This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft File: IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft (raw, json) Hash identifier: rcQ5IqO0robmlADyXZQCXxo3xQtYdeSfMEoOAlBD9yA= Subject key identifier: 8D:DE:10:0D:F7:3E:82:57:9C:D7:5B:49:CB:20:D5:A2:4D:9B:70:B6 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft Manifest number: 1D2F Signing time: Sat 20 Dec 2025 15:57:55 +0000 Manifest this update: Sat 20 Dec 2025 15:57:55 +0000 Manifest next update: Sat 27 Dec 2025 15:57:55 +0000 Files and hashes: 1: IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl (hash: +22dMF7RCwZERzOJaYvOboRyHAzLvJ0d6Jysm+c2U0A=) 2: 40EAC2C0685111F0A688505EC4F9AE02.roa (hash: 2aGejYYAILu+vq+h9Ds1ItJ4A2WEADfQRUwQnuAzQp4=) 3: 402AE4B4685111F0A688505EC4F9AE02.roa (hash: dyKQZQJFWOlaLCos4pICmePW3GQtvzVk28wWqQnX6xA=) 4: E8FF9A526FDE11E9AF945067C4F9AE02.roa (hash: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:57:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7492 (0x1d44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Dec 20 15:57:55 2025 GMT Not After : Dec 27 15:57:55 2025 GMT Subject: CN=6946c783-2f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ec:37:b5:5b:78:2d:42:ad:14:72:63:dc:23: a0:fe:7d:65:ba:f6:5f:e2:fb:38:bf:bd:b7:f2:2c: f5:86:e9:47:5b:00:87:58:e0:5b:76:e3:a9:3c:3b: cc:07:f2:0d:36:0b:a9:0e:c1:1d:b0:aa:10:4c:30: 0b:d4:fa:ce:59:29:0e:c9:9d:80:0c:a1:28:1a:02: 88:6c:4a:e7:a2:9a:8d:86:8e:0e:f4:2b:14:f5:e9: ca:b3:b3:e4:b4:bb:8a:7d:30:0e:e0:5b:0a:0b:31: 87:03:d0:46:07:8e:3a:36:7c:06:95:9c:c9:6b:07: bd:6e:5d:c8:0c:50:30:f8:f4:be:a8:a3:b0:98:ab: f9:03:2c:93:bf:21:df:37:26:9a:e4:86:11:b2:48: 99:00:63:32:40:2c:56:c5:72:9e:0d:9c:16:c8:9c: 90:7e:78:d5:c5:1d:05:19:0e:e2:de:ea:75:57:2e: 49:09:88:1f:3a:bf:45:7c:8a:11:87:2c:d6:67:95: 2f:f1:9f:fd:c7:c5:1a:18:a4:e3:f6:d0:a4:9a:82: 83:45:61:9c:07:0e:a7:50:f1:50:f9:f5:68:53:05: 14:1a:67:48:b4:67:e4:b8:7c:d0:3e:8e:2a:8b:76: 0f:f8:37:00:23:3c:f5:2c:b8:26:04:46:ef:d3:58: 89:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:DE:10:0D:F7:3E:82:57:9C:D7:5B:49:CB:20:D5:A2:4D:9B:70:B6 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:f8:ad:3c:08:c9:71:e1:ca:04:aa:b7:a4:bb:b1:13:70:cd: 13:be:8b:33:dc:fd:b9:9d:4a:32:31:30:52:ed:96:df:9f:3b: 41:a1:ee:b0:dc:9e:e8:d8:7d:b5:9b:cc:f4:fa:ec:d7:9e:bb: ff:93:3e:e9:44:85:15:68:b8:a9:e4:f3:79:2c:fc:45:7b:95: 32:e7:d6:14:57:a3:2b:64:56:50:0f:8c:58:75:3b:0a:cd:d1: 4c:81:2f:26:44:7e:56:ef:7e:da:97:4b:63:fd:4f:fa:47:ff: 4c:3b:e7:cf:f3:ec:a9:23:58:26:7c:50:b0:c9:74:cb:50:10: 20:a7:96:ec:18:1c:61:9c:1b:78:1e:a8:ce:cc:bd:b2:6a:fc: 28:f3:9e:28:97:4b:ad:9f:7b:ab:23:72:5d:9a:fc:1d:8f:6a: 08:e8:d0:ee:b1:21:6b:78:90:d8:17:4a:ba:64:97:6f:fb:85: cd:e5:05:70:20:26:a7:f4:3a:fc:bb:86:c4:df:67:3a:50:16: 8e:da:b1:af:5b:b6:4f:58:79:88:02:ea:8c:ad:b1:6a:94:14: 2f:a2:b3:4d:ed:33:b5:fc:ee:bf:c0:a6:3f:f8:1b:c7:0d:33: dd:36:32:4f:67:75:cb:5e:ae:44:7b:bf:9f:3c:50:cf:24:71: da:1e:6f:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUxMjIwMTU1NzU1WhcNMjUxMjI3MTU1NzU1WjAYMRYwFAYD VQQDDA02OTQ2Yzc4My0yZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOw3tVt4LUKtFHJj3COg/n1luvZf4vs4v7238iz1hulHWwCHWOBbduOpPDvM B/INNgupDsEdsKoQTDAL1PrOWSkOyZ2ADKEoGgKIbErnopqNho4O9CsU9enKs7Pk tLuKfTAO4FsKCzGHA9BGB446NnwGlZzJawe9bl3IDFAw+PS+qKOwmKv5AyyTvyHf Nyaa5IYRskiZAGMyQCxWxXKeDZwWyJyQfnjVxR0FGQ7i3up1Vy5JCYgfOr9FfIoR hyzWZ5Uv8Z/9x8UaGKTj9tCkmoKDRWGcBw6nUPFQ+fVoUwUUGmdItGfkuHzQPo4q i3YP+DcAIzz1LLgmBEbv01iJ2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3eEA33 PoJXnNdbScsg1aJNm3C2MB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTI2RS84N0I1Q0Q1MEM4NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhC cTRMbHZyY052aTV6UXRaaDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf+K08CMlx4coEqreku7ETcM0Tvosz3P25nUoyMTBS7ZbfnztBoe6w 3J7o2H21m8z0+uzXnrv/kz7pRIUVaLip5PN5LPxFe5Uy59YUV6MrZFZQD4xYdTsK zdFMgS8mRH5W737al0tj/U/6R/9MO+fP8+ypI1gmfFCwyXTLUBAgp5bsGBxhnBt4 HqjOzL2yavwo854ol0utn3urI3Jdmvwdj2oI6NDusSFreJDYF0q6ZJdv+4XN5QVw ICan9Dr8u4bE32c6UBaO2rGvW7ZPWHmIAuqMrbFqlBQvorNN7TO1/O6/wKY/+BvH DTPdNjJPZ3XLXq5Ee7+fPFDPJHHaHm9j -----END CERTIFICATE-----Generated at Sun Dec 21 15:48:03 2025 by rpki-client