This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: XNqH5OUVIeYB47txZmhECChh8zjPcJKKp4wziQ4SBi8= Subject key identifier: 92:C5:7E:A4:40:90:45:C5:F9:D7:3F:95:29:F1:EB:5E:79:F3:88:3B Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 58E1CA2B5E59BAB43D5E6EF70EAAD2B172149C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 0287 Signing time: Sat 06 Dec 2025 02:52:32 +0000 Manifest this update: Sat 06 Dec 2025 02:47:32 +0000 Manifest next update: Tue 09 Dec 2025 08:35:32 +0000 Files and hashes: 1: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 2: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: +smJT4sr1vBHDmxMe5lZiNK7vw1g7VXtt85CdeuIWRs=) 3: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) 4: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 08:35:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e1:ca:2b:5e:59:ba:b4:3d:5e:6e:f7:0e:aa:d2:b1:72:14:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Dec 6 02:47:32 2025 GMT Not After : Dec 9 08:35:32 2025 GMT Subject: CN=92C57EA4409045C5F9D73F9529F1EB5E79F3883B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b8:5b:94:03:d7:61:55:f7:9d:5c:b4:2c:0a: f4:fa:dc:d0:c3:de:92:2b:9d:e0:d1:2b:91:a0:75: c8:a8:2d:3c:b7:88:60:ba:ab:04:28:2d:04:5f:6b: cb:cc:35:44:26:3b:14:b3:4b:49:26:45:bf:18:70: cc:f6:2a:25:e6:8a:f3:20:95:00:54:37:ce:24:13: 41:d1:b0:42:f3:90:ff:75:df:f1:bc:41:63:4b:43: e6:ec:f3:bd:25:37:76:8f:db:1d:a5:c5:a0:ce:9c: ca:c2:95:a5:96:59:8a:23:3e:60:c6:d0:62:32:86: a8:c0:01:af:0a:fa:df:bd:64:3c:95:26:f3:28:4d: fb:7b:64:e1:0c:81:21:10:b4:e4:a4:20:c7:27:11: 77:10:0c:93:b0:41:94:73:ec:ca:21:0b:14:9f:e3: aa:e7:ea:57:eb:1c:92:f4:a0:d9:4d:76:af:c1:9d: 67:be:8b:a6:b4:da:14:21:81:db:fa:f2:06:a1:05: e3:17:08:1e:5e:97:d2:f9:74:8f:96:98:fd:4d:36: 33:6c:47:33:79:3a:b7:55:20:b1:0f:c8:f1:8a:20: 87:86:01:d3:f6:f2:93:c8:94:55:df:c8:c8:20:8e: d0:e5:da:3b:db:57:72:6f:40:5f:68:3b:7b:61:cf: ea:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C5:7E:A4:40:90:45:C5:F9:D7:3F:95:29:F1:EB:5E:79:F3:88:3B X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:e4:35:1e:ce:3f:cf:16:d2:7c:0a:3a:f1:e6:53:9e:71:c4: 6e:ff:24:5f:d5:45:16:4d:5b:78:24:70:b4:0b:73:97:05:c7: 13:2d:cb:cc:c2:ef:e1:e6:b5:5e:9a:a4:63:c5:06:43:95:f7: 41:97:45:43:ad:e9:86:59:c0:03:63:0f:ce:33:25:47:34:f4: bb:ac:12:7a:bd:79:d0:a4:f2:d4:08:7e:e4:8b:c2:99:9d:7a: d5:19:cf:25:94:bd:c4:45:28:5f:89:49:f4:53:fd:f4:18:90: c0:8b:84:e3:5b:67:a6:e6:aa:95:3e:e4:66:18:5e:b8:07:22: 6a:59:4f:67:e7:ea:46:a6:7d:bd:28:61:88:20:ce:73:18:a3: 58:53:d0:1d:f2:78:d9:fd:b9:c0:4b:9d:88:1e:38:31:21:09: 65:99:66:66:27:28:04:34:bf:6f:d0:d5:0c:33:4c:6d:99:a3: 5c:88:c7:1e:79:40:87:fd:1d:32:7a:9d:27:34:89:53:b5:29: ac:29:93:f8:ba:19:7f:cc:be:57:78:20:ee:53:df:8e:6b:de: 6e:f2:35:21:85:1c:e0:f3:3b:e7:3f:9f:98:19:91:b6:e7:39: 09:30:dd:bb:13:54:b0:38:79:e2:a6:26:0f:62:4e:2c:a8:3b: 4c:8a:aa:e4 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITWOHKK15ZurQ9Xm73DqrSsXIUnDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg0MEMwNTUzQzkwOTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3 MEI0MUYzMB4XDTI1MTIwNjAyNDczMloXDTI1MTIwOTA4MzUzMlowMzExMC8GA1UE AxMoOTJDNTdFQTQ0MDkwNDVDNUY5RDczRjk1MjlGMUVCNUU3OUYzODgzQjCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANG4W5QD12FV951ctCwK9Prc0MPe kiud4NErkaB1yKgtPLeIYLqrBCgtBF9ry8w1RCY7FLNLSSZFvxhwzPYqJeaK8yCV AFQ3ziQTQdGwQvOQ/3Xf8bxBY0tD5uzzvSU3do/bHaXFoM6cysKVpZZZiiM+YMbQ YjKGqMABrwr6371kPJUm8yhN+3tk4QyBIRC05KQgxycRdxAMk7BBlHPsyiELFJ/j qufqV+sckvSg2U12r8GdZ76LprTaFCGB2/ryBqEF4xcIHl6X0vl0j5aY/U02M2xH M3k6t1UgsQ/I8Yogh4YB0/byk8iUVd/IyCCO0OXaO9tXcm9AX2g7e2HP6k8CAwEA AaOCAjwwggI4MB0GA1UdDgQWBBSSxX6kQJBFxfnXP5Up8eteefOIOzAfBgNVHSME GDAWgBRAwFU8kJfsSk8j7twFIFvFRwtB8zAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0 Y2M2OWU5LWVmNzQtNGI4MS05MWY0LTdiZmRmOTNmN2JhYS8wLzQwQzA1NTNDOTA5 N0VDNEE0RjIzRUVEQzA1MjA1QkM1NDcwQjQxRjMuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi80MEMwNTUzQzkwOTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0 MUYzLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8xNGNjNjllOS1lZjc0LTRiODEtOTFm NC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkwOTdFQzRBNEYyM0VFREMwNTIwNUJD NTQ3MEI0MUYzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAKeQ1Hs4/zxbSfAo68eZTnnHEbv8kX9VFFk1b eCRwtAtzlwXHEy3LzMLv4ea1XpqkY8UGQ5X3QZdFQ63phlnAA2MPzjMlRzT0u6wS er150KTy1Ah+5IvCmZ161RnPJZS9xEUoX4lJ9FP99BiQwIuE41tnpuaqlT7kZhhe uAciallPZ+fqRqZ9vShhiCDOcxijWFPQHfJ42f25wEudiB44MSEJZZlmZicoBDS/ b9DVDDNMbZmjXIjHHnlAh/0dMnqdJzSJU7UprCmT+LoZf8y+V3gg7lPfjmvebvI1 IYUc4PM75z+fmBmRtuc5CTDduxNUsDh54qYmD2JOLKg7TIqq5A== -----END CERTIFICATE-----Generated at Sat Dec 6 22:58:30 2025 by rpki-client