This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: mWb82CFHzDhQxEKI4axk9DTS8BjTIh+nOG0TvTRoo4w= Subject key identifier: AD:F9:2C:44:A3:B7:9A:D8:01:D6:47:27:95:29:C7:2A:B9:58:1E:7E Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 3052 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 302D Signing time: Thu 18 Dec 2025 15:25:15 +0000 Manifest this update: Thu 18 Dec 2025 15:25:14 +0000 Manifest next update: Thu 25 Dec 2025 15:25:14 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: qOD/HjnGkzE8JfzNbsnWSh+pFLyY9WaRlaE3Ko/66gI=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: 2Zr7Hm+ka4YogIeAL8utcPORDLzzcWzkuQ8uJ6QbXYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:25:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12370 (0x3052) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Dec 18 15:25:14 2025 GMT Not After : Dec 25 15:25:14 2025 GMT Subject: CN=69441cdb-5455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:ad:73:a5:81:09:2d:89:b7:49:f9:53:e9:be: 9a:9c:06:f5:aa:0a:9e:2d:68:7e:f4:ab:4f:41:95: 6d:c3:25:50:dc:1f:65:b8:77:17:37:dc:fb:a9:e0: 27:89:25:d3:4e:11:c8:c4:9f:73:d9:2b:00:a4:cc: d4:84:99:6a:52:0d:5e:27:36:7f:30:75:08:0e:39: f6:e7:52:bd:e2:27:c6:6b:4c:51:d8:fd:0a:d9:fd: c4:31:9b:38:c6:62:5c:0e:5d:85:3d:bf:ea:62:4a: 8b:0e:74:a8:04:85:35:75:b3:00:27:4a:41:61:ae: 29:e5:51:00:dc:c6:05:b7:70:e7:01:8a:93:d5:57: b4:07:10:8e:da:9b:e9:1c:01:4a:35:79:e8:f0:06: 8a:81:55:b2:94:85:31:55:12:c1:51:8d:d4:ca:b3: 2c:2b:ca:bc:24:36:e9:eb:56:f9:bc:34:22:01:6e: d0:84:6a:d3:5c:58:6d:55:5d:2f:3f:be:d1:47:04: 0a:84:5f:68:41:49:f7:f8:db:50:14:0f:e0:49:3e: dc:dd:fd:b8:cf:e5:fe:94:bd:56:e1:8f:1e:9f:a7: bc:06:fe:e9:1d:1a:45:5f:ce:a4:d9:51:14:7b:7a: b8:21:a1:32:e6:73:4b:d3:14:03:97:47:f7:98:6a: 88:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F9:2C:44:A3:B7:9A:D8:01:D6:47:27:95:29:C7:2A:B9:58:1E:7E X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:ed:6b:dd:7b:dc:47:6c:35:14:0f:38:7a:a7:72:b3:3d:dc: 42:d5:74:2a:53:3c:da:af:15:e8:b6:10:8a:c9:fd:74:8c:ea: 1b:e6:da:cd:0a:8a:ba:df:aa:d8:9b:e8:b9:8a:db:67:55:e4: 9a:bf:64:8d:00:10:6a:63:37:e0:8c:84:57:b0:a4:14:ce:a6: 6e:f5:a6:91:62:dc:39:5e:70:9a:18:36:2d:29:19:9f:e1:c1: 03:a9:5e:85:03:ad:42:9d:e8:ba:32:44:d8:0f:10:dc:07:a9: 81:6c:d3:2d:98:61:56:1c:65:e3:1b:fe:4c:36:2f:9a:92:b1: d3:ee:fa:88:86:59:a3:f4:9b:a9:80:f6:0b:5c:c8:69:65:fa: 98:a5:51:d5:a8:08:ed:a0:f1:54:95:ac:2a:44:61:e1:b0:07: 7e:3d:c9:da:07:0d:c7:26:19:f6:5b:bf:d5:23:dd:cd:87:3a: fa:a2:bf:76:46:3d:3d:e6:8b:80:5e:21:c1:09:3f:cd:24:0a: 63:e2:0d:5a:03:9d:bc:f7:88:d5:3a:57:bd:e2:a2:66:59:b5: c0:3e:fd:76:25:9f:f5:e5:96:02:ff:d5:75:56:22:89:7a:c1: 92:db:be:64:5d:1a:c8:4c:e6:4d:8d:08:0f:fa:e5:6e:35:65: 2f:04:8e:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUxMjE4MTUyNTE0WhcNMjUxMjI1MTUyNTE0WjAYMRYwFAYD VQQDDA02OTQ0MWNkYi01NDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjq1zpYEJLYm3SflT6b6anAb1qgqeLWh+9KtPQZVtwyVQ3B9luHcXN9z7qeAn iSXTThHIxJ9z2SsApMzUhJlqUg1eJzZ/MHUIDjn251K94ifGa0xR2P0K2f3EMZs4 xmJcDl2FPb/qYkqLDnSoBIU1dbMAJ0pBYa4p5VEA3MYFt3DnAYqT1Ve0BxCO2pvp HAFKNXno8AaKgVWylIUxVRLBUY3UyrMsK8q8JDbp61b5vDQiAW7QhGrTXFhtVV0v P77RRwQKhF9oQUn3+NtQFA/gST7c3f24z+X+lL1W4Y8en6e8Bv7pHRpFX86k2VEU e3q4IaEy5nNL0xQDl0f3mGqIdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK35LESj t5rYAdZHJ5Upxyq5WB5+MB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB7Wvde9xHbDUUDzh6p3KzPdxC1XQqUzzarxXothCKyf10jOob5trN Coq636rYm+i5ittnVeSav2SNABBqYzfgjIRXsKQUzqZu9aaRYtw5XnCaGDYtKRmf 4cEDqV6FA61Cnei6MkTYDxDcB6mBbNMtmGFWHGXjG/5MNi+akrHT7vqIhlmj9Jup gPYLXMhpZfqYpVHVqAjtoPFUlawqRGHhsAd+PcnaBw3HJhn2W7/VI93Nhzr6or92 Rj095ouAXiHBCT/NJApj4g1aA52894jVOle94qJmWbXAPv12JZ/15ZYC/9V1ViKJ esGS275kXRrITOZNjQgP+uVuNWUvBI6Z -----END CERTIFICATE-----Generated at Fri Dec 19 23:58:52 2025 by rpki-client