This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: h6091NXAS/Gadw3Igs7KNkIUdBSrNDI0GcsgHiI+358= Subject key identifier: 35:72:00:EE:65:32:70:00:FE:F1:49:8C:D8:99:B0:4A:CE:89:75:E7 Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 15AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 159E Signing time: Thu 18 Dec 2025 16:38:12 +0000 Manifest this update: Thu 18 Dec 2025 16:38:12 +0000 Manifest next update: Thu 25 Dec 2025 16:38:12 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: WQp3WsFsz5zORjRlv+hxH5wz/0iYkJ2O3X7KX/v4u0c=) 2: 13EB2806503611F0AE9ACE86C4F9AE02.roa (hash: 5U+qNAcyg11e1mcFFeSSmJQHAt3E5ngFjCNuSAbr96I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:38:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5546 (0x15aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: Dec 18 16:38:12 2025 GMT Not After : Dec 25 16:38:12 2025 GMT Subject: CN=69442df4-d0a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:82:28:f2:b8:44:24:13:59:7c:09:da:a9:19:d0: db:f8:a7:aa:59:90:f0:13:23:75:64:95:71:32:b8: a3:65:1a:5c:67:e8:40:86:08:e6:dd:f1:dc:c4:14: 0b:05:40:ec:53:91:28:23:e6:41:f6:0b:db:a8:2f: 9f:ec:d1:67:b8:78:6f:a3:59:79:78:cf:54:3c:de: 1b:a9:78:ee:89:c9:77:cd:35:b3:32:e1:2b:aa:76: f4:39:90:56:bf:20:18:75:ff:b1:bf:70:14:5f:34: 3f:6b:b3:e9:38:5b:b9:f5:bd:6e:02:d8:b8:b8:c0: 13:f9:0f:a2:e8:50:ce:65:f5:b2:a2:b7:a4:bd:f2: e0:38:c8:3c:79:25:66:26:49:3b:1a:2a:a6:a2:83: 66:0a:b0:b7:01:8e:d6:f5:ec:6c:2a:05:19:7e:d7: 7b:0c:18:a3:e2:ae:bb:5f:6f:79:e3:d3:fd:98:05: de:4f:8c:24:dc:5d:3b:42:a6:07:09:c7:1e:07:bd: cf:cc:4b:fb:9c:d5:a0:1c:6f:36:e6:8f:2f:50:38: ab:57:cf:94:8b:7c:68:1e:ea:a9:2f:88:e2:ec:35: ec:f9:3b:67:d5:73:2b:d2:4c:d9:ea:6b:34:4f:99: aa:4b:61:62:30:5c:dd:af:c1:c3:4c:96:80:5b:87: 14:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:72:00:EE:65:32:70:00:FE:F1:49:8C:D8:99:B0:4A:CE:89:75:E7 X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:90:67:b6:92:4c:b0:bc:17:5a:02:5c:db:16:31:12:22:62: 43:b2:50:8b:66:4e:c5:4b:53:2d:ea:95:9c:a3:10:89:5e:d7: c6:c7:58:0b:af:b4:57:0e:b3:24:d4:da:20:b9:9f:9a:bc:9e: fb:c9:95:ad:7f:30:df:71:01:60:64:d2:dd:17:21:2b:09:fe: 24:52:66:91:7b:06:ac:39:00:37:b7:a1:b2:89:bb:f6:fd:7f: 94:c7:88:c0:36:8b:18:08:88:2f:c7:83:8a:fb:93:d9:62:de: 42:e4:eb:f3:35:30:f8:1d:af:a3:40:c2:f8:47:f7:c6:1c:96: f5:e3:4a:0e:d2:39:ac:96:fb:58:83:ca:99:c3:f0:6c:26:c1: dc:5a:24:94:ef:54:cb:a9:2a:66:3c:a6:45:03:7b:d6:1f:3f: 21:6a:f2:86:c1:c2:0e:e2:66:24:4b:03:9d:95:4f:43:50:07: 5e:e3:50:6c:2d:a8:09:2d:6a:47:60:a7:53:ab:b4:93:5a:bc: af:44:df:8d:9d:77:1f:95:44:64:75:f3:75:e6:63:be:e7:8f: c6:99:d7:73:f4:b8:86:21:aa:14:a2:a9:a9:28:83:20:03:08: 48:98:f1:80:ac:54:d6:f5:9e:eb:1a:26:7c:f6:a6:65:51:99: 0c:15:7c:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjUxMjE4MTYzODEyWhcNMjUxMjI1MTYzODEyWjAYMRYwFAYD VQQDDA02OTQ0MmRmNC1kMGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgijyuEQkE1l8CdqpGdDb+KeqWZDwEyN1ZJVxMrijZRpcZ+hAhgjm3fHcxBQL BUDsU5EoI+ZB9gvbqC+f7NFnuHhvo1l5eM9UPN4bqXjuicl3zTWzMuErqnb0OZBW vyAYdf+xv3AUXzQ/a7PpOFu59b1uAti4uMAT+Q+i6FDOZfWyorekvfLgOMg8eSVm Jkk7GiqmooNmCrC3AY7W9exsKgUZftd7DBij4q67X29549P9mAXeT4wk3F07QqYH CcceB73PzEv7nNWgHG825o8vUDirV8+Ui3xoHuqpL4ji7DXs+Ttn1XMr0kzZ6ms0 T5mqS2FiMFzdr8HDTJaAW4cUeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDVyAO5l MnAA/vFJjNiZsErOiXXnMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVkGe2kkywvBdaAlzbFjESImJDslCLZk7FS1Mt6pWcoxCJXtfGx1gL r7RXDrMk1NoguZ+avJ77yZWtfzDfcQFgZNLdFyErCf4kUmaRewasOQA3t6Gyibv2 /X+Ux4jANosYCIgvx4OK+5PZYt5C5OvzNTD4Ha+jQML4R/fGHJb140oO0jmslvtY g8qZw/BsJsHcWiSU71TLqSpmPKZFA3vWHz8havKGwcIO4mYkSwOdlU9DUAde41Bs LagJLWpHYKdTq7STWryvRN+NnXcflURkdfN15mO+54/Gmddz9LiGIaoUoqmpKIMg AwhImPGArFTW9Z7rGiZ89qZlUZkMFXxv -----END CERTIFICATE-----Generated at Fri Dec 19 06:43:07 2025 by rpki-client