This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft File: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft (raw, json) Hash identifier: 5b97+kcYEbihXQ67MfAu898SfES/2GzoYhKSjcpOTtM= Subject key identifier: 32:C2:FA:90:08:5D:70:2A:56:E3:EE:D9:D8:6F:77:3D:18:C6:FE:4D Authority key identifier: 40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D Certificate issuer: /CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Certificate serial: 333BB2F9336C416FB3EBE75145B86C981FCAC4F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft Manifest number: 0233 Signing time: Sat 24 Jan 2026 04:01:31 +0000 Manifest this update: Sat 24 Jan 2026 03:56:31 +0000 Manifest next update: Tue 27 Jan 2026 15:01:31 +0000 Files and hashes: 1: 3130332e31342e3233312e302f32342d3234203d3e20313439393435.roa (hash: hy+/jpVeqW5ZdBPpsEQxih0c4zQVAJjPaRw4KAPp/Ro=) 2: 40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl (hash: Gt5bjKcOFfOqdhr8iqHW3rCFNPqKJli8ISeHIcAQx50=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 27 Jan 2026 15:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:3b:b2:f9:33:6c:41:6f:b3:eb:e7:51:45:b8:6c:98:1f:ca:c4:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D Validity Not Before: Jan 24 03:56:31 2026 GMT Not After : Jan 27 15:01:31 2026 GMT Subject: CN=32C2FA90085D702A56E3EED9D86F773D18C6FE4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d5:84:ca:68:f5:27:95:bd:67:da:76:c3:c6: f3:b0:c9:84:2d:d8:b2:e0:28:f6:82:c4:2a:a1:7d: c8:bf:f1:d7:34:d2:4c:8d:fa:7e:35:ec:eb:6d:fb: e7:ac:bf:3f:2a:1d:aa:84:48:06:fd:b3:c6:21:61: 81:02:d4:d7:0f:43:05:63:be:c5:b9:73:c8:40:af: 5e:9b:c0:b9:a4:e2:82:a2:a2:54:a3:aa:2c:27:f3: 13:48:ec:c9:78:18:28:4c:62:0e:09:5f:cf:8a:e5: 12:b9:0a:c8:68:91:b1:59:c1:53:ed:13:1b:5b:b1: dd:3f:46:b6:ab:43:1f:fb:08:09:30:25:5e:69:f3: 8a:53:c5:9e:93:0c:24:76:80:1e:da:d6:71:d4:18: 03:47:88:7e:c5:0c:fb:83:1c:18:cc:b3:e2:07:08: b7:16:3e:21:c5:e4:02:af:ba:a6:a2:6d:50:26:00: e5:97:1b:8b:f7:09:46:72:8b:c2:a6:48:a6:c5:b2: f1:4a:dc:b8:6c:c4:64:c1:87:cb:c5:0f:7e:cb:3d: 0c:a9:a5:9e:92:b5:f6:d0:24:9b:70:5a:10:7f:de: 55:c9:d4:27:74:90:dc:98:13:8a:e7:be:64:12:65: 2a:6a:e2:bd:b5:a4:3b:de:5c:60:a4:e0:e7:fc:22: e0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:C2:FA:90:08:5D:70:2A:56:E3:EE:D9:D8:6F:77:3D:18:C6:FE:4D X509v3 Authority Key Identifier: keyid:40:70:6A:5C:CF:A8:96:C8:EE:0C:1F:9A:5B:6D:CD:A1:91:5A:C7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4df4296f-1ca9-45fc-bb08-84135eb00fa7/0/40706A5CCFA896C8EE0C1F9A5B6DCDA1915AC76D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:20:80:c2:bf:36:29:80:0a:fd:75:75:e7:d1:3a:68:fe:fc: