This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft File: ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft (raw, json) Hash identifier: 4R1lew4Fpcp1W7EJldukcAwgYXhC8G6Qk+8xWPZnPJY= Subject key identifier: 5C:62:01:8B:69:0B:70:E1:C0:57:80:C0:D6:45:BC:57:C8:14:1D:0D Authority key identifier: 22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 Certificate issuer: /CN=A911A828/serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft Manifest number: 0215 Signing time: Sun 21 Dec 2025 01:26:52 +0000 Manifest this update: Sun 21 Dec 2025 01:26:52 +0000 Manifest next update: Sun 28 Dec 2025 01:26:52 +0000 Files and hashes: 1: ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl (hash: 7sx5qrdN8Jk25I+NBrfYr7w/0TmimD3sTBC3Yws1H8A=) 2: E816DFFAA90111ED867DA161C4F9AE02.roa (hash: J+hbcg1f000uZywitLiVEmVwojqXye5u/Ee0tXQliec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A828, serialNumber=22603D6A33F06E0A9D10FBB1ED9E1D3749247001 Validity Not Before: Dec 21 01:26:52 2025 GMT Not After : Dec 28 01:26:52 2025 GMT Subject: CN=69474cdc-d4df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f9:f9:9a:f5:b0:9f:cf:f8:28:a0:97:4c:63: cf:d1:ea:e6:7c:5b:38:f3:1f:d0:30:c5:8a:f1:75: 8c:06:69:65:a9:17:63:38:ee:5d:76:14:95:e8:23: a2:8f:ff:44:2a:b6:61:06:c5:06:15:65:6e:1e:65: b9:3e:b2:e9:09:6a:27:d1:38:e9:cd:a7:b0:70:b3: eb:b5:f9:5a:14:42:45:ae:14:e6:0e:af:94:30:85: f1:36:5c:1c:75:8b:48:29:12:3d:9f:cc:b5:cf:c6: ac:7d:09:a9:61:6f:7f:7d:e2:b5:4c:cc:73:94:9a: 10:04:e3:7c:6a:b1:74:0a:74:b9:5e:67:91:8c:1e: 00:4b:53:e7:99:24:85:66:23:cf:36:fa:93:a1:92: 4a:7c:c1:d5:0f:cc:78:0b:e6:5a:5f:2f:a2:01:7c: 34:94:49:db:72:a8:b9:99:8c:06:65:a3:83:94:6c: 00:79:4f:4d:56:df:73:db:ec:8a:f6:e7:92:f9:ea: 71:44:d4:f0:49:4c:c7:72:21:9f:22:7e:33:da:cb: e1:6c:61:54:24:84:ea:c5:3b:3b:d2:b7:95:87:7b: f9:b9:8b:c1:42:b9:d9:e4:e7:b7:de:9a:92:2e:17: 80:c6:ab:cf:8c:e2:02:16:08:5c:62:73:8c:65:fd: 7c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:62:01:8B:69:0B:70:E1:C0:57:80:C0:D6:45:BC:57:C8:14:1D:0D X509v3 Authority Key Identifier: keyid:22:60:3D:6A:33:F0:6E:0A:9D:10:FB:B1:ED:9E:1D:37:49:24:70:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ImA9ajPwbgqdEPux7Z4dN0kkcAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A828/DDF9005AA8FE11ED9D50105DC4F9AE02/ImA9ajPwbgqdEPux7Z4dN0kkcAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:15:71:40:8a:c3:90:87:17:42:17:72:6e:7e:00:ae:66:a1: