This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft File: 40F85FB380A012F2BB6D055D914C008674125D67.mft (raw, json) Hash identifier: SajI/vW0IA47hjCHlKrX5KxRfX7eDzWNzS8/Ap0PO9Y= Subject key identifier: 4B:1D:4E:C9:53:97:82:D3:EE:58:FB:1C:77:E7:0F:54:06:34:15:F6 Authority key identifier: 40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 Certificate issuer: /CN=40F85FB380A012F2BB6D055D914C008674125D67 Certificate serial: 679C3470509C2C26A3F378FC73978FACABAE98FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft Manifest number: 0500 Signing time: Wed 24 Dec 2025 11:22:59 +0000 Manifest this update: Wed 24 Dec 2025 11:17:59 +0000 Manifest next update: Sat 27 Dec 2025 16:08:59 +0000 Files and hashes: 1: 40F85FB380A012F2BB6D055D914C008674125D67.crl (hash: vWO/Y3FAeN6iU77kJj/IsdjHxsIRlmMbQpsPCRde8dw=) 2: 3130332e3231322e3233382e302f32342d3234203d3e203338373536.roa (hash: VWZBwU3RWnROUShcpW3L74G67TSj+wYP3BWSlSltpjo=) 3: 3130332e3231322e3233392e302f32342d3234203d3e20313338383839.roa (hash: 34Zwk2rQxI6/8F/IkX/shAQb+olpsRnc3h6OinfJJ/w=) 4: 3130332e3231322e3233362e302f32332d3234203d3e203338373536.roa (hash: 778Q5HjUkZ/WVTVzYaqPWOxb/BdNeOK8Id+aBKl0ego=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:9c:34:70:50:9c:2c:26:a3:f3:78:fc:73:97:8f:ac:ab:ae:98:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40F85FB380A012F2BB6D055D914C008674125D67 Validity Not Before: Dec 24 11:17:59 2025 GMT Not After : Dec 27 16:08:59 2025 GMT Subject: CN=4B1D4EC9539782D3EE58FB1C77E70F54063415F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:54:0c:cb:60:be:1f:b1:62:58:ed:3e:a5:a3: a6:f9:4c:a3:4a:9f:47:ed:70:4e:4e:67:c2:8a:29: 90:2f:82:3a:cf:3a:b2:68:ab:ab:73:e0:d8:20:a4: d4:2b:27:04:54:29:f0:87:5c:70:cb:fc:6b:5a:6b: e7:9e:ba:ca:94:5c:4a:24:e5:d1:65:04:ce:ae:e9: ed:fb:7c:cf:3a:e3:99:4f:59:f7:15:b0:fd:24:33: ae:1e:50:9f:e8:07:c4:df:b6:b2:ba:08:66:58:b5: 6e:45:ab:3a:80:b8:c2:62:e0:7c:14:80:8f:b6:5e: 23:49:db:c4:70:8c:e5:1e:ae:29:12:05:51:f1:e5: 6e:dc:3c:cf:02:0a:d5:81:92:fd:a2:26:b5:5a:dc: a0:c4:68:11:7d:b1:79:66:0e:cc:7f:c8:c1:b8:e1: 78:4f:24:b7:23:3e:a7:3d:75:3d:3b:e8:6c:59:ed: b3:96:8e:be:79:b5:8b:87:4f:83:7f:d5:9d:2f:74: 2d:3e:76:5a:12:cc:c4:48:7e:5f:54:56:a2:75:37: 77:7f:e2:b8:32:0e:7c:20:2c:a6:ab:b7:69:c5:3f: 8d:2a:f8:d9:ff:b2:65:f2:c6:3e:17:5e:ae:91:12: 11:85:1e:f9:ad:ce:00:1a:24:80:d0:b3:5d:99:c2: 86:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:1D:4E:C9:53:97:82:D3:EE:58:FB:1C:77:E7:0F:54:06:34:15:F6 X509v3 Authority Key Identifier: