This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft File: Ikchh2oR4tOkuYshvIT3jmT-yEY.mft (raw, json) Hash identifier: P41W0UBqxb/3vxfuYzZt3oOysc6ZgnkYo/Fu6gC42rA= Subject key identifier: 90:0F:AD:88:DD:7B:89:77:70:E2:5B:96:AB:3A:94:E0:8B:7F:A0:09 Authority key identifier: 22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 Certificate issuer: /CN=A91CEE6D/serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft Manifest number: 30 Signing time: Tue 23 Dec 2025 06:25:41 +0000 Manifest this update: Tue 23 Dec 2025 06:25:41 +0000 Manifest next update: Tue 30 Dec 2025 06:25:41 +0000 Files and hashes: 1: Ikchh2oR4tOkuYshvIT3jmT-yEY.crl (hash: cifZiwALBrKmStKe2aDv2jZjFvfDl4ZZZkf9EnmFYpo=) 2: 09F2A296A02E11F08BC71221C4F9AE02.roa (hash: 6x2cZtG1O8RYzD8OGoXsH+NShNfzIbk96k46lysq5xU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE6D, serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Validity Not Before: Dec 23 06:25:41 2025 GMT Not After : Dec 30 06:25:41 2025 GMT Subject: CN=694a35e5-3aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:26:f0:ea:70:5a:38:94:fe:e0:a6:dc:cb: df:62:28:74:f1:a7:87:90:71:b3:98:ae:c5:e4:bb: 39:f9:25:63:f8:9e:d3:07:39:6a:28:13:a7:1f:09: 9c:1a:c8:9c:fb:b0:62:17:8c:c9:d8:35:cc:08:08: 45:87:1a:e3:5e:de:f1:d5:c0:b1:e7:76:dc:50:b1: c3:13:35:b1:a0:e3:18:cd:7b:87:1f:c4:e7:01:59: 91:08:96:d1:38:bc:32:d4:e1:3b:3a:ff:11:53:1b: 22:db:f5:35:10:dd:4d:a2:03:83:0e:f5:fd:02:7a: 71:9f:68:60:80:ad:e1:01:66:4f:04:8f:6a:6d:bf: ac:d4:0d:1d:95:71:14:c6:af:b5:8f:8a:5a:47:dc: 5d:4d:a2:8f:ea:52:ec:03:a4:c4:c6:07:ef:b9:aa: 8d:47:4a:eb:18:a3:ab:45:7d:40:b1:2a:6d:21:d8: 29:83:0d:8f:be:90:f7:d3:00:ba:f9:71:81:2f:05: 40:e4:5b:b2:a5:3f:3c:18:89:70:00:95:1d:06:fa: aa:2e:ad:ba:c0:a2:9e:04:bb:50:c6:b1:db:33:6e: 71:a2:8a:cf:92:5a:27:b6:bd:32:42:3a:08:57:30: 0d:b0:18:f0:04:9b:2d:6a:e9:58:7f:9b:34:a2:a9: 2e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:0F:AD:88:DD:7B:89:77:70:E2:5B:96:AB:3A:94:E0:8B:7F:A0:09 X509v3 Authority Key Identifier: keyid:22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:e9:9b:9b:07:f6:18:e9:3e:38:95:d2:cb:19:b7:92:1e:9a: 5f:9f:92:c2:22:76:ec:20:b9:d7:a3:09:36:8b:4b:17:32:d5: 34:5b:37:64:19:fd:04:e2:0b:67:c0:61:23:e1:10:1b:08:5f: a2:a0:e6:8b:fc:fa:49:7c:20:2c:2f:ef:a7:85:6d:3d:ed:ed: d3:72:71:07:27:d9:80:15:90:29:9c:35:f2:d0:5f:e6:d8:6b: 90:73:6a:39:2e:48:d4:11:9e:50:8b:8b:a6:e9:59:24:e8:ae: 3f:ca:b8:fb:a2:05:95:69:d4:da:17:0b:53:66:55:90:4e:1f: c3:e2:f9:1e:e9:55:87:26:68:49:63:e1:87:a5:32:fa:91:7a: 70:46:7c:25:bc:59:32:8d:31:e4:c9:e3:88:37:0b:17:db:94: 46:90:ac:5f:de:0f:78:74:50:27:f1:8b:83:f8:4c:dc:7d:91: 76:20:1b:e4:07:50:71:a7:94:09:47:e0:04:bf:35:ee:75:ff: 36:ef:de:54:1a:73:6a:1f:63:98:d1:da:31:90:3f:cb:1a:c2: fe:0a:85:ab:bf:dc:8b:0a:89:33:33:c0:cb:47:dd:32:df:71: a4:fb:d5:8b:4e:04:cf:bc:ca:ab:0c:fc:72:7c:54:6b:6b:4c: 2e:4b:5d:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU2RDExMC8GA1UEBRMoMjI0NzIxODc2QTExRTJEM0E0Qjk4QjIxQkM4NEY3OEU2 NEZFQzg0NjAeFw0yNTEyMjMwNjI1NDFaFw0yNTEyMzAwNjI1NDFaMBgxFjAUBgNV BAMMDTY5NGEzNWU1LTNhYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpDibw6nBaOJT+4Kbcy99iKHTxp4eQcbOYrsXkuzn5JWP4ntMHOWooE6cfCZwa yJz7sGIXjMnYNcwICEWHGuNe3vHVwLHndtxQscMTNbGg4xjNe4cfxOcBWZEIltE4 vDLU4Ts6/xFTGyLb9TUQ3U2iA4MO9f0CenGfaGCAreEBZk8Ej2ptv6zUDR2VcRTG r7WPilpH3F1Noo/qUuwDpMTGB++5qo1HSusYo6tFfUCxKm0h2CmDDY++kPfTALr5 cYEvBUDkW7KlPzwYiXAAlR0G+qourbrAop4Eu1DGsdszbnGiis+SWie2vTJCOghX MA2wGPAEmy1q6Vh/mzSiqS7BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkA+tiN17 iXdw4luWqzqU4It/oAkwHwYDVR0jBBgwFoAUIkchh2oR4tOkuYshvIT3jmT+yEYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTZELzUxMTEwQUZFOTc2 NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRPa3VZc2h2SVQzam1ULXlF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWtjaGgyb1I0dE9rdVlzaHZJVDNqbVQteUVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTZELzUxMTEwQUZFOTc2NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRP a3VZc2h2SVQzam1ULXlFWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJPpm5sH9hjpPjiV0ssZt5Ieml+fksIiduwgudejCTaLSxcy1TRbN2QZ /QTiC2fAYSPhEBsIX6Kg5ov8+kl8ICwv76eFbT3t7dNycQcn2YAVkCmcNfLQX+bY a5BzajkuSNQRnlCLi6bpWSTorj/KuPuiBZVp1NoXC1NmVZBOH8Pi+R7pVYcmaElj 4YelMvqRenBGfCW8WTKNMeTJ44g3CxfblEaQrF/eD3h0UCfxi4P4TNx9kXYgG+QH UHGnlAlH4AS/Ne51/zbv3lQac2ofY5jR2jGQP8sawv4Khau/3IsKiTMzwMtH3TLf caT71YtOBM+8yqsM/HJ8VGtrTC5LXR8= -----END CERTIFICATE-----Generated at Tue Dec 23 12:39:45 2025 by rpki-client