This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: T2xdEyIRn7XcdTPzyPDrqSBcQTs/FYZ86mLdeYt+wKs= Subject key identifier: 8B:65:66:73:6B:9B:E4:A9:13:35:C4:4C:9B:2B:74:7D:9D:BF:2B:3D Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 0423 Signing time: Thu 18 Dec 2025 23:41:20 +0000 Manifest this update: Thu 18 Dec 2025 23:41:19 +0000 Manifest next update: Thu 25 Dec 2025 23:41:19 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: 1VSJlML5FCwiBqZhPu6TybjHZ+2zlcqXqb+W9HXucYw=) 2: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 3: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) 4: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Dec 18 23:41:19 2025 GMT Not After : Dec 25 23:41:19 2025 GMT Subject: CN=69449120-aa37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b3:f9:45:d3:f9:ac:7c:98:4c:39:d5:81:21: 2e:3e:b6:cb:ed:f6:bc:50:3f:c8:c6:12:2f:71:6a: 00:55:3a:d6:62:5b:72:21:e4:82:46:e2:01:be:80: 60:29:d1:10:8c:23:57:6e:34:2c:1c:7f:8c:38:d9: d1:a8:3a:fb:91:8a:93:1d:a1:28:ab:f7:91:bd:7d: 2d:0b:be:ac:f8:fb:40:72:66:7f:3b:8d:8e:4b:c6: ea:3f:a3:33:b0:ae:dd:77:2c:00:f1:8f:74:8f:43: fd:c2:ef:91:6d:84:07:4f:30:fa:18:9c:e9:54:97: e0:ba:f7:fc:35:55:35:d3:29:ce:12:8a:6d:d6:2c: 99:24:66:75:9f:1b:7d:1c:bc:b2:ff:43:17:0b:c6: f0:6e:0a:42:e9:0d:05:d1:d6:75:2b:ee:c8:f6:91: 7b:97:28:65:56:cf:9a:28:82:70:42:0e:3b:5a:6a: 36:18:27:f2:8d:79:ca:b9:97:83:cc:72:39:4d:ed: fd:fe:b6:b0:ec:c8:7a:2a:35:b3:ae:05:18:fe:31: 71:d3:69:fb:20:ec:1b:4e:80:60:59:4d:f3:5e:b4: 76:74:d4:c0:d9:c6:d3:f5:4a:56:e3:4a:3d:82:ec: 46:6a:86:89:15:d5:7e:5b:b3:64:e7:8b:90:f2:ea: dd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:65:66:73:6B:9B:E4:A9:13:35:C4:4C:9B:2B:74:7D:9D:BF:2B:3D X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:1e:0d:f5:13:6b:c5:eb:98:d4:b9:10:a2:6f:65:63:79:d3: 27:a7:3b:e4:bd:70:f7:18:6a:2a:76:4b:ce:84:8e:49:84:90: 37:9b:dc:77:74:b4:30:12:68:ea:70:31:cf:19:35:fe:91:6a: 99:2c:05:a0:a0:37:35:e1:9d:80:10:6c:57:81:d7:d0:71:9f: 78:0c:e0:26:c0:d4:a7:cb:e0:22:24:b3:ad:92:e1:99:43:18: fe:eb:06:33:53:76:90:db:2f:21:51:39:64:94:ae:c4:db:dd: 91:d1:3a:ba:26:47:3e:df:1b:de:bc:39:cc:32:78:8e:ba:b3: e0:29:e2:0d:a9:49:7f:e0:57:0a:5e:a0:92:59:ab:85:41:51: 66:c7:70:35:20:c0:f8:a5:b0:d1:f8:d2:25:44:65:94:35:18: 5c:c4:ee:52:7e:b3:f3:5c:50:a9:25:04:a3:ba:4c:0e:e3:ec: 47:db:f2:3b:f6:6f:fc:31:c1:81:d2:ea:e4:f9:91:f7:c4:75: 28:6c:c5:82:72:bc:97:15:18:34:80:39:88:f8:be:11:ff:8c: 22:ed:9c:e3:c4:26:41:69:36:a4:91:ba:d3:d7:fb:d7:83:c6: 27:a9:bc:0f:b9:6b:f2:5f:8f:e8:37:60:57:06:dd:63:d2:7c: 2e:90:d9:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUxMjE4MjM0MTE5WhcNMjUxMjI1MjM0MTE5WjAYMRYwFAYD VQQDDA02OTQ0OTEyMC1hYTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm7P5RdP5rHyYTDnVgSEuPrbL7fa8UD/IxhIvcWoAVTrWYltyIeSCRuIBvoBg KdEQjCNXbjQsHH+MONnRqDr7kYqTHaEoq/eRvX0tC76s+PtAcmZ/O42OS8bqP6Mz sK7ddywA8Y90j0P9wu+RbYQHTzD6GJzpVJfguvf8NVU10ynOEopt1iyZJGZ1nxt9 HLyy/0MXC8bwbgpC6Q0F0dZ1K+7I9pF7lyhlVs+aKIJwQg47Wmo2GCfyjXnKuZeD zHI5Te39/raw7Mh6KjWzrgUY/jFx02n7IOwbToBgWU3zXrR2dNTA2cbT9UpW40o9 guxGaoaJFdV+W7Nk54uQ8urdrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItlZnNr m+SpEzXETJsrdH2dvys9MB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhHg31E2vF65jUuRCib2VjedMnpzvkvXD3GGoqdkvOhI5JhJA3m9x3 dLQwEmjqcDHPGTX+kWqZLAWgoDc14Z2AEGxXgdfQcZ94DOAmwNSny+AiJLOtkuGZ Qxj+6wYzU3aQ2y8hUTlklK7E292R0Tq6Jkc+3xvevDnMMniOurPgKeINqUl/4FcK XqCSWauFQVFmx3A1IMD4pbDR+NIlRGWUNRhcxO5SfrPzXFCpJQSjukwO4+xH2/I7 9m/8McGB0urk+ZH3xHUobMWCcryXFRg0gDmI+L4R/4wi7ZzjxCZBaTakkbrT1/vX g8YnqbwPuWvyX4/oN2BXBt1j0nwukNmt -----END CERTIFICATE-----Generated at Sat Dec 20 05:03:15 2025 by rpki-client