This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: tFuQnkhkY/tJOiBjjHskuKDpKpBkrukujy6iz6t86Nw= Subject key identifier: 5C:78:34:85:20:B6:85:E7:44:F2:15:85:E3:53:EE:4F:7A:05:F3:51 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0FC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F8D Signing time: Thu 18 Dec 2025 17:23:47 +0000 Manifest this update: Thu 18 Dec 2025 17:23:46 +0000 Manifest next update: Thu 25 Dec 2025 17:23:46 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: aWQqTYR0QiWDpi4/p1a7GqsjhISLXc/F3pMGKRh9qNI=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4040 (0xfc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Dec 18 17:23:46 2025 GMT Not After : Dec 25 17:23:46 2025 GMT Subject: CN=694438a3-ddcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a2:f4:70:a0:7c:00:c4:45:43:04:94:ff:fe: d9:39:fb:50:5d:0c:3a:34:62:13:f8:ac:f7:b2:8d: 2f:a3:21:e9:54:4c:47:a6:95:ba:f0:f6:fd:02:52: d3:9e:3b:f7:36:12:22:9f:59:9b:d8:c5:71:32:71: 6d:98:1e:56:d5:19:36:cf:cf:e1:cb:8d:f2:07:1a: 16:d3:9d:a7:37:94:8d:ff:cc:41:42:15:54:e5:73: 16:e9:97:b6:95:72:77:87:06:4d:c0:0a:7b:c1:29: cc:4d:12:24:5e:55:a1:f0:29:ac:e0:be:22:9e:16: b5:f2:56:63:b1:fd:3a:68:ad:70:ff:01:99:d2:0d: 35:86:9d:64:4d:62:ac:3c:21:33:4a:e8:47:9d:e7: de:3d:73:4e:ca:ed:10:59:1f:e1:86:9c:15:ba:e5: ff:5d:82:7b:fe:59:9d:3f:27:69:bc:4e:e3:47:7b: 0c:5c:a7:6e:4d:07:a1:6b:04:63:a3:8c:1e:06:a5: e8:61:29:46:8a:a4:c3:15:38:b5:1a:04:9e:d0:37: 95:6e:56:e2:9b:4d:2b:a2:89:ff:c7:84:f0:d2:1d: d6:15:7b:03:11:0e:59:82:b3:4f:88:84:e1:fc:97: 2e:d9:0a:2e:58:0a:81:df:b5:ef:6e:7e:80:40:13: 45:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:78:34:85:20:B6:85:E7:44:F2:15:85:E3:53:EE:4F:7A:05:F3:51 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:82:c6:21:88:09:76:62:be:35:c4:ab:7a:bb:61:27:d9:bc: 1d:25:ec:00:d5:a3:98:90:54:67:b8:46:e2:75:d4:65:c1:d1: 1d:6f:20:bf:3d:84:d3:c7:e8:23:40:30:83:05:6a:25:24:0b: 2b:92:93:76:a1:cd:70:c4:72:5f:49:6c:ff:2c:f7:ce:ac:a0: 9a:2b:1b:fd:33:0f:ab:a5:ae:7f:d5:8f:a5:91:f4:f1:82:82: 07:5d:52:9b:ed:98:58:45:3b:03:27:94:ed:c2:bb:0a:fc:fb: 4a:c1:5a:6e:a7:e0:3f:19:69:f9:69:8d:d8:09:e2:cf:6e:78: f3:b2:cc:a6:bc:ba:46:ce:58:ec:29:96:25:43:ff:45:83:4f: 6e:0b:c8:85:bb:4a:33:19:e5:a5:72:d3:c5:cf:78:06:2c:e9: 9e:89:11:64:46:50:6b:25:aa:82:78:95:cc:4c:78:51:8a:f3: 23:62:9f:bd:db:e5:48:56:15:be:f5:e5:d1:39:c7:e2:6c:fe: fc:b6:14:45:ec:06:20:87:89:64:f1:83:10:c4:4b:d4:f2:a4: f4:7c:38:f6:7d:52:42:5a:bc:d4:55:12:98:09:c9:e1:cd:ff: 33:eb:f8:83:83:2d:4c:31:9d:08:3e:8c:6a:7c:68:90:e4:1d: 44:a3:78:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUxMjE4MTcyMzQ2WhcNMjUxMjI1MTcyMzQ2WjAYMRYwFAYD VQQDDA02OTQ0MzhhMy1kZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5aL0cKB8AMRFQwSU//7ZOftQXQw6NGIT+Kz3so0voyHpVExHppW68Pb9AlLT njv3NhIin1mb2MVxMnFtmB5W1Rk2z8/hy43yBxoW052nN5SN/8xBQhVU5XMW6Ze2 lXJ3hwZNwAp7wSnMTRIkXlWh8Cms4L4inha18lZjsf06aK1w/wGZ0g01hp1kTWKs PCEzSuhHnefePXNOyu0QWR/hhpwVuuX/XYJ7/lmdPydpvE7jR3sMXKduTQehawRj o4weBqXoYSlGiqTDFTi1GgSe0DeVblbim00roon/x4Tw0h3WFXsDEQ5ZgrNPiITh /Jcu2QouWAqB37Xvbn6AQBNF3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFx4NIUg toXnRPIVheNT7k96BfNRMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSgsYhiAl2Yr41xKt6u2En2bwdJewA1aOYkFRnuEbiddRlwdEdbyC/ PYTTx+gjQDCDBWolJAsrkpN2oc1wxHJfSWz/LPfOrKCaKxv9Mw+rpa5/1Y+lkfTx goIHXVKb7ZhYRTsDJ5TtwrsK/PtKwVpup+A/GWn5aY3YCeLPbnjzssymvLpGzljs KZYlQ/9Fg09uC8iFu0ozGeWlctPFz3gGLOmeiRFkRlBrJaqCeJXMTHhRivMjYp+9 2+VIVhW+9eXROcfibP78thRF7AYgh4lk8YMQxEvU8qT0fDj2fVJCWrzUVRKYCcnh zf8z6/iDgy1MMZ0IPoxqfGiQ5B1Eo3i9 -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:40 2025 by rpki-client