This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft File: iUNmPc-DCfonSkZS-oOr0m2EJk8.mft (raw, json) Hash identifier: ssBd3UYtO7GoEBs0dSPQLSjykCdB6RfeeBEvFv96tz8= Subject key identifier: 33:AA:18:87:0E:4C:06:20:17:61:9E:88:7B:B7:B2:AD:CD:45:2F:18 Authority key identifier: 89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F Certificate issuer: /CN=A913097A/serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Certificate serial: 0503 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft Manifest number: 04FB Signing time: Thu 18 Dec 2025 23:01:49 +0000 Manifest this update: Thu 18 Dec 2025 23:01:49 +0000 Manifest next update: Thu 25 Dec 2025 23:01:49 +0000 Files and hashes: 1: iUNmPc-DCfonSkZS-oOr0m2EJk8.crl (hash: RZ4tRl1uP2+HlwMo3UcXovzZCyrxQvrOZXzOXYK4ar4=) 2: A18054D6CB9F11F088CB660AC4F9AE02.roa (hash: FvO8DlZzQVmPTZqjUi7Dxx3ih+VGjpPESsv0+jY8ciU=) 3: D19C3D9CCB9F11F090C50D0BC4F9AE02.roa (hash: qRx7TQ6UV8tNdrKdv3Zo/CrjupoAaJ536/Jh6JtiZmA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1283 (0x503) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913097A, serialNumber=8943663DCF8309FA274A4652FA83ABD26D84264F Validity Not Before: Dec 18 23:01:49 2025 GMT Not After : Dec 25 23:01:49 2025 GMT Subject: CN=694487dd-f4b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:39:7e:ab:4a:ea:7b:8c:a3:df:2b:d2:d1:22: 0a:e7:47:f1:52:07:b9:7b:08:6e:c4:ad:3c:3c:20: 4b:44:95:52:ce:82:43:a0:6e:f3:8b:b4:a5:04:b0: a6:7c:18:7b:16:5d:38:77:8d:bf:05:bd:99:47:b7: 54:9b:ad:2c:fc:58:19:d4:a1:9b:0b:3f:90:88:fb: 83:17:98:6b:13:17:3d:40:b1:56:16:87:4c:4c:af: 78:e1:4c:a7:a4:20:bb:7e:29:8d:8c:81:e9:c4:f0: 07:01:2d:9e:25:ba:e5:24:5d:78:73:18:1e:f1:30: ba:67:c3:77:55:7b:81:61:aa:8d:a2:38:20:80:e1: f2:1f:7c:c9:dd:d0:4d:dd:66:ec:94:f9:33:e6:13: 68:8f:e0:a1:ba:b9:50:88:8a:04:7f:37:be:b1:8b: ab:ce:e0:17:38:94:dd:c8:e5:1a:7d:fd:c0:e4:58: 29:c0:d2:12:59:30:04:8d:c9:84:25:1f:49:a0:0e: e7:40:cf:e9:b9:3e:25:36:8e:11:9d:20:86:34:d1: 88:73:46:48:64:9b:3e:ae:31:ad:cb:85:82:51:09: ab:79:cd:ac:a4:21:0b:3c:1f:65:76:da:b4:a7:75: e9:1a:a3:10:c7:5e:14:17:96:be:41:1f:d4:20:c8: 75:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AA:18:87:0E:4C:06:20:17:61:9E:88:7B:B7:B2:AD:CD:45:2F:18 X509v3 Authority Key Identifier: keyid:89:43:66:3D:CF:83:09:FA:27:4A:46:52:FA:83:AB:D2:6D:84:26:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUNmPc-DCfonSkZS-oOr0m2EJk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913097A/6167A6D23B0811EC9483C527C4F9AE02/iUNmPc-DCfonSkZS-oOr0m2EJk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:4a:87:7b:11:15:53:58:ea:92:15:09:89:38:c1:5e:22:bf: 