This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft File: F40A3B698C292462E4AF862C69FB242F66E56191.mft (raw, json) Hash identifier: YnAcJcj52xWPiZL9SLgxSGc4WzOldOdL4IvQzFN1hAo= Subject key identifier: 97:8F:4E:F1:37:D9:D3:EF:81:F1:F8:5B:43:1D:F0:DE:0D:A9:BE:C7 Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 4FBA1EEF5A7361E2EF59851344AC8604B7E08476 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft Manifest number: 0343 Signing time: Sat 24 Jan 2026 14:00:53 +0000 Manifest this update: Sat 24 Jan 2026 13:55:53 +0000 Manifest next update: Wed 28 Jan 2026 01:27:53 +0000 Files and hashes: 1: F40A3B698C292462E4AF862C69FB242F66E56191.crl (hash: gSeLX7IHnn6ZIWwBMcrZwAE4EfW0KkkydUQficIKphc=) 2: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: gIT/zHc/1K0b1PiVmUPHw03fHkctz7eSoTHWuLp5tjo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 01:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ba:1e:ef:5a:73:61:e2:ef:59:85:13:44:ac:86:04:b7:e0:84:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: Jan 24 13:55:53 2026 GMT Not After : Jan 28 01:27:53 2026 GMT Subject: CN=978F4EF137D9D3EF81F1F85B431DF0DE0DA9BEC7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:35:0c:2a:9e:13:97:f0:4d:bf:b2:7f:e5:0a: aa:80:e2:43:9e:fd:66:51:21:af:a4:db:bf:ee:ca: 25:4e:9f:29:d1:b1:dc:27:6c:73:43:5b:fd:79:67: 9d:aa:88:07:26:90:77:71:42:00:f2:b0:55:e2:75: f3:51:61:8c:f5:65:85:c9:ef:c8:2b:bf:6a:80:6a: bc:70:3f:c8:ee:a8:ac:17:ba:96:2f:76:36:12:9a: 7c:9a:4a:32:85:13:5a:c9:0b:69:2d:f4:01:c0:c1: 3f:ee:52:64:5b:af:d7:0d:27:05:46:71:ab:4f:57: 9a:32:58:ef:79:3b:e2:c6:de:22:2d:ef:e3:f3:70: c3:ce:f0:70:bd:cd:53:d1:80:83:9e:af:3d:46:4f: 68:2f:d6:7b:0c:4a:dd:69:3d:ca:90:ea:b0:63:d4: 31:e0:a4:62:08:1c:f2:ea:5c:53:8c:65:f1:e8:24: 82:fa:5b:6b:75:9b:74:d1:3e:a7:22:35:b8:3e:5b: da:e5:7d:15:bb:c0:9f:4c:25:42:49:7b:56:45:e9: 61:94:f3:f5:88:da:8f:90:fd:f0:4f:2b:8a:1b:69: b5:1f:c9:56:33:af:9b:bc:fa:e3:7b:9a:ee:94:37: d3:2c:ed:8c:55:82:2d:f1:ff:64:c8:1c:36:2d:92: 6f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:8F:4E:F1:37:D9:D3:EF:81:F1:F8:5B:43:1D:F0:DE:0D:A9:BE:C7 X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:94:0f:88:a2:79:67:53:af:d7:e4:62:44:33:a0:20:68:88: 8f:37:73:85:5c:61:1b:ca:6d:c0:48:d9:d2:95:c5:6f:59:45: 94:f3:7e:48:29:ed:e8:2f:54:57:8f:9f:76:14:02:56:c0:02: 65:11:dd:a1:95:14:e0:45:7a:96:83:d6:5a:3d:19:a0:89:92: b7:f0:63:7a:3f:f8:03:d9:ab:4d:59:39:71:50:79:fd:af:1d: 40:c1:7a:5e:a0:f6:02:5d:b5:f7:df:50:2e:1c:b1:52:99:33: bb:80:64:58:ea:34:63:c8:46:9b:91:77:66:a6:02:03:d7:35: 7f:de:94:52:d5:ff:0a:9b:67:13:60:b1:db:41:8b:4e:d3:11: e1:e5:1e:c1:f8:d5:de:2f:21:b0:2c:c3:db:97:a7:93:2a:9a: 3a:d5:4d:e5:61:e3:f0:a3:5c:15:25:66:40:66:79:7a:5f:94: d1:6b:7f:b2:61:66:ec:5a:d6:aa:7d:74:fa:af:69:26:08:be: 87:7f:a5:81:1b:15:00:fa:a7:81:e2:22:26:f4:9f:bf:1c:43: 7b:b2:d8:25:32:95:a4:97:b5:2c:95:69:b2:7e:6b:00:92:ef: 91:02:2b:d1:7a:34:8e:27:97:78:3d:aa:fb:74:c1:5b:61:a2: 21:be:e1:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT7oe71pzYeLvWYUTRKyGBLfghHYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNjAxMjQxMzU1NTNaFw0yNjAxMjgwMTI3NTNaMDMxMTAvBgNV BAMTKDk3OEY0RUYxMzdEOUQzRUY4MUYxRjg1QjQzMURGMERFMERBOUJFQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuNQwqnhOX8E2/sn/lCqqA4kOe /WZRIa+k27/uyiVOnynRsdwnbHNDW/15Z52qiAcmkHdxQgDysFXidfNRYYz1ZYXJ 78grv2qAarxwP8juqKwXupYvdjYSmnyaSjKFE1rJC2kt9AHAwT/uUmRbr9cNJwVG catPV5oyWO95O+LG3iIt7+PzcMPO8HC9zVPRgIOerz1GT2gv1nsMSt1pPcqQ6rBj 1DHgpGIIHPLqXFOMZfHoJIL6W2t1m3TRPqciNbg+W9rlfRW7wJ9MJUJJe1ZF6WGU 8/WI2o+Q/fBPK4obabUfyVYzr5u8+uN7mu6UN9Ms7YxVgi3x/2TIHDYtkm8FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUl49O8TfZ0++B8fhbQx3w3g2pvscwHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0 MkY2NkU1NjE5MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHSUD4iieWdTr9fkYkQzoCBoiI83c4VcYRvK bcBI2dKVxW9ZRZTzfkgp7egvVFePn3YUAlbAAmUR3aGVFOBFepaD1lo9GaCJkrfw Y3o/+APZq01ZOXFQef2vHUDBel6g9gJdtfffUC4csVKZM7uAZFjqNGPIRpuRd2am AgPXNX/elFLV/wqbZxNgsdtBi07TEeHlHsH41d4vIbAsw9uXp5MqmjrVTeVh4/Cj XBUlZkBmeXpflNFrf7JhZuxa1qp9dPqvaSYIvod/pYEbFQD6p4HiIib0n78cQ3uy 2CUylaSXtSyVabJ+awCS75ECK9F6NI4nl3g9qvt0wVthoiG+4ew= -----END CERTIFICATE-----Generated at Sun Jan 25 22:05:09 2026 by rpki-client