This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: tToSqe+kOaaMI04wYEW5ZcHtO01Gl8L6/r86oKdyEuo= Subject key identifier: 84:37:26:F4:77:BC:9E:F3:2B:32:9A:B1:61:87:F8:5B:9C:43:16:3B Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 64BE1087B471BEEBEA821C43C04568142FB77E7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 0105 Signing time: Mon 01 Dec 2025 12:22:30 +0000 Manifest this update: Mon 01 Dec 2025 12:17:30 +0000 Manifest next update: Thu 04 Dec 2025 16:05:30 +0000 Files and hashes: 1: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) 2: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: P/O8E1RgkU4o/B6ZoTt5iRz2kOsDID1KUe6TMBggOkk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 16:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:be:10:87:b4:71:be:eb:ea:82:1c:43:c0:45:68:14:2f:b7:7e:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Dec 1 12:17:30 2025 GMT Not After : Dec 4 16:05:30 2025 GMT Subject: CN=843726F477BC9EF32B329AB16187F85B9C43163B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:c3:11:a2:98:7d:c5:c9:2d:42:17:fd:6f:d1: ec:42:a1:3e:6c:68:e5:22:32:08:fc:c5:e0:40:e4: 32:31:52:7b:09:52:a0:36:44:45:7d:82:82:b6:f0: 38:6f:9a:a1:ec:3d:2d:7f:06:bc:38:f7:d1:84:f9: 7a:f4:b5:4f:fc:33:58:2b:2a:92:37:82:9c:30:02: 5c:ac:a6:c4:e6:30:75:5d:25:88:c8:a0:21:07:53: a3:44:fc:a6:88:18:ef:5f:d7:2e:bb:f2:99:ee:f0: 5c:23:4e:a4:d8:7b:2e:a0:d0:85:d7:47:8d:c3:1f: 84:fe:85:ac:43:f6:bf:03:8b:c0:20:b9:9c:49:79: ea:ae:c8:b3:fa:8a:84:b0:4c:c6:ba:e7:e7:17:f1: be:24:08:ea:ee:e2:86:c4:e0:e7:b6:a0:26:7a:42: e2:f0:b6:4a:a0:f8:ac:30:bc:ac:48:5a:f6:e8:1e: 00:26:bb:11:9d:42:8b:1a:f3:56:34:52:c4:77:20: 67:13:f0:75:8a:4f:2a:be:9f:a7:3d:a8:be:55:77: 3c:0a:5d:14:d4:3d:d8:49:b5:0e:dd:8f:10:9e:46: 62:0e:74:13:d1:5c:55:d3:68:68:97:42:a0:fe:e2: c7:fd:1b:97:6b:38:1b:63:7b:30:16:fa:ae:49:f2: 07:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:37:26:F4:77:BC:9E:F3:2B:32:9A:B1:61:87:F8:5B:9C:43:16:3B X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:c6:83:49:7a:69:42:15:45:5b:13:3d:55:f9:40:2d:3b:b2: 2a:f7:35:6c:ac:c3:78:18:75:6c:f1:8e:d0:d8:72:30:76:98: 31:e1:56:65:b0:65:05:13:8d:00:79:88:dd:b1:ef:4d:e0:ce: b6:b1:55:5d:96:0c:4e:ae:71:70:b0:49:2f:27:21:be:d2:c3: d7:88:f0:49:25:0a:97:9e:5c:14:e2:b0:c0:80:66:0f:c0:a9: d1:55:c0:ba:c5:07:3c:ca:93:05:26:12:07:4a:81:53:ca:8c: 71:98:ea:84:36:71:99:d7:43:2d:28:ea:85:59:eb:58:73:71: df:67:57:b1:7b:c3:13:7e:d5:84:88:a2:98:25:de:61:9e:50: 31:ca:c1:31:73:be:b4:b6:6e:6f:bd:95:a1:18:85:51:14:94: 7b:48:ee:d1:e2:cc:69:bd:b3:75:7e:1e:8b:1e:74:e2:d1:db: 88:50:31:0d:dd:e6:6c:45:7a:22:c8:d6:86:52:93:3e:45:63: e0:89:a4:ef:68:4d:a7:b6:b6:e0:9a:cd:cf:eb:b1:69:45:f3: 4f:2a:96:9e:f4:68:58:5e:89:97:9e:98:5c:02:21:0f:98:0a: cb:83:ce:36:eb:10:3e:14:63:5a:fa:bb:6f:b9:70:41:fd:c1: 99:0b:b9:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZL4Qh7RxvuvqghxDwEVoFC+3fnswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNTEyMDExMjE3MzBaFw0yNTEyMDQxNjA1MzBaMDMxMTAvBgNV BAMTKDg0MzcyNkY0NzdCQzlFRjMyQjMyOUFCMTYxODdGODVCOUM0MzE2M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuwxGimH3FyS1CF/1v0exCoT5s aOUiMgj8xeBA5DIxUnsJUqA2REV9goK28DhvmqHsPS1/Brw499GE+Xr0tU/8M1gr KpI3gpwwAlyspsTmMHVdJYjIoCEHU6NE/KaIGO9f1y678pnu8FwjTqTYey6g0IXX R43DH4T+haxD9r8Di8AguZxJeequyLP6ioSwTMa65+cX8b4kCOru4obE4Oe2oCZ6 QuLwtkqg+KwwvKxIWvboHgAmuxGdQosa81Y0UsR3IGcT8HWKTyq+n6c9qL5VdzwK XRTUPdhJtQ7djxCeRmIOdBPRXFXTaGiXQqD+4sf9G5drOBtjezAW+q5J8geZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhDcm9He8nvMrMpqxYYf4W5xDFjswHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADjGg0l6aUIVRVsTPVX5QC07sir3NWysw3gY dWzxjtDYcjB2mDHhVmWwZQUTjQB5iN2x703gzraxVV2WDE6ucXCwSS8nIb7Sw9eI 8EklCpeeXBTisMCAZg/AqdFVwLrFBzzKkwUmEgdKgVPKjHGY6oQ2cZnXQy0o6oVZ 61hzcd9nV7F7wxN+1YSIopgl3mGeUDHKwTFzvrS2bm+9laEYhVEUlHtI7tHizGm9 s3V+HosedOLR24hQMQ3d5mxFeiLI1oZSkz5FY+CJpO9oTae2tuCazc/rsWlF808q lp70aFheiZeemFwCIQ+YCsuDzjbrED4UY1r6u2+5cEH9wZkLubs= -----END CERTIFICATE-----Generated at Wed Dec 3 16:35:45 2025 by rpki-client