This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: YUzwxhnNDW8NgJgI0JpauSVNgFbQnYiAxy+hH/UuqF0= Subject key identifier: 1F:0B:13:54:41:ED:EC:B5:AC:85:D0:64:26:35:90:66:E8:03:2D:25 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 046E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 0462 Signing time: Thu 18 Dec 2025 23:31:55 +0000 Manifest this update: Thu 18 Dec 2025 23:31:55 +0000 Manifest next update: Thu 25 Dec 2025 23:31:55 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: uS8wRyxz4UITFxLPli23Uz7dXhSQf0ZYtPQqHiF3C84=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: ciNIImuAbj1AO0K4GihG7jlhzLEKvAURaWl26eH889E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:31:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Dec 18 23:31:55 2025 GMT Not After : Dec 25 23:31:55 2025 GMT Subject: CN=69448eeb-f2f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b2:68:cc:a0:ec:95:56:30:09:f7:11:e7:bc: 70:0a:38:46:28:95:51:5d:b5:32:45:98:ad:cd:7e: e3:a0:45:a0:e5:8c:bc:2a:5a:88:52:53:ff:da:2b: 0c:ca:c7:07:c5:b2:e4:54:52:f3:f7:94:69:7e:50: 62:10:d5:ff:14:68:03:88:06:b8:5e:7d:e4:12:a0: 8f:f1:87:5c:fb:5c:45:b8:22:12:0a:4d:b6:bf:f2: 38:37:c2:52:f5:df:87:6b:c4:a4:59:00:3d:dd:6d: 35:48:bb:f6:49:a9:2d:fb:69:6f:d6:bc:56:e9:55: 30:24:26:e6:cb:13:fb:a2:30:0c:f8:de:26:37:74: 3b:03:5a:ec:63:ef:a5:d4:53:1d:06:9d:03:2c:10: ce:d9:b0:85:93:5d:b0:34:23:dd:7d:56:c9:a5:46: 91:64:7e:c2:aa:5d:cb:f1:cf:33:ba:71:2a:47:ec: 34:d7:71:99:37:74:9a:b1:e7:af:35:6f:1a:0c:0d: 9f:43:c1:f1:0f:a7:67:c6:51:91:d0:41:c3:03:0f: 7d:11:81:fe:87:db:9d:07:a4:d1:9a:0f:f9:8d:72: 4e:3d:2e:b8:ae:fb:79:c6:d0:5f:43:c3:e6:48:10: 50:1f:45:e3:5e:d3:f8:f1:5e:81:48:e2:c3:db:0a: cc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:0B:13:54:41:ED:EC:B5:AC:85:D0:64:26:35:90:66:E8:03:2D:25 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:6f:fa:78:41:7c:1f:75:3e:c3:10:c8:89:47:b1:19:90:d9: 60:c2:81:60:4e:9f:51:72:0e:90:fe:f7:94:60:fc:b4:fc:da: ef:df:d0:da:7a:73:ac:30:ae:4f:c2:47:c0:75:8e:42:3d:0e: 91:77:46:f4:a4:10:4e:84:2d:a2:e2:01:02:fb:13:72:da:c7: c1:79:17:33:01:44:da:a1:c3:16:7e:11:62:ac:69:23:d4:79: e7:6e:61:db:46:99:78:da:53:ce:f6:ba:11:21:dc:5b:df:e2: 82:3a:d5:91:2e:0c:b5:0d:51:ed:be:de:74:8a:51:95:ab:3c: 67:3f:a5:97:1a:31:02:a9:10:9e:4b:5b:7d:13:ef:0a:74:1e: 3f:25:1d:5b:52:36:a0:1f:2c:12:b9:a4:5a:96:f9:95:bf:cf: 94:b4:3d:58:de:d8:10:b7:b6:fe:21:ba:45:bd:3f:c7:36:72: db:8a:43:55:90:9c:23:fb:ca:94:3a:81:98:0f:5d:67:18:a5: c5:37:9c:37:f8:ca:ef:57:54:4a:54:37:68:b4:72:eb:a9:92: 59:e8:e7:3c:ad:e0:52:ae:da:4d:12:06:e2:10:3d:31:a7:ff: cb:26:55:8b:65:07:75:95:73:4b:e4:3b:2f:84:17:35:f0:89: af:66:89:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjUxMjE4MjMzMTU1WhcNMjUxMjI1MjMzMTU1WjAYMRYwFAYD VQQDDA02OTQ0OGVlYi1mMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7JozKDslVYwCfcR57xwCjhGKJVRXbUyRZitzX7joEWg5Yy8KlqIUlP/2isM yscHxbLkVFLz95RpflBiENX/FGgDiAa4Xn3kEqCP8Ydc+1xFuCISCk22v/I4N8JS 9d+Ha8SkWQA93W01SLv2Sakt+2lv1rxW6VUwJCbmyxP7ojAM+N4mN3Q7A1rsY++l 1FMdBp0DLBDO2bCFk12wNCPdfVbJpUaRZH7Cql3L8c8zunEqR+w013GZN3Saseev NW8aDA2fQ8HxD6dnxlGR0EHDAw99EYH+h9udB6TRmg/5jXJOPS64rvt5xtBfQ8Pm SBBQH0XjXtP48V6BSOLD2wrMywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8LE1RB 7ey1rIXQZCY1kGboAy0lMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+b/p4QXwfdT7DEMiJR7EZkNlgwoFgTp9Rcg6Q/veUYPy0/Nrv39Da enOsMK5PwkfAdY5CPQ6Rd0b0pBBOhC2i4gEC+xNy2sfBeRczAUTaocMWfhFirGkj 1HnnbmHbRpl42lPO9roRIdxb3+KCOtWRLgy1DVHtvt50ilGVqzxnP6WXGjECqRCe S1t9E+8KdB4/JR1bUjagHywSuaRalvmVv8+UtD1Y3tgQt7b+IbpFvT/HNnLbikNV kJwj+8qUOoGYD11nGKXFN5w3+MrvV1RKVDdotHLrqZJZ6Oc8reBSrtpNEgbiED0x p//LJlWLZQd1lXNL5DsvhBc18ImvZolS -----END CERTIFICATE-----Generated at Fri Dec 19 21:55:40 2025 by rpki-client