This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft File: 861DE86D91E4C7508D388EDBC70834681B43B5CA.mft (raw, json) Hash identifier: bWM7c6xUzcqfK0dyjDe3vKp2ZhaFt6N+u7jKdkr7l0w= Subject key identifier: 49:AA:AC:8F:5E:70:0D:32:57:EE:38:5E:92:0E:8F:36:46:66:6E:A7 Authority key identifier: 86:1D:E8:6D:91:E4:C7:50:8D:38:8E:DB:C7:08:34:68:1B:43:B5:CA Certificate issuer: /CN=861DE86D91E4C7508D388EDBC70834681B43B5CA Certificate serial: 4E350762899CA2AF480404E78F7CF6568F8E6786 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft Manifest number: 04E4 Signing time: Fri 05 Dec 2025 17:51:44 +0000 Manifest this update: Fri 05 Dec 2025 17:46:44 +0000 Manifest next update: Mon 08 Dec 2025 23:14:44 +0000 Files and hashes: 1: 861DE86D91E4C7508D388EDBC70834681B43B5CA.crl (hash: ++3t+rwDqBlgDMWbO+/MrJjdSZHYbrHNbyucfBmdJ7A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.crl rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 23:14:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:35:07:62:89:9c:a2:af:48:04:04:e7:8f:7c:f6:56:8f:8e:67:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=861DE86D91E4C7508D388EDBC70834681B43B5CA Validity Not Before: Dec 5 17:46:44 2025 GMT Not After : Dec 8 23:14:44 2025 GMT Subject: CN=49AAAC8F5E700D3257EE385E920E8F3646666EA7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:09:33:cf:c4:5d:3e:03:c7:f5:a2:51:c8:82: 28:42:91:bc:6c:9e:b1:bc:b6:7b:59:6d:02:ac:db: 44:f7:a4:b2:22:45:39:3d:19:59:3e:33:a0:82:19: f5:91:51:18:4a:cd:af:76:46:b9:84:88:f6:f2:77: c0:97:7a:a2:fe:ff:af:4d:03:2a:19:91:47:91:04: ae:8b:62:36:79:0f:b4:c7:75:2d:3d:29:25:3d:9c: 97:4a:ef:0e:e1:e6:77:0b:3f:1e:55:5b:00:d8:35: ae:8f:de:12:22:4b:36:50:b8:51:1b:64:ee:5b:51: 54:0d:7f:0a:e0:96:7c:de:30:5c:99:32:d1:4a:de: 06:39:a8:bb:72:8b:83:4f:f5:9e:75:4e:b1:c4:8b: df:b6:48:c9:3b:9f:c2:67:45:82:e0:04:33:e8:e4: 07:e0:55:82:e0:15:da:ac:13:7c:1c:8d:8c:6f:2e: 97:47:d2:08:1c:a9:9b:71:3d:68:1a:ff:9f:08:38: 56:98:1e:95:30:a2:79:cd:7c:41:1e:e6:bf:bf:b1: f5:a6:21:ef:f2:a7:a4:56:fb:13:3f:e8:a3:73:03: 6b:13:af:6e:fb:b9:9a:70:2e:8f:2b:32:c0:c5:29: ec:a9:c3:e2:a8:dc:ac:d8:54:d8:2a:9b:5a:b4:6b: 90:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AA:AC:8F:5E:70:0D:32:57:EE:38:5E:92:0E:8F:36:46:66:6E:A7 X509v3 Authority Key Identifier: keyid:86:1D:E8:6D:91:E4:C7:50:8D:38:8E:DB:C7:08:34:68:1B:43:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/861DE86D91E4C7508D388EDBC70834681B43B5CA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/869f2988-cab3-45aa-97e5-6385f07ff1cd/0/861DE86D91E4C7508D388EDBC70834681B43B5CA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b6:21:98:bd:57:73:3e:5e:3d:f5:22:a1:96:79:da:03:b2:a6: 