This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft File: IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft (raw, json) Hash identifier: sfC6vzyoIDeLK4WCQPh9v91PRKaKjjhBd3TrjLNR7EU= Subject key identifier: 4C:FD:8D:9C:3E:45:FA:81:AD:63:59:0B:47:5D:77:A3:65:92:49:A3 Authority key identifier: 20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17 Certificate issuer: /CN=A912905D/serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft Manifest number: 021C Signing time: Fri 19 Dec 2025 01:26:32 +0000 Manifest this update: Fri 19 Dec 2025 01:26:32 +0000 Manifest next update: Fri 26 Dec 2025 01:26:32 +0000 Files and hashes: 1: IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl (hash: 4FMBqG3OEw7y8MNXAE9tU0qK/Cqbkx3HgZSNAEDIflY=) 2: CE9A4D70D6EA11ED8F0C322EC4F9AE02.roa (hash: d/kODO73Q/KifMio6xDH+g4+aS9A4hPWbQYW6hwYowo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912905D, serialNumber=2041A548216FF014894B79CC9FD77311BC7CA317 Validity Not Before: Dec 19 01:26:32 2025 GMT Not After : Dec 26 01:26:32 2025 GMT Subject: CN=6944a9c8-8569 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:09:2f:1b:30:f1:bc:c2:a0:66:99:a5:83:3e: 89:52:75:21:b2:fb:8a:bd:e8:b7:dd:39:b5:ca:40: 71:6e:1f:02:85:3f:cd:18:a8:b7:70:cb:f5:72:00: d0:e2:25:52:a8:43:9d:77:24:02:8a:c0:02:2b:e0: 40:cf:7c:ae:e3:c2:0a:52:e8:08:3c:96:21:6b:46: 2d:a3:de:f9:a2:e4:e1:16:c8:58:de:31:5d:6a:69: c9:9e:ac:a6:15:b3:3d:3c:b3:9d:8a:0c:39:3d:40: 7d:3e:93:9d:74:24:38:bd:84:a1:e0:ef:b2:59:ea: 4b:0a:f9:15:40:0c:c5:19:96:e1:cc:e4:f8:44:a8: 04:8f:52:e3:42:21:f7:5f:11:fa:e7:49:c6:b1:83: 83:ae:20:62:07:da:6d:44:66:6d:5b:ff:ef:ad:c1: 2c:fd:e1:60:82:30:46:aa:1d:4b:ed:98:b2:d9:5f: bf:82:2d:19:42:69:b5:35:0f:25:50:67:54:ab:0b: 68:2f:61:c9:de:2d:6d:7d:38:26:69:06:50:97:02: f4:0f:68:7d:18:6f:cc:83:36:69:ca:99:09:5a:1d: a6:c8:6c:52:fc:2b:a8:64:cb:db:8c:e7:ff:3b:b2: d6:37:46:fc:f9:da:95:01:7d:a3:df:7b:ae:3b:6b: c6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FD:8D:9C:3E:45:FA:81:AD:63:59:0B:47:5D:77:A3:65:92:49:A3 X509v3 Authority Key Identifier: keyid:20:41:A5:48:21:6F:F0:14:89:4B:79:CC:9F:D7:73:11:BC:7C:A3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IEGlSCFv8BSJS3nMn9dzEbx8oxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912905D/34BF9908AC3D11EDBD4D135EC4F9AE02/IEGlSCFv8BSJS3nMn9dzEbx8oxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e8:9a:f2:34:46:37:cd:77:b3:4f:d5:9e:12:84:69:3c:69: