This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: jTRCqxf7LVVkvwJRe1WXQy88e3sicgCUipCaQDwbnmg= Subject key identifier: 76:8C:B7:B0:A3:FD:5D:91:AB:E4:10:7A:8B:58:43:1A:15:59:B3:8F Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 0586 Signing time: Thu 18 Dec 2025 22:37:56 +0000 Manifest this update: Thu 18 Dec 2025 22:37:56 +0000 Manifest next update: Thu 25 Dec 2025 22:37:56 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: 0o8hAi0henYy2xZ/ettHD2CbfzIJs0DzSQITcqFTSII=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: ym0ByuNOndht95n45vmzI/LTnp1dbpbPf/6SayzC+38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Dec 18 22:37:56 2025 GMT Not After : Dec 25 22:37:56 2025 GMT Subject: CN=69448244-8a6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:21:6b:85:a9:33:c3:42:e5:51:17:f9:5a:b7: 14:76:13:e1:d6:7c:d6:47:9c:62:f6:f2:bb:03:1c: a2:17:89:8e:0c:40:57:c7:db:f8:4b:db:28:6d:aa: 14:20:95:08:c5:cc:d3:44:e5:d4:3f:3b:4e:80:2d: 1d:8a:d3:ca:29:23:a1:83:fa:6d:b7:9a:37:25:d0: 79:9b:69:98:02:de:93:80:72:76:51:7a:33:0f:1c: 19:0f:de:80:06:bd:91:f7:24:e1:cc:b1:d2:07:19: 37:ee:60:60:ff:dd:85:e7:48:14:5d:0d:b2:f7:ff: f9:46:26:83:b9:9d:cd:af:06:b7:ee:74:ef:48:3c: 79:d5:80:4e:db:ca:1f:13:38:29:8c:6d:b8:9c:86: f7:4a:29:ea:0e:97:84:30:ff:92:d6:8a:9e:01:a1: 21:81:8e:95:8c:f8:26:1b:ed:ba:22:b4:06:99:2f: 27:ed:88:fb:5a:b4:df:01:b0:4f:d4:36:72:61:e1: 59:72:e3:77:f2:1d:ee:d4:c1:39:7a:6f:ed:a4:ac: 8c:50:a6:9a:a8:19:9e:27:38:62:2d:9d:25:15:e3: eb:4e:60:61:c7:66:0f:df:e3:90:dd:8e:f1:b9:14: a6:22:40:b3:3b:f3:8c:c7:16:84:f5:bc:ef:2a:4c: 8b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:8C:B7:B0:A3:FD:5D:91:AB:E4:10:7A:8B:58:43:1A:15:59:B3:8F X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:b9:23:b8:22:a4:5f:5e:8c:87:2b:6f:d2:82:6a:81:d9:b1: f1:41:5a:b3:c6:97:fc:ed:65:0e:a4:73:26:0d:2b:1f:8b:0a: 2e:99:2a:f1:8c:c8:e1:bb:22:5d:83:53:05:20:08:e3:44:71: f1:39:34:ba:a3:5d:b1:c9:3b:03:c0:8d:d9:e3:88:74:a3:b5: 11:15:2b:05:1c:42:6c:1a:3a:f3:11:55:42:e5:ab:18:6e:a6: 66:45:35:d0:6e:d7:c6:f1:a4:39:99:aa:c4:0d:9e:9c:2b:58: e6:48:b8:b8:a1:f7:69:40:51:a9:d9:8c:1e:af:50:5a:8a:2b: 34:40:88:10:e4:f4:48:98:fd:4c:8b:17:f8:5c:4c:93:85:0f: 9b:c3:f3:d6:36:77:f1:44:2c:36:35:af:6f:1d:a5:0e:fd:7b: 22:67:89:71:02:eb:18:97:3c:d4:26:69:20:5c:49:83:19:ad: 87:59:30:5b:0d:f3:d1:bc:bd:f7:24:d0:35:ee:18:05:c4:7f: f5:ca:cd:8e:70:9e:8b:33:f9:a6:92:24:37:fe:bd:38:a4:a5: 81:33:85:6f:92:cc:97:91:90:9c:b0:19:b5:d4:81:87:0c:d7: ea:61:18:4a:c9:21:b7:18:af:b1:96:29:9d:9a:11:e8:79:89: 05:bc:8e:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUxMjE4MjIzNzU2WhcNMjUxMjI1MjIzNzU2WjAYMRYwFAYD VQQDDA02OTQ0ODI0NC04YTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAniFrhakzw0LlURf5WrcUdhPh1nzWR5xi9vK7AxyiF4mODEBXx9v4S9sobaoU IJUIxczTROXUPztOgC0ditPKKSOhg/ptt5o3JdB5m2mYAt6TgHJ2UXozDxwZD96A Br2R9yThzLHSBxk37mBg/92F50gUXQ2y9//5RiaDuZ3Nrwa37nTvSDx51YBO28of EzgpjG24nIb3SinqDpeEMP+S1oqeAaEhgY6VjPgmG+26IrQGmS8n7Yj7WrTfAbBP 1DZyYeFZcuN38h3u1ME5em/tpKyMUKaaqBmeJzhiLZ0lFePrTmBhx2YP3+OQ3Y7x uRSmIkCzO/OMxxaE9bzvKkyLSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHaMt7Cj /V2Rq+QQeotYQxoVWbOPMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXuSO4IqRfXoyHK2/SgmqB2bHxQVqzxpf87WUOpHMmDSsfiwoumSrx jMjhuyJdg1MFIAjjRHHxOTS6o12xyTsDwI3Z44h0o7URFSsFHEJsGjrzEVVC5asY bqZmRTXQbtfG8aQ5marEDZ6cK1jmSLi4ofdpQFGp2Ywer1Baiis0QIgQ5PRImP1M ixf4XEyThQ+bw/PWNnfxRCw2Na9vHaUO/XsiZ4lxAusYlzzUJmkgXEmDGa2HWTBb DfPRvL33JNA17hgFxH/1ys2OcJ6LM/mmkiQ3/r04pKWBM4VvksyXkZCcsBm11IGH DNfqYRhKySG3GK+xlimdmhHoeYkFvI5S -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:33 2025 by rpki-client