This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft File: iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft (raw, json) Hash identifier: EEiJvSnQ18jjQfVwjhqgdEMqugfI/OQFQH+2Q61Siwo= Subject key identifier: 08:A9:5D:14:1F:BC:64:2B:67:4A:66:AE:8F:22:51:1B:13:A8:54:3E Authority key identifier: 88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A Certificate issuer: /CN=A91376FB/serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Certificate serial: 044B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft Manifest number: 0444 Signing time: Thu 18 Dec 2025 23:36:40 +0000 Manifest this update: Thu 18 Dec 2025 23:36:39 +0000 Manifest next update: Thu 25 Dec 2025 23:36:39 +0000 Files and hashes: 1: iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl (hash: y+QmZrOaXTOLp/J40J8HxC4Gm8Vuo7C0nXGFfyRvyzY=) 2: 25C61AECB7ED11ED9CF6A63EC4F9AE02.roa (hash: Yv9ClrwAFACGSqITuh9ooZXNuE+9WgMW5OezB268l+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91376FB, serialNumber=886A0EE6BC7ABDC09FA822E114DF435F0B0E865A Validity Not Before: Dec 18 23:36:39 2025 GMT Not After : Dec 25 23:36:39 2025 GMT Subject: CN=69449008-2395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:4e:56:69:a3:e1:81:1c:d7:6b:bc:11:1e: bd:3f:c9:fd:ed:bc:e7:99:fe:61:9f:95:f6:26:c3: 61:4c:d9:66:a8:2b:bc:50:56:32:24:48:b9:16:99: 4f:0e:f7:3f:d3:14:39:1a:81:f2:b4:a8:43:9c:08: ae:52:df:42:31:a0:69:b3:4b:d6:82:36:58:8c:7a: da:d5:9a:cd:93:84:3f:a5:2e:54:bb:f0:c2:51:de: a5:45:43:89:a6:cc:e1:e6:1b:b6:74:f6:5b:fb:ec: 46:34:ef:f6:e3:47:57:24:cc:73:71:e6:0a:09:f5: f7:15:2f:8f:b4:48:9d:89:60:e6:5b:cb:10:ca:15: 7d:05:52:81:87:39:01:d4:2a:7e:54:b6:fa:69:fb: 9d:48:2f:91:ea:1b:e0:7c:9b:11:64:8e:7c:de:d1: ae:e3:72:b4:66:0f:eb:2d:c5:37:4b:8f:64:3a:b0: dd:13:3a:9c:77:c5:75:97:34:df:c5:35:52:fd:06: b9:9f:aa:54:17:f6:5a:a7:e7:3b:d6:ea:0c:21:8a: 39:ff:49:7a:31:94:b5:72:f5:84:53:26:6a:1c:60: 6c:29:bf:75:d2:a5:84:74:63:5c:5c:fe:53:e8:f9: 81:9d:52:c1:fe:87:ab:b5:46:6b:6d:4e:43:46:ae: 9f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:A9:5D:14:1F:BC:64:2B:67:4A:66:AE:8F:22:51:1B:13:A8:54:3E X509v3 Authority Key Identifier: keyid:88:6A:0E:E6:BC:7A:BD:C0:9F:A8:22:E1:14:DF:43:5F:0B:0E:86:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iGoO5rx6vcCfqCLhFN9DXwsOhlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91376FB/92FB71A083F211ECBB251985C4F9AE02/iGoO5rx6vcCfqCLhFN9DXwsOhlo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:22:1e:5e:29:61:4b:e0:a9:21:93:f1:60:8d:c0:a0:1c:81: 