This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: gVAfxpzuexcucNNj93dE9smTX09cxeaZBhtU/3dI/tM= Subject key identifier: 43:2C:B0:E2:86:B5:99:87:E3:73:EF:0E:58:2E:D0:18:4C:B8:6D:44 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 0281 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 0270 Signing time: Fri 19 Dec 2025 00:51:37 +0000 Manifest this update: Fri 19 Dec 2025 00:51:37 +0000 Manifest next update: Fri 26 Dec 2025 00:51:37 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: 5YyEURl2PVYvKnpdXwiFkvOM8zXMmvAAJtAu660uk5M=) 2: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (hash: meFnR87+GI3v6nomBtYeU7WZPVYP4nD3qbJitsfc+J0=) 3: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (hash: Xm8YDhtFdsbSB/JaCf1eeLvxGvfVGvAsGyj9y3iXBIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 641 (0x281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Dec 19 00:51:37 2025 GMT Not After : Dec 26 00:51:37 2025 GMT Subject: CN=6944a199-3808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7a:06:13:fc:67:53:4c:7d:88:5a:95:bd:96: 62:bf:8e:52:aa:53:89:f6:74:45:d0:54:e3:46:34: 91:8f:3a:1a:db:52:60:4e:42:3c:ef:e9:8a:87:33: 95:7c:65:03:32:b1:0f:2a:ae:69:74:cb:8b:f4:7e: ce:47:cd:07:25:1d:96:40:9c:77:38:1e:c1:ba:35: de:bc:86:c8:eb:6a:60:f9:ff:9e:02:7c:cf:2e:3f: ff:dd:8c:53:97:cd:47:24:e2:8e:e0:3a:1d:e6:e7: c0:d3:57:17:92:45:c1:a0:85:e0:41:36:34:c8:b3: fa:17:b9:47:3e:af:9f:0a:75:80:3e:6d:64:c8:71: 5b:1e:47:49:1f:79:04:87:42:97:e9:b2:9f:38:fe: 9b:8e:e6:7b:94:90:98:cd:29:e2:df:a2:be:de:29: 04:59:3a:d8:f6:ad:6d:66:34:e9:35:51:f5:8f:6d: f5:69:1f:05:42:e8:e9:cf:f3:93:64:57:df:02:ce: 4f:e4:79:b7:c1:27:58:64:aa:d0:4a:07:5a:89:92: a8:d3:93:26:07:5e:d1:3b:0c:3b:e6:a5:9f:77:52: 39:cc:ee:dd:cf:e6:3e:a7:81:8c:84:25:4f:dc:1d: 10:83:36:1a:e4:82:47:e5:c6:5a:74:04:51:27:b7: b9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:2C:B0:E2:86:B5:99:87:E3:73:EF:0E:58:2E:D0:18:4C:B8:6D:44 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:5f:50:18:6b:68:ca:4d:69:8c:a0:97:53:de:51:91:f8:25: a5:f1:60:a7:2a:51:40:7f:42:bc:3f:ae:de:ab:bf:93:db:84: ab:8a:0d:f8:26:87:7b:ad:c1:7e:98:c9:b0:79:40:f6:e9:a0: 0c:1d:23:46:63:53:55:f7:81:57:63:f8:38:2c:63:8d:0a:90: 14:f9:f2:15:02:47:25:b3:d0:6b:52:07:14:58:74:ca:cd:dc: 0e:7f:4e:f0:a4:7b:22:f3:95:03:77:2e:10:1d:ef:13:ce:63: 5d:bf:da:32:d3:db:36:d1:ac:31:ca:82:eb:3a:04:fe:5d:8f: 75:da:c9:d8:ae:b5:71:4c:9d:5e:9d:11:11:1e:f3:76:69:0d: 3e:17:14:9f:8e:87:89:48:78:9c:58:69:b3:8c:7f:17:1e:10: bc:0c:c0:69:88:1f:e6:b5:96:68:f4:c1:fe:1d:46:3a:2b:69: ba:d3:ae:c3:de:ea:e7:70:37:97:8e:37:b6:aa:aa:d7:0e:5f: cc:78:a4:38:d3:93:40:f5:eb:c3:04:1d:60:4a:21:f4:8f:b8: 49:24:fb:c4:47:4c:64:19:fd:ce:ce:7e:bd:8b:e8:9c:73:a6: ae:b2:cc:5b:70:b2:a3:a9:fa:f8:6d:29:62:34:7b:4c:0e:5e: 46:d8:9f:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjUxMjE5MDA1MTM3WhcNMjUxMjI2MDA1MTM3WjAYMRYwFAYD VQQDDA02OTQ0YTE5OS0zODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnoGE/xnU0x9iFqVvZZiv45SqlOJ9nRF0FTjRjSRjzoa21JgTkI87+mKhzOV fGUDMrEPKq5pdMuL9H7OR80HJR2WQJx3OB7BujXevIbI62pg+f+eAnzPLj//3YxT l81HJOKO4Dod5ufA01cXkkXBoIXgQTY0yLP6F7lHPq+fCnWAPm1kyHFbHkdJH3kE h0KX6bKfOP6bjuZ7lJCYzSni36K+3ikEWTrY9q1tZjTpNVH1j231aR8FQujpz/OT ZFffAs5P5Hm3wSdYZKrQSgdaiZKo05MmB17ROww75qWfd1I5zO7dz+Y+p4GMhCVP 3B0QgzYa5IJH5cZadARRJ7e5swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMssOKG tZmH43PvDlgu0BhMuG1EMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYX1AYa2jKTWmMoJdT3lGR+CWl8WCnKlFAf0K8P67eq7+T24Srig34 Jod7rcF+mMmweUD26aAMHSNGY1NV94FXY/g4LGONCpAU+fIVAkcls9BrUgcUWHTK zdwOf07wpHsi85UDdy4QHe8TzmNdv9oy09s20awxyoLrOgT+XY912snYrrVxTJ1e nRERHvN2aQ0+FxSfjoeJSHicWGmzjH8XHhC8DMBpiB/mtZZo9MH+HUY6K2m6067D 3urncDeXjje2qqrXDl/MeKQ405NA9evDBB1gSiH0j7hJJPvER0xkGf3Ozn69i+ic c6aussxbcLKjqfr4bSliNHtMDl5G2J+y -----END CERTIFICATE-----Generated at Fri Dec 19 17:44:43 2025 by rpki-client