This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft File: IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft (raw, json) Hash identifier: ipPRZgjSfGGARjbXRKjAZpY2ySSzKLH5p5g4l039Trk= Subject key identifier: AA:79:BA:AE:6D:E4:6F:EB:D9:77:EA:84:77:89:37:5F:64:D8:47:6D Authority key identifier: 20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 Certificate issuer: /CN=A91B40B2/serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft Manifest number: 03 Signing time: Fri 19 Dec 2025 07:02:37 +0000 Manifest this update: Fri 19 Dec 2025 07:02:37 +0000 Manifest next update: Fri 26 Dec 2025 07:02:37 +0000 Files and hashes: 1: IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl (hash: jfN2jZZAN0T7VIbML/vNf/pSUPr7h/bjjz7Z6DVRh9M=) 2: 78211876DA3811F080F82F148DD3641D.roa (hash: D8fUifUMsWM3OJd2OmgVxau2OHyuq+eeEEgXuGTeJA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B40B2, serialNumber=20F3BBD498F43C97913EE1B99429DB890B4762B0 Validity Not Before: Dec 19 07:02:37 2025 GMT Not After : Dec 26 07:02:37 2025 GMT Subject: CN=6944f88d-b38c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:76:36:d5:c5:6f:a4:81:bc:f0:c9:e7:95:46: b4:b6:f2:6a:f2:bc:3c:38:52:f1:6e:f7:16:1a:4b: ec:89:c6:2d:4e:99:84:30:01:ab:dc:c5:0c:ff:6d: 6d:9f:67:8c:ad:9a:61:7f:c3:c1:5d:93:8f:38:76: c4:3d:37:02:fa:43:5f:de:8c:c8:e5:fd:50:67:38: 9a:5e:d7:e4:44:57:17:5b:16:5f:ae:31:f0:4d:20: 27:66:95:92:8c:6f:56:f5:7a:fa:fd:80:58:b2:a2: 59:c6:b0:c0:ba:40:5a:9d:f3:80:e4:4e:79:21:5b: 2d:fd:a2:c3:59:08:06:19:21:f0:f7:10:d6:60:81: e3:0e:af:9b:e9:a4:94:9e:27:05:02:c6:5a:5e:e7: 40:72:64:07:9e:81:a3:17:d2:8d:a9:2e:45:b0:54: be:1e:68:c5:0d:64:29:26:61:a8:5d:5d:33:fe:2f: cc:52:27:b1:fe:6c:6a:54:ca:0b:81:f6:e5:e2:56: eb:6c:0d:36:34:66:9a:59:ca:49:7d:5b:07:43:26: 91:3e:45:e0:09:2b:b5:f1:8d:0d:13:54:e2:b7:72: c0:1c:f8:91:1c:7a:92:5a:ac:0c:49:76:bc:24:28: 89:ae:f9:7b:e2:c6:60:6f:51:07:f0:9f:89:c3:6a: 94:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:79:BA:AE:6D:E4:6F:EB:D9:77:EA:84:77:89:37:5F:64:D8:47:6D X509v3 Authority Key Identifier: keyid:20:F3:BB:D4:98:F4:3C:97:91:3E:E1:B9:94:29:DB:89:0B:47:62:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IPO71Jj0PJeRPuG5lCnbiQtHYrA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B40B2/D146E4F0DA3611F0A933D24C8CD3641D/IPO71Jj0PJeRPuG5lCnbiQtHYrA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e0:0f:1f:19:13:c5:2a:87:13:70:77:9c:76:b4:64:f6:49: 