This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft File: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft (raw, json) Hash identifier: HhrIc/EZmEmVqDEo2vFj4dfWYAykTgEJKiDLaZppjJI= Subject key identifier: 46:EC:31:50:36:47:F7:6C:35:5B:0C:D2:FB:5C:A7:ED:A5:D0:94:3C Authority key identifier: 40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 Certificate issuer: /CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Certificate serial: 422F9CDD06BD2F336F17FDAEAAB76D56C95E8C1D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft Manifest number: 029D Signing time: Sat 24 Jan 2026 20:02:43 +0000 Manifest this update: Sat 24 Jan 2026 19:57:43 +0000 Manifest next update: Wed 28 Jan 2026 04:38:43 +0000 Files and hashes: 1: 40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl (hash: luQ7q4nluqatBGWGuI1tIqNZEjVI14T1aH3mKbCRdIo=) 2: 3130332e3137372e3130362e302f32332d3233203d3e20313431363734.roa (hash: eoFrh6+wAXl8GU6KfDgK4F1QwEUvX7H6+hOu79IcAaQ=) 3: 3130332e3137372e3130372e302f32342d3234203d3e20313431363734.roa (hash: AdfiOiy4j+jzq6m6P/ddq5DNGylDKkSfCmCDhzGt0bs=) 4: 3130332e3137372e3130362e302f32342d3234203d3e20313431363734.roa (hash: 9gmRqaJI/wYEkgAY84XDxfl7gvBL2bnVFSi2YyX1gYI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 04:38:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:2f:9c:dd:06:bd:2f:33:6f:17:fd:ae:aa:b7:6d:56:c9:5e:8c:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40C0553C9097EC4A4F23EEDC05205BC5470B41F3 Validity Not Before: Jan 24 19:57:43 2026 GMT Not After : Jan 28 04:38:43 2026 GMT Subject: CN=46EC31503647F76C355B0CD2FB5CA7EDA5D0943C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:46:db:99:a1:60:27:20:bc:f3:fa:bb:01:09: 19:48:93:86:e6:91:3d:fb:88:60:57:2f:06:b0:87: 4e:98:cc:32:26:10:58:bc:76:33:81:ab:79:28:b6: f7:1f:95:59:cb:00:91:18:15:31:b9:d8:8d:a1:b4: d2:79:ee:e9:5e:d5:9d:32:43:e2:de:d9:35:f7:d3: 0d:81:aa:78:af:0b:ce:6e:35:83:ee:ca:71:45:8b: 1d:92:2f:16:e8:a3:37:b0:d5:f6:44:30:7c:58:02: 58:3d:65:c9:92:1a:4e:dc:e8:bd:60:ef:b0:07:df: 68:29:48:33:42:59:d2:b1:aa:6a:98:ef:8b:3c:a6: 27:ed:03:89:c7:d1:66:2d:89:8e:8f:c8:a4:ba:2c: e2:05:64:04:3d:82:91:17:23:76:f0:10:e9:f0:5a: 84:db:bd:54:3d:df:87:8e:68:6e:1a:86:36:b4:eb: e4:f1:2a:9c:42:7d:82:5a:6a:76:00:91:79:2f:7a: 8c:51:27:4c:6e:50:a3:94:f9:f9:32:84:6b:78:a5: 64:91:e4:44:3c:be:01:01:3e:c2:54:bb:52:89:ad: 57:30:26:23:0b:a7:b9:34:d3:2e:6a:bd:c2:a2:b7: c8:8c:dd:2a:4c:d3:31:39:39:b8:23:e1:19:32:ee: b9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:EC:31:50:36:47:F7:6C:35:5B:0C:D2:FB:5C:A7:ED:A5:D0:94:3C X509v3 Authority Key Identifier: