This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft File: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft (raw, json) Hash identifier: bDSZbwQXi0U6iH82JMNQHP/8kDrty19wL9lyW+V8Nfk= Subject key identifier: C5:69:DA:BC:51:0F:73:41:9A:14:32:14:19:1C:F2:B1:AF:61:CF:62 Authority key identifier: 86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E Certificate issuer: /CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Certificate serial: 4ED473F599D8052369F159C8421026C38797D27A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft Manifest number: 0257 Signing time: Sat 06 Dec 2025 18:51:57 +0000 Manifest this update: Sat 06 Dec 2025 18:46:57 +0000 Manifest next update: Wed 10 Dec 2025 00:27:57 +0000 Files and hashes: 1: 3130332e3138362e39332e302f32342d3234203d3e20313439363937.roa (hash: pI4Ee2HOCQgHXKn0phpNZPvS39KAXUpqkjdsByhi1e8=) 2: 3130332e3138362e39322e302f32332d3234203d3e20313439363937.roa (hash: yvcS+4k20Y8iRZaWxf96+9kxISErdYY6WtdAGoUwpMc=) 3: 86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl (hash: DnhCPj6v8VxmghVEt06ixOtGPnKBWKiHk2+pgze8cYM=) 4: 3130332e3138362e39322e302f32342d3234203d3e20313439363937.roa (hash: scqosPwH5BL2/2imBhyJZEPHHItlqeTByFILkve6Gxg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d4:73:f5:99:d8:05:23:69:f1:59:c8:42:10:26:c3:87:97:d2:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E Validity Not Before: Dec 6 18:46:57 2025 GMT Not After : Dec 10 00:27:57 2025 GMT Subject: CN=C569DABC510F73419A143214191CF2B1AF61CF62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e5:fe:ec:4e:87:83:0f:13:b0:57:13:9c:8b: 77:a5:8b:cd:3f:7c:03:de:ce:76:ee:5f:c3:94:c5: f0:41:5a:0e:a1:54:a0:02:ed:35:9a:98:56:02:23: 27:72:02:fa:64:91:9e:e4:cb:60:b2:63:d3:32:18: d8:72:53:36:5d:7a:5d:29:eb:88:33:e4:55:d5:6b: b6:a5:5f:6c:bb:1a:f0:27:52:d7:c7:79:52:ea:e0: 68:c8:6c:11:b4:8d:68:e8:fc:0b:55:f2:a8:f5:56: 6d:24:22:48:c5:4d:34:89:84:39:d9:a6:68:e4:0e: 84:15:2d:30:86:75:19:2a:f0:71:93:93:96:4d:1c: 97:50:36:b9:22:2d:98:c6:f2:81:64:da:f2:77:43: 6a:d4:09:f5:68:b7:75:96:03:f5:d5:c1:78:36:23: 5d:1c:84:93:75:b6:10:84:d3:6a:5f:05:35:55:08: 54:95:df:ac:d1:0f:a3:36:0d:cc:e2:f5:e9:67:e3: f5:8f:dd:ab:63:28:2e:c9:82:6b:f8:61:e9:e3:af: 11:52:b2:71:72:fe:91:e8:d2:2b:29:d7:25:be:0e: ff:cf:a5:77:66:ae:ba:4c:d1:b9:16:c3:a7:ee:18: 68:60:fb:76:7c:f2:a8:5d:7b:2e:53:0d:f7:ea:45: 34:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:69:DA:BC:51:0F:73:41:9A:14:32:14:19:1C:F2:B1:AF:61:CF:62 X509v3 Authority Key Identifier: