This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: E22Hn96TE0x4ErW8mKBT6r8ZospurxPGRzoYz29LN5M= Subject key identifier: C7:C8:24:C0:99:17:82:F0:C2:DC:75:F2:BE:98:42:C3:29:50:FB:E4 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 13DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 13AB Signing time: Sat 20 Dec 2025 16:44:36 +0000 Manifest this update: Sat 20 Dec 2025 16:44:36 +0000 Manifest next update: Sat 27 Dec 2025 16:44:36 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: gudgsTM2LNCcUzq5FgYHSo6H16miL0+3Zy42+Yv8aYk=) 2: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: GoAy5cjhZ6tHusMFJznhNoSIq/l4hxWlmp0vD6wrtPc=) 3: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: jOCYNbolAoXMHScfQ9iviRSTkspAFWIu2eYuLyyZDaI=) 4: AF14F7EC516411F08E03714FC4F9AE02.roa (hash: 96q0yHBSk/Rmlo0qmQ4XhZWgKPNkJp4u/4iyHTCtNz4=) 5: 1AE4CD843AF511F0B702C741C4F9AE02.roa (hash: Ev9eMpCw/MzuG/D+D40guHshDgyLCaCtAL+5ytANYiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5087 (0x13df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Dec 20 16:44:36 2025 GMT Not After : Dec 27 16:44:36 2025 GMT Subject: CN=6946d274-c27b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:e0:ec:25:02:bc:39:f3:69:24:fe:c8:ef:a5: 5b:4b:44:ba:97:4e:e2:fe:54:dc:84:27:d9:70:d3: 60:99:9b:9b:7e:5f:13:fd:15:7b:f6:2a:db:72:0d: 16:f4:1d:eb:96:0a:0e:b5:4b:7b:7b:bb:e4:a1:37: f7:df:d1:b3:c4:8d:c4:52:9f:5b:8c:08:92:d9:d7: ac:c2:55:c3:2a:07:b2:95:4b:8a:3f:48:b5:ec:60: 57:84:b3:c2:a1:bd:4e:2c:51:61:ee:e6:01:00:1f: cb:c2:df:75:f0:fb:d8:a8:7f:4e:ec:df:08:a9:c0: 2c:a6:fd:85:58:8d:f4:dd:bc:99:0c:5f:a3:1f:39: b4:9c:b1:42:11:a5:8e:63:88:70:b0:b2:7d:8d:f0: 90:3d:f0:a7:14:41:7c:49:97:17:6a:da:2d:ad:98: 83:73:fb:41:ec:b6:16:82:ee:3e:33:a6:7f:7f:dd: a3:24:86:5f:fb:0e:31:20:ea:86:8e:02:72:63:f9: bf:b5:4d:f1:98:26:d1:ab:d4:fd:12:e6:b1:80:21: 9a:86:95:1f:0b:ae:63:32:dd:59:d0:1f:b4:08:11: 01:fe:cb:82:2e:ff:5f:ff:9f:13:42:76:e6:09:06: f4:f7:d7:f3:2b:52:ad:a8:3e:97:98:aa:08:1f:0c: d6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C8:24:C0:99:17:82:F0:C2:DC:75:F2:BE:98:42:C3:29:50:FB:E4 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:de:03:40:44:11:39:b6:15:27:80:38:f6:4e:ef:5c:79:c4: c9:e3:8e:c8:e8:d4:9d:7e:2c:63:10:fe:3d:98:03:ea:f4:17: b3:88:0d:65:b9:0d:a9:a2:cb:be:e1:3f:a4:1b:f0:16:34:23: 89:de:50:13:93:df:e2:18:e8:fa:47:f2:56:8f:3c:02:bc:64: 08:23:6c:9a:e5:59:49:81:7a:94:1b:6d:4e:0d:f3:71:a0:21: 16:72:0c:95:f5:56:56:9a:72:c3:b1:7c:4d:8b:2d:e8:fb:70: 3f:40:52:93:03:46:e2:b3:32:ee:c9:03:25:90:e9:ce:8c:fa: 8b:f9:9a:c1:21:2c:53:b6:b7:9e:3f:8d:f4:46:81:09:fc:73: 18:0f:05:da:65:e6:f7:1c:be:ed:f4:aa:5a:eb:d9:ca:49:65: fc:88:35:bb:4a:e3:02:0a:72:94:6b:d6:05:84:d4:58:48:11: f5:eb:2f:10:1b:57:3e:11:08:81:d2:3b:15:5f:e1:2a:57:22: 94:dd:4a:74:d6:18:c4:66:fc:ef:0d:97:98:09:17:b1:50:07: 8e:85:4a:7f:52:71:93:f8:f3:6c:c2:59:2a:aa:73:b4:3d:89: e9:eb:95:97:34:37:78:f6:db:71:6e:a8:5d:f4:5d:7c:61:15: 74:15:93:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUxMjIwMTY0NDM2WhcNMjUxMjI3MTY0NDM2WjAYMRYwFAYD VQQDDA02OTQ2ZDI3NC1jMjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyuDsJQK8OfNpJP7I76VbS0S6l07i/lTchCfZcNNgmZubfl8T/RV79irbcg0W 9B3rlgoOtUt7e7vkoTf339GzxI3EUp9bjAiS2deswlXDKgeylUuKP0i17GBXhLPC ob1OLFFh7uYBAB/Lwt918PvYqH9O7N8IqcAspv2FWI303byZDF+jHzm0nLFCEaWO Y4hwsLJ9jfCQPfCnFEF8SZcXatotrZiDc/tB7LYWgu4+M6Z/f92jJIZf+w4xIOqG jgJyY/m/tU3xmCbRq9T9EuaxgCGahpUfC65jMt1Z0B+0CBEB/suCLv9f/58TQnbm CQb099fzK1KtqD6XmKoIHwzW1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfIJMCZ F4Lwwtx18r6YQsMpUPvkMB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB73gNARBE5thUngDj2Tu9cecTJ447I6NSdfixjEP49mAPq9BeziA1l uQ2posu+4T+kG/AWNCOJ3lATk9/iGOj6R/JWjzwCvGQII2ya5VlJgXqUG21ODfNx oCEWcgyV9VZWmnLDsXxNiy3o+3A/QFKTA0biszLuyQMlkOnOjPqL+ZrBISxTtree P430RoEJ/HMYDwXaZeb3HL7t9Kpa69nKSWX8iDW7SuMCCnKUa9YFhNRYSBH16y8Q G1c+EQiB0jsVX+EqVyKU3Up01hjEZvzvDZeYCRexUAeOhUp/UnGT+PNswlkqqnO0 PYnp65WXNDd49ttxbqhd9F18YRV0FZOb -----END CERTIFICATE-----Generated at Sun Dec 21 10:37:35 2025 by rpki-client