c3:fd:f2:91:78:12:f5:be:96:4e:2f:c4:e0:7a:c0:a5:e8:96: c4:43:4c:5e:78:92:28:db:c7:d0:85:fc:e7:1e:29:a0:1c:a3: ac:f8:9e:77:a7:a7:dd:cc:bc:58:01:19:69:b5:60:15:7b:f9: c2:71:09:cf:f9:85:ba:39:c8:cd:72:a9:a8:5c:8d:9d:bb:5b: ac:83:ee:f2:ae:a1:fb:e2:3a:de:c0:d9:30:f9:68:7a:b1:fb: 4c:d2:a6:97:06:22:91:2d:2c:3e:c1:14:ea:77:43:ff:d4:2c: 41:0d:84:b0:97:35:b5:65:aa:69:33:df:b6:de:a5:01:fd:2b: 2d:b8:69:af:fa:6a:db:e4:d2:dc:af:29:87:79:c4:db:83:cb: d2:2a:9b:2d:3f:40:b1:11:87:29:e0:41:d0:40:74:d2:9c:46: f9:43:3a:2b:82:f4:60:b3:f1:27:ed:e5:e8:28:cc:dc:62:82: 58:89:6d:0f:9a:37:a9:12:c8:be:0f:82:8c:c4:20:df:d5:85: 20:ed:9a:59:22:c0:f7:79:f1:e0:3e:cc:54:ff:5b:f0:cd:09: 51:6e:c5:97:0c:a3:67:1e:16:c8:60:80:87:4d:7d:a3:35:4a: 77:3e:47:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE4MjgxMTAvBgNVBAUTKDIyNjAzRDZBMzNGMDZFMEE5RDEwRkJCMUVEOUUxRDM3 NDkyNDcwMDEwHhcNMjUxMjIxMDEyNjUyWhcNMjUxMjI4MDEyNjUyWjAYMRYwFAYD VQQDDA02OTQ3NGNkYy1kNGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfn5mvWwn8/4KKCXTGPP0ermfFs48x/QMMWK8XWMBmllqRdjOO5ddhSV6COi j/9EKrZhBsUGFWVuHmW5PrLpCWon0TjpzaewcLPrtflaFEJFrhTmDq+UMIXxNlwc dYtIKRI9n8y1z8asfQmpYW9/feK1TMxzlJoQBON8arF0CnS5XmeRjB4AS1PnmSSF ZiPPNvqToZJKfMHVD8x4C+ZaXy+iAXw0lEnbcqi5mYwGZaODlGwAeU9NVt9z2+yK 9ueS+epxRNTwSUzHciGfIn4z2svhbGFUJITqxTs70reVh3v5uYvBQrnZ5Oe33pqS LheAxqvPjOICFghcYnOMZf18SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFxiAYtp C3DhwFeAwNZFvFfIFB0NMB8GA1UdIwQYMBaAFCJgPWoz8G4KnRD7se2eHTdJJHAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTgyOC9EREY5MDA1QUE4 RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2JncWRFUHV4N1o0ZE4wa2tj QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ltQTlhalB3YmdxZEVQdXg3WjRkTjBra2NBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTgyOC9EREY5MDA1QUE4RkUxMUVEOUQ1MDEwNURDNEY5QUUwMi9JbUE5YWpQd2Jn cWRFUHV4N1o0ZE4wa2tjQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXFXFAisOQhxdCF3JufgCuZqHD/fKReBL1vpZOL8TgesCl6JbEQ0xe eJIo28fQhfznHimgHKOs+J53p6fdzLxYARlptWAVe/nCcQnP+YW6OcjNcqmoXI2d u1usg+7yrqH74jrewNkw+Wh6sftM0qaXBiKRLSw+wRTqd0P/1CxBDYSwlzW1Zapp M9+23qUB/SstuGmv+mrb5NLcrymHecTbg8vSKpstP0CxEYcp4EHQQHTSnEb5Qzor gvRgs/En7eXoKMzcYoJYiW0PmjepEsi+D4KMxCDf1YUg7ZpZIsD3efHgPsxU/1vw zQlRbsWXDKNnHhbIYICHTX2jNUp3Pkdk -----END CERTIFICATE-----Generated at Sun Dec 21 08:45:24 2025 by rpki-client