This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft File: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft (raw, json) Hash identifier: GH+avURHndUSkpVDrnQP7p1ehAIoTinW0+Q4juxsivA= Subject key identifier: AB:0B:C0:76:E8:CA:C4:51:4E:49:8D:E1:6A:10:A0:04:A3:4A:6B:73 Authority key identifier: 86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E Certificate issuer: /CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Certificate serial: 6F07CEA00B881B7F42E82BC8CAD7CF5B62A0DE52 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft Manifest number: 025A Signing time: Sat 13 Dec 2025 17:01:56 +0000 Manifest this update: Sat 13 Dec 2025 16:56:56 +0000 Manifest next update: Tue 16 Dec 2025 19:21:56 +0000 Files and hashes: 1: 3130332e3138362e39322e302f32342d3234203d3e20313439363937.roa (hash: scqosPwH5BL2/2imBhyJZEPHHItlqeTByFILkve6Gxg=) 2: 3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa (hash: pI4Ee2HOCQgHXKn0phpNZPvS39KAXUpqkjdsByhi1e8=) 3: 3130332e3138362e39322e302f32332d3234203d3e20313439363937.roa (hash: yvcS+4k20Y8iRZaWxf96+9kxISErdYY6WtdAGoUwpMc=) 4: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl (hash: hGZq9ZBbu4QKoi+rP9w4sa2tpM68AF2DNsPqg4p0Q+w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 19:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:07:ce:a0:0b:88:1b:7f:42:e8:2b:c8:ca:d7:cf:5b:62:a0:de:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Validity Not Before: Dec 13 16:56:56 2025 GMT Not After : Dec 16 19:21:56 2025 GMT Subject: CN=AB0BC076E8CAC4514E498DE16A10A004A34A6B73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:be:51:fb:3f:d8:fa:44:48:fe:b3:b2:cb:60: 35:95:bb:38:b8:fc:93:40:a7:fd:7e:4c:3d:41:33: 7d:81:8c:1d:d2:f8:5f:b1:61:0c:e7:52:aa:c9:f2: ea:fa:fa:e4:62:53:90:6e:d9:cb:1e:ee:6c:27:37: 63:d7:8e:24:45:ba:a7:62:8b:a7:a0:e6:ad:71:51: 79:fa:68:fe:c2:35:21:a3:58:34:cf:01:c1:42:20: 44:ad:6a:34:a4:03:70:c8:de:f7:96:a5:51:22:2d: a4:55:32:7d:c0:3d:4a:3b:78:cf:56:7e:45:66:54: af:e4:f5:c7:ab:83:be:5a:71:04:e7:2b:41:c0:fd: 7e:68:f4:b0:53:20:39:b2:fc:fc:0b:77:4d:36:79: 1a:82:4c:ec:d9:c4:c9:ba:11:5c:ff:a0:d5:ce:96: b8:da:44:fb:ae:c4:77:ef:6c:08:2d:d5:eb:21:37: 27:f8:ad:21:50:0e:3b:13:a8:20:62:0f:27:e8:8b: 85:ff:51:b6:4b:b0:fd:b0:bf:fd:1d:9d:b1:e1:ed: ac:4f:ff:0e:2f:2d:ae:3a:75:43:03:33:60:17:ac: 09:d0:39:ab:a1:79:35:d2:0f:25:34:d1:ae:84:2a: b5:18:02:d3:03:3b:5a:f7:d7:6c:a4:6b:e5:ae:7a: 4e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:0B:C0:76:E8:CA:C4:51:4E:49:8D:E1:6A:10:A0:04:A3:4A:6B:73 X509v3 Authority