0f:78:c1:97:03:aa:c0:c8:7a:6a:95:13:4b:1a:7d:20:c2:a2: e4:ab:e2:16:b3:20:ae:c0:fa:69:a0:0e:bc:13:ae:f3:2e:e6: 36:65:cc:fa:03:cd:c4:23:0b:be:9e:41:6a:5e:f3:b7:ad:ac: 02:f2:6d:f1:79:5b:7d:a4:dc:89:c2:15:5f:eb:fa:eb:fc:53: 4c:7b:14:f3:2d:b4:88:20:ff:ed:44:b8:ef:53:3c:97:52:6c: 59:34:58:16:31:4e:b4:2e:81:42:09:d8:58:9c:a8:ca:61:3f: 06:94:12:b2:41:8e:b6:98:19:86:71:6a:84:ed:fa:e1:36:c1: 6d:10:d8:f6:06:3c:4d:a0:4d:ee:69:1f:d0:d8:0e:b1:4d:ac: 5d:43:93:17:e5:2b:f1:e0:91:15:80:fd:44:c2:88:94:29:2e: f8:ff:c2:18:dc:32:5b:b6:fe:56:60:18:cd:5b:e1:e2:22:81: 68:14:67:90:4d:b6:c4:82:fd:94:02:de:c6:f1:c2:38:b6:24: 3f:5b:8d:58:74:1c:33:bd:7e:3d:bc:b9:c2:f8:ac:dd:c4:55: 37:0c:e0:df:8b:02:d6:6f:cd:1e:a6:eb:1e:c0:44:29:3f:e3: a4:c7:27:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTjUHYomcoq9IBATnj3z2Vo+OZ4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0Njgx QjQzQjVDQTAeFw0yNTEyMDUxNzQ2NDRaFw0yNTEyMDgyMzE0NDRaMDMxMTAvBgNV BAMTKDQ5QUFBQzhGNUU3MDBEMzI1N0VFMzg1RTkyMEU4RjM2NDY2NjZFQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3CTPPxF0+A8f1olHIgihCkbxs nrG8tntZbQKs20T3pLIiRTk9GVk+M6CCGfWRURhKza92RrmEiPbyd8CXeqL+/69N AyoZkUeRBK6LYjZ5D7THdS09KSU9nJdK7w7h5ncLPx5VWwDYNa6P3hIiSzZQuFEb ZO5bUVQNfwrglnzeMFyZMtFK3gY5qLtyi4NP9Z51TrHEi9+2SMk7n8JnRYLgBDPo 5AfgVYLgFdqsE3wcjYxvLpdH0ggcqZtxPWga/58IOFaYHpUwonnNfEEe5r+/sfWm Ie/yp6RW+xM/6KNzA2sTr277uZpwLo8rMsDFKeypw+Ko3KzYVNgqm1q0a5AxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSaqsj15wDTJX7jhekg6PNkZmbqcwHwYDVR0j BBgwFoAUhh3obZHkx1CNOI7bxwg0aBtDtcowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NjlmMjk4OC1jYWIzLTQ1YWEtOTdlNS02Mzg1ZjA3ZmYxY2QvMC84NjFERTg2RDkx RTRDNzUwOEQzODhFREJDNzA4MzQ2ODFCNDNCNUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0NjgxQjQz QjVDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODY5ZjI5ODgtY2FiMy00NWFhLTk3 ZTUtNjM4NWYwN2ZmMWNkLzAvODYxREU4NkQ5MUU0Qzc1MDhEMzg4RURCQzcwODM0 NjgxQjQzQjVDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALYhmL1Xcz5ePfUioZZ52gOypg94wZcDqsDI emqVE0safSDCouSr4hazIK7A+mmgDrwTrvMu5jZlzPoDzcQjC76eQWpe87etrALy bfF5W32k3InCFV/r+uv8U0x7FPMttIgg/+1EuO9TPJdSbFk0WBYxTrQugUIJ2Fic qMphPwaUErJBjraYGYZxaoTt+uE2wW0Q2PYGPE2gTe5pH9DYDrFNrF1DkxflK/Hg kRWA/UTCiJQpLvj/whjcMlu2/lZgGM1b4eIigWgUZ5BNtsSC/ZQC3sbxwji2JD9b jVh0HDO9fj28ucL4rN3EVTcM4N+LAtZvzR6m6x7ARCk/46THJ5c= -----END CERTIFICATE-----Generated at Sun Dec 7 00:50:50 2025 by rpki-client