This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft File: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft (raw, json) Hash identifier: /dEGt6XOHk1Tp97ioycv7z/gY3vP9NxijbczId9RMhQ= Subject key identifier: 7C:39:95:E9:4F:0E:68:28:A3:3C:36:2F:FB:36:9C:AC:C8:37:90:1F Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Certificate serial: 274EEC1F1999B587CB789E8F4D61B72E75D684A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft Manifest number: F8 Signing time: Sat 06 Dec 2025 22:32:09 +0000 Manifest this update: Sat 06 Dec 2025 22:27:09 +0000 Manifest next update: Wed 10 Dec 2025 09:28:09 +0000 Files and hashes: 1: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (hash: VPuK+1+6ePV1CKusC5qXhYaOQr6/W2sAl7gu8K+R3ug=) 2: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl (hash: lqu8DheoLn+PwUIQW6lE8tzASXdjGgTOWi+daXgtWy8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:4e:ec:1f:19:99:b5:87:cb:78:9e:8f:4d:61:b7:2e:75:d6:84:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Validity Not Before: Dec 6 22:27:09 2025 GMT Not After : Dec 10 09:28:09 2025 GMT Subject: CN=7C3995E94F0E6828A33C362FFB369CACC837901F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:4a:14:5a:e5:88:73:91:a5:75:61:12:43:4e: d3:10:75:6e:d2:40:91:4a:a7:5b:51:f4:51:84:1b: 3a:c5:a1:1b:c5:3d:9e:a2:be:a9:4d:9f:ef:6b:a9: 23:22:6a:54:53:8f:1a:3b:a2:49:10:29:96:6f:51: 0b:e1:5c:5c:50:2a:81:22:1a:f4:df:f3:07:dd:f1: 3c:9b:a1:e4:d2:dc:31:fa:31:11:00:80:dc:d8:d1: 5f:13:35:a8:29:57:2d:fa:42:4b:e0:9d:fe:a5:1e: 9b:6e:6f:7c:b2:21:79:23:0d:57:66:ca:55:4e:29: e4:36:82:b3:fd:1b:52:bd:7a:ad:f3:d1:ef:90:66: 78:53:42:5e:d9:e2:3d:a8:4d:fb:bf:00:76:68:05: 8b:cf:3d:94:59:ee:cc:42:13:0b:05:21:10:4e:aa: ae:66:79:f8:3f:89:9e:3b:44:4f:60:04:e2:47:33: 97:8a:4a:dd:9e:bf:da:6a:bf:57:17:3b:4e:54:00: 31:72:11:86:70:a0:7c:0d:3d:4c:43:85:1c:a5:9d: 3e:f8:7d:67:63:cd:a6:bf:d5:dd:05:d1:95:39:77: 07:ec:f9:0c:68:7b:0e:ed:c9:6d:72:a1:d3:70:7d: 02:0a:c5:09:56:c3:c1:8a:37:14:6f:21:ec:72:3d: 0a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:39:95:E9:4F:0E:68:28:A3:3C:36:2F:FB:36:9C:AC:C8:37:90:1F X509v3 Authority Key Identifier: keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:5c:03:bb:b3:26:f1:62:ae:ba:f8:7d:cc:5c:d8:e2:67:d9: 9f:ae:04:3d:74:57:d5:ca:9f:a3:5c:f3:8e:0a:77:8b:33:e0: 5b:aa:03:2e:30:08:d0:4f:fd:ec:50:98:b4:20:7a:46:ee:b7: bf:b7:91:bc:95:1f:1a:2e:bc:76:73:e8:51:fc:4e:91:86:40: 89:d8:bf:df:ef:5d:38:2c:ac:69:ba:10:26:b4:e8:d6:5b:6c: fb:57:2e:a7:8b:fb:b4:c5:fb:4d:68:1b:b2:73:f8:6f:7d:cf: ad:64:31:68:67:ea:6f:ba:46:c7:2c:17:2c:0a:64:9f:f5:03: 51:9d:fe:f5:e6:ad:df:70:40:18:a0:e0:9c:6c:dc:aa:22:9e: 0c:a0:cd:e0:cd:12:7d:d6:8f:dc:46:98:6e:97:bf:c7:a9:c3: 80:ad:ad:ee:d3:20:75:8b:15:57:42:fd:79:7e:e0:94:45:f6: 17:0b:69:8f:16:72:4e:07:e6:a7:be:8d:30:c4:44:af:f8:68: 96:7f:23:5c:d6:4a:6e:7a:64:71:af:f4:11:48:68:d1:3c:02: 3d:97:c1:a4:29:3c:05:e2:de:4a:6e:60:00:5a:2a:6d:19:a2: 0f:bd:ab:51:dc:5f:f3:7a:64:5b:bd:19:c9:77:f2:38:93:a7: fe:b3:0b:1a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ07sHxmZtYfLeJ6PTWG3LnXWhKYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4 Rjg1MkJBQTAeFw0yNTEyMDYyMjI3MDlaFw0yNTEyMTAwOTI4MDlaMDMxMTAvBgNV BAMTKDdDMzk5NUU5NEYwRTY4MjhBMzNDMzYyRkZCMzY5Q0FDQzgzNzkwMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVShRa5YhzkaV1YRJDTtMQdW7S QJFKp1tR9FGEGzrFoRvFPZ6ivqlNn+9rqSMialRTjxo7okkQKZZvUQvhXFxQKoEi GvTf8wfd8TyboeTS3DH6MREAgNzY0V8TNagpVy36Qkvgnf6lHptub3yyIXkjDVdm ylVOKeQ2grP9G1K9eq3z0e+QZnhTQl7Z4j2oTfu/AHZoBYvPPZRZ7sxCEwsFIRBO qq5mefg/iZ47RE9gBOJHM5eKSt2ev9pqv1cXO05UADFyEYZwoHwNPUxDhRylnT74 fWdjzaa/1d0F0ZU5dwfs+Qxoew7tyW1yodNwfQIKxQlWw8GKNxRvIexyPQoNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfDmV6U8OaCijPDYv+zacrMg3kB8wHwYDVR0j BBgwFoAUQJScfJ3Q0/iZaB/y61PknI+FK6owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWRhZTk3Zi0xYWQxLTRiMzQtOGZlOS0xYmM2NWIwOTA4ZjMvMC80MDk0OUM3QzlE RDBEM0Y4OTk2ODFGRjJFQjUzRTQ5QzhGODUyQkFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4Rjg1 MkJBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODlkYWU5N2YtMWFkMS00YjM0LThm ZTktMWJjNjViMDkwOGYzLzAvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0 OUM4Rjg1MkJBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABVcA7uzJvFirrr4fcxc2OJn2Z+uBD10V9XK n6Nc844Kd4sz4FuqAy4wCNBP/exQmLQgekbut7+3kbyVHxouvHZz6FH8TpGGQInY v9/vXTgsrGm6ECa06NZbbPtXLqeL+7TF+01oG7Jz+G99z61kMWhn6m+6RscsFywK ZJ/1A1Gd/vXmrd9wQBig4Jxs3KoingygzeDNEn3Wj9xGmG6Xv8epw4Ctre7TIHWL FVdC/Xl+4JRF9hcLaY8Wck4H5qe+jTDERK/4aJZ/I1zWSm56ZHGv9BFIaNE8Aj2X waQpPAXi3kpuYABaKm0Zog+9q1HcX/N6ZFu9Gcl38jiTp/6zCxo= -----END CERTIFICATE-----Generated at Sun Dec 7 18:51:50 2025 by rpki-client