This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: vynAtgNzuQwOJtnIlzTqMIIFDO9DNWCOs1knNiHIfm4= Subject key identifier: E7:CB:45:FC:A4:87:46:2D:46:2E:3B:34:26:B5:08:3F:CB:6E:D0:B9 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: 0124 Signing time: Fri 19 Dec 2025 03:51:37 +0000 Manifest this update: Fri 19 Dec 2025 03:51:37 +0000 Manifest next update: Fri 26 Dec 2025 03:51:37 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: 9wm+BaH/s47GJ1pdsRiyliaPo9oDpMw3bu5u8fiWRGg=) 2: DC857BE8843111F09719836AC4F9AE02.roa (hash: qHV4LLtdLNsakUr43NtlwblQMKyqVyTmPBHeJjQSZeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Dec 19 03:51:37 2025 GMT Not After : Dec 26 03:51:37 2025 GMT Subject: CN=6944cbc9-70be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:33:83:0b:b9:85:40:06:26:8b:d5:a1:4c:30: 27:6a:e2:9e:19:65:ee:2b:b8:b7:96:00:11:44:13: d7:8e:09:82:14:63:c8:4c:03:46:11:99:dc:c6:b4: 76:7b:c4:a0:99:6f:05:e4:87:49:88:4b:60:6f:91: 8b:df:42:91:89:cd:7e:f8:31:c2:1d:d7:3e:cb:5d: cc:1c:f1:69:71:43:d0:4a:95:ac:96:a4:49:28:80: 0c:36:36:81:2e:f7:57:1b:9d:b8:b3:84:6c:92:66: cb:b0:3b:fa:b6:c0:e1:93:01:12:3f:e4:de:bc:30: d0:1d:19:d9:77:26:43:0a:35:35:94:59:51:6b:25: 28:9e:95:86:97:3a:96:49:3d:38:c8:6d:ca:1d:66: 60:f6:2a:d3:48:b4:83:9d:37:f9:95:33:74:1a:64: 21:30:ae:2b:c2:fb:ac:e2:0a:44:28:af:32:ba:e6: ee:d8:c7:26:c3:fc:f5:c3:cb:a4:12:38:f6:47:67: eb:49:b4:52:84:49:8e:2d:40:34:1a:43:c3:ed:8f: 2c:65:d1:93:07:e6:af:e5:bb:82:22:a8:69:ea:12: f1:ca:8a:49:97:1f:56:e4:da:3c:69:06:48:e6:d6: ff:9b:01:e6:96:7e:3f:02:70:4c:74:7f:bc:01:51: ca:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:CB:45:FC:A4:87:46:2D:46:2E:3B:34:26:B5:08:3F:CB:6E:D0:B9 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:0b:1b:88:21:60:56:20:e8:9e:15:ef:f8:9a:4d:02:6f:04: f6:80:65:d3:2f:3e:3b:c7:8d:6d:93:94:aa:1a:57:3e:8f:26: 9a:c1:89:de:b0:80:71:bd:d1:8a:62:24:ec:32:3b:24:75:c3: fd:ab:99:f1:de:61:05:a1:0a:5a:1c:66:64:71:d2:ff:da:7f: 33:84:7d:89:21:b5:d0:ec:e5:da:74:84:d0:a9:d8:eb:84:2e: f4:04:85:a8:6b:d6:1d:0d:8a:12:aa:71:05:df:40:83:38:0c: 21:98:a5:df:b8:c6:db:6f:f3:dd:a4:01:f9:96:a5:5c:04:f0: c3:dc:6e:78:62:e2:9a:d2:31:9f:b0:33:05:d3:c5:65:25:4a: 99:19:7b:00:6f:4c:3e:59:c2:69:2f:ee:60:b5:fb:03:1f:60: 74:db:24:1e:38:90:93:5c:5f:0a:35:48:f8:7e:8c:13:e6:21: ff:8d:fe:dd:57:40:73:be:d9:4c:5c:9f:92:13:c5:6f:a3:a6: 57:11:21:93:a5:1f:cf:b6:ac:d9:de:ce:2e:20:4a:f8:a1:3a: 16:db:52:43:c1:1b:c3:14:c5:0c:2c:c6:82:97:9a:a5:59:30: d2:53:3c:fe:09:14:03:95:9b:a3:19:68:4c:45:8b:44:f2:34: d0:62:8b:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUxMjE5MDM1MTM3WhcNMjUxMjI2MDM1MTM3WjAYMRYwFAYD VQQDDA02OTQ0Y2JjOS03MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzODC7mFQAYmi9WhTDAnauKeGWXuK7i3lgARRBPXjgmCFGPITANGEZncxrR2 e8SgmW8F5IdJiEtgb5GL30KRic1++DHCHdc+y13MHPFpcUPQSpWslqRJKIAMNjaB LvdXG524s4RskmbLsDv6tsDhkwESP+TevDDQHRnZdyZDCjU1lFlRayUonpWGlzqW ST04yG3KHWZg9irTSLSDnTf5lTN0GmQhMK4rwvus4gpEKK8yuubu2Mcmw/z1w8uk Ejj2R2frSbRShEmOLUA0GkPD7Y8sZdGTB+av5buCIqhp6hLxyopJlx9W5No8aQZI 5tb/mwHmln4/AnBMdH+8AVHKpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfLRfyk h0YtRi47NCa1CD/LbtC5MB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKCxuIIWBWIOieFe/4mk0CbwT2gGXTLz47x41tk5SqGlc+jyaawYne sIBxvdGKYiTsMjskdcP9q5nx3mEFoQpaHGZkcdL/2n8zhH2JIbXQ7OXadITQqdjr hC70BIWoa9YdDYoSqnEF30CDOAwhmKXfuMbbb/PdpAH5lqVcBPDD3G54YuKa0jGf sDMF08VlJUqZGXsAb0w+WcJpL+5gtfsDH2B02yQeOJCTXF8KNUj4fowT5iH/jf7d V0BzvtlMXJ+SE8Vvo6ZXESGTpR/PtqzZ3s4uIEr4oToW21JDwRvDFMUMLMaCl5ql WTDSUzz+CRQDlZujGWhMRYtE8jTQYos6 -----END CERTIFICATE-----Generated at Sun Dec 21 02:33:34 2025 by rpki-client