This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: pGfUsQSFdz3yUm276lD2RGT8IQ6N+RoJCoeQ3oX/3cc= Subject key identifier: 0B:8A:8B:1F:2E:14:38:5F:CD:6A:D2:EB:65:0D:E1:FE:CD:D9:26:72 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A21 Signing time: Sat 20 Dec 2025 19:14:55 +0000 Manifest this update: Sat 20 Dec 2025 19:14:54 +0000 Manifest next update: Sat 27 Dec 2025 19:14:54 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: Oeb4a7CWpeyHYFAqm9ivaJPa+EWo+4w+wGbEwNzeerg=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 19:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2605 (0xa2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Dec 20 19:14:54 2025 GMT Not After : Dec 27 19:14:54 2025 GMT Subject: CN=6946f5af-f9bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e8:19:07:40:54:9d:10:1a:ee:9f:24:42:a4: 19:91:32:3f:e1:98:bb:37:34:5c:df:95:5a:4a:bb: c4:6d:15:a9:dd:ef:2b:ef:e8:70:3e:9d:7a:08:ac: fc:6c:81:f1:c3:6b:65:5d:8d:01:86:0e:d4:0a:b1: e9:47:77:c3:ac:b3:4e:db:76:44:1a:58:c2:19:d5: 10:44:76:36:96:3b:1b:dd:32:7d:3a:7b:0d:56:55: b4:db:ab:06:46:74:61:75:1f:b8:86:e7:02:16:c8: 03:25:f2:d7:53:bd:02:d4:a8:36:d1:10:77:ee:29: e9:7d:d4:1c:3b:3e:30:b5:4a:d8:a2:6a:ba:12:d2: 84:35:2f:f6:d0:40:a1:2d:9c:d5:06:3c:b4:2a:00: 92:61:9e:11:0c:55:78:17:e3:60:af:6a:6c:e7:cd: 3b:ef:c2:6d:de:b0:ea:07:a7:bd:b6:c8:e5:df:b9: 52:1d:e4:85:a6:00:b1:6c:b9:60:b9:bf:26:5c:29: f5:26:aa:76:9d:0e:f6:65:fd:de:48:a0:7d:9d:d9: a5:98:38:94:6b:da:2c:8f:d3:b0:55:02:66:61:ec: 6e:b6:7b:b1:4a:88:84:d2:85:6d:bd:09:94:3b:3b: 94:26:65:95:2f:8c:19:4c:94:ed:e1:46:98:68:d3: 8e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:8A:8B:1F:2E:14:38:5F:CD:6A:D2:EB:65:0D:E1:FE:CD:D9:26:72 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:f6:9f:80:aa:67:91:80:52:de:78:7c:51:fb:af:10:ed:1e: d3:67:21:06:c4:44:64:fd:34:95:5e:b0:f1:c5:f8:69:4e:74: bf:ca:da:f7:2d:a2:d0:df:e0:a2:8c:e1:40:72:93:a2:11:b4: e9:46:c0:c4:cc:0d:58:47:0d:bb:e9:56:4e:0a:12:46:d4:c5: 0e:43:17:0e:e4:f4:cb:12:1b:31:7d:fb:42:e6:bf:6b:8e:49: cc:e2:ff:6d:0e:96:2a:18:30:19:a5:9e:2a:27:f8:99:55:eb: 7f:fe:c5:0e:9a:20:36:50:89:24:7d:92:70:b9:14:d6:ed:61: 31:62:d3:29:4f:4f:14:82:de:1b:75:48:c1:c4:f8:51:7e:c5: a2:e8:87:79:7f:e6:5d:d5:2f:f1:3c:d1:85:36:4a:a4:be:d5: 5a:1c:14:89:24:6d:63:54:6b:3c:fc:39:88:90:c5:56:10:b2: 73:49:17:a6:7b:7e:1c:c8:23:b2:73:45:7d:e4:9e:de:8c:62: 92:2a:7c:67:52:5b:f5:f2:66:b9:2b:ad:37:da:fc:f9:59:9d: 64:78:76:b0:93:d4:d4:9e:d8:58:7f:3f:7e:7e:44:73:b0:8c: 21:ae:fd:c1:a3:83:d1:56:53:07:7c:62:a3:15:24:da:9c:30: 5e:55:e5:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUxMjIwMTkxNDU0WhcNMjUxMjI3MTkxNDU0WjAYMRYwFAYD VQQDDA02OTQ2ZjVhZi1mOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ugZB0BUnRAa7p8kQqQZkTI/4Zi7NzRc35VaSrvEbRWp3e8r7+hwPp16CKz8 bIHxw2tlXY0Bhg7UCrHpR3fDrLNO23ZEGljCGdUQRHY2ljsb3TJ9OnsNVlW026sG RnRhdR+4hucCFsgDJfLXU70C1Kg20RB37inpfdQcOz4wtUrYomq6EtKENS/20ECh LZzVBjy0KgCSYZ4RDFV4F+Ngr2ps580778Jt3rDqB6e9tsjl37lSHeSFpgCxbLlg ub8mXCn1Jqp2nQ72Zf3eSKB9ndmlmDiUa9osj9OwVQJmYexutnuxSoiE0oVtvQmU OzuUJmWVL4wZTJTt4UaYaNOO3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAuKix8u FDhfzWrS62UN4f7N2SZyMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ9p+AqmeRgFLeeHxR+68Q7R7TZyEGxERk/TSVXrDxxfhpTnS/ytr3 LaLQ3+CijOFAcpOiEbTpRsDEzA1YRw276VZOChJG1MUOQxcO5PTLEhsxfftC5r9r jknM4v9tDpYqGDAZpZ4qJ/iZVet//sUOmiA2UIkkfZJwuRTW7WExYtMpT08Ugt4b dUjBxPhRfsWi6Id5f+Zd1S/xPNGFNkqkvtVaHBSJJG1jVGs8/DmIkMVWELJzSRem e34cyCOyc0V95J7ejGKSKnxnUlv18ma5K6032vz5WZ1keHawk9TUnthYfz9+fkRz sIwhrv3Bo4PRVlMHfGKjFSTanDBeVeVl -----END CERTIFICATE-----Generated at Sun Dec 21 13:05:48 2025 by rpki-client