This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft File: iEiqzfKVEwPnCY9BnYygBCKJDGk.mft (raw, json) Hash identifier: FfxUlOz07D8DOu9LOAm/DidBL8ZFPZ6IwfPzURSwDHI= Subject key identifier: F7:E4:DB:FA:AA:C7:97:B6:2F:D7:10:03:4B:0C:04:36:99:FF:EF:60 Authority key identifier: 88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 Certificate issuer: /CN=A91A8047/serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Certificate serial: E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft Manifest number: DB Signing time: Fri 19 Dec 2025 04:47:47 +0000 Manifest this update: Fri 19 Dec 2025 04:47:46 +0000 Manifest next update: Fri 26 Dec 2025 04:47:46 +0000 Files and hashes: 1: iEiqzfKVEwPnCY9BnYygBCKJDGk.crl (hash: 2r0Z44wx6vaqJpfHR/GTiKAc89MyTfRb5CuswYUmbtI=) 2: 029310329B1911EFA0BD6470C4F9AE02.roa (hash: ipUtH6de1n3QDXNmS4idd62IMEQfE9S8Kl6BBzpD9nQ=) 3: 07BAAB7C9B1611EFB5C28465C4F9AE02.roa (hash: ofbztl5uVlglZWvlUxP/w/vzUs13H0jw290VgxrDPX8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:47:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8047, serialNumber=8848AACDF2951303E7098F419D8CA00422890C69 Validity Not Before: Dec 19 04:47:46 2025 GMT Not After : Dec 26 04:47:46 2025 GMT Subject: CN=6944d8f3-86c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:81:7e:d9:ea:85:e7:e1:79:a7:9c:08:fc:11: 05:79:ea:1e:3a:f1:66:b7:e4:79:c8:f3:c5:ed:ab: 9d:fc:fe:eb:43:69:64:a8:89:cc:11:7a:dd:f6:38: bc:d2:56:ab:c7:e0:59:b8:cc:03:a6:16:70:d3:7a: 98:fb:80:b9:29:3c:11:28:a6:50:e6:39:f5:f1:58: fa:5e:31:2e:a4:72:10:04:19:12:4a:15:de:72:74: 6c:c2:53:46:5b:8e:a0:9a:27:f8:3d:75:c6:7f:e6: 3f:f5:cc:02:e6:f3:12:2a:c3:54:f9:f9:14:4b:f2: 03:b3:32:ac:36:98:ed:0b:55:f7:07:39:5b:6a:f3: 76:35:2f:6f:ab:71:41:8a:73:85:a4:3d:2f:68:6f: c2:40:ce:da:9e:13:84:61:24:82:6c:59:2c:71:08: ed:69:a5:0f:f6:7b:6e:6b:35:b7:85:49:0b:73:36: d8:a3:af:51:72:80:b6:12:44:39:45:bf:d1:d7:1a: 15:53:19:03:d9:d3:fa:92:61:86:be:0a:28:6c:7d: 21:48:1c:33:ff:d4:8c:55:b4:e0:5d:22:8d:6e:86: 88:b6:ca:bf:d7:ec:20:40:b8:11:95:fc:81:4b:33: f9:93:51:73:70:80:ab:5b:56:1d:5d:30:32:4a:79: 15:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E4:DB:FA:AA:C7:97:B6:2F:D7:10:03:4B:0C:04:36:99:FF:EF:60 X509v3 Authority Key Identifier: keyid:88:48:AA:CD:F2:95:13:03:E7:09:8F:41:9D:8C:A0:04:22:89:0C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iEiqzfKVEwPnCY9BnYygBCKJDGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8047/344A01A29B1511EF86EB3746C4F9AE02/iEiqzfKVEwPnCY9BnYygBCKJDGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:81:7d:0e:eb:29:91:7e:d3:31:00:3f:dc:69:92:78:3f:5b: 