This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft File: IqYsFNK9MuPlltij5iu8MnRGj5k.mft (raw, json) Hash identifier: CGxCamPtB0uwmwkVFRxVCL8DsmADAJuLTbD30RG5Ev0= Subject key identifier: 3E:C7:98:F4:14:E2:36:2E:A2:20:89:4A:31:A8:BD:94:46:57:DC:D6 Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft Manifest number: 011B Signing time: Mon 29 Dec 2025 03:55:15 +0000 Manifest this update: Mon 29 Dec 2025 03:55:14 +0000 Manifest next update: Mon 05 Jan 2026 03:55:14 +0000 Files and hashes: 1: IqYsFNK9MuPlltij5iu8MnRGj5k.crl (hash: WJOK5AU8ygP0g1a7GQsJclPHvXEv8L73BydMTXZfDTY=) 2: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (hash: zzdFNHhV2hq5Z+7D9I2GDKqbTVdZBzqXlydZjeryJz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 03:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7, serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Dec 29 03:55:14 2025 GMT Not After : Jan 5 03:55:14 2026 GMT Subject: CN=6951fba2-9186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b3:a9:8a:1c:9e:6a:19:90:96:76:ab:29:cd: 01:c4:99:88:8d:3c:84:79:81:2e:dc:c8:34:e1:59: 43:c7:f0:a9:9d:24:12:79:cf:3a:6f:e3:e0:a8:19: 47:80:b2:08:a2:c3:00:12:de:05:67:67:45:7b:47: 28:f2:cd:30:26:90:89:bc:3c:6a:89:cd:5d:72:f9: 09:0f:b5:03:84:7a:64:69:39:97:9c:6a:f4:de:7e: 8c:00:d9:64:be:62:61:32:1d:8a:ed:73:e2:d3:d4: cd:74:49:4b:b9:9e:3d:ea:ce:7f:02:7a:06:4a:a6: 19:5e:4b:b2:eb:ae:12:ad:9f:97:fb:f0:78:ee:34: eb:a9:62:cb:01:d5:f9:bd:e8:ec:4c:b7:2c:68:30: 03:5f:ba:f1:4e:91:9c:75:60:b4:3e:92:47:97:7e: 99:53:9f:54:a5:3c:72:a3:c7:4c:5f:5e:78:2f:8e: 57:97:ac:18:78:96:f8:a7:2b:e0:4a:2c:fe:b5:d5: fd:b3:b0:cc:98:9e:f6:aa:34:84:02:9e:53:f2:78: 91:40:e3:2a:a6:79:80:57:7c:6b:e5:eb:09:a9:21: 13:29:22:b6:2a:9e:39:be:85:d1:03:c7:63:48:bb: 7d:56:79:7a:bc:58:c0:ef:02:bc:4c:48:36:9a:35: 3f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:C7:98:F4:14:E2:36:2E:A2:20:89:4A:31:A8:BD:94:46:57:DC:D6 X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:e0:e0:90:bd:bc:c6:bf:e5:3c:07:64:13:77:5f:35:0a:df: ad:5f:1a:a7:42:39:89:fa:26:e3:c2:f3:c4:a1:bb:f5:6f:6d: 38:bb:d8:be:c4:1c:a7:ed:09:a0:8d:d5:5d:47:6e:5f:7a:31: c3:5d:f2:0f:d7:60:2d:34:b4:9f:3e:22:c6:c5:28:d1:27:7a: b7:d8:cb:b8:25:68:64:d3:0b:88:d4:1b:ac:d9:ce:72:6a:e6: d4:80:fb:ed:c9:32:46:01:82:9e:a2:74:b2:dc:2e:83:9d:16: 20:00:49:2a:45:18:33:b9:91:3d:a9:69:77:f6:a6:00:ba:a5: 05:7b:a1:21:9a:88:3c:8d:ac:7b:64:e4:97:b7:cd:4b:4b:02: df:4b:87:d3:b6:9e:fe:ea:b7:d8:47:4d:92:bf:18:dc:c6:14: 85:43:9d:94:5b:bb:c0:5e:41:66:fd:f3:00:8c:77:ff:52:37: a7:02:97:3b:82:ab:9f:c8:a1:09:46:fc:a7:55:88:ad:33:61: eb:02:fe:7c:84:db:fa:cd:32:00:13:90:64:98:20:8e:b8:d6: 88:83:91:ba:0d:cc:b6:ab:95:a3:d9:ee:e7:27:f6:e2:fd:50: f3:35:8a:41:f8:e8:be:16:0c:4d:51:b4:f3:fa:84:e6:51:80: 2d:b9:0d:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQTcxMTAvBgNVBAUTKDIyQTYyQzE0RDJCRDMyRTNFNTk2RDhBM0U2MkJCQzMy NzQ0NjhGOTkwHhcNMjUxMjI5MDM1NTE0WhcNMjYwMTA1MDM1NTE0WjAYMRYwFAYD VQQDDA02OTUxZmJhMi05MTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7OpihyeahmQlnarKc0BxJmIjTyEeYEu3Mg04VlDx/CpnSQSec86b+PgqBlH gLIIosMAEt4FZ2dFe0co8s0wJpCJvDxqic1dcvkJD7UDhHpkaTmXnGr03n6MANlk vmJhMh2K7XPi09TNdElLuZ496s5/AnoGSqYZXkuy664SrZ+X+/B47jTrqWLLAdX5 vejsTLcsaDADX7rxTpGcdWC0PpJHl36ZU59UpTxyo8dMX154L45Xl6wYeJb4pyvg Siz+tdX9s7DMmJ72qjSEAp5T8niRQOMqpnmAV3xr5esJqSETKSK2Kp45voXRA8dj SLt9Vnl6vFjA7wK8TEg2mjU/eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7HmPQU 4jYuoiCJSjGovZRGV9zWMB8GA1UdIwQYMBaAFCKmLBTSvTLj5ZbYo+YrvDJ0Ro+Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVBNy9CMUIzRTJENjM4 NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11UGxsdGlqNWl1OE1uUkdq NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi9JcVlzRk5LOU11 UGxsdGlqNWl1OE1uUkdqNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx4OCQvbzGv+U8B2QTd181Ct+tXxqnQjmJ+ibjwvPEobv1b204u9i+ xByn7QmgjdVdR25fejHDXfIP12AtNLSfPiLGxSjRJ3q32Mu4JWhk0wuI1Bus2c5y aubUgPvtyTJGAYKeonSy3C6DnRYgAEkqRRgzuZE9qWl39qYAuqUFe6Ehmog8jax7 ZOSXt81LSwLfS4fTtp7+6rfYR02SvxjcxhSFQ52UW7vAXkFm/fMAjHf/UjenApc7 gqufyKEJRvynVYitM2HrAv58hNv6zTIAE5BkmCCOuNaIg5G6Dcy2q5Wj2e7nJ/bi /VDzNYpB+Oi+FgxNUbTz+oTmUYAtuQ1r -----END CERTIFICATE-----Generated at Tue Dec 30 14:56:09 2025 by rpki-client