69:bd:8f:39:e8:b4:29:03:6c:fb:8a:7a:3d:b3:92:4e:f5:85: e6:cc:1f:b8:21:4d:6a:b5:58:0c:45:7d:9d:b8:9d:31:26:9f: 29:20:57:f2:33:b0:5b:76:5d:73:05:c6:a2:21:b9:0c:b1:e3: c3:1b:7f:85:b1:b7:4c:3b:33:c3:61:fe:ea:a2:d7:58:0d:b1: 6a:25:a5:36:09:62:c6:a8:05:2f:1f:c1:6c:b2:d3:2a:e9:e8: 13:68:f2:91:2a:5b:1e:2d:f3:d5:5e:cf:d7:c3:45:1a:d0:cd: cb:74:cb:d0:da:4b:cd:43:b3:a3:1f:7b:51:e6:78:1d:d9:96: c5:f1:cb:92:e6:12:45:57:83:d1:5d:9a:77:69:59:94:25:91: 8d:69:ef:fd:ad:28:87:1d:38:c5:a7:26:fb:cf:c5:44:b2:81: 58:1d:c5:d3:87:bf:50:a6:a4:6d:b7:ac:3d:96:4f:3d:e3:48: 9b:43:39:12:66:87:a8:95:a1:a5:f8:59:90:a0:2a:14:ea:28: 08:2b:ef:da:91:d6:81:b3:b2:ad:28:92:25:3d:09:01:08:55: 47:c3:07:99:8e:5f:87:b7:9d:ea:4f:c0:2c:b3:a7:39:da:7b: 87:8e:a8:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDBCMjExMC8GA1UEBRMoMjBGM0JCRDQ5OEY0M0M5NzkxM0VFMUI5OTQyOURCODkw QjQ3NjJCMDAeFw0yNTEyMTkwNzAyMzdaFw0yNTEyMjYwNzAyMzdaMBgxFjAUBgNV BAMMDTY5NDRmODhkLWIzOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCUdjbVxW+kgbzwyeeVRrS28mryvDw4UvFu9xYaS+yJxi1OmYQwAavcxQz/bW2f Z4ytmmF/w8Fdk484dsQ9NwL6Q1/ejMjl/VBnOJpe1+REVxdbFl+uMfBNICdmlZKM b1b1evr9gFiyolnGsMC6QFqd84DkTnkhWy39osNZCAYZIfD3ENZggeMOr5vppJSe JwUCxlpe50ByZAeegaMX0o2pLkWwVL4eaMUNZCkmYahdXTP+L8xSJ7H+bGpUyguB 9uXiVutsDTY0ZppZykl9WwdDJpE+ReAJK7XxjQ0TVOK3csAc+JEcepJarAxJdrwk KImu+XvixmBvUQfwn4nDapRDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqnm6rm3k b+vZd+qEd4k3X2TYR20wHwYDVR0jBBgwFoAUIPO71Jj0PJeRPuG5lCnbiQtHYrAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MEIyL0QxNDZFNEYwREEz NjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEplUlB1RzVsQ25iaVF0SFly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSVBPNzFKajBQSmVSUHVHNWxDbmJpUXRIWXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MEIyL0QxNDZFNEYwREEzNjExRjBBOTMzRDI0QzhDRDM2NDFEL0lQTzcxSmowUEpl UlB1RzVsQ25iaVF0SFlyQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEzgDx8ZE8UqhxNwd5x2tGT2SWm9jznotCkDbPuKej2zkk71hebMH7gh TWq1WAxFfZ24nTEmnykgV/IzsFt2XXMFxqIhuQyx48Mbf4Wxt0w7M8Nh/uqi11gN sWolpTYJYsaoBS8fwWyy0yrp6BNo8pEqWx4t89Vez9fDRRrQzct0y9DaS81Ds6Mf e1HmeB3ZlsXxy5LmEkVXg9FdmndpWZQlkY1p7/2tKIcdOMWnJvvPxUSygVgdxdOH v1CmpG23rD2WTz3jSJtDORJmh6iVoaX4WZCgKhTqKAgr79qR1oGzsq0okiU9CQEI VUfDB5mOX4e3nepPwCyzpznae4eOqBY= -----END CERTIFICATE-----Generated at Sat Dec 20 00:36:22 2025 by rpki-client