f9:c7:7d:05:04:38:d3:1d:61:62:01:e9:0f:fa:60:93:b9:c7: 95:05:73:da:96:5d:af:96:63:ac:df:2d:20:37:85:a6:95:9c: 74:ea:f9:ae:94:74:4d:aa:58:00:73:20:5f:d3:8d:d4:1d:dc: a9:95:f5:95:88:71:81:65:ae:2c:de:f2:63:91:ac:f5:a4:29: 0a:e5:da:44:ac:2a:ff:ff:cb:e7:4e:ac:bc:2a:6f:2f:c0:c8: 5f:c6:78:14:52:76:37:49:ba:25:a3:fd:3f:c1:95:f2:35:b0: 10:77:e1:cf:5d:12:90:69:cf:3f:83:6d:aa:ee:8d:62:5e:94: 33:71:fe:fd:ab:2e:01:10:0b:bb:02:78:9f:11:e5:d4:61:59: d0:66:26:f0:e2:86:ed:4b:e2:be:9e:07:b9:f6:c4:0f:38:b4: be:4e:67:90:a0:46:6a:0b:69:b7:33:9a:49:74:5a:35:be:2f: 9e:33:8c:10:54:29:3c:34:17:a3:99:65:20:40:ab:6e:96:85: 2f:db:66:50:76:63:28:8f:42:ab:db:41:90:2e:e1:07:bd:bd: a0:5f:0b:ae:67:19:02:6e:38:f0:16:7a:b3:52:08:47:97:29: 35:a2:02:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkwNUQxMTAvBgNVBAUTKDIwNDFBNTQ4MjE2RkYwMTQ4OTRCNzlDQzlGRDc3MzEx QkM3Q0EzMTcwHhcNMjUxMjE5MDEyNjMyWhcNMjUxMjI2MDEyNjMyWjAYMRYwFAYD VQQDDA02OTQ0YTljOC04NTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjwkvGzDxvMKgZpmlgz6JUnUhsvuKvei33Tm1ykBxbh8ChT/NGKi3cMv1cgDQ 4iVSqEOddyQCisACK+BAz3yu48IKUugIPJYha0Yto975ouThFshY3jFdamnJnqym FbM9PLOdigw5PUB9PpOddCQ4vYSh4O+yWepLCvkVQAzFGZbhzOT4RKgEj1LjQiH3 XxH650nGsYODriBiB9ptRGZtW//vrcEs/eFggjBGqh1L7Ziy2V+/gi0ZQmm1NQ8l UGdUqwtoL2HJ3i1tfTgmaQZQlwL0D2h9GG/MgzZpypkJWh2myGxS/CuoZMvbjOf/ O7LWN0b8+dqVAX2j33uuO2vGIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEz9jZw+ RfqBrWNZC0ddd6NlkkmjMB8GA1UdIwQYMBaAFCBBpUghb/AUiUt5zJ/XcxG8fKMX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTA1RC8zNEJGOTkwOEFD M0QxMUVEQkQ0RDEzNUVDNEY5QUUwMi9JRUdsU0NGdjhCU0pTM25NbjlkekVieDhv eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lFR2xTQ0Z2OEJTSlMzbk1uOWR6RWJ4OG94Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTA1RC8zNEJGOTkwOEFDM0QxMUVEQkQ0RDEzNUVDNEY5QUUwMi9JRUdsU0NGdjhC U0pTM25NbjlkekVieDhveGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE6JryNEY3zXezT9WeEoRpPGn5x30FBDjTHWFiAekP+mCTuceVBXPa ll2vlmOs3y0gN4WmlZx06vmulHRNqlgAcyBf043UHdyplfWViHGBZa4s3vJjkaz1 pCkK5dpErCr//8vnTqy8Km8vwMhfxngUUnY3Sbolo/0/wZXyNbAQd+HPXRKQac8/ g22q7o1iXpQzcf79qy4BEAu7AnifEeXUYVnQZibw4obtS+K+nge59sQPOLS+TmeQ oEZqC2m3M5pJdFo1vi+eM4wQVCk8NBejmWUgQKtuloUv22ZQdmMoj0Kr20GQLuEH vb2gXwuuZxkCbjjwFnqzUghHlyk1ogLT -----END CERTIFICATE-----Generated at Fri Dec 19 17:35:58 2025 by rpki-client