This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: PoCBBhgBMlXpUkbz8MfeenqDNV1i7npO9q849FFNQpc= Subject key identifier: 16:A6:AB:0B:0B:22:E4:3B:BD:4F:97:64:4F:A3:D4:ED:B0:EB:4B:F5 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0B2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0B22 Signing time: Thu 18 Dec 2025 18:55:49 +0000 Manifest this update: Thu 18 Dec 2025 18:55:48 +0000 Manifest next update: Thu 25 Dec 2025 18:55:48 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: CftNFhXhCGOH7XFz4G0KULMFMywRiG3UyccqqaCE/XE=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Dec 18 18:55:48 2025 GMT Not After : Dec 25 18:55:48 2025 GMT Subject: CN=69444e35-6be4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:f6:f2:67:ad:a8:70:51:9b:9a:85:2d:9a:57: b7:30:4d:cf:57:4a:d3:0e:cf:f6:6f:d3:7e:59:d9: 22:1d:b5:bb:3f:db:61:45:b2:83:9b:e5:45:04:e9: ad:7a:b4:08:c4:3b:e0:fd:c7:77:b1:06:c1:cb:8f: 09:31:c4:99:7e:d1:a2:82:73:d5:a2:92:09:e2:86: cd:ee:9b:c3:98:98:e5:50:06:4b:9e:ef:d5:76:fe: 74:1a:b2:eb:88:7e:f9:0e:1f:a7:b8:04:0c:a2:63: 8a:48:a1:b4:46:5a:2a:90:05:a4:3b:b2:71:7e:cd: f7:db:5a:5c:61:75:b6:db:d9:62:13:5a:6d:4d:0b: 87:a6:39:7c:7b:6c:22:3f:c6:33:48:c3:72:95:6c: 6a:14:5b:6d:97:ed:83:e3:cd:5a:d7:da:f5:fe:d5: 62:b3:26:a8:27:73:ec:e4:e6:2c:41:2d:de:17:b1: d4:81:1f:4b:3c:35:01:01:71:8c:29:8f:d1:5c:6d: f1:dd:4b:d6:74:8d:49:94:8b:f7:6f:d6:69:1e:ae: cc:d2:80:96:7f:31:b2:ea:89:d1:51:05:a9:95:24: 5a:5f:0d:92:78:24:ee:54:8c:d4:29:f3:1c:8c:d9: c6:56:97:9e:5a:d5:d4:d2:b9:50:47:62:b7:c5:50: a6:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A6:AB:0B:0B:22:E4:3B:BD:4F:97:64:4F:A3:D4:ED:B0:EB:4B:F5 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:32:d9:40:63:31:c9:62:0e:f0:af:c5:07:e9:58:08:5c:9b: ad:fc:47:c8:fe:40:d9:4e:66:e8:b4:25:b3:d3:b5:40:32:b4: e5:60:b8:d5:b2:d5:94:21:7c:3a:25:9f:5a:82:e1:c8:7a:50: 73:32:cd:1d:36:eb:93:54:89:80:94:bd:c8:68:f6:8d:b4:9a: 2e:26:a8:90:22:ef:2b:3d:96:98:2e:ff:a2:a8:c8:c9:9d:d3: 2c:0b:24:56:b0:04:79:e9:a1:e4:2e:1e:c6:cf:ca:78:46:cf: a8:07:8e:1b:14:99:39:a2:4e:c2:f3:4a:4e:43:b9:3e:59:fa: 32:6d:d2:a1:59:88:0b:a4:e3:da:8f:a2:99:24:f0:ad:dc:26: a5:2b:62:74:96:46:fb:ff:77:3c:ef:4e:b2:86:e7:82:02:66: 23:15:d2:02:c5:ca:db:83:81:73:af:5e:ee:cb:cb:c6:ee:b4: 73:73:91:04:b5:34:14:58:fa:a4:40:67:f5:eb:58:db:86:db: 8e:34:c4:48:22:4a:9c:68:57:c0:43:2e:09:c0:95:0f:0e:9f: 53:59:55:8b:cd:c5:49:62:cd:ce:ef:3e:97:8c:db:c6:eb:ff: 4a:04:99:dd:87:61:e1:e8:9d:28:e6:f2:32:48:e5:23:51:d2: b8:a3:c3:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUxMjE4MTg1NTQ4WhcNMjUxMjI1MTg1NTQ4WjAYMRYwFAYD VQQDDA02OTQ0NGUzNS02YmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAivbyZ62ocFGbmoUtmle3ME3PV0rTDs/2b9N+WdkiHbW7P9thRbKDm+VFBOmt erQIxDvg/cd3sQbBy48JMcSZftGignPVopIJ4obN7pvDmJjlUAZLnu/Vdv50GrLr iH75Dh+nuAQMomOKSKG0RloqkAWkO7Jxfs3321pcYXW229liE1ptTQuHpjl8e2wi P8YzSMNylWxqFFttl+2D481a19r1/tVisyaoJ3Ps5OYsQS3eF7HUgR9LPDUBAXGM KY/RXG3x3UvWdI1JlIv3b9ZpHq7M0oCWfzGy6onRUQWplSRaXw2SeCTuVIzUKfMc jNnGVpeeWtXU0rlQR2K3xVCmhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBamqwsL IuQ7vU+XZE+j1O2w60v1MB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsMtlAYzHJYg7wr8UH6VgIXJut/EfI/kDZTmbotCWz07VAMrTlYLjV stWUIXw6JZ9aguHIelBzMs0dNuuTVImAlL3IaPaNtJouJqiQIu8rPZaYLv+iqMjJ ndMsCyRWsAR56aHkLh7Gz8p4Rs+oB44bFJk5ok7C80pOQ7k+WfoybdKhWYgLpOPa j6KZJPCt3CalK2J0lkb7/3c8706yhueCAmYjFdICxcrbg4Fzr17uy8vG7rRzc5EE tTQUWPqkQGf161jbhtuONMRIIkqcaFfAQy4JwJUPDp9TWVWLzcVJYs3O7z6XjNvG 6/9KBJndh2Hh6J0o5vIySOUjUdK4o8Pj -----END CERTIFICATE-----Generated at Fri Dec 19 19:03:58 2025 by rpki-client