This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft File: ioDqhWIqoHAhvfSshBiw2aU5rOE.mft (raw, json) Hash identifier: 5FjMrbgiuu6Baw/j5ZfwoQLjVIswG05jKZFp8ny7pqo= Subject key identifier: 9E:FB:C9:18:1C:BE:94:AE:C1:B4:E8:A9:FD:76:71:0F:DF:97:E2:61 Authority key identifier: 8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 Certificate issuer: /CN=A912D9BE/serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Certificate serial: 057F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft Manifest number: 0571 Signing time: Sat 20 Dec 2025 22:39:41 +0000 Manifest this update: Sat 20 Dec 2025 22:39:40 +0000 Manifest next update: Sat 27 Dec 2025 22:39:40 +0000 Files and hashes: 1: ioDqhWIqoHAhvfSshBiw2aU5rOE.crl (hash: dxcZl0DmYyAQKxmMh6QzqoeOEabLH812kjlIMJiGwb4=) 2: 3A549A1EB00211F0A3A86535C4F9AE02.roa (hash: O1i4s2Zr51Hi0mPfbBoKpN4N/jUayIwH+cV3RnZNMM4=) 3: DA0AD156799211EFADCD2257C4F9AE02.roa (hash: knZ5ekXVEf4sYcirbL+CCT4b4jXdUdcrAEg+dwXTAho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1407 (0x57f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D9BE, serialNumber=8A80EA85622AA07021BDF4AC8418B0D9A539ACE1 Validity Not Before: Dec 20 22:39:40 2025 GMT Not After : Dec 27 22:39:40 2025 GMT Subject: CN=694725ad-7966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:c9:d1:eb:b1:3f:75:92:16:b6:67:72:18:94: 3f:23:10:59:d4:6f:19:71:8a:38:7e:e1:27:0e:cf: bc:ce:d9:8e:97:ed:61:dc:ee:57:75:01:82:0f:c8: 9b:ad:d6:b9:6a:a1:02:fb:97:3f:d7:c5:e8:3d:9e: 49:ec:2a:0f:43:fb:ed:5d:3f:ca:59:e1:03:fa:ea: 36:5b:99:d7:7d:3a:07:c7:cc:c8:d2:16:14:91:ec: e3:ee:a6:7d:c4:e1:2f:a7:a0:f8:d2:0b:74:9a:bc: 08:d9:f7:8d:80:2d:41:65:24:6c:de:da:5b:04:db: be:2d:56:a6:d8:60:25:51:a1:e6:d2:90:2a:c6:a9: f4:57:b1:62:b7:3b:3a:38:70:94:d2:82:86:1b:69: 0a:ab:62:bc:3c:50:cc:33:4b:f9:59:a9:c8:c8:41: 43:58:07:b7:87:5c:9f:b7:fe:8a:20:d7:97:92:a7: 5b:32:68:56:34:be:26:f4:91:0b:dd:5d:1e:bb:9d: 39:71:ea:79:f2:22:7a:bc:bd:e6:ba:15:11:08:e2: f9:25:63:69:5c:ba:39:59:b8:be:00:3c:dc:2a:2d: 03:84:cb:09:d7:73:ec:e0:5c:a4:5e:78:a5:b4:49: b1:10:b2:a9:50:c0:42:c8:d7:dd:9e:95:4e:15:c6: 5a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:FB:C9:18:1C:BE:94:AE:C1:B4:E8:A9:FD:76:71:0F:DF:97:E2:61 X509v3 Authority Key Identifier: keyid:8A:80:EA:85:62:2A:A0:70:21:BD:F4:AC:84:18:B0:D9:A5:39:AC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ioDqhWIqoHAhvfSshBiw2aU5rOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D9BE/B09C3CE2117B11EC80E42143C4F9AE02/ioDqhWIqoHAhvfSshBiw2aU5rOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:5a:88:f6:d3:0e:6f:be:aa:be:72:f1:30:78:7f:dc:a3:79: 