This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: VMk1p+xFcZb046FAsLEbHfoFp6+iY8a6JxVDwT53uAM= Subject key identifier: 0A:60:BD:CD:38:FF:89:17:B9:DB:A6:31:12:59:49:89:E4:82:73:09 Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 1572 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2CC3 Signing time: Thu 18 Dec 2025 16:39:10 +0000 Manifest this update: Thu 18 Dec 2025 16:39:09 +0000 Manifest next update: Thu 25 Dec 2025 16:39:09 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: WC7LHXiunY23y+HCTA4uFhQ8mfoTDoi2c1cDgY3zC5Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5490 (0x1572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: Dec 18 16:39:09 2025 GMT Not After : Dec 25 16:39:09 2025 GMT Subject: CN=69442e2e-218e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:96:39:ab:03:79:3e:72:b0:d0:8d:b2:eb:cd: 4a:85:b4:a1:01:46:ce:9e:1d:78:cf:11:fb:a3:31: 02:32:8b:01:c6:2b:13:08:8a:78:e9:21:a5:3e:a5: e6:f2:44:86:21:73:aa:8d:b7:2a:34:ad:7c:f2:4c: e0:97:66:e5:e6:38:83:50:a1:68:d8:f7:43:a0:b3: 7a:24:b8:79:25:d7:cf:00:40:a6:a6:e0:13:6a:48: c7:9c:88:18:05:f9:01:e8:19:44:9a:0e:30:34:93: 92:ef:8e:57:ac:99:55:f1:9d:e2:19:0e:0b:ee:89: 08:87:6b:ab:98:84:cd:a7:c4:b7:b0:0a:f1:a0:67: ad:81:4c:97:ca:a9:2a:28:2f:9d:f3:8d:4c:86:7d: 2a:52:90:8b:2d:0f:9d:67:4e:e6:7a:1f:41:ac:24: 87:b4:21:36:b9:8c:89:95:bb:6e:ac:92:04:39:15: 45:06:1b:b3:da:ef:0a:1b:cb:11:7a:64:84:73:13: 0e:bc:9e:cc:93:38:4d:27:de:66:7b:58:72:1f:f2: 88:31:28:a3:84:90:bf:b8:e0:41:ec:48:f9:f4:cb: 14:79:65:2b:8e:a7:83:a3:33:7b:4a:64:3b:c4:06: 25:a6:94:8c:32:86:00:61:84:29:de:c3:3b:fc:e1: 58:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:60:BD:CD:38:FF:89:17:B9:DB:A6:31:12:59:49:89:E4:82:73:09 X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:d4:09:98:8b:b7:40:17:fb:71:1a:d4:a1:1c:4d:d5:df:d0: 19:9b:0a:02:cb:a9:c7:6b:f1:ca:3e:0a:1f:81:e3:97:bc:61: aa:9d:7a:97:90:6f:dc:ce:fe:16:a1:20:a6:31:97:08:be:4f: 6d:98:a0:d4:32:2b:ce:c2:a0:e6:0a:99:8d:6b:54:80:ff:f2: de:f2:fc:17:bb:af:58:26:28:f7:9a:2c:0d:e4:c0:27:83:fa: 09:a5:2f:0b:73:68:bf:22:28:b9:f6:d4:99:44:e9:1a:cb:2a: bb:ba:48:17:8a:66:92:e0:b8:a1:f4:95:d2:69:29:4b:17:40: f6:92:ef:96:a5:31:64:35:91:a8:3b:4e:f8:3b:0f:6c:b0:60: b5:9c:26:fc:aa:95:5b:b2:a7:10:f0:e6:06:f7:0e:48:bf:2a: d8:2e:ab:17:8a:60:b9:c5:be:3e:02:d5:0d:79:06:08:3f:5b: 3b:f4:90:9b:8b:29:da:46:08:69:e7:cd:64:48:52:fb:1c:95: 24:ff:a7:83:42:bb:d3:3d:5f:b6:b3:7f:a0:43:5e:a3:14:9f: 7c:d3:bc:60:a1:b3:3b:17:64:36:7a:b0:7b:20:70:9f:72:49: ba:58:c2:c6:37:3d:37:0f:44:7c:3c:43:12:eb:5d:74:a5:a8: 75:59:39:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjUxMjE4MTYzOTA5WhcNMjUxMjI1MTYzOTA5WjAYMRYwFAYD VQQDDA02OTQ0MmUyZS0yMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpY5qwN5PnKw0I2y681KhbShAUbOnh14zxH7ozECMosBxisTCIp46SGlPqXm 8kSGIXOqjbcqNK188kzgl2bl5jiDUKFo2PdDoLN6JLh5JdfPAECmpuATakjHnIgY BfkB6BlEmg4wNJOS745XrJlV8Z3iGQ4L7okIh2urmITNp8S3sArxoGetgUyXyqkq KC+d841Mhn0qUpCLLQ+dZ07meh9BrCSHtCE2uYyJlbturJIEORVFBhuz2u8KG8sR emSEcxMOvJ7MkzhNJ95me1hyH/KIMSijhJC/uOBB7Ej59MsUeWUrjqeDozN7SmQ7 xAYlppSMMoYAYYQp3sM7/OFY4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApgvc04 /4kXudumMRJZSYnkgnMJMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX1AmYi7dAF/txGtShHE3V39AZmwoCy6nHa/HKPgofgeOXvGGqnXqX kG/czv4WoSCmMZcIvk9tmKDUMivOwqDmCpmNa1SA//Le8vwXu69YJij3miwN5MAn g/oJpS8Lc2i/Iii59tSZROkayyq7ukgXimaS4Lih9JXSaSlLF0D2ku+WpTFkNZGo O074Ow9ssGC1nCb8qpVbsqcQ8OYG9w5IvyrYLqsXimC5xb4+AtUNeQYIP1s79JCb iynaRghp581kSFL7HJUk/6eDQrvTPV+2s3+gQ16jFJ9807xgobM7F2Q2erB7IHCf ckm6WMLGNz03D0R8PEMS6110pah1WTn6 -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:02 2025 by rpki-client