This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft File: -IHZTXommvaISDplHTc5GOeGUB4.mft (raw, json) Hash identifier: yEmnRSNvimV5J4eeUzb6Zx0RJkrsnyelYGg2uBV0nTo= Subject key identifier: 94:C5:36:32:EF:D7:1F:CC:3E:65:D6:1D:65:41:17:40:64:47:7F:93 Authority key identifier: F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E Certificate issuer: /CN=A9182644/serialNumber=F881D94D7A269AF688483A651D373918E786501E Certificate serial: 01C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft Manifest number: 01C0 Signing time: Fri 19 Dec 2025 02:11:07 +0000 Manifest this update: Fri 19 Dec 2025 02:11:06 +0000 Manifest next update: Fri 26 Dec 2025 02:11:06 +0000 Files and hashes: 1: -IHZTXommvaISDplHTc5GOeGUB4.crl (hash: ODwgJqtvSBp5gFcbLtuTq2HFL2Hmb2pkgDMzijDK65I=) 2: 89E0172A2F2B11EE8CD3F880C4F9AE02.roa (hash: MWF9yk30FJElBkURG2FIcNXpLWF91bW+ys8O1aYlGaY=) 3: 8A50B69C2F2B11EE8CD3F880C4F9AE02.roa (hash: X7xyaBh0Wrmfm5LffdWxPUUrmnom17OByzAiI+OrkqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 454 (0x1c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182644, serialNumber=F881D94D7A269AF688483A651D373918E786501E Validity Not Before: Dec 19 02:11:06 2025 GMT Not After : Dec 26 02:11:06 2025 GMT Subject: CN=6944b43b-475d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:02:6c:ee:45:45:a0:cc:2b:a9:db:ba:fe:db: 3b:62:2b:04:fe:b3:34:02:f7:ab:07:85:b6:60:9d: 63:57:96:0a:59:b9:fc:72:69:95:8d:82:e4:d5:60: bb:84:a9:84:3c:6a:2c:7f:24:b1:f1:31:2b:64:76: a1:e0:e3:05:4e:4c:82:e0:d9:fa:c1:af:c6:76:07: 0d:2d:8f:9b:77:ed:b1:d2:d9:76:d5:62:8b:e2:89: 4d:12:d9:83:35:27:5a:2b:2f:23:b7:4b:97:5a:51: c7:55:1a:7f:70:a7:2b:aa:7e:f9:88:0d:c3:f2:35: c0:cb:fe:ee:2d:02:9f:9f:06:7d:13:49:1b:27:83: 4f:89:ca:9c:bd:b9:d4:e2:c9:af:0b:cb:0f:d7:13: f3:f2:a7:ec:e6:a0:0b:1c:62:57:14:d5:b7:1c:65: b1:93:f0:b3:be:bf:b4:1a:75:b9:d9:b7:0c:87:00: a4:7a:90:0c:57:3e:16:42:72:61:47:0d:70:9d:54: 6c:52:25:ff:ff:3d:eb:b3:1a:00:53:7b:ae:e9:9e: d0:88:50:f7:88:62:87:47:e9:f7:9d:d7:9b:db:b7: 30:21:fa:95:15:b1:64:10:7d:f7:60:a1:7d:54:5c: bb:6b:98:23:42:7a:c5:72:47:da:7d:4c:54:fa:f8: 38:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C5:36:32:EF:D7:1F:CC:3E:65:D6:1D:65:41:17:40:64:47:7F:93 X509v3 Authority Key Identifier: keyid:F8:81:D9:4D:7A:26:9A:F6:88:48:3A:65:1D:37:39:18:E7:86:50:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IHZTXommvaISDplHTc5GOeGUB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182644/BF131D342D0011EE9D10FF18C4F9AE02/-IHZTXommvaISDplHTc5GOeGUB4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:14:26:27:a9:2a:bc:2f:12:e9:8f:b2:c9:73:dd:56:df:61: