This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: KC9MLTS6lxSMwBSl62zVdy2wRrSovQfWBqXNsoh3ceg= Subject key identifier: CD:86:49:9F:40:C0:20:52:2D:8D:02:12:DA:CD:9B:20:D9:36:7D:7A Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 3514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 3500 Signing time: Thu 18 Dec 2025 14:34:37 +0000 Manifest this update: Thu 18 Dec 2025 14:34:37 +0000 Manifest next update: Thu 25 Dec 2025 14:34:37 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: yPmQcbMh04JX7TVMuMH3OwQdE3dsgmtH4W4McpSZxj8=) 2: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 3: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 5P8iz2/f75JawHS84+uOtc39+Wj5fIfZ/CgqWjpJHIs=) 4: 075152B253CB11F09DA22358C4F9AE02.roa (hash: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM=) 5: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: H2psEBDgMdRvNZgUPZApVJCLqrPQ8EnSpGElYQR9ZLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13588 (0x3514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Dec 18 14:34:37 2025 GMT Not After : Dec 25 14:34:37 2025 GMT Subject: CN=694410fd-40ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:af:fc:ce:52:0e:bf:25:a7:9d:de:e1:8a:ce: ac:df:d2:53:ec:e2:69:31:2c:8b:de:22:c4:2c:3d: d7:99:37:c7:ce:23:90:6b:37:6d:50:43:57:ac:f0: cd:e4:f5:d2:7c:a4:d6:aa:db:5e:9d:38:74:4b:58: f9:16:e6:91:14:ec:6e:86:92:3c:bd:dd:1f:bb:1b: 51:62:97:8d:6b:3a:9f:3c:e7:0d:d8:c8:71:2b:08: 7c:77:e3:e1:fe:c3:70:fe:c5:e4:b6:92:f4:fc:67: 62:b8:f0:19:43:a8:ca:c1:91:c9:d0:78:1b:6e:e4: 5d:f2:07:12:1a:90:c3:30:92:9a:4e:11:e3:c7:d1: 1f:ab:b0:dc:1d:72:6a:4b:0e:95:11:ae:19:e5:cd: 8f:61:ce:21:01:27:23:a7:c5:fa:c8:f6:51:a1:e6: 82:dc:ce:a6:d1:85:5c:18:e7:8c:a0:60:62:68:3e: 41:c5:e2:ca:8c:0e:24:65:4e:78:7b:98:35:b3:48: e7:90:a3:6c:64:54:3f:68:70:8b:a8:fa:39:28:70: 2e:98:1a:77:ef:96:d1:e1:7e:54:d0:45:cb:10:c3: 1f:16:fa:4c:21:ba:92:cc:9f:56:a4:cf:51:fb:f7: 01:36:44:5b:b8:d4:53:32:2f:1f:49:54:de:b8:d9: f0:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:86:49:9F:40:C0:20:52:2D:8D:02:12:DA:CD:9B:20:D9:36:7D:7A X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c9:51:02:35:07:3e:ea:cb:ec:77:3f:de:30:6a:9f:dc:66: 00:eb:25:df:2c:2b:73:dd:e7:ee:d7:19:a5:61:d8:ba:f6:9e: 80:90:f5:cf:c4:b5:d8:b4:c2:ed:89:b0:a4:b8:82:9a:54:06: a6:38:65:5f:d6:ad:11:ea:c7:cb:57:cc:eb:c8:0a:59:11:33: 6b:ee:fa:14:f6:64:44:9c:f8:aa:43:3f:2d:d1:c3:5d:c0:5e: 25:0a:b3:4a:72:c6:6d:f2:5b:62:03:ae:47:69:6e:69:d6:59: e9:42:2f:86:3a:e1:0b:a9:41:6a:a3:0a:0a:35:e1:fb:6d:3e: 65:4d:33:27:7a:29:8f:ce:06:82:08:36:c9:72:1d:fe:6f:d9: 68:ec:84:f7:be:2d:c4:ff:d3:7d:37:78:20:19:fb:e5:32:70: 46:52:8d:4e:b2:ce:d2:5f:72:b9:06:76:34:a7:b6:c9:2d:2d: 7f:69:97:f9:0d:7a:14:4a:29:6f:b6:d7:cb:50:88:b5:63:cc: e0:f7:7e:55:ad:fb:ba:86:10:0f:0e:27:13:f8:a0:36:4d:25: 13:41:6d:72:ed:3b:51:fa:8d:e0:d4:68:ed:9e:ad:a1:1e:da: e1:33:ef:99:c9:3c:67:f1:3d:1f:6b:8b:6a:9c:5a:a8:0d:74: 12:b2:13:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUxMjE4MTQzNDM3WhcNMjUxMjI1MTQzNDM3WjAYMRYwFAYD VQQDDA02OTQ0MTBmZC00MGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6/8zlIOvyWnnd7his6s39JT7OJpMSyL3iLELD3XmTfHziOQazdtUENXrPDN 5PXSfKTWqttenTh0S1j5FuaRFOxuhpI8vd0fuxtRYpeNazqfPOcN2MhxKwh8d+Ph /sNw/sXktpL0/GdiuPAZQ6jKwZHJ0HgbbuRd8gcSGpDDMJKaThHjx9Efq7DcHXJq Sw6VEa4Z5c2PYc4hAScjp8X6yPZRoeaC3M6m0YVcGOeMoGBiaD5BxeLKjA4kZU54 e5g1s0jnkKNsZFQ/aHCLqPo5KHAumBp375bR4X5U0EXLEMMfFvpMIbqSzJ9WpM9R +/cBNkRbuNRTMi8fSVTeuNnwnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2GSZ9A wCBSLY0CEtrNmyDZNn16MB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATyVECNQc+6svsdz/eMGqf3GYA6yXfLCtz3efu1xmlYdi69p6AkPXP xLXYtMLtibCkuIKaVAamOGVf1q0R6sfLV8zryApZETNr7voU9mREnPiqQz8t0cNd wF4lCrNKcsZt8ltiA65HaW5p1lnpQi+GOuELqUFqowoKNeH7bT5lTTMneimPzgaC CDbJch3+b9lo7IT3vi3E/9N9N3ggGfvlMnBGUo1Oss7SX3K5BnY0p7bJLS1/aZf5 DXoUSilvttfLUIi1Y8zg935Vrfu6hhAPDicT+KA2TSUTQW1y7TtR+o3g1Gjtnq2h HtrhM++ZyTxn8T0fa4tqnFqoDXQSshPM -----END CERTIFICATE-----Generated at Fri Dec 19 22:00:26 2025 by rpki-client