This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: HLNpQC4JB18WQt+W+yRMNljlm3S5l+7XgmAqHZbCv5Y= Subject key identifier: 32:22:16:F9:7D:30:0C:F8:F4:41:A1:47:A6:38:04:1D:DA:43:F3:1D Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1332 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 131D Signing time: Thu 18 Dec 2025 16:52:56 +0000 Manifest this update: Thu 18 Dec 2025 16:52:55 +0000 Manifest next update: Thu 25 Dec 2025 16:52:55 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: eCsYs4IbuyGEk7Gs/GVKrPIVtVa0epuMb15wBjLT4aA=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: F64rTtQK62WkoJ4T7LBeaKOnYlMCrnrGJqKnlzvZNxc=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: V0JrvauXWXNDpsL43DjdmMpgmoTrusHbq711Y8hqbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4914 (0x1332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Dec 18 16:52:55 2025 GMT Not After : Dec 25 16:52:55 2025 GMT Subject: CN=69443168-09dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:83:2d:ce:c4:55:3f:c2:12:31:fd:dc:a6:3d: 32:b6:ec:76:c0:ab:11:4b:99:26:5d:9e:23:7e:4d: a3:8e:94:34:b6:6c:55:78:9d:6a:bb:70:89:5d:b7: aa:35:dc:9f:2b:11:99:74:96:a1:e4:7c:70:36:ad: 3c:43:0d:3c:a8:c9:ac:f7:ca:63:2b:7d:7f:67:82: c6:13:b7:dc:02:95:5f:18:d1:f9:12:ee:d9:1d:6a: c9:fe:4e:3a:62:ec:a8:1f:2b:25:e9:19:c4:13:e8: 17:9c:cd:c7:9a:c3:da:c0:52:ce:fb:14:70:71:ee: 13:d5:89:f7:48:dc:3f:85:49:dd:33:2f:33:28:e7: 34:97:d8:1a:3e:e0:d2:4d:06:5c:65:3e:77:d6:9a: 13:02:82:e3:d4:a4:10:0d:f6:43:66:17:cc:7d:75: 57:4d:a3:9a:70:b3:e7:6a:38:bc:4e:3f:3a:dd:84: d8:b6:db:53:13:da:18:0e:af:52:05:52:49:7a:95: 6b:b5:94:8c:3a:a8:38:bc:b3:44:cb:27:1f:86:ac: b8:0e:45:85:e1:eb:1d:46:7a:8f:7b:72:18:9e:8d: c3:b1:9e:13:9a:f3:be:ce:7c:b0:ab:a0:55:d6:09: ba:15:cc:73:91:de:f1:1b:de:cb:49:f9:17:de:82: 93:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:22:16:F9:7D:30:0C:F8:F4:41:A1:47:A6:38:04:1D:DA:43:F3:1D X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:9f:9d:11:8c:8a:17:6d:fa:23:0e:8f:23:24:ba:85:06:53: f4:b6:a4:d7:dd:e4:12:58:25:24:c3:4d:ad:78:a4:b2:95:cb: c0:c8:41:c2:3f:f7:ae:17:02:04:0b:48:a6:05:d9:15:94:fb: f7:06:fc:64:e6:92:58:59:fc:8c:b2:2c:98:12:da:57:10:b6: 81:bb:9c:06:2d:a6:70:29:cd:03:fe:d1:77:a0:e4:63:37:aa: 85:1c:6d:01:a2:50:8a:3d:9c:51:18:d3:fe:67:e8:b0:51:c0: e7:be:60:56:9a:f4:41:63:28:e7:2a:04:5d:34:4c:20:7c:b9: 47:34:57:8a:99:44:8e:fe:63:e4:61:32:69:6b:15:8f:1b:ca: ec:ac:b6:d7:13:6b:c2:f3:5c:2d:43:36:48:49:ac:36:aa:86: c7:34:d0:6e:6d:a1:50:59:85:60:8d:2c:ca:13:b9:d9:09:48: 29:34:50:49:59:b9:3d:df:da:6e:2b:8d:20:6d:b2:08:f8:9d: 93:7e:86:f0:a8:e7:9c:f4:e7:c0:dc:85:cc:df:7f:99:1f:2b: 82:ad:a6:f8:66:4e:07:51:4e:1f:a4:32:a2:9f:c3:26:18:e6: c0:87:7b:08:0e:af:92:91:cd:e3:d6:22:df:d3:ad:21:8f:a7: ec:52:82:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUxMjE4MTY1MjU1WhcNMjUxMjI1MTY1MjU1WjAYMRYwFAYD VQQDDA02OTQ0MzE2OC0wOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIMtzsRVP8ISMf3cpj0ytux2wKsRS5kmXZ4jfk2jjpQ0tmxVeJ1qu3CJXbeq NdyfKxGZdJah5HxwNq08Qw08qMms98pjK31/Z4LGE7fcApVfGNH5Eu7ZHWrJ/k46 YuyoHysl6RnEE+gXnM3HmsPawFLO+xRwce4T1Yn3SNw/hUndMy8zKOc0l9gaPuDS TQZcZT531poTAoLj1KQQDfZDZhfMfXVXTaOacLPnaji8Tj863YTYtttTE9oYDq9S BVJJepVrtZSMOqg4vLNEyycfhqy4DkWF4esdRnqPe3IYno3DsZ4TmvO+znywq6BV 1gm6Fcxzkd7xG97LSfkX3oKT2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIiFvl9 MAz49EGhR6Y4BB3aQ/MdMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCln50RjIoXbfojDo8jJLqFBlP0tqTX3eQSWCUkw02teKSylcvAyEHC P/euFwIEC0imBdkVlPv3Bvxk5pJYWfyMsiyYEtpXELaBu5wGLaZwKc0D/tF3oORj N6qFHG0BolCKPZxRGNP+Z+iwUcDnvmBWmvRBYyjnKgRdNEwgfLlHNFeKmUSO/mPk YTJpaxWPG8rsrLbXE2vC81wtQzZISaw2qobHNNBubaFQWYVgjSzKE7nZCUgpNFBJ Wbk939puK40gbbII+J2TfobwqOec9OfA3IXM33+ZHyuCrab4Zk4HUU4fpDKin8Mm GObAh3sIDq+Skc3j1iLf060hj6fsUoLO -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:39 2025 by rpki-client