keyid:86:E6:79:5A:CA:B9:9C:F2:9C:E7:C7:E1:0D:7F:CC:E7:E2:FF:26:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/94e1ac7c-904d-493f-ba5e-5e0837dcbd29/0/86E6795ACAB99CF29CE7C7E10D7FCCE7E2FF263E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:2e:f5:39:c9:9a:ff:f7:bf:83:0c:8e:84:34:bc:01:92:e9: 20:c7:f2:7c:ee:3c:23:72:05:7b:41:19:7e:bf:66:bf:15:06: 97:b4:ae:2a:2d:f2:d3:5e:b0:79:48:a6:de:70:42:aa:8f:05: 06:5a:3a:14:f8:13:5d:b6:22:bb:38:85:15:ed:d0:26:a0:d3: f6:9b:38:91:c4:03:32:7e:68:91:96:d8:ef:78:08:25:c7:56: 90:ec:98:9d:3a:10:39:6e:7d:97:bb:79:c6:65:28:b5:b2:e8: 90:e0:09:72:a5:da:92:eb:41:bb:6b:4e:43:dc:35:01:45:da: f9:b1:8e:d4:df:97:90:12:70:d1:85:d0:ff:97:a2:9d:f4:0b: d3:a8:85:b4:e6:17:15:b6:d8:9d:29:e1:5a:1e:37:b3:2d:28: 43:a1:db:91:e3:cc:7f:01:4e:a2:af:d2:46:9e:50:f5:b1:00: a5:7a:c1:a7:16:84:2a:20:e4:d6:d7:f7:9d:09:a5:e9:1d:96: 0b:cc:82:82:02:7e:6b:24:29:f0:d0:a7:51:3a:6f:ef:56:e2: 47:fc:0f:4c:d2:b6:66:fa:5c:f4:f1:a1:1d:61:36:0f:a4:2a: be:7a:e1:81:de:33:2f:1b:c5:8b:4b:70:8f:32:f2:14:b5:bc: 35:45:a1:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTtRz9ZnYBSNp8VnIQhAmw4eX0nowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdF MkZGMjYzRTAeFw0yNTEyMDYxODQ2NTdaFw0yNTEyMTAwMDI3NTdaMDMxMTAvBgNV BAMTKEM1NjlEQUJDNTEwRjczNDE5QTE0MzIxNDE5MUNGMkIxQUY2MUNGNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp5f7sToeDDxOwVxOci3eli80/ fAPeznbuX8OUxfBBWg6hVKAC7TWamFYCIydyAvpkkZ7ky2CyY9MyGNhyUzZdel0p 64gz5FXVa7alX2y7GvAnUtfHeVLq4GjIbBG0jWjo/AtV8qj1Vm0kIkjFTTSJhDnZ pmjkDoQVLTCGdRkq8HGTk5ZNHJdQNrkiLZjG8oFk2vJ3Q2rUCfVot3WWA/XVwXg2 I10chJN1thCE02pfBTVVCFSV36zRD6M2Dczi9eln4/WP3atjKC7Jgmv4YenjrxFS snFy/pHo0isp1yW+Dv/PpXdmrrpM0bkWw6fuGGhg+3Z88qhdey5TDffqRTS/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxWnavFEPc0GaFDIUGRzysa9hz2IwHwYDVR0j BBgwFoAUhuZ5Wsq5nPKc58fhDX/M5+L/Jj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NGUxYWM3Yy05MDRkLTQ5M2YtYmE1ZS01ZTA4MzdkY2JkMjkvMC84NkU2Nzk1QUNB Qjk5Q0YyOUNFN0M3RTEwRDdGQ0NFN0UyRkYyNjNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkNDRTdFMkZG MjYzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTRlMWFjN2MtOTA0ZC00OTNmLWJh NWUtNWUwODM3ZGNiZDI5LzAvODZFNjc5NUFDQUI5OUNGMjlDRTdDN0UxMEQ3RkND RTdFMkZGMjYzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADIu9TnJmv/3v4MMjoQ0vAGS6SDH8nzuPCNy BXtBGX6/Zr8VBpe0riot8tNesHlIpt5wQqqPBQZaOhT4E122Irs4hRXt0Cag0/ab OJHEAzJ+aJGW2O94CCXHVpDsmJ06EDlufZe7ecZlKLWy6JDgCXKl2pLrQbtrTkPc NQFF2vmxjtTfl5AScNGF0P+Xop30C9OohbTmFxW22J0p4VoeN7MtKEOh25HjzH8B TqKv0kaeUPWxAKV6wacWhCog5NbX950JpekdlgvMgoICfmskKfDQp1E6b+9W4kf8 D0zStmb6XPTxoR1hNg+kKr564YHeMy8bxYtLcI8y8hS1vDVFoac= -----END CERTIFICATE-----Generated at Sat Dec 6 23:59:00 2025 by rpki-client