This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: EC/QVZ1nxDVvQjDZQGfxAkXOgQumGmawq7+C5keo1yo= Subject key identifier: 5E:CA:4F:D1:B2:BB:89:2A:CC:25:B2:7E:A8:4E:55:85:2B:CF:9D:4F Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 12A5275004CDDE888FB8083B241C5B6526709A5B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 011B Signing time: Tue 20 Jan 2026 14:32:26 +0000 Manifest this update: Tue 20 Jan 2026 14:27:26 +0000 Manifest next update: Fri 23 Jan 2026 16:26:26 +0000 Files and hashes: 1: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: aoX6rHprgLZbIy0uHAo+owiAVM5kzCg0dT8T0/eB5PY=) 2: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: ZYRFgg3YsM3yKUn62KsbkyrpaJzgLMKU6Z815DCOnrQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 Jan 2026 16:26:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a5:27:50:04:cd:de:88:8f:b8:08:3b:24:1c:5b:65:26:70:9a:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Jan 20 14:27:26 2026 GMT Not After : Jan 23 16:26:26 2026 GMT Subject: CN=5ECA4FD1B2BB892ACC25B27EA84E55852BCF9D4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:d5:7f:5f:08:c0:e6:64:0c:b1:1d:f1:aa: a4:88:04:77:53:26:23:93:3c:bc:e2:e2:4c:8d:4f: d9:30:46:84:6c:c9:bb:0a:99:30:f2:6a:a8:ea:61: b3:79:17:08:c2:36:b9:1a:8f:4a:3c:65:a7:d9:78: bc:02:5a:d5:d8:88:61:92:cd:d7:25:d7:5d:01:ed: f2:51:d8:a6:c1:43:bb:13:96:dc:ba:81:00:ad:0a: 16:3c:b4:a2:56:27:41:01:87:52:2b:c1:ed:16:56: 0a:37:e4:83:dc:4d:01:b3:52:cd:1b:4f:98:b8:20: 29:e3:8b:c9:bb:3c:fb:ca:36:fa:11:10:9b:56:52: eb:9c:ba:d4:e0:56:9a:a4:10:81:df:f0:e1:a4:1f: 5d:e5:6c:37:f3:8f:45:5d:5e:70:ea:db:3e:fa:ef: dd:46:bb:20:2d:27:36:21:46:bf:33:1e:1b:91:d5: 3a:85:54:9d:d6:ba:32:80:6a:62:46:69:5a:96:d8: 63:3c:87:dd:8e:80:b9:3f:0d:21:0e:2f:51:01:16: 36:f3:92:ec:d3:56:7e:97:d1:d9:ca:ba:f7:fd:e7: 0c:f3:57:ae:5c:c0:b4:65:4e:6f:c7:f9:c7:fc:81: da:ac:e9:0e:91:76:a3:27:9f:7e:9a:16:da:49:4b: fa:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:CA:4F:D1:B2:BB:89:2A:CC:25:B2:7E:A8:4E:55:85:2B:CF:9D:4F X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:db:1b:93:de:01:67:63:92:48:ed:da:67:57:0c:c0:78:16: 7b:de:7a:1f:c6:56:c7:2e:16:cd:1c:f4:82:36:79:f9:12:95: 7d:71:3c:2c:60:1c:d1:76:7f:ab:a8:87:83:e7:eb:51:a1:32: 59:5c:51:53:85:3c:c1:fb:06:a5:aa:2a:63:0b:f0:1d:48:17: f1:c4:b7:20:c2:fa:c8:1e:2e:b7:19:88:f9:c3:68:ca:94:80: 41:e0:24:a1:2a:45:30:02:2f:6b:ef:2c:af:98:47:74:50:79: 7c:d4:1c:72:73:fb:e8:9d:41:8a:04:64:1a:6e:98:ea:30:d7: 2b:5e:9c:a7:dd:bc:24:3e:78:c3:d4:e3:7a:38:f1:08:bc:d1: 77:66:02:50:3e:74:97:a4:21:53:cd:77:00:a5:d5:c2:61:01: 52:4d:8e:47:8e:c9:54:68:d9:57:2f:fa:39:02:70:8d:e0:a4: ed:22:92:b7:e3:bd:0f:36:6e:a0:d5:8b:a8:7c:8c:04:47:0f: c6:5f:c8:c7:72:67:bb:ac:b2:bd:16:c2:ab:d2:8b:c4:da:62: 5a:95:8a:23:73:61:6d:5e:da:bd:97:d6:2f:73:47:da:1e:37: 71:13:1c:04:19:36:fd:39:af:b6:c6:13:97:97:ca:69:11:3b: fb:ed:2e:6c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEqUnUATN3oiPuAg7JBxbZSZwmlswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNjAxMjAxNDI3MjZaFw0yNjAxMjMxNjI2MjZaMDMxMTAvBgNV BAMTKDVFQ0E0RkQxQjJCQjg5MkFDQzI1QjI3RUE4NEU1NTg1MkJDRjlENEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAB9V/XwjA5mQMsR3xqqSIBHdT JiOTPLzi4kyNT9kwRoRsybsKmTDyaqjqYbN5FwjCNrkaj0o8ZafZeLwCWtXYiGGS zdcl110B7fJR2KbBQ7sTlty6gQCtChY8tKJWJ0EBh1Irwe0WVgo35IPcTQGzUs0b T5i4ICnji8m7PPvKNvoREJtWUuucutTgVpqkEIHf8OGkH13lbDfzj0VdXnDq2z76 791GuyAtJzYhRr8zHhuR1TqFVJ3WujKAamJGaVqW2GM8h92OgLk/DSEOL1EBFjbz kuzTVn6X0dnKuvf95wzzV65cwLRlTm/H+cf8gdqs6Q6RdqMnn36aFtpJS/oHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXspP0bK7iSrMJbJ+qE5VhSvPnU8wHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABPbG5PeAWdjkkjt2mdXDMB4Fnveeh/GVscu Fs0c9II2efkSlX1xPCxgHNF2f6uoh4Pn61GhMllcUVOFPMH7BqWqKmML8B1IF/HE tyDC+sgeLrcZiPnDaMqUgEHgJKEqRTACL2vvLK+YR3RQeXzUHHJz++idQYoEZBpu mOow1ytenKfdvCQ+eMPU43o48Qi80XdmAlA+dJekIVPNdwCl1cJhAVJNjkeOyVRo 2Vcv+jkCcI3gpO0ikrfjvQ82bqDVi6h8jARHD8ZfyMdyZ7ussr0WwqvSi8TaYlqV iiNzYW1e2r2X1i9zR9oeN3ETHAQZNv05r7bGE5eXymkRO/vtLmw= -----END CERTIFICATE-----Generated at Wed Jan 21 12:16:08 2026 by rpki-client