2f:59:4c:a9:8d:3e:d1:55:86:3d:e9:b6:2e:26:89:6d:1e:fb: d5:04:d2:92:08:09:2c:10:99:75:33:95:e8:21:ea:64:43:26: 98:b6:8d:e2:64:b4:3f:2d:85:17:f8:4c:fb:e3:b1:19:1a:fa: 8b:00:c8:3d:b4:f3:3f:b2:f9:1f:85:14:d0:72:a8:0f:eb:28: 5c:33:51:e9:3d:85:58:09:89:42:b3:1f:9a:97:01:e8:bb:9c: 98:26:bf:87:b0:05:8e:ff:5d:4d:26:a5:c0:f8:85:69:0e:76: 88:b8:05:51:da:40:d2:5c:98:a5:ae:81:a2:3a:7c:23:07:3a: 1a:5b:cf:25:07:b6:c9:9a:5e:96:e7:c1:1c:e6:02:4d:2a:86: c2:8d:7c:44:5f:ae:f2:2d:3a:8d:06:60:b6:2c:ae:79:4f:5f: 29:38:29:60:cc:52:ec:8a:e8:40:8c:de:6b:01:c9:9e:8f:e1: b8:98:04:2e:1d:94:12:ab:c3:25:65:07:ae:62:fb:f7:da:fb: 5e:a6:b7:bc:37:90:51:ae:0c:f1:a1:78:3a:92:b4:29:45:6d: 95:7e:0e:43:37:58:52:52:80:cc:e6:8c:6f:52:fc:c0:22:49: 54:c6:5c:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA5N0ExMTAvBgNVBAUTKDg5NDM2NjNEQ0Y4MzA5RkEyNzRBNDY1MkZBODNBQkQy NkQ4NDI2NEYwHhcNMjUxMjE4MjMwMTQ5WhcNMjUxMjI1MjMwMTQ5WjAYMRYwFAYD VQQDDA02OTQ0ODdkZC1mNGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjl+q0rqe4yj3yvS0SIK50fxUge5ewhuxK08PCBLRJVSzoJDoG7zi7SlBLCm fBh7Fl04d42/Bb2ZR7dUm60s/FgZ1KGbCz+QiPuDF5hrExc9QLFWFodMTK944Uyn pCC7fimNjIHpxPAHAS2eJbrlJF14cxge8TC6Z8N3VXuBYaqNojgggOHyH3zJ3dBN 3WbslPkz5hNoj+ChurlQiIoEfze+sYurzuAXOJTdyOUaff3A5FgpwNISWTAEjcmE JR9JoA7nQM/puT4lNo4RnSCGNNGIc0ZIZJs+rjGty4WCUQmrec2spCELPB9ldtq0 p3XpGqMQx14UF5a+QR/UIMh1hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOqGIcO TAYgF2GeiHu3sq3NRS8YMB8GA1UdIwQYMBaAFIlDZj3Pgwn6J0pGUvqDq9JthCZP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDk3QS82MTY3QTZEMjNC MDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENmb25Ta1pTLW9PcjBtMkVK azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVTm1QYy1EQ2ZvblNrWlMtb09yMG0yRUprOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDk3QS82MTY3QTZEMjNCMDgxMUVDOTQ4M0M1MjdDNEY5QUUwMi9pVU5tUGMtRENm b25Ta1pTLW9PcjBtMkVKazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUSod7ERVTWOqSFQmJOMFeIr8vWUypjT7RVYY96bYuJoltHvvVBNKS CAksEJl1M5XoIepkQyaYto3iZLQ/LYUX+Ez747EZGvqLAMg9tPM/svkfhRTQcqgP 6yhcM1HpPYVYCYlCsx+alwHou5yYJr+HsAWO/11NJqXA+IVpDnaIuAVR2kDSXJil roGiOnwjBzoaW88lB7bJml6W58Ec5gJNKobCjXxEX67yLTqNBmC2LK55T18pOClg zFLsiuhAjN5rAcmej+G4mAQuHZQSq8MlZQeuYvv32vtepre8N5BRrgzxoXg6krQp RW2Vfg5DN1hSUoDM5oxvUvzAIklUxlzD -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:02 2025 by rpki-client