06:2d:c7:04:73:54:f2:93:9d:37:1e:9b:85:b4:bf:5a:d5:c1: 04:47:f8:ca:6a:55:dd:fb:0d:6b:0f:b7:7d:cf:aa:f6:6a:4e: e6:35:13:ed:ed:cd:71:ae:e8:b4:ce:df:44:75:0f:1c:04:39: da:ea:6f:3e:be:10:b6:95:e0:0c:6b:30:50:98:b0:57:1c:1c: ac:64:9e:8d:e1:57:1b:7c:18:1b:24:e6:92:90:e8:c5:fa:f5: f9:aa:ad:dd:04:e3:ae:59:74:10:68:63:4f:6f:0c:51:4d:7b: 38:cf:18:09:61:e5:b7:3c:2f:bb:30:04:b4:00:46:c9:77:b4: a8:48:90:1f:c2:25:e4:5c:08:8d:14:37:f0:c5:0e:91:07:0b: 9c:ef:83:fb:a7:fd:ae:27:01:3f:81:50:19:25:c7:20:a0:40: 43:5f:34:b1:09:d5:70:05:ee:1f:ad:55:03:81:5e:21:a1:92: b2:be:a9:a3:99:b9:15:0e:88:3a:c6:88:d5:a1:ae:de:27:08: c8:c7:a2:24:95:bf:f5:bf:46:5c:b5:63:f3:f0:94:dc:c7:0f: 2d:4a:40:c2:0f:f4:84:5c:09:3b:75:94:d6:db:d6:f4:f2:4a: c6:4f:3b:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2RkIxMTAvBgNVBAUTKDg4NkEwRUU2QkM3QUJEQzA5RkE4MjJFMTE0REY0MzVG MEIwRTg2NUEwHhcNMjUxMjE4MjMzNjM5WhcNMjUxMjI1MjMzNjM5WjAYMRYwFAYD VQQDDA02OTQ0OTAwOC0yMzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA129OVmmj4YEc12u8ER69P8n97bznmf5hn5X2JsNhTNlmqCu8UFYyJEi5FplP Dvc/0xQ5GoHytKhDnAiuUt9CMaBps0vWgjZYjHra1ZrNk4Q/pS5Uu/DCUd6lRUOJ pszh5hu2dPZb++xGNO/240dXJMxzceYKCfX3FS+PtEidiWDmW8sQyhV9BVKBhzkB 1Cp+VLb6afudSC+R6hvgfJsRZI583tGu43K0Zg/rLcU3S49kOrDdEzqcd8V1lzTf xTVS/Qa5n6pUF/Zap+c71uoMIYo5/0l6MZS1cvWEUyZqHGBsKb910qWEdGNcXP5T 6PmBnVLB/oertUZrbU5DRq6f7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAipXRQf vGQrZ0pmro8iURsTqFQ+MB8GA1UdIwQYMBaAFIhqDua8er3An6gi4RTfQ18LDoZa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzZGQi85MkZCNzFBMDgz RjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZjQ2ZxQ0xoRk45RFh3c09o bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lHb081cng2dmNDZnFDTGhGTjlEWHdzT2hsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzZGQi85MkZCNzFBMDgzRjIxMUVDQkIyNTE5ODVDNEY5QUUwMi9pR29PNXJ4NnZj Q2ZxQ0xoRk45RFh3c09obG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCIh5eKWFL4Kkhk/FgjcCgHIEGLccEc1Tyk503HpuFtL9a1cEER/jK alXd+w1rD7d9z6r2ak7mNRPt7c1xrui0zt9EdQ8cBDna6m8+vhC2leAMazBQmLBX HBysZJ6N4VcbfBgbJOaSkOjF+vX5qq3dBOOuWXQQaGNPbwxRTXs4zxgJYeW3PC+7 MAS0AEbJd7SoSJAfwiXkXAiNFDfwxQ6RBwuc74P7p/2uJwE/gVAZJccgoEBDXzSx CdVwBe4frVUDgV4hoZKyvqmjmbkVDog6xojVoa7eJwjIx6Iklb/1v0ZctWPz8JTc xw8tSkDCD/SEXAk7dZTW29b08krGTzux -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:33 2025 by rpki-client