5d:bb:a3:41:20:0c:7f:98:57:35:f9:8c:ef:b5:db:8d:31:ce: 13:52:0b:6c:f0:7c:8d:f8:3e:94:60:fd:b6:f0:94:b2:56:06: ab:83:6d:7e:1a:61:c0:46:8f:ba:2c:62:09:a5:11:48:de:8a: 77:f2:b9:d8:ff:3a:aa:49:c5:a6:c3:1a:26:66:45:91:13:c9: 09:01:98:0e:27:cb:0e:90:fc:a6:28:1e:61:97:bb:c1:6c:81: 78:af:0f:14:f0:4d:54:d9:04:61:c3:ac:7f:be:17:8d:8f:31: 94:8b:d2:a1:db:38:2f:64:6f:28:84:5a:0b:a9:ff:6a:14:d5: eb:a5:d0:9e:92:cb:53:68:df:9d:7b:4d:e3:9f:e0:05:9b:bc: f8:97:fc:0b:7f:9d:ce:8a:7a:40:9f:01:33:1a:71:da:7f:04: 63:e2:9d:40:82:f3:53:f3:3c:7c:f7:f3:c4:17:b6:ef:e3:da: 2c:e7:c4:81:05:fd:be:a2:d1:e7:23:e7:77:bd:9b:b0:12:04: 15:4d:b2:b8:31:25:88:52:fe:72:19:e9:3b:d4:54:ab:4f:f4: b5:97:48:91:87:a4:5c:7c:7a:35:8b:01:ee:b5:02:6a:d4:aa: 8f:65:79:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwNDcxMTAvBgNVBAUTKDg4NDhBQUNERjI5NTEzMDNFNzA5OEY0MTlEOENBMDA0 MjI4OTBDNjkwHhcNMjUxMjE5MDQ0NzQ2WhcNMjUxMjI2MDQ0NzQ2WjAYMRYwFAYD VQQDDA02OTQ0ZDhmMy04NmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoF+2eqF5+F5p5wI/BEFeeoeOvFmt+R5yPPF7aud/P7rQ2lkqInMEXrd9ji8 0larx+BZuMwDphZw03qY+4C5KTwRKKZQ5jn18Vj6XjEupHIQBBkSShXecnRswlNG W46gmif4PXXGf+Y/9cwC5vMSKsNU+fkUS/IDszKsNpjtC1X3BzlbavN2NS9vq3FB inOFpD0vaG/CQM7anhOEYSSCbFkscQjtaaUP9ntuazW3hUkLczbYo69RcoC2EkQ5 Rb/R1xoVUxkD2dP6kmGGvgoobH0hSBwz/9SMVbTgXSKNboaItsq/1+wgQLgRlfyB SzP5k1FzcICrW1YdXTAySnkViQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfk2/qq x5e2L9cQA0sMBDaZ/+9gMB8GA1UdIwQYMBaAFIhIqs3ylRMD5wmPQZ2MoAQiiQxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODA0Ny8zNDRBMDFBMjlC MTUxMUVGODZFQjM3NDZDNEY5QUUwMi9pRWlxemZLVkV3UG5DWTlCbll5Z0JDS0pE R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lFaXF6ZktWRXdQbkNZOUJuWXlnQkNLSkRHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODA0Ny8zNDRBMDFBMjlCMTUxMUVGODZFQjM3NDZDNEY5QUUwMi9pRWlxemZLVkV3 UG5DWTlCbll5Z0JDS0pER2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBygX0O6ymRftMxAD/caZJ4P1tdu6NBIAx/mFc1+YzvtduNMc4TUgts 8HyN+D6UYP228JSyVgarg21+GmHARo+6LGIJpRFI3op38rnY/zqqScWmwxomZkWR E8kJAZgOJ8sOkPymKB5hl7vBbIF4rw8U8E1U2QRhw6x/vheNjzGUi9Kh2zgvZG8o hFoLqf9qFNXrpdCekstTaN+de03jn+AFm7z4l/wLf53OinpAnwEzGnHafwRj4p1A gvNT8zx89/PEF7bv49os58SBBf2+otHnI+d3vZuwEgQVTbK4MSWIUv5yGek71FSr T/S1l0iRh6RcfHo1iwHutQJq1KqPZXmF -----END CERTIFICATE-----Generated at Fri Dec 19 19:05:40 2025 by rpki-client