This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft File: IJOpiw2lSMwNHF-8o9clFG9ETXI.mft (raw, json) Hash identifier: ucVzfoNTkJdW7nUu4/X875N0XQfqZ/xha6gBrSaSoPA= Subject key identifier: 4C:66:F4:F6:53:4B:84:6D:17:24:1D:F6:B5:9C:8C:DC:47:31:B5:CB Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 3537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft Manifest number: 350A Signing time: Sat 20 Dec 2025 14:19:32 +0000 Manifest this update: Sat 20 Dec 2025 14:19:31 +0000 Manifest next update: Sat 27 Dec 2025 14:19:31 +0000 Files and hashes: 1: IJOpiw2lSMwNHF-8o9clFG9ETXI.crl (hash: hbcni3uZBB5SBSsRxu+CD4NRbt0THPw8lWFzIQ6FWtk=) 2: E93EEAFCB0F811E595E0F761C4F9AE02.roa (hash: Qz5pZ4cV9JQ9lwZlMLRTE2xMp+k9IBDZYYDpMTYk3vI=) 3: 32509B68EDAE11E595DF6C28C4F9AE02.roa (hash: n6cQOr7nMx3ASkXvodDC31C4d5lcr3OKlWkKenjwMWc=) 4: EF9395EA6A1511E9808D417CC4F9AE02.roa (hash: 6C/a3Wj9og9vwBBN5UoCzfPyuDE6Bklz8AODGS07vlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13623 (0x3537) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Dec 20 14:19:31 2025 GMT Not After : Dec 27 14:19:31 2025 GMT Subject: CN=6946b073-d198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:61:2c:86:65:ff:a2:21:31:e6:1b:75:54:fc: c1:c8:cb:95:fe:80:57:e1:0f:a1:13:e5:70:5b:59: 7e:b5:e1:88:21:0a:81:e6:a8:bb:6a:f2:65:e5:ed: 4c:1b:c9:73:ca:eb:fe:6b:78:c2:97:88:4d:11:4d: 0e:ab:f4:c8:66:84:2d:e1:fb:74:fd:26:af:95:83: d6:7f:d8:9f:d1:ab:a8:13:3c:c5:ef:f8:12:de:a6: ae:5f:ba:9f:b4:37:59:61:89:48:39:e2:b6:ec:40: 03:d1:68:1b:9c:c2:37:76:16:53:96:94:48:be:69: 88:0f:9a:12:57:e5:6d:5f:a0:b0:6e:2a:e0:4e:5e: a3:db:12:86:22:60:60:f8:1f:12:36:d5:0a:96:44: 61:ea:bb:2d:71:96:73:26:a8:a9:8f:1f:00:49:6b: c5:47:04:8e:84:aa:40:a0:0c:a5:90:c2:e2:12:49: c0:a9:fb:2b:1c:20:66:f0:66:42:4a:2b:62:c5:fe: c3:5f:b8:77:7d:a1:76:56:87:79:44:2c:83:3f:bf: 84:a8:26:fa:1f:c6:f3:eb:db:4f:e5:84:59:38:20: be:48:2b:86:31:d8:a5:71:04:38:ca:34:c9:83:6d: 12:20:80:69:a2:4a:f6:22:8e:ea:4a:be:7a:35:16: 51:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:66:F4:F6:53:4B:84:6D:17:24:1D:F6:B5:9C:8C:DC:47:31:B5:CB X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:3b:5c:9d:11:8a:e7:2d:d8:0f:67:05:0d:85:0d:75:2f:e4: 99:0b:af:58:14:3b:df:63:6b:79:18:e6:d7:31:d3:a4:9c:58: 32:8a:f8:fb:fc:fa:63:94:4a:a1:17:9d:7f:62:ec:f4:27:6e: 74:ed:e4:11:c0:57:c5:a2:36:fc:a9:79:38:1d:60:90:f8:0b: ae:1d:da:08:27:09:3a:d6:37:5e:ee:6c:24:99:67:8b:54:75: 7b:22:a2:e0:72:4b:06:c5:6f:03:b3:95:b6:74:6b:f0:43:8c: 5d:e6:0c:ae:f7:99:28:8b:92:21:0f:0f:b8:6b:c5:ad:ae:7a: 9d:c2:0c:b6:e5:5a:c7:21:46:8f:28:ef:b2:71:6c:9a:d2:d2: 7a:f4:de:2f:d6:0f:f5:ce:f7:6e:b7:07:69:5b:a5:55:17:b5: 9a:7e:57:bc:c9:2a:63:67:db:d4:29:f3:8a:6b:4c:a4:80:60: ea:57:d0:b0:7f:90:75:1a:85:1c:2a:37:10:7c:ba:3e:64:8d: d2:94:33:40:5f:d2:17:d8:90:02:cf:0d:36:bc:81:f6:24:45: 3b:f5:4d:29:70:94:e1:8e:a1:a6:4f:f7:cf:81:3d:24:90:20: df:a0:a5:3f:80:d1:f4:71:dc:88:fc:43:85:98:d7:af:c9:db: ff:36:ac:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUxMjIwMTQxOTMxWhcNMjUxMjI3MTQxOTMxWjAYMRYwFAYD VQQDDA02OTQ2YjA3My1kMTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGEshmX/oiEx5ht1VPzByMuV/oBX4Q+hE+VwW1l+teGIIQqB5qi7avJl5e1M G8lzyuv+a3jCl4hNEU0Oq/TIZoQt4ft0/SavlYPWf9if0auoEzzF7/gS3qauX7qf tDdZYYlIOeK27EAD0WgbnMI3dhZTlpRIvmmID5oSV+VtX6CwbirgTl6j2xKGImBg +B8SNtUKlkRh6rstcZZzJqipjx8ASWvFRwSOhKpAoAylkMLiEknAqfsrHCBm8GZC Sitixf7DX7h3faF2Vod5RCyDP7+EqCb6H8bz69tP5YRZOCC+SCuGMdilcQQ4yjTJ g20SIIBpokr2Io7qSr56NRZRNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExm9PZT S4RtFyQd9rWcjNxHMbXLMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDY1Ny83MTVGMzMzNDFENzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNN d05IRi04bzljbEZHOUVUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4O1ydEYrnLdgPZwUNhQ11L+SZC69YFDvfY2t5GObXMdOknFgyivj7 /PpjlEqhF51/Yuz0J2507eQRwFfFojb8qXk4HWCQ+AuuHdoIJwk61jde7mwkmWeL VHV7IqLgcksGxW8Ds5W2dGvwQ4xd5gyu95koi5IhDw+4a8Wtrnqdwgy25VrHIUaP KO+ycWya0tJ69N4v1g/1zvdutwdpW6VVF7Wafle8ySpjZ9vUKfOKa0ykgGDqV9Cw f5B1GoUcKjcQfLo+ZI3SlDNAX9IX2JACzw02vIH2JEU79U0pcJThjqGmT/fPgT0k kCDfoKU/gNH0cdyI/EOFmNevydv/Nqxi -----END CERTIFICATE-----Generated at Sun Dec 21 12:16:09 2025 by rpki-client