This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: PcFqfqw3ZIrLJMXcMlZsgFxgHqSeNxRhuy6YRms2j1c= Subject key identifier: 90:4A:4E:CF:95:11:41:81:1B:84:32:D2:4D:23:08:0F:99:5F:A9:A7 Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: 016E Signing time: Sun 21 Dec 2025 03:04:47 +0000 Manifest this update: Sun 21 Dec 2025 03:04:47 +0000 Manifest next update: Sun 28 Dec 2025 03:04:47 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: QoAp2kNSdtZwU8rEQ0xZrmfDMjcbfqr/Isy3jfkNlR8=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: ruTuAI8tCOCbFuPP+2u83Ib06u3MS/nsClPmyXw7xNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68, serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: Dec 21 03:04:47 2025 GMT Not After : Dec 28 03:04:47 2025 GMT Subject: CN=694763cf-3f6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:db:83:86:0b:e7:06:0f:51:7a:68:06:0d:ef: c1:7c:73:c0:46:62:c7:c2:fb:b6:06:b3:bb:e7:9b: 0f:e0:9b:33:54:fc:ea:ec:fb:22:8b:44:2c:ac:67: 48:07:10:c5:0e:3f:94:4f:aa:45:b8:7a:d6:5d:f3: 1b:04:a4:c9:5f:16:e2:0d:48:85:6a:08:d1:e1:3f: 28:af:a4:e1:9f:36:dc:a9:13:cc:af:71:6c:50:fb: 3c:64:ae:32:9d:82:57:4d:c7:d2:f6:01:b5:2b:78: 8b:60:e6:98:54:d7:6d:20:cf:8c:63:6e:d6:c8:35: 81:81:fa:65:ec:77:35:83:79:44:76:c8:7c:a5:e8: dc:10:72:f9:3a:62:a1:4d:28:b9:65:ee:c3:ed:75: 9b:eb:e5:45:fb:6c:02:b0:aa:dd:5f:b4:3c:82:aa: 07:0c:fa:83:41:a0:63:65:a7:dd:26:31:17:c6:3a: c3:8c:cd:78:7f:60:ce:76:9a:2c:f4:c1:48:e8:34: a4:79:71:6f:e8:a5:7c:16:6a:18:66:56:a1:5f:21: 16:e4:bf:8f:44:f5:98:81:a2:1a:a3:6c:c3:05:d2: 65:d6:57:9b:b2:2d:b3:c2:3a:96:8e:ac:21:78:f2: 19:98:57:cc:b7:3d:1d:18:ec:3b:99:b1:12:c0:31: a6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4A:4E:CF:95:11:41:81:1B:84:32:D2:4D:23:08:0F:99:5F:A9:A7 X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:57:78:9f:70:98:c1:d3:2b:53:1e:68:0c:ee:f6:71:ba:5c: 50:c7:44:06:ed:2a:e7:fe:50:90:ff:83:de:14:b8:3d:3e:61: d5:9a:ae:26:8f:7b:ef:1d:1a:90:ad:4a:63:28:8f:64:08:fd: 91:70:2f:7d:e4:7f:c5:f7:0b:4f:e1:5d:5d:a9:8a:f5:a5:2c: 1c:3c:71:c2:29:a4:eb:17:f3:04:70:09:5a:e4:ed:e1:0b:b6: e2:bb:1f:d4:86:22:e8:e1:3d:ae:75:2c:51:1a:4b:b6:80:c0: 9d:4f:24:55:c5:81:46:b4:cc:26:5b:8a:10:90:58:f5:d1:f1: f2:0e:4d:e4:13:c2:e1:09:59:32:7b:ac:ab:55:8f:21:fc:12: 44:de:f9:c0:b0:ff:f3:5c:5e:96:9a:b2:ae:af:09:93:be:63: b5:b4:a2:56:a9:17:f9:40:c9:93:fb:fb:2f:1f:bb:8b:33:37: 1c:3f:05:21:0b:c8:61:98:da:ae:a9:bd:a6:ef:55:92:96:e9: 52:67:0e:1a:75:7a:8b:12:c1:d8:c6:6a:0a:78:be:64:59:c4: e5:46:16:2d:fd:1a:c9:8a:f6:03:a4:dd:ab:5b:ec:75:d6:f2: 8a:38:e9:86:9c:72:c4:67:a3:d8:5d:20:1c:a2:9b:81:d1:a8: b1:b9:12:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjUxMjIxMDMwNDQ3WhcNMjUxMjI4MDMwNDQ3WjAYMRYwFAYD VQQDDA02OTQ3NjNjZi0zZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNuDhgvnBg9RemgGDe/BfHPARmLHwvu2BrO755sP4JszVPzq7Psii0QsrGdI BxDFDj+UT6pFuHrWXfMbBKTJXxbiDUiFagjR4T8or6ThnzbcqRPMr3FsUPs8ZK4y nYJXTcfS9gG1K3iLYOaYVNdtIM+MY27WyDWBgfpl7Hc1g3lEdsh8pejcEHL5OmKh TSi5Ze7D7XWb6+VF+2wCsKrdX7Q8gqoHDPqDQaBjZafdJjEXxjrDjM14f2DOdpos 9MFI6DSkeXFv6KV8FmoYZlahXyEW5L+PRPWYgaIao2zDBdJl1lebsi2zwjqWjqwh ePIZmFfMtz0dGOw7mbESwDGmRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBKTs+V EUGBG4Qy0k0jCA+ZX6mnMB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4V3ifcJjB0ytTHmgM7vZxulxQx0QG7Srn/lCQ/4PeFLg9PmHVmq4m j3vvHRqQrUpjKI9kCP2RcC995H/F9wtP4V1dqYr1pSwcPHHCKaTrF/MEcAla5O3h C7biux/UhiLo4T2udSxRGku2gMCdTyRVxYFGtMwmW4oQkFj10fHyDk3kE8LhCVky e6yrVY8h/BJE3vnAsP/zXF6WmrKurwmTvmO1tKJWqRf5QMmT+/svH7uLMzccPwUh C8hhmNquqb2m71WSlulSZw4adXqLEsHYxmoKeL5kWcTlRhYt/RrJivYDpN2rW+x1 1vKKOOmGnHLEZ6PYXSAcopuB0aixuRLz -----END CERTIFICATE-----Generated at Mon Dec 22 03:50:01 2025 by rpki-client