keyid:40:F8:5F:B3:80:A0:12:F2:BB:6D:05:5D:91:4C:00:86:74:12:5D:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40F85FB380A012F2BB6D055D914C008674125D67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5972f9a2-b0ff-4298-8da6-e2e38348a07b/0/40F85FB380A012F2BB6D055D914C008674125D67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:07:0e:a5:d5:84:44:27:6a:66:c1:e9:a3:f3:7d:5d:a7:7c: ac:2f:b0:5f:04:8f:50:54:a6:c9:7d:48:29:b0:18:02:ed:72: 50:05:d5:d6:ef:f3:ea:88:e1:27:bd:b5:e6:6f:07:df:6c:07: 67:3c:0c:bf:53:48:6c:82:ff:1c:f9:16:ec:62:89:9f:75:de: 45:fb:a0:d1:d0:db:d0:4a:52:db:4b:ab:53:2a:31:8e:95:90: b2:04:49:6a:20:f5:7c:84:2d:27:bc:61:4e:8f:e0:39:e8:ac: 96:dd:13:06:53:b5:46:ef:bc:37:69:48:e0:a1:67:18:d7:12: b3:e5:6d:ed:1c:54:dc:7b:45:88:f8:2d:f2:c3:6c:89:a2:0c: 46:7f:89:bb:d5:44:10:fb:6d:c1:80:61:f4:aa:52:cd:d1:40: ce:a2:ce:fe:72:50:5a:f5:ad:ab:c3:73:c4:f3:ee:e3:49:37: 39:d8:03:fa:ba:1f:50:4e:09:d7:57:60:ad:bb:70:66:9e:83: 6c:f9:8a:f8:18:26:28:c6:76:53:3e:f0:f6:a9:2e:79:8f:42: d1:70:2e:c6:06:2a:25:ce:44:cc:d5:d9:1a:87:b0:8e:6e:1b: 66:91:57:c5:e7:95:a4:97:7a:d7:8f:0a:84:67:33:48:86:8a: d8:65:41:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ5w0cFCcLCaj83j8c5ePrKuumP8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3 NDEyNUQ2NzAeFw0yNTEyMjQxMTE3NTlaFw0yNTEyMjcxNjA4NTlaMDMxMTAvBgNV BAMTKDRCMUQ0RUM5NTM5NzgyRDNFRTU4RkIxQzc3RTcwRjU0MDYzNDE1RjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRVAzLYL4fsWJY7T6lo6b5TKNK n0ftcE5OZ8KKKZAvgjrPOrJoq6tz4NggpNQrJwRUKfCHXHDL/Gtaa+eeusqUXEok 5dFlBM6u6e37fM8645lPWfcVsP0kM64eUJ/oB8TftrK6CGZYtW5FqzqAuMJi4HwU gI+2XiNJ28RwjOUerikSBVHx5W7cPM8CCtWBkv2iJrVa3KDEaBF9sXlmDsx/yMG4 4XhPJLcjPqc9dT076GxZ7bOWjr55tYuHT4N/1Z0vdC0+dloSzMRIfl9UVqJ1N3d/ 4rgyDnwgLKart2nFP40q+Nn/smXyxj4XXq6REhGFHvmtzgAaJIDQs12Zwoa7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSx1OyVOXgtPuWPscd+cPVAY0FfYwHwYDVR0j BBgwFoAUQPhfs4CgEvK7bQVdkUwAhnQSXWcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OTcyZjlhMi1iMGZmLTQyOTgtOGRhNi1lMmUzODM0OGEwN2IvMC80MEY4NUZCMzgw QTAxMkYyQkI2RDA1NUQ5MTRDMDA4Njc0MTI1RDY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAwODY3NDEy NUQ2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTk3MmY5YTItYjBmZi00Mjk4LThk YTYtZTJlMzgzNDhhMDdiLzAvNDBGODVGQjM4MEEwMTJGMkJCNkQwNTVEOTE0QzAw ODY3NDEyNUQ2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGgHDqXVhEQnambB6aPzfV2nfKwvsF8Ej1BU psl9SCmwGALtclAF1dbv8+qI4Se9teZvB99sB2c8DL9TSGyC/xz5FuxiiZ913kX7 oNHQ29BKUttLq1MqMY6VkLIESWog9XyELSe8YU6P4DnorJbdEwZTtUbvvDdpSOCh ZxjXErPlbe0cVNx7RYj4LfLDbImiDEZ/ibvVRBD7bcGAYfSqUs3RQM6izv5yUFr1 ravDc8Tz7uNJNznYA/q6H1BOCddXYK27cGaeg2z5ivgYJijGdlM+8PapLnmPQtFw LsYGKiXORMzV2RqHsI5uG2aRV8XnlaSXetePCoRnM0iGithlQSw= -----END CERTIFICATE-----Generated at Wed Dec 24 18:11:26 2025 by rpki-client