This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft File: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft (raw, json) Hash identifier: 9ttu9bMeOzfjG+2lf2XRx4mdFXfSA4pVQJ28XA05XLE= Subject key identifier: B5:A1:59:FA:8C:58:49:BD:E2:D5:E6:E8:5D:DC:62:3F:A6:3C:5F:C0 Authority key identifier: 85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 Certificate issuer: /CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Certificate serial: 101FEF2ADD2DD83B1035D047301FC055C6038DAD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft Manifest number: 022C Signing time: Fri 05 Dec 2025 20:30:03 +0000 Manifest this update: Fri 05 Dec 2025 20:25:03 +0000 Manifest next update: Tue 09 Dec 2025 01:12:03 +0000 Files and hashes: 1: 3130332e3137342e37382e302f32342d3234203d3e20313331363939.roa (hash: lKFSHdHF3wWJIcTGvyjieSUWfDWF+TAqKVs638owOUk=) 2: 3130332e3137342e37392e302f32342d3234203d3e20313331363939.roa (hash: gMUmsfmmNczaAd+9ZeeQYOcgGDct+Ydmufmg2U5oVEk=) 3: 85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl (hash: zaWDEc60RkokTcSF9Phl8Mw1lLDhMj7ijlfDPFbWjp4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 01:12:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:1f:ef:2a:dd:2d:d8:3b:10:35:d0:47:30:1f:c0:55:c6:03:8d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85EA86756371BA89BB1AE846B5C30DDB816ACDB9 Validity Not Before: Dec 5 20:25:03 2025 GMT Not After : Dec 9 01:12:03 2025 GMT Subject: CN=B5A159FA8C5849BDE2D5E6E85DDC623FA63C5FC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d9:ed:4f:2a:77:bc:78:b0:c1:37:72:5a:51: 5b:31:b4:89:11:59:41:2b:e5:81:c4:b3:5a:9c:cb: 95:20:99:37:bb:1e:af:77:9f:6c:62:a3:8f:08:9f: 16:f9:a6:8f:89:e8:5a:f1:03:b1:18:bb:cf:54:7c: d7:1a:dc:be:dd:08:cc:65:e4:e2:a1:ba:ac:b1:49: 94:68:97:42:14:8f:80:f4:63:e7:aa:a2:38:7b:b7: 7d:6b:d7:f6:52:08:59:db:c2:ef:ee:b1:d8:5b:7a: 93:9f:cc:7d:61:7c:de:3f:7e:b2:77:7a:9f:82:9b: 67:2b:3e:a7:32:e9:06:ea:6d:35:17:39:bb:dc:2a: d3:cb:f0:b6:b7:7e:aa:30:63:ee:94:5a:3c:35:ad: ec:8c:03:3a:97:c6:0f:eb:2c:0c:64:2d:3f:62:fc: 79:70:b5:6a:d7:37:17:77:8e:eb:a6:d8:05:93:77: 23:61:47:2f:4e:52:6b:bb:ab:55:06:a7:a2:1a:d6: 3f:f4:c8:90:b3:ef:5a:6b:2e:a0:f2:00:2f:32:f9: 08:6d:9f:89:23:3c:68:55:45:09:d2:1a:cc:c6:e5: 81:b3:4b:d5:de:6e:98:f3:4a:3a:e2:d7:dc:d2:92: af:f6:f1:06:cb:0c:ce:f9:2c:4d:78:5e:46:e1:f6: 24:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:A1:59:FA:8C:58:49:BD:E2:D5:E6:E8:5D:DC:62:3F:A6:3C:5F:C0 X509v3 Authority Key Identifier: