This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft File: Ixupmdjogk9iIrhWhdB91HpwRts.mft (raw, json) Hash identifier: aN7utkZqswEGTgJRqCJLnnbTkIIuuLlyju1tsP5GWkA= Subject key identifier: 4E:EC:DD:E4:42:1B:B4:59:7D:C9:88:15:53:C8:5C:FE:AA:D8:59:2C Authority key identifier: 23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB Certificate issuer: /CN=A916B95A/serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft Manifest number: 0112 Signing time: Fri 19 Dec 2025 04:00:10 +0000 Manifest this update: Fri 19 Dec 2025 04:00:10 +0000 Manifest next update: Fri 26 Dec 2025 04:00:10 +0000 Files and hashes: 1: Ixupmdjogk9iIrhWhdB91HpwRts.crl (hash: pdbuMJUDl4IHSGWrpwjr0Q0LgcywOxdrBvt/FcfGMpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=231BA999D8E8824F6222B85685D07DD47A7046DB Validity Not Before: Dec 19 04:00:10 2025 GMT Not After : Dec 26 04:00:10 2025 GMT Subject: CN=6944cdca-ba60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ea:fd:39:da:d0:bf:bb:9b:4b:5a:f2:7a:78: 83:4c:8f:6e:89:92:f9:0d:0b:48:c9:b3:c1:b9:ec: 10:8e:c2:bf:02:20:5f:1d:9f:99:a5:6b:d4:76:b4: 83:3e:e7:b3:e6:b7:ac:21:17:fc:83:f3:e7:73:6e: 71:09:c1:33:1a:97:c6:be:13:cf:cb:55:2c:e8:81: 79:6e:71:ca:ac:01:c6:ba:35:dc:58:71:9c:06:87: 9f:2b:13:86:60:35:e0:67:58:48:68:38:c9:85:d4: 14:cf:9a:25:ed:3d:56:c0:31:81:ff:d6:2a:42:b2: 10:c2:c0:45:52:a8:43:ac:1d:75:75:e2:04:4e:a5: 60:59:c6:5d:e7:92:48:b2:09:ca:b2:47:5f:ac:f3: 4e:b5:ae:a6:76:94:b6:c5:a0:ed:81:28:d3:81:47: 0e:b6:95:de:33:76:95:b2:11:56:bf:a3:8d:7c:12: e4:7f:43:5a:fa:35:8f:ce:c0:d2:12:df:c0:a1:fa: 56:35:d7:e4:ba:8f:5b:80:33:29:ce:3c:2d:36:8b: 5c:28:2f:df:31:61:08:1b:89:a3:12:df:de:48:b4: 1a:9d:00:f8:37:cf:b2:4c:ba:8c:c8:6c:2f:d0:f3: d4:9e:dd:49:31:17:f2:f5:8a:fb:19:c2:ba:fc:75: d9:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:EC:DD:E4:42:1B:B4:59:7D:C9:88:15:53:C8:5C:FE:AA:D8:59:2C X509v3 Authority Key Identifier: keyid:23:1B:A9:99:D8:E8:82:4F:62:22:B8:56:85:D0:7D:D4:7A:70:46:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ixupmdjogk9iIrhWhdB91HpwRts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/5A19BDCA37AE11EF8A458E37C4F9AE02/Ixupmdjogk9iIrhWhdB91HpwRts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:78:b5:3b:c8:7a:1e:7f:ce:ca:4e:cb:50:5f:8f:a3:22:17: 1f:65:0f:c6:5d:5c:5c:47:97:fd:c4:94:37:58:c6:08:8f:ef: 2f:28:5b:b0:cf:17:aa:af:c7:7b:d8:81:b8:5e:53:79:2e:2d: 36:69:84:81:4d:9e:f4:bc:ca:ce:05:07:c5:7a:ad:e3:99:1d: 47:bf:01:44:d7:3d:b2:8a:49:48:88:52:67:c1:a0:99:e7:bb: 04:73:32:6e:47:f1:73:64:64:64:9f:fc:7f:2c:4c:b5:d9:bf: 1e:a5:76:c1:d3:84:d8:c9:79:b3:d1:d7:ca:02:32:66:d9:17: ff:9b:a2:7d:d9:45:ad:ca:45:c3:e4:56:e9:01:52:f7:3e:49: cf:c1:d6:c1:f5:0e:48:6e:de:d9:98:f5:ab:57:60:3b:d2:a8: 5f:19:2b:3c:9f:c8:38:a1:77:b2:a3:9b:77:93:4a:9a:76:4e: 7d:99:8c:47:f6:c9:d5:17:13:93:fd:e8:13:b0:42:59:f7:db: 9b:7d:f9:14:45:26:41:88:38:17:71:40:c1:eb:b5:c8:37:c6: 6d:6d:33:a3:55:ac:10:9b:2e:8e:97:87:cd:90:81:97:2e:ef: 91:54:c1:68:17:97:77:c9:84:7d:5c:1c:5b:d5:f7:da:80:8e: 3f:61:ea:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKDIzMUJBOTk5RDhFODgyNEY2MjIyQjg1Njg1RDA3REQ0 N0E3MDQ2REIwHhcNMjUxMjE5MDQwMDEwWhcNMjUxMjI2MDQwMDEwWjAYMRYwFAYD VQQDDA02OTQ0Y2RjYS1iYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwur9OdrQv7ubS1ryeniDTI9uiZL5DQtIybPBuewQjsK/AiBfHZ+ZpWvUdrSD Puez5resIRf8g/Pnc25xCcEzGpfGvhPPy1Us6IF5bnHKrAHGujXcWHGcBoefKxOG YDXgZ1hIaDjJhdQUz5ol7T1WwDGB/9YqQrIQwsBFUqhDrB11deIETqVgWcZd55JI sgnKskdfrPNOta6mdpS2xaDtgSjTgUcOtpXeM3aVshFWv6ONfBLkf0Na+jWPzsDS Et/AofpWNdfkuo9bgDMpzjwtNotcKC/fMWEIG4mjEt/eSLQanQD4N8+yTLqMyGwv 0PPUnt1JMRfy9Yr7GcK6/HXZmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7s3eRC G7RZfcmIFVPIXP6q2FksMB8GA1UdIwQYMBaAFCMbqZnY6IJPYiK4VoXQfdR6cEbb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81QTE5QkRDQTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2drOWlJcmhXaGRCOTFIcHdS dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l4dXBtZGpvZ2s5aUlyaFdoZEI5MUhwd1J0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Qjk1QS81QTE5QkRDQTM3QUUxMUVGOEE0NThFMzdDNEY5QUUwMi9JeHVwbWRqb2dr OWlJcmhXaGRCOTFIcHdSdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqeLU7yHoef87KTstQX4+jIhcfZQ/GXVxcR5f9xJQ3WMYIj+8vKFuw zxeqr8d72IG4XlN5Li02aYSBTZ70vMrOBQfFeq3jmR1HvwFE1z2yiklIiFJnwaCZ 57sEczJuR/FzZGRkn/x/LEy12b8epXbB04TYyXmz0dfKAjJm2Rf/m6J92UWtykXD 5FbpAVL3PknPwdbB9Q5Ibt7ZmPWrV2A70qhfGSs8n8g4oXeyo5t3k0qadk59mYxH 9snVFxOT/egTsEJZ99ubffkURSZBiDgXcUDB67XIN8ZtbTOjVawQmy6Ol4fNkIGX Lu+RVMFoF5d3yYR9XBxb1ffagI4/Yeo+ -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:37 2025 by rpki-client