This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft File: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft (raw, json) Hash identifier: kz8HCBSJncVOW6uVMmPCMwgZDrrgnTrmHf75JMC6xjk= Subject key identifier: 01:58:F7:16:68:DA:B7:6B:16:BA:01:42:49:3C:2D:67:1E:02:2F:FB Authority key identifier: 40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD Certificate issuer: /CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Certificate serial: 09A9D98AE94EEA88D9D065B39FC6D29F5BF72BE5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft Manifest number: 0212 Signing time: Thu 04 Dec 2025 14:11:58 +0000 Manifest this update: Thu 04 Dec 2025 14:06:58 +0000 Manifest next update: Mon 08 Dec 2025 00:59:58 +0000 Files and hashes: 1: 401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl (hash: DtF2U252WyO4Ok9xJLUUeL99INZkpyI+WdSN+1zXve8=) 2: 3130332e3136302e36392e302f32342d3234203d3e20313431363037.roa (hash: HLjZFq4/Jnmag82Gv7W9QKBRIGp+gW90e9wOgTOi2PE=) 3: 3130332e3136302e36382e302f32342d3234203d3e203438343635.roa (hash: s3cZDsm3eCD/zirL0oonykymWlAaugzxDIFPlg5sAUQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 00:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a9:d9:8a:e9:4e:ea:88:d9:d0:65:b3:9f:c6:d2:9f:5b:f7:2b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD Validity Not Before: Dec 4 14:06:58 2025 GMT Not After : Dec 8 00:59:58 2025 GMT Subject: CN=0158F71668DAB76B16BA0142493C2D671E022FFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f8:ba:c8:7d:d6:4f:8c:41:02:55:2e:9a:f6: ab:e2:58:8c:e6:d2:16:c8:fc:ca:69:95:35:54:be: 21:72:3a:17:f3:49:04:bc:4b:6a:15:fa:a5:9c:8d: dd:ab:ab:68:b6:83:44:f9:5a:78:ab:02:81:09:1c: 9d:d0:7e:43:0b:76:ab:8a:7d:3a:fe:e6:4e:a9:30: 38:c4:96:6e:bb:b6:63:a6:2a:31:13:8b:38:e0:70: e9:1b:97:bb:59:6c:36:20:5a:9e:21:db:c9:dd:b0: 13:a6:34:e0:4d:c1:02:3c:da:d7:05:52:0d:60:72: e5:13:b8:9b:57:90:06:c4:c4:46:a7:16:2d:79:b8: 8e:e2:6d:08:92:5c:5a:12:96:ff:99:28:0d:04:62: 22:74:36:c6:34:b2:f5:c6:4a:f7:2c:9c:7a:a5:0c: 82:58:4c:23:12:33:1e:2a:03:0d:b0:09:4b:10:34: ef:51:0a:f6:30:e1:cc:25:42:eb:6b:d8:25:20:9e: 5a:84:33:ca:00:27:9e:e1:d5:70:3b:5b:7f:bc:b6: 2b:96:6f:db:ce:3a:3d:3f:16:37:fe:a1:e2:a9:93: 93:80:28:eb:0c:a5:ee:86:3b:50:48:20:89:f8:71: 3b:24:9d:bc:e1:0b:ca:d6:7d:e9:0d:9a:81:cb:59: 53:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:58:F7:16:68:DA:B7:6B:16:BA:01:42:49:3C:2D:67:1E:02:2F:FB X509v3 Authority Key Identifier: