This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft File: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft (raw, json) Hash identifier: IUGbrEYhm220TLo4bqBhY7/OKLXP+PVy2pQwLCS/O+0= Subject key identifier: E3:23:63:1E:9B:1F:3F:93:37:82:A6:AC:D1:53:23:B3:DE:81:87:07 Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 48AF9BD8963354B53459691E03A797B5D271CA62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft Manifest number: 021D Signing time: Fri 05 Dec 2025 13:11:28 +0000 Manifest this update: Fri 05 Dec 2025 13:06:28 +0000 Manifest next update: Mon 08 Dec 2025 19:25:28 +0000 Files and hashes: 1: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl (hash: IUpdXswPPmXB6qeAmFSI5sxSUpWvJmUnOT3lpX9gDmw=) 2: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (hash: hy+/jpVeqW5ZdBPpsEQxih0c4zQVAJjPaRw4KAPp/Ro=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 19:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:af:9b:d8:96:33:54:b5:34:59:69:1e:03:a7:97:b5:d2:71:ca:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: Dec 5 13:06:28 2025 GMT Not After : Dec 8 19:25:28 2025 GMT Subject: CN=E323631E9B1F3F933782A6ACD15323B3DE818707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6d:ee:ef:c1:dd:29:7f:cb:40:fe:ff:f4:85: cb:c2:90:3e:98:e2:e7:53:b5:81:b4:ba:a5:b0:16: af:bc:ad:61:33:44:a0:8f:85:2e:01:94:93:f3:92: a9:ac:0c:df:01:2f:bd:36:b8:82:e2:8a:41:bd:77: e8:ec:5b:f6:ad:59:25:57:c3:ef:72:31:ae:b8:60: 23:84:7c:eb:0e:44:24:4e:d8:6c:92:f5:63:3c:25: 3a:64:b9:de:07:b7:e5:99:d9:3c:d8:13:e9:ed:0c: 7b:c3:3b:97:c8:96:56:3b:c6:3a:47:cf:b1:28:6f: a5:f5:19:55:2f:40:c7:27:21:60:28:3d:46:f1:24: 48:28:96:8a:2a:aa:e4:ab:a5:aa:7e:60:3b:b8:6c: b4:8a:9c:7c:f1:50:50:77:34:16:b7:57:a1:97:2d: 8c:de:7f:5c:d2:50:68:bc:b8:af:6a:8e:38:4d:60: 0a:84:30:06:4f:e7:93:be:23:7f:02:d0:34:82:17: 89:85:ab:0b:bb:8f:4b:fa:a8:53:cd:0e:1c:cd:73: 88:35:a1:de:eb:8e:6a:01:9c:85:9b:c2:67:fa:b0: 68:25:ee:8a:3d:59:e8:34:b5:ca:de:d6:95:4f:5e: c0:05:cc:ad:d6:68:9c:77:0e:eb:09:9a:17:0a:3e: 20:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:23:63:1E:9B:1F:3F:93:37:82:A6:AC:D1:53:23:B3:DE:81:87:07 X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:42:6b:f6:04:b3:6d:8b:b3:76:fd:f6:42:c6:aa:0d:bd:22: 17:46:02:27:8f:cf:89:8b:e3:fa:b4:ac:de:cc:f0:ce:50:51: e4:a4:ee:11:9a:66:4a:01:f0:bf:7d:12:e3:a3:b0:0b:a1:ee: 6d:8f:83:f8:17:30:fa:30:87:46:45:e1:73:2d:d9:c3:3d:fb: d1:9c:be:66:0d:cf:a5:50:69:5a:d9:16:f8:f7:3f:b8:c8:1e: dc:2b:33:cf:a3:e6:10:5d:09:04:e0:8b:1e:a1:c3:e2:b3:38: a3:74:da:35:1c:fd:8a:5a:ec:75:af:dc:e3:66:44:61:9a:e5: 1b:82:67:92:88:48:e2:7c:9d:43:52:c2:e7:4e:74:d2:57:27: 0d:88:fa:52:38:01:ca:9f:1d:f2:c1:c7:46:1d:24:08:6c:fe: b4:89:03:d6:6b:45:2b:eb:01:84:0c:fb:f5:4b:36:00:9c:41: 8e:51:fb:0a:48:c7:3b:a7:04:54:8c:bb:c6:67:28:3d:66:93: 64:cd:6a:51:fa:42:f0:9c:ab:1c:32:89:e7:f7:73:36:4d:9e: fa:8a:c6:8c:b0:6b:05:1f:69:fc:00:15:2a:ab:8e:f5:3b:6e: 2c:2f:88:0d:a3:94:7b:e0:7c:78:55:53:88:53:e8:cf:f8:67: 27:33:e1:da -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSK+b2JYzVLU0WWkeA6eXtdJxymIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNTEyMDUxMzA2MjhaFw0yNTEyMDgxOTI1MjhaMDMxMTAvBgNV BAMTKEUzMjM2MzFFOUIxRjNGOTMzNzgyQTZBQ0QxNTMyM0IzREU4MTg3MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7be7vwd0pf8tA/v/0hcvCkD6Y 4udTtYG0uqWwFq+8rWEzRKCPhS4BlJPzkqmsDN8BL702uILiikG9d+jsW/atWSVX w+9yMa64YCOEfOsORCRO2GyS9WM8JTpkud4Ht+WZ2TzYE+ntDHvDO5fIllY7xjpH z7Eob6X1GVUvQMcnIWAoPUbxJEgolooqquSrpap+YDu4bLSKnHzxUFB3NBa3V6GX LYzef1zSUGi8uK9qjjhNYAqEMAZP55O+I38C0DSCF4mFqwu7j0v6qFPNDhzNc4g1 od7rjmoBnIWbwmf6sGgl7oo9Weg0tcre1pVPXsAFzK3WaJx3DusJmhcKPiAvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4yNjHpsfP5M3gqas0VMjs96BhwcwHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGRmNDI5NmYtMWNhOS00NWZjLWJi MDgtODQxMzVlYjAwZmE3LzAvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENE QTE5MTVBQzc2RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJRCa/YEs22Ls3b99kLGqg29IhdGAiePz4mL 4/q0rN7M8M5QUeSk7hGaZkoB8L99EuOjsAuh7m2Pg/gXMPowh0ZF4XMt2cM9+9Gc vmYNz6VQaVrZFvj3P7jIHtwrM8+j5hBdCQTgix6hw+KzOKN02jUc/Ypa7HWv3ONm RGGa5RuCZ5KISOJ8nUNSwudOdNJXJw2I+lI4AcqfHfLBx0YdJAhs/rSJA9ZrRSvr AYQM+/VLNgCcQY5R+wpIxzunBFSMu8ZnKD1mk2TNalH6QvCcqxwyief3czZNnvqK xoywawUfafwAFSqrjvU7biwviA2jlHvgfHhVU4hT6M/4Zycz4do= -----END CERTIFICATE-----Generated at Sun Dec 7 03:08:01 2025 by rpki-client