: 89:b8:6c:a7:da:fd:15:7c:5d:69:6c:49:4b:ce:52: da:be:18:3a:2e:be:4d:fd:3f:21:dc:37:76:37:70: 60:4d:ae:0c:d6:9e:31:d7:cb:e0:e3:05:d5:97:7d: 76:97:de:33:57:05:8a:7d:1d:bd:9d:fd:47:8c:4d: 0b:19:3e:18:b9:1c:fb:27:02:34:48:52:89:6a:fe: 72:fc:75:eb:5e:9a:f3:a8:68:de:58:a5:d1:d7:08: 9d:b2:bc:a0:22:b5:f8:32:fd:2d:88:ae:5a:1b:ba: 05:30:37:6d:a3:92:66:66:56:4b:66:18:8c:0c:19: 23:1d:f8:a2:c3:b6:10:af:85:eb:17:41:68:8a:2e: 5b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A3:6B:D0:EE:AB:43:3C:1F:80:56:81:3D:F0:9E:A6:DC:4C:AE:6C X509v3 Authority Key Identifier: keyid:85:E8:DE:B3:87:42:E3:90:C7:BF:B3:4B:1E:4A:BA:C3:1D:33:7A:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6d7f9ef4-f99f-44ff-b968-70d4524d7207/0/85E8DEB38742E390C7BFB34B1E4ABAC31D337AC3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e1:37:90:76:5f:dd:59:00:ff:5e:a6:ae:9e:d5:0d:de:b5:60: 47:12:05:8b:ec:e6:39:25:cb:36:8b:92:37:ed:2a:05:18:7d: b5:3b:dc:73:f0:99:c4:40:70:d5:39:9e:fd:8f:44:e9:65:07: e6:16:ec:25:01:6d:3d:28:47:6a:b5:04:04:e9:a1:68:2d:fa: de:d3:e9:ae:24:f8:40:9f:52:62:64:80:86:e4:1c:54:d4:61: 12:58:1c:36:14:0f:15:d2:1c:36:ad:bb:56:9f:0b:f4:45:18: 8a:9e:d0:e0:fe:46:f3:f3:6c:1c:81:3b:51:05:13:09:37:b6: 53:0c:f6:26:85:27:f4:98:04:32:bd:9e:fa:2f:00:d4:35:38: 6d:23:8f:02:9e:dc:7a:d7:f5:f7:45:7b:4f:fa:13:f5:ce:bc: 63:8f:ca:fc:fa:22:81:00:ec:13:b8:ab:4e:8e:af:80:ef:51: f6:1a:f5:e0:d5:75:20:15:8b:ea:03:2f:49:34:21:70:ea:77: ea:d6:81:6d:91:dd:21:a7:54:d2:ed:46:8d:5d:af:96:b8:17: ca:b8:cb:06:6c:dc:61:f0:6c:2d:66:b5:b9:01:01:36:9d:e8: bd:30:c2:75:99:67:60:1d:b0:b1:eb:30:1e:c0:f8:dd:91:8b: b5:5e:ea:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMGprs1Qff+p0LG0EDPFCGlNqxPswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMx RDMzN0FDMzAeFw0yNjAxMjQxOTA2MzlaFw0yNjAxMjgwNzAwMzlaMDMxMTAvBgNV BAMTKDI4QTM2QkQwRUVBQjQzM0MxRjgwNTY4MTNERjA5RUE2REM0Q0FFNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDVsO6TuwEeEtRwfL6ORE0g39h JU1OHSiklqXBdivFDxc1cgFMXfR4zhWiXxOYIT71F8HKvxvvd0QS55Sf+vDe9pqh 1pbAtMnFRsVtWRiCc+YF71RnE6P36sUrLUqwJ80SfKwMEx3Z/YHPKRnlLWgKSRFw o7pEBom4bKfa/RV8XWlsSUvOUtq+GDouvk39PyHcN3Y3cGBNrgzWnjHXy+DjBdWX fXaX3jNXBYp9Hb2d/UeMTQsZPhi5HPsnAjRIUolq/nL8detemvOoaN5YpdHXCJ2y vKAitfgy/S2IrlobugUwN22jkmZmVktmGIwMGSMd+KLDthCvhesXQWiKLlt5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKKNr0O6rQzwfgFaBPfCeptxMrmwwHwYDVR0j BBgwFoAUhejes4dC45DHv7NLHkq6wx0zesMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 ZDdmOWVmNC1mOTlmLTQ0ZmYtYjk2OC03MGQ0NTI0ZDcyMDcvMC84NUU4REVCMzg3 NDJFMzkwQzdCRkIzNEIxRTRBQkFDMzFEMzM3QUMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJBQzMxRDMz N0FDMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmQ3ZjllZjQtZjk5Zi00NGZmLWI5 NjgtNzBkNDUyNGQ3MjA3LzAvODVFOERFQjM4NzQyRTM5MEM3QkZCMzRCMUU0QUJB QzMxRDMzN0FDMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOE3kHZf3VkA/16mrp7VDd61YEcSBYvs5jkl yzaLkjftKgUYfbU73HPwmcRAcNU5nv2PROllB+YW7CUBbT0oR2q1BATpoWgt+t7T 6a4k+ECfUmJkgIbkHFTUYRJYHDYUDxXSHDatu1afC/RFGIqe0OD+RvPzbByBO1EF Ewk3tlMM9iaFJ/SYBDK9nvovANQ1OG0jjwKe3HrX9fdFe0/6E/XOvGOPyvz6IoEA 7BO4q06Or4DvUfYa9eDVdSAVi+oDL0k0IXDqd+rWgW2R3SGnVNLtRo1dr5a4F8q4 ywZs3GHwbC1mtbkBATad6L0wwnWZZ2AdsLHrMB7A+N2Ri7Ve6hE= -----END CERTIFICATE-----Generated at Sun Jan 25 19:00:26 2026 by rpki-client