This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: APEhjNY5+hboV+P/Ks1Y6S5bUi+m+vWNrLWce7e/ME0= Subject key identifier: BF:20:F2:18:E2:54:9B:B5:1D:E1:2E:46:01:98:04:0C:20:CA:CA:56 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 03B0 Signing time: Wed 24 Dec 2025 23:48:40 +0000 Manifest this update: Wed 24 Dec 2025 23:48:39 +0000 Manifest next update: Wed 31 Dec 2025 23:48:39 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: 1gtSIkx44C2vR7LyYK4zrjT2JD45rsRl2YQKHnprqzU=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 23:48:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 948 (0x3b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Dec 24 23:48:39 2025 GMT Not After : Dec 31 23:48:39 2025 GMT Subject: CN=694c7bd7-7f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:68:66:b1:56:de:18:f0:1d:da:5c:39:83:8d: 47:6c:f1:78:67:c3:4f:92:84:31:48:06:25:76:1e: 39:09:3e:ad:f7:66:0d:51:d3:fd:43:c5:10:49:7d: 68:ff:20:00:63:04:ea:98:12:65:37:ab:95:74:ea: a2:aa:72:88:40:52:89:74:68:4c:e4:29:13:a4:0a: 82:c7:d8:e0:a1:60:da:c2:4d:17:2a:75:3f:91:51: fd:23:97:f1:44:67:ca:0e:b5:ac:13:0b:ee:93:f8: 61:7a:19:fe:73:4e:c2:ec:3b:fc:f4:45:5f:3b:b7: 43:28:17:18:5b:30:39:bc:cb:b5:94:85:43:0e:88: 81:2d:ec:61:3a:23:d7:55:da:8e:c5:8c:f0:ac:43: c0:63:60:5f:9c:b5:60:79:72:e3:d2:3e:07:f4:a3: d7:a8:04:c1:20:c5:8b:05:a6:d3:35:88:12:c2:bb: b9:70:42:6c:a3:43:07:0b:51:d8:da:fe:f6:db:a0: c4:32:18:9c:4a:1f:19:28:d3:e3:88:c6:a6:10:4f: 3f:57:8a:c2:80:11:47:6c:1e:35:4d:72:27:73:25: 30:c5:91:ef:bd:ce:2a:1b:8d:ea:3e:6e:09:64:24: 25:c2:8e:f6:88:ee:d7:e3:7a:48:8b:b8:53:d7:a8: ed:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:20:F2:18:E2:54:9B:B5:1D:E1:2E:46:01:98:04:0C:20:CA:CA:56 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:67:43:05:1f:fe:d7:ee:ef:56:a0:0b:fa:16:e0:18:ea:01: bb:69:fc:da:ea:16:99:30:c9:89:ff:52:ed:e6:62:82:64:9d: 35:b1:61:a0:57:af:9f:ef:36:ec:26:c0:c9:0d:d1:b3:02:7f: 30:34:84:84:84:0d:37:a8:f9:95:f3:4f:2e:20:10:75:62:e2: 2f:e5:64:66:15:aa:66:e7:65:da:2e:f0:7b:d0:7a:d7:f1:f5: db:6f:cb:f7:71:96:a1:d8:12:f5:64:57:7b:f4:b7:e6:94:3c: ff:eb:60:5d:7c:37:da:3a:d2:91:fc:63:00:4c:03:9a:f5:0d: 5b:e3:85:dc:0a:27:66:17:e8:7d:85:90:0d:6d:d4:72:d3:0b: 5c:da:06:1f:f1:0f:30:15:22:06:c5:35:a0:55:85:87:34:7c: 80:c8:8e:cb:50:7c:4d:48:9f:c5:d8:1e:d0:6d:a9:1b:41:89: ef:dd:a6:5c:ad:0f:70:6b:06:04:93:e6:18:b6:dc:84:ad:c3: 14:c8:43:e4:4f:e4:b7:4d:fc:bb:14:15:09:df:0d:4a:85:a2: 09:67:cd:0c:5f:16:52:1e:ec:38:64:7f:98:01:5d:54:6a:88: 97:75:b3:dc:d6:91:83:69:27:5f:d1:6f:ae:09:a1:e0:69:00: e7:64:54:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUxMjI0MjM0ODM5WhcNMjUxMjMxMjM0ODM5WjAYMRYwFAYD VQQDDA02OTRjN2JkNy03ZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2hmsVbeGPAd2lw5g41HbPF4Z8NPkoQxSAYldh45CT6t92YNUdP9Q8UQSX1o /yAAYwTqmBJlN6uVdOqiqnKIQFKJdGhM5CkTpAqCx9jgoWDawk0XKnU/kVH9I5fx RGfKDrWsEwvuk/hhehn+c07C7Dv89EVfO7dDKBcYWzA5vMu1lIVDDoiBLexhOiPX VdqOxYzwrEPAY2BfnLVgeXLj0j4H9KPXqATBIMWLBabTNYgSwru5cEJso0MHC1HY 2v7226DEMhicSh8ZKNPjiMamEE8/V4rCgBFHbB41TXIncyUwxZHvvc4qG43qPm4J ZCQlwo72iO7X43pIi7hT16jtvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8g8hji VJu1HeEuRgGYBAwgyspWMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQZ0MFH/7X7u9WoAv6FuAY6gG7afza6haZMMmJ/1Lt5mKCZJ01sWGg V6+f7zbsJsDJDdGzAn8wNISEhA03qPmV808uIBB1YuIv5WRmFapm52XaLvB70HrX 8fXbb8v3cZah2BL1ZFd79LfmlDz/62BdfDfaOtKR/GMATAOa9Q1b44XcCidmF+h9 hZANbdRy0wtc2gYf8Q8wFSIGxTWgVYWHNHyAyI7LUHxNSJ/F2B7QbakbQYnv3aZc rQ9wawYEk+YYttyErcMUyEPkT+S3Tfy7FBUJ3w1KhaIJZ80MXxZSHuw4ZH+YAV1U aoiXdbPc1pGDaSdf0W+uCaHgaQDnZFQT -----END CERTIFICATE-----Generated at Thu Dec 25 10:42:14 2025 by rpki-client