5f:6b:dc:34:c0:fd:36:3f:e2:57:34:06:e7:36:11:69:58:88: f0:cc:2f:8d:50:89:db:6f:1c:0b:aa:b1:c8:e5:dd:8e:58:62: 79:c2:9d:ae:28:e2:78:4d:2f:e0:d9:85:f3:43:81:91:8a:91: 37:37:1e:21:b5:89:65:18:e4:dd:11:77:6f:8d:bf:c1:90:b2: 0e:eb:99:50:9c:ee:ca:e3:e7:f8:df:7c:d9:dc:9d:7d:a4:0f: 28:58:8b:70:13:b6:e0:c7:84:44:dd:46:38:9e:09:19:87:e1: 90:d0:aa:31:21:90:59:ff:3f:f0:70:37:e7:c6:0e:50:b8:7e: 79:5e:b4:c9:9e:ee:6b:d4:24:6c:43:d9:44:08:53:c4:6d:4d: 54:3a:0d:c4:f5:8f:17:97:31:fe:09:6f:d8:2f:29:bf:c9:59: 59:18:02:f1:8f:e4:21:9a:0f:0e:31:db:c9:f6:93:ed:c9:20: 6c:77:6e:7c:5b:ed:3a:41:5a:81:86:08:b5:02:d8:6a:da:5d: 61:36:a7:d1:5f:02:29:a2:9d:48:5d:bd:3c:4c:e5:93:16:18: 36:4f:19:d6:d9:27:13:4b:c4:9b:05:f8:59:dd:cf:c9:ad:cc: d8:09:42:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5QkUxMTAvBgNVBAUTKDhBODBFQTg1NjIyQUEwNzAyMUJERjRBQzg0MThCMEQ5 QTUzOUFDRTEwHhcNMjUxMjIwMjIzOTQwWhcNMjUxMjI3MjIzOTQwWjAYMRYwFAYD VQQDDA02OTQ3MjVhZC03OTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh8nR67E/dZIWtmdyGJQ/IxBZ1G8ZcYo4fuEnDs+8ztmOl+1h3O5XdQGCD8ib rda5aqEC+5c/18XoPZ5J7CoPQ/vtXT/KWeED+uo2W5nXfToHx8zI0hYUkezj7qZ9 xOEvp6D40gt0mrwI2feNgC1BZSRs3tpbBNu+LVam2GAlUaHm0pAqxqn0V7Fitzs6 OHCU0oKGG2kKq2K8PFDMM0v5WanIyEFDWAe3h1yft/6KINeXkqdbMmhWNL4m9JEL 3V0eu505cep58iJ6vL3muhURCOL5JWNpXLo5Wbi+ADzcKi0DhMsJ13Ps4FykXnil tEmxELKpUMBCyNfdnpVOFcZaHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ77yRgc vpSuwbToqf12cQ/fl+JhMB8GA1UdIwQYMBaAFIqA6oViKqBwIb30rIQYsNmlOazh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDlCRS9CMDlDM0NFMjEx N0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9IQWh2ZlNzaEJpdzJhVTVy T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lvRHFoV0lxb0hBaHZmU3NoQml3MmFVNXJPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDlCRS9CMDlDM0NFMjExN0IxMUVDODBFNDIxNDNDNEY5QUUwMi9pb0RxaFdJcW9I QWh2ZlNzaEJpdzJhVTVyT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6Woj20w5vvqq+cvEweH/co3lfa9w0wP02P+JXNAbnNhFpWIjwzC+N UInbbxwLqrHI5d2OWGJ5wp2uKOJ4TS/g2YXzQ4GRipE3Nx4htYllGOTdEXdvjb/B kLIO65lQnO7K4+f433zZ3J19pA8oWItwE7bgx4RE3UY4ngkZh+GQ0KoxIZBZ/z/w cDfnxg5QuH55XrTJnu5r1CRsQ9lECFPEbU1UOg3E9Y8XlzH+CW/YLym/yVlZGALx j+Qhmg8OMdvJ9pPtySBsd258W+06QVqBhgi1Athq2l1hNqfRXwIpop1IXb08TOWT Fhg2TxnW2ScTS8SbBfhZ3c/JrczYCULb -----END CERTIFICATE-----Generated at Sun Dec 21 12:06:21 2025 by rpki-client