This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft File: iro-R9UcXSye80Plr0EQHkPFiog.mft (raw, json) Hash identifier: ZddAQkqCc94MgJKno0v0m1mYofP1vAy0W5EJtEltw/U= Subject key identifier: 1B:B9:FD:B8:41:69:7B:87:90:55:34:38:23:9D:06:B0:5A:85:05:29 Authority key identifier: 8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 Certificate issuer: /CN=A91AE984/serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Certificate serial: 0C65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft Manifest number: 0C5A Signing time: Sun 28 Dec 2025 18:12:02 +0000 Manifest this update: Sun 28 Dec 2025 18:12:02 +0000 Manifest next update: Sun 04 Jan 2026 18:12:02 +0000 Files and hashes: 1: iro-R9UcXSye80Plr0EQHkPFiog.crl (hash: OqsUXF6g4puLSkRwisPjPudTdRbr1JH2m2B/tgtPmiY=) 2: CEC4C3FC903B11ED96D73F40C4F9AE02.roa (hash: ZFOmsL5bJSLH6PZ2YkIqaVTwufEfPYg2DbDADn/8Z+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 18:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3173 (0xc65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE984, serialNumber=8ABA3E47D51C5D2C9EF343E5AF41101E43C58A88 Validity Not Before: Dec 28 18:12:02 2025 GMT Not After : Jan 4 18:12:02 2026 GMT Subject: CN=695172f2-6a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:61:bf:47:d1:16:bd:0c:7e:2e:2a:8f:ec:ca: af:06:d0:32:05:5d:21:5e:f0:a7:26:b7:ca:3e:be: f9:c9:cd:52:a6:67:d0:90:71:80:55:7a:57:e1:aa: 7f:e3:49:bf:18:0d:e3:5f:1c:f3:a2:6b:c1:9e:aa: 91:7e:f4:1b:22:12:fd:46:70:8b:cb:89:73:4d:80: 53:9c:63:a1:0e:b4:d3:4c:80:59:d6:93:70:05:7c: ba:19:40:c8:78:4f:4a:e9:f9:63:f6:48:79:f9:80: 30:71:99:24:ea:81:f7:98:4b:8b:a1:c4:38:77:b2: 58:90:50:ba:f0:ff:14:f2:10:68:e2:32:dd:f6:35: 64:12:05:4a:e0:31:7b:ec:7c:e6:4d:34:92:f8:d4: ea:5b:65:a7:7e:87:ad:d8:6b:8a:ba:26:58:0d:71: 5e:d0:f2:16:1f:6c:68:ed:59:72:27:15:4e:10:78: 75:a4:d5:56:e0:36:b7:8a:4a:0d:55:87:56:67:a2: 8f:8b:50:d2:7b:64:4c:8e:fc:bb:0b:f3:cf:62:27: 4b:d8:cf:ca:b2:1a:41:6a:6c:34:ec:22:60:43:da: 71:39:df:0b:ce:19:aa:95:a7:2d:f7:47:e6:7f:00: 23:20:7c:73:7f:0f:70:17:ad:8e:7c:a4:45:0f:ff: e4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B9:FD:B8:41:69:7B:87:90:55:34:38:23:9D:06:B0:5A:85:05:29 X509v3 Authority Key Identifier: keyid:8A:BA:3E:47:D5:1C:5D:2C:9E:F3:43:E5:AF:41:10:1E:43:C5:8A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iro-R9UcXSye80Plr0EQHkPFiog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE984/28745E4C15EE11EAA2D9E06EC4F9AE02/iro-R9UcXSye80Plr0EQHkPFiog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:a1:8b:dc:ce:12:38:1a:71:11:82:b8:95:9f:92:bf:d7:9e: d2:ed:c0:a3:97:1f:1b:8c:28:93:9f:c1:ed:af:48:45:f6:35: 5e:b4:0c:c3:ce:48:20:8e:35:9e:38:e4:46:1f:30:db:b4:15: e2:ae:90:53:e4:4a:8c:3a:7c:63:d4:e3:90:e5:f4:cf:3c:b0: 2d:ad:c0:8e:c7:ae:fd:a8:e8:1b:86:ce:dc:14:ff:94:92:a4: 20:ac:00:89:b6:48:ee:0c:7e:97:8c:4f:f6:95:f3:0a:39:e7: e8:f4:ef:1c:ad:13:d1:9a:db:4e:2c:aa:e0:05:fb:8a:1b:1d: d8:20:4a:e0:77:d9:01:0e:a9:86:f0:95:d3:f1:40:d1:19:36: 84:3b:f7:e0:01:f3:38:07:ef:90:c8:82:13:8b:50:32:8f:10: 2e:66:57:d2:fa:0d:91:bb:8e:db:bd:3b:81:4c:9c:95:2d:a3: 6e:8d:5a:f1:6d:7d:e1:63:4f:ba:c4:3c:d5:15:e7:b1:76:fa: 18:5c:ff:45:cc:1f:9f:7f:fc:3e:af:2e:6c:9a:72:53:1f:62: 03:6d:38:f0:ef:80:6d:b8:17:30:dd:dd:34:ce:d9:e1:79:58: a5:96:a7:62:92:df:cc:fa:22:b4:fb:c7:b2:30:58:a2:cf:38: 14:3e:97:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5ODQxMTAvBgNVBAUTKDhBQkEzRTQ3RDUxQzVEMkM5RUYzNDNFNUFGNDExMDFF NDNDNThBODgwHhcNMjUxMjI4MTgxMjAyWhcNMjYwMTA0MTgxMjAyWjAYMRYwFAYD VQQDDA02OTUxNzJmMi02YTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2G/R9EWvQx+LiqP7MqvBtAyBV0hXvCnJrfKPr75yc1SpmfQkHGAVXpX4ap/ 40m/GA3jXxzzomvBnqqRfvQbIhL9RnCLy4lzTYBTnGOhDrTTTIBZ1pNwBXy6GUDI eE9K6flj9kh5+YAwcZkk6oH3mEuLocQ4d7JYkFC68P8U8hBo4jLd9jVkEgVK4DF7 7HzmTTSS+NTqW2Wnfoet2GuKuiZYDXFe0PIWH2xo7VlyJxVOEHh1pNVW4Da3ikoN VYdWZ6KPi1DSe2RMjvy7C/PPYidL2M/KshpBamw07CJgQ9pxOd8Lzhmqlact90fm fwAjIHxzfw9wF62OfKRFD//kwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBu5/bhB aXuHkFU0OCOdBrBahQUpMB8GA1UdIwQYMBaAFIq6PkfVHF0snvND5a9BEB5DxYqI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk4NC8yODc0NUU0QzE1 RUUxMUVBQTJEOUUwNkVDNEY5QUUwMi9pcm8tUjlVY1hTeWU4MFBscjBFUUhrUEZp b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lyby1SOVVjWFN5ZTgwUGxyMEVRSGtQRmlvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk4NC8yODc0NUU0QzE1RUUxMUVBQTJEOUUwNkVDNEY5QUUwMi9pcm8tUjlVY1hT eWU4MFBscjBFUUhrUEZpb2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMoYvczhI4GnERgriVn5K/157S7cCjlx8bjCiTn8Htr0hF9jVetAzD zkggjjWeOORGHzDbtBXirpBT5EqMOnxj1OOQ5fTPPLAtrcCOx679qOgbhs7cFP+U kqQgrACJtkjuDH6XjE/2lfMKOefo9O8crRPRmttOLKrgBfuKGx3YIErgd9kBDqmG 8JXT8UDRGTaEO/fgAfM4B++QyIITi1AyjxAuZlfS+g2Ru47bvTuBTJyVLaNujVrx bX3hY0+6xDzVFeexdvoYXP9FzB+ff/w+ry5smnJTH2IDbTjw74BtuBcw3d00ztnh eVillqdikt/M+iK0+8eyMFiizzgUPpeR -----END CERTIFICATE-----Generated at Tue Dec 30 14:54:10 2025 by rpki-client