This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: kO76f9l87eHnzKQzipHK8888ciu+Tr2sPPDZ2q3hvx8= Subject key identifier: 4E:E3:4C:9D:9C:62:4F:A6:CF:9E:51:FE:A0:2B:07:A0:CB:C5:BB:C3 Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 06DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 06C5 Signing time: Thu 18 Dec 2025 21:34:56 +0000 Manifest this update: Thu 18 Dec 2025 21:34:55 +0000 Manifest next update: Thu 25 Dec 2025 21:34:55 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: w63ym+DUZ9kB4c3Op5rP+XbBVm1o/h/VvEwwwFd/tyQ=) 2: 399EDDAA823F11F0895C5843C4F9AE02.roa (hash: /r//PhS93LHdDuYeU1cRwdY/pqIxC89dGfVtSVhWFU8=) 3: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: bj4EEU6BonBdP8tBLldcSa0qw8eOD5SAjacKu9I9ahU=) 4: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: iKn5TfguO8Mhc7Q+khdM2Gs5+kk+EBJN5sb5yyLHen0=) 5: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: qKX/GBn2ViWf+TjqAq1x5OKYSX2OLWnCMDMtErmOaQ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7, serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Dec 18 21:34:55 2025 GMT Not After : Dec 25 21:34:55 2025 GMT Subject: CN=69447380-6e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f4:0d:d3:9b:ce:ea:0b:49:d2:7b:0d:c5:4a: d6:3f:6c:7a:4b:59:df:a0:ab:ce:62:0e:23:9f:1f: ac:22:b2:78:c3:4a:6a:3e:47:71:ce:08:17:f4:7c: a1:7a:9a:b1:42:7b:46:4a:72:b1:d0:18:c8:2c:af: 77:b2:e3:6a:f1:50:20:4d:28:ec:5a:0d:e2:b6:2e: 8e:e4:05:45:b4:1d:7a:5e:93:40:8e:f4:ff:7d:54: 31:5a:7e:2c:f2:7c:10:e0:bf:19:15:59:d2:29:7e: d4:d4:96:01:a8:c3:6b:2e:e4:fd:07:e9:5f:1b:7b: d1:31:dc:ff:dd:44:b5:4f:86:33:96:c4:25:9e:28: 05:51:f4:55:8d:ac:d6:b1:b0:a1:f6:14:4a:54:33: 79:1e:1e:93:9f:d2:3c:0b:73:f4:c4:15:ac:b3:5c: 63:f4:2c:f8:b8:1d:30:48:ca:af:85:ba:86:8c:54: ac:bc:09:71:43:d3:4e:85:34:65:af:8e:ab:3f:45: 87:88:ef:4d:2e:dc:20:2e:59:b2:c4:13:d2:7a:2c: 7e:b9:e4:67:e2:6b:5e:b4:da:17:44:ce:d6:e1:85: c7:e1:ae:68:b9:5c:62:1b:e5:2d:55:45:27:6f:2e: 7e:8e:2e:cb:0c:b6:84:c1:d8:de:ea:c1:99:34:bd: 55:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E3:4C:9D:9C:62:4F:A6:CF:9E:51:FE:A0:2B:07:A0:CB:C5:BB:C3 X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:36:21:27:82:fd:61:13:57:86:b0:9c:37:03:f9:d3:6d:82: 71:21:19:32:cd:40:df:bf:68:ba:d2:97:48:6f:a1:ae:90:6e: 5d:7c:04:90:81:95:b4:56:80:17:dd:c0:f6:e8:92:cb:94:4b: 15:e6:f4:15:f3:77:ea:c5:0d:e8:b4:4e:35:18:5c:1f:81:a3: 61:b9:e0:53:ca:92:fa:55:51:98:a4:67:c0:32:b5:01:94:45: 64:1f:4c:c7:44:0e:b1:b2:a4:02:79:cd:09:86:b4:8b:3d:9c: 37:52:67:69:9f:15:3a:30:45:73:5c:fa:64:f0:15:4e:6b:c5: 6c:ed:ec:14:a6:0c:15:e1:01:80:9d:63:ca:97:73:c1:33:84: 73:46:69:49:19:39:9e:28:7e:ca:eb:37:15:f1:b8:86:ac:d4: 7c:42:e3:9b:4a:15:71:72:85:d3:36:c4:c8:82:da:4a:50:2c: 71:a9:c9:f1:2b:b2:22:db:15:92:89:86:6e:33:11:de:34:d5: df:1d:cf:f1:e8:a1:10:6a:fc:ae:69:ca:72:c6:02:b1:fa:0e: a5:87:1a:d1:7c:c2:e9:2c:1d:e6:6b:4c:2d:75:9e:c9:67:b6: c3:f8:c0:e5:e9:1e:35:46:d2:f6:0f:75:de:cd:c3:0b:30:aa: 56:6e:c6:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjUxMjE4MjEzNDU1WhcNMjUxMjI1MjEzNDU1WjAYMRYwFAYD VQQDDA02OTQ0NzM4MC02ZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofQN05vO6gtJ0nsNxUrWP2x6S1nfoKvOYg4jnx+sIrJ4w0pqPkdxzggX9Hyh epqxQntGSnKx0BjILK93suNq8VAgTSjsWg3iti6O5AVFtB16XpNAjvT/fVQxWn4s 8nwQ4L8ZFVnSKX7U1JYBqMNrLuT9B+lfG3vRMdz/3US1T4YzlsQlnigFUfRVjazW sbCh9hRKVDN5Hh6Tn9I8C3P0xBWss1xj9Cz4uB0wSMqvhbqGjFSsvAlxQ9NOhTRl r46rP0WHiO9NLtwgLlmyxBPSeix+ueRn4mtetNoXRM7W4YXH4a5ouVxiG+UtVUUn by5+ji7LDLaEwdje6sGZNL1VAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7jTJ2c Yk+mz55R/qArB6DLxbvDMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALNiEngv1hE1eGsJw3A/nTbYJxIRkyzUDfv2i60pdIb6GukG5dfASQ gZW0VoAX3cD26JLLlEsV5vQV83fqxQ3otE41GFwfgaNhueBTypL6VVGYpGfAMrUB lEVkH0zHRA6xsqQCec0JhrSLPZw3UmdpnxU6MEVzXPpk8BVOa8Vs7ewUpgwV4QGA nWPKl3PBM4RzRmlJGTmeKH7K6zcV8biGrNR8QuObShVxcoXTNsTIgtpKUCxxqcnx K7Ii2xWSiYZuMxHeNNXfHc/x6KEQavyuacpyxgKx+g6lhxrRfMLpLB3ma0wtdZ7J Z7bD+MDl6R41RtL2D3XezcMLMKpWbsYH -----END CERTIFICATE-----Generated at Sat Dec 20 01:36:00 2025 by rpki-client