This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft File: 861DE86D91E4C7508D388EDBC70834681B43B5CA.mft (raw, json) Hash identifier: Qzu1/YgE5udwpWggSvnV3XxLzf8GFTs2nWtLRfAyY+s= Subject key identifier: 31:B7:39:86:55:36:55:0C:F1:93:5E:B3:A2:0C:D5:27:27:6A:CF:97 Authority key identifier: 86:1D:E8:6D:91:E4:C7:50:8D:38:8E:DB:C7:08:34:68:1B:43:B5:CA Certificate issuer: /CN=861DE86D91E4C7508D388EDBC70834681B43B5CA Certificate serial: 1523EBE3607EBEB0E3EFDFBFF9FE04FC7CD5EC4C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft Manifest number: 04FA Signing time: Sat 24 Jan 2026 11:41:41 +0000 Manifest this update: Sat 24 Jan 2026 11:36:41 +0000 Manifest next update: Tue 27 Jan 2026 18:50:41 +0000 Files and hashes: 1: 861DE86D91E4C7508D388EDBC70834681B43B5CA.crl (hash: 285QZjp/uWzU7ZJ5fMyRqpZB2jp2vt75Lydms4kno4I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.crl rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 18:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:23:eb:e3:60:7e:be:b0:e3:ef:df:bf:f9:fe:04:fc:7c:d5:ec:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=861DE86D91E4C7508D388EDBC70834681B43B5CA Validity Not Before: Jan 24 11:36:41 2026 GMT Not After : Jan 27 18:50:41 2026 GMT Subject: CN=31B739865536550CF1935EB3A20CD527276ACF97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:4e:05:5f:cb:ee:54:7a:fc:9b:31:bd:73:73: 6a:98:d0:a2:36:b1:61:54:c9:3d:9c:d9:48:a6:0e: 7f:61:38:08:35:e8:b8:4a:23:de:fc:b4:22:06:2b: 57:c5:2c:2b:73:88:fe:c3:42:db:c8:81:53:04:a7: 68:65:49:ee:9e:d4:2b:ee:05:ed:2f:eb:e8:bc:53: c4:31:46:16:24:fa:7c:57:f6:eb:5a:d0:31:e5:3c: 25:a5:f9:86:0d:ee:58:b5:c1:4f:10:67:a1:a2:a0: 98:28:81:67:b0:c6:aa:45:bb:66:8c:7c:f0:5e:c5: a7:de:46:43:5b:d0:e7:f1:70:1c:af:48:3c:10:d0: 1b:d0:9e:1b:cb:ba:5a:9b:17:0e:17:f6:4a:5e:9c: 5b:b0:ea:ac:e7:d5:fa:b6:67:bb:03:6d:40:20:bf: ca:2d:b3:2e:78:35:31:1b:2d:63:c2:e1:32:4b:e2: 61:8c:36:bb:1d:e0:c6:cf:a5:ab:1b:7b:d8:1e:a6: de:09:11:32:83:f6:13:6a:56:1e:3f:08:b0:98:96: 93:4c:64:5f:a3:88:6b:ec:b9:ed:e4:98:23:ee:44: 16:ce:13:1c:64:de:8d:75:58:fd:0e:24:36:48:90: bb:e6:ba:cd:d0:da:cb:7d:46:34:f7:e5:e1:99:96: e8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B7:39:86:55:36:55:0C:F1:93:5E:B3:A2:0C:D5:27:27:6A:CF:97 X509v3 Authority Key Identifier: keyid:86:1D:E8:6D:91:E4:C7:50:8D:38:8E:DB:C7:08:34:68:1B:43:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d0:01:c9:da:22:dd:1d:0d:f9:76:15:50:0d:76:20:7d:07:f3: 