This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: ABr2XUe8nscjsUgJPXMwCjrWmWbYdm8a01OsVcMbido= Subject key identifier: D1:3D:08:2E:17:84:57:E0:06:0D:47:62:1F:06:56:63:5A:A1:68:D8 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0762 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C66 Signing time: Thu 18 Dec 2025 18:15:29 +0000 Manifest this update: Thu 18 Dec 2025 18:15:28 +0000 Manifest next update: Thu 25 Dec 2025 18:15:28 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: OY5lKniqtaDqfmL316dgUEY0l+uoGGiK+mnPx89XrPI=) 2: D6F76118231C11EF84144357C4F9AE02.roa (hash: MiuSv15VLIaeb36ClOcMlCFhKBkosPaBSp5hyovVY7I=) 3: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: JIJ/oCcEDSrDoKJ+TtwRZ0ixy/ch1ebZjc7Ukat5+wI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Dec 18 18:15:28 2025 GMT Not After : Dec 25 18:15:28 2025 GMT Subject: CN=694444c1-80c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8a:d0:00:7a:cd:3a:17:54:f9:f9:39:5c:9b: 11:3f:40:0a:87:4c:33:26:a5:d8:a7:4f:69:7f:61: 6c:22:6b:ae:02:c8:f6:73:4a:06:14:47:df:a6:34: 22:4e:37:de:fc:24:48:21:e5:29:50:58:19:c4:37: e4:9c:5e:b6:53:60:86:b9:df:c3:2e:3e:87:b5:f6: 26:13:a5:67:12:81:7f:b5:c3:8c:1a:db:46:ff:cb: 86:e8:df:91:8d:36:7f:66:0e:1d:16:9e:83:5c:59: 12:d2:0a:49:b7:ab:56:6f:8a:99:6f:1e:38:3a:b9: d6:ab:c7:84:82:68:d0:d0:b1:96:c5:a6:64:2e:42: 46:83:39:c0:7d:a1:ab:b9:ae:37:66:97:28:70:da: 34:05:1a:7f:3f:64:57:88:2b:5f:40:68:4b:aa:f6: 4b:93:ea:ec:78:a1:0a:71:58:b2:4b:d0:0f:19:f6: 95:d7:fe:7b:72:f4:a7:a9:fe:eb:02:c0:2c:31:57: 2b:ec:e6:ad:fe:64:e9:3f:6d:5c:e5:48:0c:de:4d: 22:7f:e9:1a:98:c1:35:70:fa:64:63:5c:07:c5:a6: 23:05:c5:cd:7e:98:c9:e5:96:40:d1:e1:aa:04:df: 5a:15:91:3d:01:21:ad:1b:d9:fb:a6:a8:16:a1:7f: 21:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:3D:08:2E:17:84:57:E0:06:0D:47:62:1F:06:56:63:5A:A1:68:D8 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:3d:76:9a:bc:54:61:23:dd:39:a3:ac:6c:53:bb:59:33:f6: 38:cf:ea:ed:31:7f:e1:f2:7b:bc:c9:43:32:ff:8d:a0:ae:1b: 5c:16:0d:87:9b:72:ce:a4:2b:7c:86:6b:3c:03:1f:11:f7:a6: 0e:ed:f7:26:25:37:a7:1a:70:6e:88:5d:82:52:cf:50:ce:6b: 52:e3:1f:8d:77:05:60:d6:b0:d4:37:45:9d:c4:55:80:cf:10: 0e:29:1e:30:7a:5e:f2:d3:6b:43:5f:58:4c:40:f1:c3:e5:70: 13:1d:76:01:82:04:ac:37:44:1e:27:51:01:ae:7c:03:be:b9: 0d:d6:be:a1:cc:19:69:e9:da:8a:df:ca:a0:65:3c:f3:12:6e: 94:be:32:bc:35:0d:7d:fd:70:58:97:35:5d:2d:90:2f:fa:b3: 16:43:0a:77:bd:da:84:1b:ea:5a:6f:7f:32:77:ca:a9:4e:1a: fc:56:8a:52:d9:fd:4c:88:33:a7:49:98:6d:84:9b:79:67:d6: 93:11:b3:8c:b9:6c:27:e6:c1:4b:d5:26:76:86:33:43:83:58: b5:72:45:b0:86:48:9a:ed:78:de:ed:f1:56:bd:c7:36:6b:1b: cd:76:ce:df:20:fd:3c:75:df:b4:46:f7:88:8d:59:3a:f5:12: f1:3b:bd:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUxMjE4MTgxNTI4WhcNMjUxMjI1MTgxNTI4WjAYMRYwFAYD VQQDDA02OTQ0NDRjMS04MGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYrQAHrNOhdU+fk5XJsRP0AKh0wzJqXYp09pf2FsImuuAsj2c0oGFEffpjQi Tjfe/CRIIeUpUFgZxDfknF62U2CGud/DLj6HtfYmE6VnEoF/tcOMGttG/8uG6N+R jTZ/Zg4dFp6DXFkS0gpJt6tWb4qZbx44OrnWq8eEgmjQ0LGWxaZkLkJGgznAfaGr ua43ZpcocNo0BRp/P2RXiCtfQGhLqvZLk+rseKEKcViyS9APGfaV1/57cvSnqf7r AsAsMVcr7Oat/mTpP21c5UgM3k0if+kamME1cPpkY1wHxaYjBcXNfpjJ5ZZA0eGq BN9aFZE9ASGtG9n7pqgWoX8hawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNE9CC4X hFfgBg1HYh8GVmNaoWjYMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVPXaavFRhI905o6xsU7tZM/Y4z+rtMX/h8nu8yUMy/42grhtcFg2H m3LOpCt8hms8Ax8R96YO7fcmJTenGnBuiF2CUs9QzmtS4x+NdwVg1rDUN0WdxFWA zxAOKR4wel7y02tDX1hMQPHD5XATHXYBggSsN0QeJ1EBrnwDvrkN1r6hzBlp6dqK 38qgZTzzEm6UvjK8NQ19/XBYlzVdLZAv+rMWQwp3vdqEG+pab38yd8qpThr8VopS 2f1MiDOnSZhthJt5Z9aTEbOMuWwn5sFL1SZ2hjNDg1i1ckWwhkia7Xje7fFWvcc2 axvNds7fIP08dd+0RveIjVk69RLxO71p -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:02 2025 by rpki-client