This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft File: 40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft (raw, json) Hash identifier: kt4QerP7dTceQLKIuM9V0MOy+oceaxDCQEhcqafn/eA= Subject key identifier: 48:55:8A:88:77:C2:DE:DC:E4:5F:DF:83:1C:FD:0F:79:7D:B0:AD:A3 Authority key identifier: 40:B2:84:02:A8:91:E6:B3:4E:B9:A2:F6:AF:76:CB:17:DA:9B:00:3A Certificate issuer: /CN=40B28402A891E6B34EB9A2F6AF76CB17DA9B003A Certificate serial: 52CBA5540675341227878C0249417F347EAE95CE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft Manifest number: 022C Signing time: Sun 01 Feb 2026 01:21:59 +0000 Manifest this update: Sun 01 Feb 2026 01:16:59 +0000 Manifest next update: Wed 04 Feb 2026 09:26:59 +0000 Files and hashes: 1: 40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.crl (hash: qUYM99NS/R0k5fDX4SlhlYyAXsc1fup6Na8LdyYSh3c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.crl rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Feb 2026 09:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:cb:a5:54:06:75:34:12:27:87:8c:02:49:41:7f:34:7e:ae:95:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40B28402A891E6B34EB9A2F6AF76CB17DA9B003A Validity Not Before: Feb 1 01:16:59 2026 GMT Not After : Feb 4 09:26:59 2026 GMT Subject: CN=48558A8877C2DEDCE45FDF831CFD0F797DB0ADA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e8:93:b7:bb:c2:09:90:f1:37:14:af:09:58: d3:b0:30:b5:9c:f2:3b:a6:ca:81:22:c9:3b:ca:12: 63:cd:d1:f7:1e:6e:7a:4e:d0:28:c6:95:47:27:a3: 27:76:ea:e6:18:7e:9a:81:9d:5c:20:72:2b:a2:08: 7c:fd:79:0a:34:21:f9:69:75:5a:f5:f1:95:07:68: 79:b4:ff:90:ab:af:9b:94:ef:ca:91:3e:7d:2f:31: 4c:40:bc:e3:70:13:46:50:86:f6:cc:1d:60:06:39: 63:96:62:13:62:46:fb:8c:79:70:4c:74:ba:25:0d: 64:71:04:5e:25:23:18:39:aa:96:f0:3c:fb:42:fd: 0c:c6:c8:2d:eb:57:2d:02:8a:0b:61:e0:31:c0:79: 3d:01:0a:c9:93:2a:7f:b2:76:bd:d3:0d:05:c0:88: bd:95:57:fd:16:b2:b0:e2:70:91:29:6a:cd:d4:c2: b1:53:3d:7b:69:e8:92:41:87:19:a5:c6:b5:53:b2: 67:42:e9:c7:89:06:67:73:20:62:7a:da:64:f0:f9: 3f:22:66:3e:6a:e7:4a:e8:74:23:48:98:fc:d7:6c: 82:05:fa:45:fa:db:91:6d:43:b0:1f:69:32:5e:9d: a0:c2:52:e7:07:43:59:33:54:8e:6d:87:c1:5f:4b: 83:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:55:8A:88:77:C2:DE:DC:E4:5F:DF:83:1C:FD:0F:79:7D:B0:AD:A3 X509v3 Authority Key Identifier: keyid:40:B2:84:02:A8:91:E6:B3:4E:B9:A2:F6:AF:76:CB:17:DA:9B:00:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a72bb871-018d-4d21-9913-fc946c38794f/0/40B28402A891E6B34EB9A2F6AF76CB17DA9B003A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:98:6c:24:68:0b:8a:01:90:c4:bc:9d:d6:5e:5a:21:0f:71: a5:cd:b7:1b:f7:ea:cd:26:aa:1f:31:b5:e6:66:f8:8b:18:21: fd:eb:c8:9e:84:9d:33:0a:bc:eb:69:17:c7:4f:03:a1:fa:25: 5b:c5:3c:ad:ca:c1:0a:45:73:0f:cf:46:53:41:b8:40:0f:1c: 39:a0:8b:45:6f:c6:7f:ec:17:03:ea:01:9a:60:32:d7:a2:08: f1:e0:64:5e:da:c5:fa:b3:55:24:8f:df:b3:af:84:70:ee:89: c3:2e:70:f1:b6:24:15:57:0e:76:10:3f:18:f2:70:e6:09:b5: 33:bb:fd:dd:2a:c0:9f:91:f1:c6:22:7b:fa:53:6d:65:a6:c0: ab:66:79:31:84:52:2c:ac:9d:67:40:cb:aa:0f:68:1c:7e:fc: e5:ac:9a:c3:ba:c1:bf:a9:21:e8:57:85:e4:97:72:50:06:2c: b9:00:43:50:72:c4:cd:9c:98:fa:6e:4a:6e:e1:11:63:a5:9f: ed:05:43:03:d5:69:95:aa:17:47:69:b8:d9:8b:ab:d6:b9:c5: b2:f8:f8:a6:b0:a2:2e:85:8e:9b:79:4c:82:dc:c3:2a:79:57: 3c:c3:e8:ea:c1:90:af:15:80:20:ac:1b:6e:05:e0:1d:fa:b0: 78:8b:e0:28 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUsulVAZ1NBInh4wCSUF/NH6ulc4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBCMjg0MDJBODkxRTZCMzRFQjlBMkY2QUY3NkNCMTdE QTlCMDAzQTAeFw0yNjAyMDEwMTE2NTlaFw0yNjAyMDQwOTI2NTlaMDMxMTAvBgNV BAMTKDQ4NTU4QTg4NzdDMkRFRENFNDVGREY4MzFDRkQwRjc5N0RCMEFEQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDs6JO3u8IJkPE3FK8JWNOwMLWc 8jumyoEiyTvKEmPN0fcebnpO0CjGlUcnoyd26uYYfpqBnVwgciuiCHz9eQo0Iflp dVr18ZUHaHm0/5Crr5uU78qRPn0vMUxAvONwE0ZQhvbMHWAGOWOWYhNiRvuMeXBM dLolDWRxBF4lIxg5qpbwPPtC/QzGyC3rVy0Cigth4DHAeT0BCsmTKn+ydr3TDQXA iL2VV/0WsrDicJEpas3UwrFTPXtp6JJBhxmlxrVTsmdC6ceJBmdzIGJ62mTw+T8i Zj5q50rodCNImPzXbIIF+kX625FtQ7AfaTJenaDCUucHQ1kzVI5th8FfS4NzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSFWKiHfC3tzkX9+DHP0PeX2wraMwHwYDVR0j BBgwFoAUQLKEAqiR5rNOuaL2r3bLF9qbADowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NzJiYjg3MS0wMThkLTRkMjEtOTkxMy1mYzk0NmMzODc5NGYvMC80MEIyODQwMkE4 OTFFNkIzNEVCOUEyRjZBRjc2Q0IxN0RBOUIwMDNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDBCMjg0MDJBODkxRTZCMzRFQjlBMkY2QUY3NkNCMTdEQTlC MDAzQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTcyYmI4NzEtMDE4ZC00ZDIxLTk5 MTMtZmM5NDZjMzg3OTRmLzAvNDBCMjg0MDJBODkxRTZCMzRFQjlBMkY2QUY3NkNC MTdEQTlCMDAzQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC6YbCRoC4oBkMS8ndZeWiEPcaXNtxv36s0m qh8xteZm+IsYIf3ryJ6EnTMKvOtpF8dPA6H6JVvFPK3KwQpFcw/PRlNBuEAPHDmg i0Vvxn/sFwPqAZpgMteiCPHgZF7axfqzVSSP37OvhHDuicMucPG2JBVXDnYQPxjy cOYJtTO7/d0qwJ+R8cYie/pTbWWmwKtmeTGEUiysnWdAy6oPaBx+/OWsmsO6wb+p IehXheSXclAGLLkAQ1ByxM2cmPpuSm7hEWOln+0FQwPVaZWqF0dpuNmLq9a5xbL4 +Kawoi6Fjpt5TILcwyp5VzzD6OrBkK8VgCCsG24F4B36sHiL4Cg= -----END CERTIFICATE-----Generated at Mon Feb 2 10:06:56 2026 by rpki-client