This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: prRi7TERDy1RUsIpd9YWhu15ysa0yaRO8NS9FAdVRaM= Subject key identifier: DD:19:1B:62:BB:C5:F2:82:45:45:DB:F7:10:2F:F4:6B:29:C2:A1:83 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 190E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 1905 Signing time: Mon 22 Dec 2025 16:13:06 +0000 Manifest this update: Mon 22 Dec 2025 16:13:06 +0000 Manifest next update: Mon 29 Dec 2025 16:13:06 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: KLUr/BbRp7O83xVfTqEGgE7j/tILNtmQR4fr7M3i2/I=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: cv0ZUc0lebxpCeCaHLbic5zL6MtIPbL3843SH+qN9Dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6414 (0x190e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Dec 22 16:13:06 2025 GMT Not After : Dec 29 16:13:06 2025 GMT Subject: CN=69496e12-fdbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:de:d0:da:ed:02:59:a9:63:4a:b0:75:b4:c4: f5:9f:32:0c:a9:fb:74:d7:75:d7:3b:97:51:32:df: a2:85:e9:27:21:50:01:c2:a8:f7:be:a0:84:1c:ec: 6b:4b:5d:02:d0:5d:41:12:7e:66:bc:5d:96:71:bb: ea:dd:ef:45:08:85:a6:43:d6:77:4d:e4:f6:00:80: 37:37:ee:40:9b:76:df:8f:82:78:c0:03:99:40:d4: 5d:09:19:a8:7f:01:ed:fc:68:75:21:bd:a9:0f:ba: fd:9d:f8:e9:af:bc:3d:1b:a3:27:49:6a:6f:86:e7: 9f:65:fc:d3:40:b9:94:b9:17:69:ad:78:62:3b:45: 37:ab:b4:61:6a:14:55:a2:99:9d:02:e2:bf:3f:6c: f4:ac:48:a1:bc:e5:59:f7:9d:88:f9:e3:39:c4:58: 4a:83:7b:a6:e5:80:b7:f5:2c:9e:df:d4:f4:d4:37: 63:d0:04:63:9f:40:f5:fd:45:3f:f3:3a:da:92:f5: f3:e0:3d:8f:81:eb:c2:75:c2:49:ea:b0:9b:1a:dd: 32:32:cd:3f:d8:3a:60:0c:c7:c9:d8:88:da:d5:a0: c6:84:b6:e3:79:0e:0e:78:a1:d4:cd:bf:4a:26:d5: c7:49:c7:a8:e4:8c:0d:d3:59:fa:1f:32:28:23:51: b1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:19:1B:62:BB:C5:F2:82:45:45:DB:F7:10:2F:F4:6B:29:C2:A1:83 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:32:d4:56:1c:c0:42:94:65:19:b9:dc:4e:37:cc:c0:04:c1: 5d:f2:96:bb:07:b1:dd:59:75:2c:bd:92:00:00:9e:d3:ec:36: 1c:32:33:25:7b:e2:a0:bd:b7:b3:a0:6e:bf:e5:8f:ac:1f:06: 29:0d:c1:7d:95:8b:57:b7:fc:1d:61:4c:c6:77:76:94:60:04: ae:03:c2:c2:d2:d4:d0:cd:ef:2a:c0:8b:d0:2c:de:ad:ae:ee: ad:f7:5f:68:b3:76:1d:21:fa:b8:8f:c0:f2:13:75:9f:a3:86: 36:8b:88:59:6d:7f:7e:8f:4b:d1:33:45:43:42:4a:6e:1a:a5: ed:63:95:48:1e:d5:77:d3:46:4c:e8:45:9e:04:cb:26:fe:1f: 7b:ac:b1:cf:b6:12:30:bd:dd:67:64:21:16:d4:54:33:ad:13: f7:8c:9a:d3:90:59:4e:7e:36:ff:6d:cf:02:d7:5f:b9:a6:0a: 4c:cb:e8:1b:97:9b:d4:c6:2a:41:c9:21:48:a9:23:31:e7:50: 5d:8a:d4:3d:db:f8:9a:37:84:9a:44:64:6b:4d:1a:00:a4:f5: 19:7d:1e:a4:04:91:89:a8:8f:ae:3d:6a:a0:e6:fb:d8:b0:13: f3:99:17:bd:dc:7c:a5:04:f8:a1:6e:34:f0:0a:fa:1d:cb:87: 44:ce:51:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUxMjIyMTYxMzA2WhcNMjUxMjI5MTYxMzA2WjAYMRYwFAYD VQQDDA02OTQ5NmUxMi1mZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqN7Q2u0CWaljSrB1tMT1nzIMqft013XXO5dRMt+iheknIVABwqj3vqCEHOxr S10C0F1BEn5mvF2Wcbvq3e9FCIWmQ9Z3TeT2AIA3N+5Am3bfj4J4wAOZQNRdCRmo fwHt/Gh1Ib2pD7r9nfjpr7w9G6MnSWpvhuefZfzTQLmUuRdprXhiO0U3q7RhahRV opmdAuK/P2z0rEihvOVZ952I+eM5xFhKg3um5YC39Sye39T01Ddj0ARjn0D1/UU/ 8zrakvXz4D2PgevCdcJJ6rCbGt0yMs0/2DpgDMfJ2Ija1aDGhLbjeQ4OeKHUzb9K JtXHSceo5IwN01n6HzIoI1GxBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0ZG2K7 xfKCRUXb9xAv9GspwqGDMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABMtRWHMBClGUZudxON8zABMFd8pa7B7HdWXUsvZIAAJ7T7DYcMjMl e+KgvbezoG6/5Y+sHwYpDcF9lYtXt/wdYUzGd3aUYASuA8LC0tTQze8qwIvQLN6t ru6t919os3YdIfq4j8DyE3Wfo4Y2i4hZbX9+j0vRM0VDQkpuGqXtY5VIHtV300ZM 6EWeBMsm/h97rLHPthIwvd1nZCEW1FQzrRP3jJrTkFlOfjb/bc8C11+5pgpMy+gb l5vUxipBySFIqSMx51BditQ92/iaN4SaRGRrTRoApPUZfR6kBJGJqI+uPWqg5vvY sBPzmRe93HylBPihbjTwCvody4dEzlEQ -----END CERTIFICATE-----Generated at Tue Dec 23 00:33:00 2025 by rpki-client