This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: wL+lMpRvS1TEI3K5PagZ7D//sUdv4XCCeMgtDZDwssg= Subject key identifier: 44:04:2F:6C:B6:E4:2D:2B:CC:1D:18:F3:62:32:19:95:61:EC:42:D5 Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 1D8AC2D27E67446DE36A33D4AD6EC8412471FB64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 028F Signing time: Wed 24 Dec 2025 02:33:42 +0000 Manifest this update: Wed 24 Dec 2025 02:28:42 +0000 Manifest next update: Sat 27 Dec 2025 10:17:42 +0000 Files and hashes: 1: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) 2: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 3: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: T1t9oqcQ7Wt4twka1bKmcw6M095pjG4WguiMWLmXkX4=) 4: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 10:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:8a:c2:d2:7e:67:44:6d:e3:6a:33:d4:ad:6e:c8:41:24:71:fb:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Dec 24 02:28:42 2025 GMT Not After : Dec 27 10:17:42 2025 GMT Subject: CN=44042F6CB6E42D2BCC1D18F36232199561EC42D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:86:f6:96:a4:29:28:4d:3f:d2:6d:3b:c6:e8: 80:08:07:90:07:03:a7:2b:f7:ff:7b:85:ca:e7:c0: 79:1e:78:ee:37:6d:d5:1e:3b:56:40:a1:4d:3a:c6: 56:cf:52:0b:11:7a:dd:6a:b3:03:bd:c0:66:0e:7d: 3b:78:00:5e:54:95:d2:fa:e5:12:a9:a0:45:ad:31: df:1f:80:6f:00:48:9a:93:9b:c8:f1:c7:21:d8:70: d1:10:de:31:5b:eb:36:c2:65:96:e7:84:38:08:a3: 90:a5:cc:cb:a1:c0:12:bf:86:7a:5c:a9:4c:99:20: a2:a8:3e:10:bc:ca:90:5f:04:f9:f6:4b:19:6b:4d: e0:d6:7c:fd:e2:d9:ee:ab:24:b0:48:5c:bd:62:76: 3a:40:f5:bc:25:6d:81:3f:a2:7e:ae:ba:cd:c9:47: 1b:72:9c:c0:de:8b:51:1b:58:9a:f8:ba:95:be:cc: 56:f8:79:44:69:a4:d4:3d:34:a3:bd:30:bd:60:f5: 29:95:e7:c2:ce:31:ce:5d:c6:61:8b:c2:46:9c:6b: 9a:2d:1e:4c:e0:99:5c:2f:05:8c:c0:6e:e3:1c:ec: 45:37:d9:c7:6a:6d:b2:cb:26:06:a6:de:cf:d9:44: 0a:35:9e:88:46:c5:1e:83:9c:28:8c:0c:ac:12:db: 65:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:04:2F:6C:B6:E4:2D:2B:CC:1D:18:F3:62:32:19:95:61:EC:42:D5 X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:4b:73:9c:dd:74:be:bb:6e:87:14:3e:73:84:50:90:cf:04: 1d:f9:0b:b3:9e:05:c1:60:72:3c:9b:5c:d8:ef:0e:5e:5e:58: 76:90:07:8c:3a:22:18:5e:80:e7:07:11:d3:38:ff:cb:87:82: ec:13:83:93:a1:51:a8:dd:f6:d2:d3:a9:a5:65:2f:12:6e:a2: 44:0f:26:9a:05:87:48:ed:51:d5:00:7d:d0:1e:cf:52:7a:03: ab:69:99:86:e4:b1:16:59:c0:0e:34:5e:02:53:11:f6:13:43: c0:0a:86:e5:43:fb:f8:75:78:6d:06:39:ac:64:2f:c6:66:fe: 80:f9:08:f9:59:89:88:56:32:4a:ee:62:48:a8:6c:b2:4e:dc: ab:09:e9:65:2e:b1:8a:13:cd:73:59:6a:45:23:99:c8:c1:d4: eb:a7:ee:f1:8e:50:15:94:2b:a8:15:91:1c:80:fa:41:7a:e6: 20:74:a7:b6:c3:bc:a6:03:e0:a2:af:ec:23:52:ce:fa:e0:a7: 36:b6:a4:e3:bd:d7:5d:3b:16:44:86:15:81:b0:c5:7f:f9:bc: 59:66:ca:23:a7:04:46:f2:94:1d:bc:f6:d7:c9:b9:33:34:52: 14:28:a6:33:b9:dc:4d:aa:c9:b3:61:a4:57:ed:f1:3a:3e:b4: 6a:f4:51:a1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHYrC0n5nRG3jajPUrW7IQSRx+2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNTEyMjQwMjI4NDJaFw0yNTEyMjcxMDE3NDJaMDMxMTAvBgNV BAMTKDQ0MDQyRjZDQjZFNDJEMkJDQzFEMThGMzYyMzIxOTk1NjFFQzQyRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQhvaWpCkoTT/SbTvG6IAIB5AH A6cr9/97hcrnwHkeeO43bdUeO1ZAoU06xlbPUgsRet1qswO9wGYOfTt4AF5UldL6 5RKpoEWtMd8fgG8ASJqTm8jxxyHYcNEQ3jFb6zbCZZbnhDgIo5ClzMuhwBK/hnpc qUyZIKKoPhC8ypBfBPn2SxlrTeDWfP3i2e6rJLBIXL1idjpA9bwlbYE/on6uus3J RxtynMDei1EbWJr4upW+zFb4eURppNQ9NKO9ML1g9SmV58LOMc5dxmGLwkaca5ot HkzgmVwvBYzAbuMc7EU32cdqbbLLJgam3s/ZRAo1nohGxR6DnCiMDKwS22XRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURAQvbLbkLSvMHRjzYjIZlWHsQtUwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIlLc5zddL67bocUPnOEUJDPBB35C7OeBcFg cjybXNjvDl5eWHaQB4w6IhhegOcHEdM4/8uHguwTg5OhUajd9tLTqaVlLxJuokQP JpoFh0jtUdUAfdAez1J6A6tpmYbksRZZwA40XgJTEfYTQ8AKhuVD+/h1eG0GOaxk L8Zm/oD5CPlZiYhWMkruYkiobLJO3KsJ6WUusYoTzXNZakUjmcjB1Oun7vGOUBWU K6gVkRyA+kF65iB0p7bDvKYD4KKv7CNSzvrgpza2pOO91107FkSGFYGwxX/5vFlm yiOnBEbylB289tfJuTM0UhQopjO53E2qybNhpFft8To+tGr0UaE= -----END CERTIFICATE-----Generated at Thu Dec 25 05:31:16 2025 by rpki-client