Key Identifier: keyid:86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:c8:7b:2c:4e:0c:dd:ce:ca:0b:5d:e1:82:04:e4:08:d6:5b: dd:0f:e7:9a:d2:66:2f:fa:ae:f6:5b:7d:da:dd:6b:6e:65:f5: 63:06:23:0a:da:c4:a0:6f:3d:51:2f:10:5a:e0:05:64:93:3d: 13:c6:7f:78:d7:fd:d7:1b:2c:a8:00:f5:84:77:8c:ae:8b:19: c8:b4:1e:2d:aa:04:8e:14:6f:65:e8:6c:62:e3:96:13:ed:ed: 81:6a:17:16:34:c7:a1:53:89:6c:a0:e3:b8:a2:db:b4:68:2b: 0d:2f:40:6a:be:1e:7c:ea:33:d2:f0:b3:51:56:12:b3:37:fe: 49:a0:fe:6d:41:b0:f8:0f:c8:48:f3:4b:52:45:14:27:4b:0e: 37:0a:ba:23:90:1e:91:3d:d7:d0:83:68:9b:0a:47:0a:23:00: fb:61:c2:04:1d:32:a0:0c:3c:e1:a6:ef:64:4b:ef:f9:79:a9: 30:c0:f2:45:92:03:ad:1d:f2:93:52:8c:ed:28:b1:23:9f:95: e6:86:85:8b:14:8b:e6:2b:6c:90:b4:92:43:db:1c:7c:56:69: ef:2d:5b:8e:4f:ab:d9:c3:fb:4d:97:6c:78:e6:5c:c6:ad:e5: 7e:48:f8:a1:74:7a:a4:5e:43:d0:99:9a:f7:eb:39:3c:5f:c8: 73:17:89:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbwfOoAuIG39C6CvIytfPW2Kg3lIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdF MkZGMjYzRTAeFw0yNTEyMTMxNjU2NTZaFw0yNTEyMTYxOTIxNTZaMDMxMTAvBgNV BAMTKEFCMEJDMDc2RThDQUM0NTE0RTQ5OERFMTZBMTBBMDA0QTM0QTZCNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0vlH7P9j6REj+s7LLYDWVuzi4 /JNAp/1+TD1BM32BjB3S+F+xYQznUqrJ8ur6+uRiU5Bu2cse7mwnN2PXjiRFuqdi i6eg5q1xUXn6aP7CNSGjWDTPAcFCIEStajSkA3DI3veWpVEiLaRVMn3APUo7eM9W fkVmVK/k9cerg75acQTnK0HA/X5o9LBTIDmy/PwLd002eRqCTOzZxMm6EVz/oNXO lrjaRPuuxHfvbAgt1eshNyf4rSFQDjsTqCBiDyfoi4X/UbZLsP2wv/0dnbHh7axP /w4vLa46dUMDM2AXrAnQOauheTXSDyU00a6EKrUYAtMDO1r312yka+Wuek4xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqwvAdujKxFFOSY3hahCgBKNKa3MwHwYDVR0j BBgwFoAUhuZ5Wsq5nPKc58fhDX/M5+L/Jj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGUxYWM3Yy05MDRkLTQ5M2YtYmE1ZS01ZTA4MzdkY2JkMjkvMC84NkU2Nzk1QUNB Qjk5Q0YyOUNFN0M3RTEwRDdGQ0NFN0UyRkYyNjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdFMkZG MjYzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTRlMWFjN2MtOTA0ZC00OTNmLWJh NWUtNWUwODM3ZGNiZDI5LzAvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkND RTdFMkZGMjYzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACXIeyxODN3Oygtd4YIE5AjWW90P55rSZi/6 rvZbfdrda25l9WMGIwraxKBvPVEvEFrgBWSTPRPGf3jX/dcbLKgA9YR3jK6LGci0 Hi2qBI4Ub2XobGLjlhPt7YFqFxY0x6FTiWyg47ii27RoKw0vQGq+HnzqM9Lws1FW ErM3/kmg/m1BsPgPyEjzS1JFFCdLDjcKuiOQHpE919CDaJsKRwojAPthwgQdMqAM POGm72RL7/l5qTDA8kWSA60d8pNSjO0osSOfleaGhYsUi+YrbJC0kkPbHHxWae8t W45Pq9nD+02XbHjmXMat5X5I+KF0eqReQ9CZmvfrOTxfyHMXiRs= -----END CERTIFICATE-----Generated at Mon Dec 15 17:03:35 2025 by rpki-client