keyid:85:EA:86:75:63:71:BA:89:BB:1A:E8:46:B5:C3:0D:DB:81:6A:CD:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dbc6da19-84be-4a50-b466-1e86ddbcc35f/0/85EA86756371BA89BB1AE846B5C30DDB816ACDB9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:72:83:7f:46:bb:dd:13:78:69:98:e8:0c:54:49:ad:56:2a: 20:34:70:a3:85:d4:38:c3:f7:62:d6:1a:c5:3d:49:f3:98:e9: 86:09:d0:ca:25:3b:e8:fa:26:2f:3c:09:f3:6e:bd:cd:ef:d9: 0d:8a:3c:0d:e5:d2:63:ba:fb:47:36:83:8c:c3:fd:e1:c2:ec: 1d:8e:50:02:51:89:c8:95:f3:86:e3:2c:bb:88:10:f3:07:19: 78:b5:f0:e5:cc:df:cc:28:84:d7:20:a1:a2:58:d7:37:a7:32: fa:52:57:13:de:ed:65:e9:13:94:48:de:03:4e:78:0a:21:3d: bf:d6:ea:0c:6e:ba:79:c9:81:ef:41:dd:c3:be:de:e3:c6:12: be:72:a9:97:62:8f:2d:24:41:84:54:55:7a:bb:27:75:3a:65: 05:17:b1:fd:30:67:0c:57:46:c1:a9:4f:41:9c:ac:7b:d6:f4: ce:27:89:2d:60:ea:ad:ee:55:28:dd:08:0d:af:26:fb:fd:59: 07:9d:c4:61:02:ef:bf:4e:12:e3:ae:79:1e:b5:1b:b6:b2:9b: 50:f6:28:cf:3f:ae:8d:66:f3:cf:b9:62:16:3e:ce:5e:02:14: 9e:b7:14:e0:51:2d:5d:ff:f2:85:c1:6b:44:7b:3e:de:99:39: e1:6d:78:af -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEB/vKt0t2DsQNdBHMB/AVcYDja0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4 MTZBQ0RCOTAeFw0yNTEyMDUyMDI1MDNaFw0yNTEyMDkwMTEyMDNaMDMxMTAvBgNV BAMTKEI1QTE1OUZBOEM1ODQ5QkRFMkQ1RTZFODVEREM2MjNGQTYzQzVGQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc2e1PKne8eLDBN3JaUVsxtIkR WUEr5YHEs1qcy5UgmTe7Hq93n2xio48Inxb5po+J6FrxA7EYu89UfNca3L7dCMxl 5OKhuqyxSZRol0IUj4D0Y+eqojh7t31r1/ZSCFnbwu/usdhbepOfzH1hfN4/frJ3 ep+Cm2crPqcy6QbqbTUXObvcKtPL8La3fqowY+6UWjw1reyMAzqXxg/rLAxkLT9i /HlwtWrXNxd3juum2AWTdyNhRy9OUmu7q1UGp6Ia1j/0yJCz71prLqDyAC8y+Qht n4kjPGhVRQnSGszG5YGzS9XebpjzSjri19zSkq/28QbLDM75LE14Xkbh9iTLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtaFZ+oxYSb3i1eboXdxiP6Y8X8AwHwYDVR0j BBgwFoAUheqGdWNxuom7GuhGtcMN24FqzbkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YmM2ZGExOS04NGJlLTRhNTAtYjQ2Ni0xZTg2ZGRiY2MzNWYvMC84NUVBODY3NTYz NzFCQTg5QkIxQUU4NDZCNUMzMEREQjgxNkFDREI5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBEREI4MTZB Q0RCOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGJjNmRhMTktODRiZS00YTUwLWI0 NjYtMWU4NmRkYmNjMzVmLzAvODVFQTg2NzU2MzcxQkE4OUJCMUFFODQ2QjVDMzBE REI4MTZBQ0RCOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACZyg39Gu90TeGmY6AxUSa1WKiA0cKOF1DjD 92LWGsU9SfOY6YYJ0MolO+j6Ji88CfNuvc3v2Q2KPA3l0mO6+0c2g4zD/eHC7B2O UAJRiciV84bjLLuIEPMHGXi18OXM38wohNcgoaJY1zenMvpSVxPe7WXpE5RI3gNO eAohPb/W6gxuunnJge9B3cO+3uPGEr5yqZdijy0kQYRUVXq7J3U6ZQUXsf0wZwxX RsGpT0GcrHvW9M4niS1g6q3uVSjdCA2vJvv9WQedxGEC779OEuOueR61G7aym1D2 KM8/ro1m88+5YhY+zl4CFJ63FOBRLV3/8oXBa0R7Pt6ZOeFteK8= -----END CERTIFICATE-----Generated at Sun Dec 7 00:48:24 2025 by rpki-client