This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft File: F40A3B698C292462E4AF862C69FB242F66E56191.mft (raw, json) Hash identifier: asw7tZGZTV8WUhlZraBthJlQocHfqFi22a7sYBie4RA= Subject key identifier: 9B:AE:DB:24:86:F9:58:DE:81:DA:AD:98:00:24:24:96:57:42:49:66 Authority key identifier: F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 Certificate issuer: /CN=F40A3B698C292462E4AF862C69FB242F66E56191 Certificate serial: 4A0CB07FEEEB99A655325C4D2607217402DA8466 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject info access: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft Manifest number: 032D Signing time: Thu 04 Dec 2025 19:00:54 +0000 Manifest this update: Thu 04 Dec 2025 18:55:54 +0000 Manifest next update: Sun 07 Dec 2025 21:02:54 +0000 Files and hashes: 1: F40A3B698C292462E4AF862C69FB242F66E56191.crl (hash: evoRMndMb9aB+oYT8fgPwDc8BpazJDTpTopQZCX72do=) 2: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: gIT/zHc/1K0b1PiVmUPHw03fHkctz7eSoTHWuLp5tjo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:0c:b0:7f:ee:eb:99:a6:55:32:5c:4d:26:07:21:74:02:da:84:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40A3B698C292462E4AF862C69FB242F66E56191 Validity Not Before: Dec 4 18:55:54 2025 GMT Not After : Dec 7 21:02:54 2025 GMT Subject: CN=9BAEDB2486F958DE81DAAD980024249657424966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:81:3f:36:17:10:54:5d:59:78:e5:6a:2b: fd:4a:9e:84:f6:93:8d:34:6b:1c:61:1d:99:90:5b: 83:63:ec:06:a0:8f:74:cc:1d:70:c2:f9:04:57:5c: 6b:36:41:ae:62:f7:07:cd:35:cf:f9:1d:ad:1e:f2: c5:38:13:ca:6c:a5:0c:cd:d1:96:7a:8c:14:f2:ab: 63:dd:38:68:7f:aa:60:c9:e8:2e:07:f6:d9:4f:ca: 6e:56:4c:bf:d2:80:ae:bf:73:22:39:e8:ed:48:c6: 92:7c:40:c6:fb:98:af:71:6b:54:58:32:bf:ef:5a: 60:2b:92:7b:c0:ba:38:d8:dd:e1:65:60:f8:f4:96: 16:a2:87:b7:7b:8e:e9:bd:7f:50:c3:bb:e5:3c:76: d6:af:00:9f:de:3e:6b:c9:b8:e1:7c:9a:c3:30:f3: 34:f6:16:de:46:af:17:27:25:a0:8f:a8:d7:fb:0a: 19:17:66:20:f9:67:d7:13:46:21:ec:d6:f2:f1:e3: 4f:d9:23:68:c0:e4:27:4a:79:48:5d:23:e4:89:0b: 54:d7:6e:34:30:53:54:d0:21:27:55:b1:50:62:23: 5b:49:25:ae:9d:2c:20:69:16:eb:f0:1f:f2:24:12: 43:c6:b5:6a:de:46:99:bb:7e:bb:59:7e:ad:25:b3: 08:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:AE:DB:24:86:F9:58:DE:81:DA:AD:98:00:24:24:96:57:42:49:66 X509v3 Authority Key Identifier: keyid:F4:0A:3B:69:8C:29:24:62:E4:AF:86:2C:69:FB:24:2F:66:E5:61:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F40A3B698C292462E4AF862C69FB242F66E56191.