44:11:bf:09:dc:38:d0:38:9c:1e:39:eb:33:42:93:2d:4c:d4: f1:3f:53:15:c4:ac:50:a1:d9:2d:98:dd:81:c2:03:c6:ff:00: 6e:c0:f8:51:27:03:35:10:ef:44:06:18:5f:dd:ba:3c:aa:fb: 50:66:91:bc:c9:db:49:5c:70:10:08:db:7e:fa:a2:14:a5:c7: 61:e1:26:59:93:96:24:70:0a:0c:fc:30:72:ac:eb:7f:20:ee: 96:1a:3e:28:95:c9:11:35:ff:e1:37:2d:49:15:c5:33:54:80: 0f:d9:40:7e:75:dd:02:b6:4e:58:21:ff:0c:ef:ae:8c:32:5c: 66:9c:6c:00:54:9d:e7:a8:1d:7b:1d:d0:e0:92:02:c8:69:e6: 8f:d4:b6:9b:1e:63:47:81:11:e6:a3:f5:59:24:a0:bf:77:75: 7c:69:b9:e0:c3:81:b8:02:1b:15:f4:76:ca:83:07:b8:51:e2: 29:e8:ba:cc:10:f2:b4:6f:64:6c:c6:96:bb:61:cf:ce:20:a1: 36:4e:28:d8:9a:9a:1d:9b:58:92:5b:0b:10:28:7b:d3:29:79: f6:f5:89:6f:d7:bc:90:6e:94:67:c3:9f:00:1b:f5:eb:60:80: 9a:30:3e:2b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFSPr42B+vrDj79+/+f4E/HzV7EwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0Njgx QjQzQjVDQTAeFw0yNjAxMjQxMTM2NDFaFw0yNjAxMjcxODUwNDFaMDMxMTAvBgNV BAMTKDMxQjczOTg2NTUzNjU1MENGMTkzNUVCM0EyMENENTI3Mjc2QUNGOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcTgVfy+5UevybMb1zc2qY0KI2 sWFUyT2c2UimDn9hOAg16LhKI978tCIGK1fFLCtziP7DQtvIgVMEp2hlSe6e1Cvu Be0v6+i8U8QxRhYk+nxX9uta0DHlPCWl+YYN7li1wU8QZ6GioJgogWewxqpFu2aM fPBexafeRkNb0OfxcByvSDwQ0BvQnhvLulqbFw4X9kpenFuw6qzn1fq2Z7sDbUAg v8otsy54NTEbLWPC4TJL4mGMNrsd4MbPpasbe9gept4JETKD9hNqVh4/CLCYlpNM ZF+jiGvsue3kmCPuRBbOExxk3o11WP0OJDZIkLvmus3Q2st9RjT35eGZluhfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMbc5hlU2VQzxk16zogzVJydqz5cwHwYDVR0j BBgwFoAUhh3obZHkx1CNOI7bxwg0aBtDtcowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjlmMjk4OC1jYWIzLTQ1YWEtOTdlNS02Mzg1ZjA3ZmYxY2QvMC84NjFERTg2RDkx RTRDNzUwOEQzODhFREJDNzA4MzQ2ODFCNDNCNUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0NjgxQjQz QjVDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODY5ZjI5ODgtY2FiMy00NWFhLTk3 ZTUtNjM4NWYwN2ZmMWNkLzAvODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0 NjgxQjQzQjVDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANABydoi3R0N+XYVUA12IH0H80QRvwncONA4 nB456zNCky1M1PE/UxXErFCh2S2Y3YHCA8b/AG7A+FEnAzUQ70QGGF/dujyq+1Bm kbzJ20lccBAI2376ohSlx2HhJlmTliRwCgz8MHKs638g7pYaPiiVyRE1/+E3LUkV xTNUgA/ZQH513QK2Tlgh/wzvrowyXGacbABUneeoHXsd0OCSAshp5o/UtpseY0eB Eeaj9VkkoL93dXxpueDDgbgCGxX0dsqDB7hR4inouswQ8rRvZGzGlrthz84goTZO KNiamh2bWJJbCxAoe9Mpefb1iW/XvJBulGfDnwAb9etggJowPis= -----END CERTIFICATE-----Generated at Sun Jan 25 22:11:11 2026 by rpki-client