keyid:40:C0:55:3C:90:97:EC:4A:4F:23:EE:DC:05:20:5B:C5:47:0B:41:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14cc69e9-ef74-4b81-91f4-7bfdf93f7baa/0/40C0553C9097EC4A4F23EEDC05205BC5470B41F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:58:67:05:35:a9:a6:5f:3f:21:f7:c8:80:16:48:ae:f1:6b: fd:16:22:c9:f1:ac:e1:e7:4a:d8:7a:f3:0c:ad:e4:20:52:68: cf:53:05:86:a7:15:9b:fd:a9:49:a2:60:1f:4c:ac:9c:84:90: c0:94:93:ec:8c:a2:b4:66:62:74:7f:61:3e:81:b2:f6:61:73: bb:51:cc:e1:c6:be:10:43:12:f4:25:da:dd:bc:cf:c4:31:8a: 66:be:b5:10:eb:ba:3e:3e:42:c9:64:4f:62:6a:e7:2f:4d:fc: ae:88:b7:0b:d5:5c:0a:58:4f:04:1e:37:27:8e:9f:30:63:36: 40:4b:d5:53:83:1e:fa:2d:15:cc:fc:b9:7f:8e:bc:02:51:89: ca:06:a6:3b:d2:9f:b5:69:57:57:64:f8:2c:48:54:6a:81:39: d6:da:b2:2d:28:57:97:2a:c3:0f:87:01:61:bf:fb:bb:e1:b3: 0a:af:fe:42:5f:ef:df:cb:66:ae:8f:a5:c9:d7:4b:d0:92:ca: 96:b2:a9:f7:a3:19:ec:9a:6e:dd:df:ba:ce:e6:f5:57:7e:b0: 96:67:40:b3:32:0f:68:6f:e1:9e:15:4f:51:2e:ae:5f:62:ea: fd:3c:5b:77:6a:41:11:2a:18:52:17:65:0d:77:f7:5e:66:af: 0c:21:5c:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQi+c3Qa9LzNvF/2uqrdtVslejB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0 NzBCNDFGMzAeFw0yNjAxMjQxOTU3NDNaFw0yNjAxMjgwNDM4NDNaMDMxMTAvBgNV BAMTKDQ2RUMzMTUwMzY0N0Y3NkMzNTVCMENEMkZCNUNBN0VEQTVEMDk0M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXRtuZoWAnILzz+rsBCRlIk4bm kT37iGBXLwawh06YzDImEFi8djOBq3kotvcflVnLAJEYFTG52I2htNJ57ule1Z0y Q+Le2TX30w2BqnivC85uNYPuynFFix2SLxboozew1fZEMHxYAlg9ZcmSGk7c6L1g 77AH32gpSDNCWdKxqmqY74s8piftA4nH0WYtiY6PyKS6LOIFZAQ9gpEXI3bwEOnw WoTbvVQ934eOaG4ahja06+TxKpxCfYJaanYAkXkveoxRJ0xuUKOU+fkyhGt4pWSR 5EQ8vgEBPsJUu1KJrVcwJiMLp7k00y5qvcKit8iM3SpM0zE5Obgj4Rky7rlJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURuwxUDZH92w1WwzS+1yn7aXQlDwwHwYDVR0j BBgwFoAUQMBVPJCX7EpPI+7cBSBbxUcLQfMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NGNjNjllOS1lZjc0LTRiODEtOTFmNC03YmZkZjkzZjdiYWEvMC80MEMwNTUzQzkw OTdFQzRBNEYyM0VFREMwNTIwNUJDNTQ3MEI0MUYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVCQzU0NzBC NDFGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTRjYzY5ZTktZWY3NC00YjgxLTkx ZjQtN2JmZGY5M2Y3YmFhLzAvNDBDMDU1M0M5MDk3RUM0QTRGMjNFRURDMDUyMDVC QzU0NzBCNDFGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA9YZwU1qaZfPyH3yIAWSK7xa/0WIsnxrOHn Sth68wyt5CBSaM9TBYanFZv9qUmiYB9MrJyEkMCUk+yMorRmYnR/YT6BsvZhc7tR zOHGvhBDEvQl2t28z8Qxima+tRDruj4+QslkT2Jq5y9N/K6ItwvVXApYTwQeNyeO nzBjNkBL1VODHvotFcz8uX+OvAJRicoGpjvSn7VpV1dk+CxIVGqBOdbasi0oV5cq ww+HAWG/+7vhswqv/kJf79/LZq6PpcnXS9CSypayqfejGeyabt3fus7m9Vd+sJZn QLMyD2hv4Z4VT1Eurl9i6v08W3dqQREqGFIXZQ13915mrwwhXM4= -----END CERTIFICATE-----Generated at Sun Jan 25 20:32:25 2026 by rpki-client