e7:2a:7d:00:2f:9c:b7:7b:be:ee:20:03:01:40:22:3b:99:85: fb:08:97:1d:5e:d7:de:f6:e2:fd:9c:e0:c3:08:84:e2:9d:08: 26:8b:e5:4d:60:25:4d:4c:12:7c:23:db:28:f3:27:0d:e1:cd: 41:4f:7b:e8:d2:ad:d0:0d:54:ac:a2:2a:2c:69:fc:f3:ee:17: 33:6d:ea:dc:58:d7:74:cb:cf:a3:7a:dc:78:bc:22:67:61:25: 98:76:63:f2:ee:cf:d9:f6:07:c8:d8:05:fd:87:e0:c6:26:eb: 8b:19:18:cc:a8:12:ae:17:83:18:3a:c2:43:ea:1c:f5:8e:78: 22:b9:60:50:90:2a:49:7b:90:f1:c1:90:2e:74:1a:04:b6:6d: f6:ab:a0:b0:22:c7:63:0b:e3:27:c8:40:b6:c8:70:1a:5b:dc: f6:e0:e9:a3:ad:b1:31:6c:a8:aa:3a:43:bd:d7:9d:c2:2d:27: c2:5d:07:56:81:2b:c8:37:34:f7:13:bc:90:78:e1:b9:23:7b: 85:ff:6c:75:3a:9d:6d:ca:fc:69:e1:01:05:e0:3b:db:1a:d3: f2:91:99:30:13:94:38:d2:62:d3:f3:f4:6e:fc:c3:17:d7:f7: e9:e7:45:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMzuy+TNsQW+z6+dRRbhsmB/KxPEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5 MTVBQzc2RDAeFw0yNjAxMjQwMzU2MzFaFw0yNjAxMjcxNTAxMzFaMDMxMTAvBgNV BAMTKDMyQzJGQTkwMDg1RDcwMkE1NkUzRUVEOUQ4NkY3NzNEMThDNkZFNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk1YTKaPUnlb1n2nbDxvOwyYQt 2LLgKPaCxCqhfci/8dc00kyN+n417Ott++esvz8qHaqESAb9s8YhYYEC1NcPQwVj vsW5c8hAr16bwLmk4oKiolSjqiwn8xNI7Ml4GChMYg4JX8+K5RK5CshokbFZwVPt Extbsd0/RrarQx/7CAkwJV5p84pTxZ6TDCR2gB7a1nHUGANHiH7FDPuDHBjMs+IH CLcWPiHF5AKvuqaibVAmAOWXG4v3CUZyi8KmSKbFsvFK3LhsxGTBh8vFD37LPQyp pZ6StfbQJJtwWhB/3lXJ1Cd0kNyYE4rnvmQSZSpq4r21pDveXGCk4Of8IuD7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMsL6kAhdcCpW4+7Z2G93PRjG/k0wHwYDVR0j BBgwFoAUQHBqXM+olsjuDB+aW23NoZFax20wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZGY0Mjk2Zi0xY2E5LTQ1ZmMtYmIwOC04NDEzNWViMDBmYTcvMC80MDcwNkE1Q0NG QTg5NkM4RUUwQzFGOUE1QjZEQ0RBMTkxNUFDNzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENEQTE5MTVB Qzc2RC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGRmNDI5NmYtMWNhOS00NWZjLWJi MDgtODQxMzVlYjAwZmE3LzAvNDA3MDZBNUNDRkE4OTZDOEVFMEMxRjlBNUI2RENE QTE5MTVBQzc2RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAwggMK/NimACv11defROmj+/OcqfQAvnLd7 vu4gAwFAIjuZhfsIlx1e19724v2c4MMIhOKdCCaL5U1gJU1MEnwj2yjzJw3hzUFP e+jSrdANVKyiKixp/PPuFzNt6txY13TLz6N63Hi8ImdhJZh2Y/Luz9n2B8jYBf2H 4MYm64sZGMyoEq4Xgxg6wkPqHPWOeCK5YFCQKkl7kPHBkC50GgS2bfaroLAix2ML 4yfIQLbIcBpb3Pbg6aOtsTFsqKo6Q73XncItJ8JdB1aBK8g3NPcTvJB44bkje4X/ bHU6nW3K/GnhAQXgO9sa0/KRmTATlDjSYtPz9G78wxfX9+nnReA= -----END CERTIFICATE-----Generated at Sun Jan 25 22:00:56 2026 by rpki-client