This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: eb4t3lEez5miSaVhRcFGeJ1gO4Wj+z4hvew+g2XYqeE= Subject key identifier: 23:77:3F:D0:D0:1B:C6:D2:46:AF:10:87:45:47:E8:6F:27:F7:94:59 Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 15B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 15A5 Signing time: Wed 31 Dec 2025 16:33:18 +0000 Manifest this update: Wed 31 Dec 2025 16:33:17 +0000 Manifest next update: Wed 07 Jan 2026 16:33:17 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: wfcWQeqROFQOtD1ZIAEY1VvgQuAly7ZOyOpSEr+2PrQ=) 2: 13EB2806503611F0AE9ACE86C4F9AE02.roa (hash: 5U+qNAcyg11e1mcFFeSSmJQHAt3E5ngFjCNuSAbr96I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 16:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5553 (0x15b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: Dec 31 16:33:17 2025 GMT Not After : Jan 7 16:33:17 2026 GMT Subject: CN=6955504e-4d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fd:3f:ac:ce:b2:44:24:b9:f2:ca:6b:a0:8b: 9c:c2:d8:a7:82:73:aa:2a:31:e7:4b:ea:11:75:0f: 3d:d5:9f:bb:86:53:39:29:28:a2:04:dc:f5:fa:5b: 4d:40:2b:38:c5:15:6a:1c:2f:d1:45:75:d2:b7:2b: e4:b1:6b:32:b6:65:7c:3b:26:40:d9:52:e6:c1:ad: 2d:1d:fb:f0:7d:20:63:f6:bb:17:0f:b3:3c:bb:4f: 60:54:ab:dc:bb:c7:da:8c:c3:51:e6:cf:f5:f9:5f: 21:aa:a4:64:83:32:ba:56:0f:a7:b2:b3:45:01:ee: 28:84:0e:1c:e4:16:32:51:3d:31:91:90:ba:59:5f: 1c:6d:ca:6a:f9:ba:7b:a9:7d:b8:6b:6e:98:b0:66: 58:b0:2a:21:c7:17:60:f0:41:0b:c3:d1:7e:ac:03: 35:83:4a:16:25:19:5b:7d:f5:19:5a:c3:39:98:77: a1:53:f1:ca:15:6d:2a:93:18:77:76:71:fb:90:ef: c9:98:e8:21:ab:dd:76:f2:c1:32:c2:fd:7a:12:32: c5:6a:d0:62:1d:f6:30:41:c0:db:3b:e9:1d:f2:7a: b7:f9:a5:6f:c0:7c:4d:b2:3f:ab:72:d1:d4:4c:33: 5e:f6:5a:99:e0:e4:3e:3d:43:7d:08:14:b1:34:be: 43:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:77:3F:D0:D0:1B:C6:D2:46:AF:10:87:45:47:E8:6F:27:F7:94:59 X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:33:04:a2:8c:71:1c:82:f9:f7:21:17:83:7f:9f:fb:c1:9e: 1c:6c:2f:16:11:1e:b9:9d:50:07:e6:05:4b:36:27:56:6c:77: a4:77:16:3b:cc:d6:96:b4:c7:26:45:7a:34:7c:44:f6:f7:3b: ba:40:3d:38:ca:36:76:3a:83:c1:90:82:50:92:fd:df:ef:51: ec:1a:e0:32:9b:d5:2e:df:02:2c:d0:99:ed:fc:56:21:46:a5: e9:c0:34:ab:b8:7d:13:60:8c:39:c6:e7:5d:93:d6:69:d9:05: 11:d3:76:79:7a:f4:96:a2:01:16:44:ae:c6:58:41:85:31:5b: 32:80:9d:31:3b:f5:e3:b1:a2:de:e3:f7:96:4c:f1:b2:1a:08: 50:07:14:b9:3b:88:f8:c0:c5:72:6d:3c:1a:84:b9:af:d3:fa: cc:3a:ed:12:4d:43:9d:d0:00:fe:19:bc:22:40:76:95:71:c1: 1d:a2:42:c5:18:ed:32:b6:ae:a4:4f:10:9f:aa:d4:99:93:c2: 54:d1:df:e8:f9:c4:62:b9:e2:f5:80:ef:53:86:a8:7c:9b:60: 61:aa:6a:b7:e9:ea:f0:ad:04:75:bc:e8:7e:bb:e7:ac:dd:84: cb:fd:66:fb:a8:17:35:33:c2:f4:41:18:90:ce:72:95:0e:9f: 5f:11:36:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjUxMjMxMTYzMzE3WhcNMjYwMTA3MTYzMzE3WjAYMRYwFAYD VQQDDA02OTU1NTA0ZS00ZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/0/rM6yRCS58sproIucwtingnOqKjHnS+oRdQ891Z+7hlM5KSiiBNz1+ltN QCs4xRVqHC/RRXXStyvksWsytmV8OyZA2VLmwa0tHfvwfSBj9rsXD7M8u09gVKvc u8fajMNR5s/1+V8hqqRkgzK6Vg+nsrNFAe4ohA4c5BYyUT0xkZC6WV8cbcpq+bp7 qX24a26YsGZYsCohxxdg8EELw9F+rAM1g0oWJRlbffUZWsM5mHehU/HKFW0qkxh3 dnH7kO/JmOghq9128sEywv16EjLFatBiHfYwQcDbO+kd8nq3+aVvwHxNsj+rctHU TDNe9lqZ4OQ+PUN9CBSxNL5D2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCN3P9DQ G8bSRq8Qh0VH6G8n95RZMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjMwSijHEcgvn3IReDf5/7wZ4cbC8WER65nVAH5gVLNidWbHekdxY7 zNaWtMcmRXo0fET29zu6QD04yjZ2OoPBkIJQkv3f71HsGuAym9Uu3wIs0Jnt/FYh RqXpwDSruH0TYIw5xuddk9Zp2QUR03Z5evSWogEWRK7GWEGFMVsygJ0xO/XjsaLe 4/eWTPGyGghQBxS5O4j4wMVybTwahLmv0/rMOu0STUOd0AD+GbwiQHaVccEdokLF GO0ytq6kTxCfqtSZk8JU0d/o+cRiueL1gO9Thqh8m2Bhqmq36erwrQR1vOh+u+es 3YTL/Wb7qBc1M8L0QRiQznKVDp9fETZs -----END CERTIFICATE-----Generated at Wed Dec 31 21:05:39 2025 by rpki-client