keyid:40:1A:A5:6A:F5:99:CC:A2:CD:71:A6:84:FF:CF:53:FF:F9:DD:E3:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dac79fbe-4790-46be-b9b2-0359b1a18e33/0/401AA56AF599CCA2CD71A684FFCF53FFF9DDE3DD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:25:f2:4c:0f:c4:5e:79:54:01:66:ce:1e:0b:8e:64:82:97: a1:4b:bf:5e:e6:c0:c0:81:7f:cd:6c:6d:f2:7c:a6:ce:7a:2a: cd:61:05:48:6e:23:ce:8a:5b:c3:b5:1e:e0:fa:c7:89:3c:a5: ef:c1:bb:db:c3:d5:3d:07:8f:8c:2d:44:dc:2e:4f:e5:37:f7: b1:73:60:75:70:ce:b7:62:e2:c3:6c:33:f3:28:11:0c:ee:c3: d5:db:d7:f3:cd:3f:42:49:ea:83:de:9f:eb:16:bb:07:6f:4b: 09:93:4f:7a:ff:eb:69:e2:0d:15:8c:3d:89:b6:4a:1e:39:25: e0:53:09:40:8a:35:d4:bb:3b:f0:07:b3:fb:55:97:1a:6c:ad: 55:9a:87:c5:9d:07:97:34:ec:20:3e:63:a5:f0:be:ec:ba:6d: fb:13:33:fc:0d:bc:be:6a:51:93:48:92:da:fe:72:30:19:64: 36:92:ea:fd:5d:f7:8c:64:58:a3:2e:54:4f:a7:7d:0c:c0:f6: d3:8a:e7:0a:3d:50:e0:20:90:89:2b:83:f2:27:9f:3b:9b:d4: 6c:70:9d:f6:ec:4c:0b:d9:ff:a3:15:c6:a0:40:bc:ce:63:ca: bd:3d:1f:f4:8c:db:b5:b9:43:a4:b4:1f:55:8c:d4:ce:49:b0: 4b:24:6e:95 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCanZiulO6ojZ0GWzn8bSn1v3K+UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZG OURERTNERDAeFw0yNTEyMDQxNDA2NThaFw0yNTEyMDgwMDU5NThaMDMxMTAvBgNV BAMTKDAxNThGNzE2NjhEQUI3NkIxNkJBMDE0MjQ5M0MyRDY3MUUwMjJGRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn+LrIfdZPjEECVS6a9qviWIzm 0hbI/MpplTVUviFyOhfzSQS8S2oV+qWcjd2rq2i2g0T5WnirAoEJHJ3QfkMLdquK fTr+5k6pMDjElm67tmOmKjETizjgcOkbl7tZbDYgWp4h28ndsBOmNOBNwQI82tcF Ug1gcuUTuJtXkAbExEanFi15uI7ibQiSXFoSlv+ZKA0EYiJ0NsY0svXGSvcsnHql DIJYTCMSMx4qAw2wCUsQNO9RCvYw4cwlQutr2CUgnlqEM8oAJ57h1XA7W3+8tiuW b9vOOj0/Fjf+oeKpk5OAKOsMpe6GO1BIIIn4cTsknbzhC8rWfekNmoHLWVNXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAVj3Fmjat2sWugFCSTwtZx4CL/swHwYDVR0j BBgwFoAUQBqlavWZzKLNcaaE/89T//nd490wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k YWM3OWZiZS00NzkwLTQ2YmUtYjliMi0wMzU5YjFhMThlMzMvMC80MDFBQTU2QUY1 OTlDQ0EyQ0Q3MUE2ODRGRkNGNTNGRkY5RERFM0RELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUzRkZGOURE RTNERC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGFjNzlmYmUtNDc5MC00NmJlLWI5 YjItMDM1OWIxYTE4ZTMzLzAvNDAxQUE1NkFGNTk5Q0NBMkNENzFBNjg0RkZDRjUz RkZGOURERTNERC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADol8kwPxF55VAFmzh4LjmSCl6FLv17mwMCB f81sbfJ8ps56Ks1hBUhuI86KW8O1HuD6x4k8pe/Bu9vD1T0Hj4wtRNwuT+U397Fz YHVwzrdi4sNsM/MoEQzuw9Xb1/PNP0JJ6oPen+sWuwdvSwmTT3r/62niDRWMPYm2 Sh45JeBTCUCKNdS7O/AHs/tVlxpsrVWah8WdB5c07CA+Y6Xwvuy6bfsTM/wNvL5q UZNIktr+cjAZZDaS6v1d94xkWKMuVE+nfQzA9tOK5wo9UOAgkIkrg/Innzub1Gxw nfbsTAvZ/6MVxqBAvM5jyr09H/SM27W5Q6S0H1WM1M5JsEskbpU= -----END CERTIFICATE-----Generated at Sun Dec 7 01:49:30 2025 by rpki-client