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/F40A3B698C292462E4AF862C69FB242F66E56191.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:dc:33:d9:35:1f:b4:c5:19:3c:41:26:25:6f:54:0c:20:3e: 89:53:50:23:40:76:8b:da:02:7a:ec:20:89:d6:05:4a:ad:e7: 3b:1c:f9:d4:bc:29:5a:3e:82:2c:d0:2f:9f:0a:04:dd:39:2c: 02:32:48:d6:96:9c:d3:3f:60:78:c0:a7:6e:3e:3a:12:1c:fd: e6:fa:8a:92:a4:0c:77:60:b2:a9:5d:94:ad:9d:60:fc:b7:90: 29:20:ff:db:67:c1:bb:bc:79:dc:c6:b3:aa:9d:dc:bb:2f:b9: 22:75:03:0e:32:76:7c:46:f3:19:3b:dd:57:4d:6f:80:21:ea: de:1e:d5:80:0a:8e:1b:c5:3f:71:37:74:99:d4:ff:f1:85:66: ba:4c:57:1e:96:f8:f3:48:ef:22:0d:98:a5:28:e3:d8:f8:5f: 3c:70:67:d0:11:1e:5d:c3:72:51:eb:31:44:6e:6e:8c:6c:a8: bd:e7:9b:2a:ad:7e:e4:18:4d:71:6e:f7:8a:a1:57:28:8f:4d: 32:82:1b:2e:08:2f:b8:56:de:4f:84:85:c8:07:c5:a6:21:5b: ff:1f:c2:73:1f:f5:8e:95:04:de:7b:99:a2:4c:e4:1d:c7:02: 12:76:be:2b:62:0a:63:b5:fd:1d:b8:9f:2b:42:e9:f4:37:24: 84:2a:4e:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSgywf+7rmaZVMlxNJgchdALahGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2 NkU1NjE5MTAeFw0yNTEyMDQxODU1NTRaFw0yNTEyMDcyMTAyNTRaMDMxMTAvBgNV BAMTKDlCQUVEQjI0ODZGOTU4REU4MURBQUQ5ODAwMjQyNDk2NTc0MjQ5NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/HoE/NhcQVF1ZeOVqK/1KnoT2 k400axxhHZmQW4Nj7Aagj3TMHXDC+QRXXGs2Qa5i9wfNNc/5Ha0e8sU4E8pspQzN 0ZZ6jBTyq2PdOGh/qmDJ6C4H9tlPym5WTL/SgK6/cyI56O1IxpJ8QMb7mK9xa1RY Mr/vWmArknvAujjY3eFlYPj0lhaih7d7jum9f1DDu+U8dtavAJ/ePmvJuOF8msMw 8zT2Ft5GrxcnJaCPqNf7ChkXZiD5Z9cTRiHs1vLx40/ZI2jA5CdKeUhdI+SJC1TX bjQwU1TQISdVsVBiI1tJJa6dLCBpFuvwH/IkEkPGtWreRpm7frtZfq0lswg1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUm67bJIb5WN6B2q2YACQklldCSWYwHwYDVR0j BBgwFoAU9Ao7aYwpJGLkr4YsafskL2blYZEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NGEyM2M0ZS0zOTMyLTQzYmQtODE3Ni1mNjI1MWRkZWE4NDIvMC9GNDBBM0I2OThD MjkyNDYyRTRBRjg2MkM2OUZCMjQyRjY2RTU2MTkxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0MkY2NkU1 NjE5MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvRjQwQTNCNjk4QzI5MjQ2MkU0QUY4NjJDNjlGQjI0 MkY2NkU1NjE5MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGDcM9k1H7TFGTxBJiVvVAwgPolTUCNAdova AnrsIInWBUqt5zsc+dS8KVo+gizQL58KBN05LAIySNaWnNM/YHjAp24+OhIc/eb6 ipKkDHdgsqldlK2dYPy3kCkg/9tnwbu8edzGs6qd3LsvuSJ1Aw4ydnxG8xk73VdN b4Ah6t4e1YAKjhvFP3E3dJnU//GFZrpMVx6W+PNI7yINmKUo49j4XzxwZ9ARHl3D clHrMURuboxsqL3nmyqtfuQYTXFu94qhVyiPTTKCGy4IL7hW3k+EhcgHxaYhW/8f wnMf9Y6VBN57maJM5B3HAhJ2vitiCmO1/R24nytC6fQ3JIQqTog= -----END CERTIFICATE-----Generated at Sat Dec 6 21:26:01 2025 by rpki-client