cf:a6:82:ef:7b:c2:3b:a3:fb:cd:81:7f:fa:4e:86:cb:a6:19: 7a:02:26:44:48:06:e6:44:b5:4c:5a:ba:78:56:b0:1d:c7:0b: fd:ad:13:fc:71:48:cc:45:89:60:78:bd:95:66:61:25:07:db: 54:31:fd:ca:0a:fd:6d:69:61:be:eb:e9:28:b3:cc:05:05:c5: 8f:7a:eb:38:c5:6e:f6:07:c9:1e:1a:97:91:7b:99:0e:7a:62: 5d:5c:dd:66:1d:64:02:bd:a9:f4:a4:fd:6d:a4:00:4c:ed:c7: fc:74:d2:c7:82:52:64:64:a5:76:0f:74:a7:a7:a5:17:e8:e5: e9:0c:7e:74:12:57:f5:d7:ae:f5:28:3e:3f:fb:75:fb:67:ce: e8:b8:b3:bc:0c:07:4d:40:e3:7d:94:41:54:c5:62:c8:38:93: 34:58:4c:e2:94:63:1b:1d:8c:41:9b:ad:d3:6d:35:f0:11:43: c4:6b:1a:d4:f5:14:12:92:20:30:22:9e:a5:15:32:09:78:84: b9:c4:1a:ce:94:18:23:89:09:11:8e:42:ab:07:82:f3:e6:f3: 21:de:ad:71:b5:33:e6:81:4c:a1:6c:fb:e4:08:8e:47:fb:af: 19:9c:c2:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI2NDQxMTAvBgNVBAUTKEY4ODFEOTREN0EyNjlBRjY4ODQ4M0E2NTFEMzczOTE4 RTc4NjUwMUUwHhcNMjUxMjE5MDIxMTA2WhcNMjUxMjI2MDIxMTA2WjAYMRYwFAYD VQQDDA02OTQ0YjQzYi00NzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlgJs7kVFoMwrqdu6/ts7YisE/rM0AverB4W2YJ1jV5YKWbn8cmmVjYLk1WC7 hKmEPGosfySx8TErZHah4OMFTkyC4Nn6wa/GdgcNLY+bd+2x0tl21WKL4olNEtmD NSdaKy8jt0uXWlHHVRp/cKcrqn75iA3D8jXAy/7uLQKfnwZ9E0kbJ4NPicqcvbnU 4smvC8sP1xPz8qfs5qALHGJXFNW3HGWxk/Czvr+0GnW52bcMhwCkepAMVz4WQnJh Rw1wnVRsUiX//z3rsxoAU3uu6Z7QiFD3iGKHR+n3ndeb27cwIfqVFbFkEH33YKF9 VFy7a5gjQnrFckfafUxU+vg4EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTFNjLv 1x/MPmXWHWVBF0BkR3+TMB8GA1UdIwQYMBaAFPiB2U16Jpr2iEg6ZR03ORjnhlAe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjY0NC9CRjEzMUQzNDJE MDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12YUlTRHBsSFRjNUdPZUdV QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JSFpUWG9tbXZhSVNEcGxIVGM1R09lR1VCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjY0NC9CRjEzMUQzNDJEMDAxMUVFOUQxMEZGMThDNEY5QUUwMi8tSUhaVFhvbW12 YUlTRHBsSFRjNUdPZUdVQjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJFCYnqSq8LxLpj7LJc91W32HPpoLve8I7o/vNgX/6TobLphl6AiZE SAbmRLVMWrp4VrAdxwv9rRP8cUjMRYlgeL2VZmElB9tUMf3KCv1taWG+6+kos8wF BcWPeus4xW72B8keGpeRe5kOemJdXN1mHWQCvan0pP1tpABM7cf8dNLHglJkZKV2 D3Snp6UX6OXpDH50Elf11671KD4/+3X7Z87ouLO8DAdNQON9lEFUxWLIOJM0WEzi lGMbHYxBm63TbTXwEUPEaxrU9RQSkiAwIp6lFTIJeIS5xBrOlBgjiQkRjkKrB4Lz 5vMh3q1xtTPmgUyhbPvkCI5H+68ZnMKT -----END CERTIFICATE-----Generated at Fri Dec 19 18:50:23 2025 by rpki-client