This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: QYtElyGQZEUzwJazVWW2kwUY5iCru1DSeQhzdUllfgs= Subject key identifier: 6D:2B:B9:6B:CF:C0:4F:76:F1:AB:83:7E:AF:8F:2A:7A:C7:C3:E3:1C Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 0198 Signing time: Fri 05 Dec 2025 01:39:00 +0000 Manifest this update: Fri 05 Dec 2025 01:38:59 +0000 Manifest next update: Fri 12 Dec 2025 01:38:59 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: oR/FTX1LC75PEHpBe7XhvLbKkdefKrpzqU/kT4hur1I=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: 5hu6VPOMwmE3voYXkmp3eUb3lVDeCA+zJokawI+UD3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Dec 5 01:38:59 2025 GMT Not After : Dec 12 01:38:59 2025 GMT Subject: CN=693237b4-445d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:44:71:88:f9:28:f8:1d:d3:71:ed:cc:8e:5b: d8:d8:ba:d9:87:ab:d3:a6:10:2c:ea:e8:0d:b5:e8: 5c:53:46:46:5b:16:0b:66:96:ea:6c:f0:2b:f4:9b: fb:f3:53:97:52:11:f9:35:7f:74:48:55:e3:30:36: 2f:a6:fc:9e:2c:bd:18:8e:34:a9:44:84:f5:1c:b1: a2:93:51:f3:e1:ae:77:a5:30:9c:21:05:e8:26:74: c6:5c:16:73:a3:54:85:e7:ce:70:26:88:ce:bf:8c: cc:78:e4:e9:68:18:49:de:fe:d4:01:58:e8:e6:80: 16:45:55:91:71:03:8e:d2:ad:78:5f:f7:4b:cf:ed: 24:94:96:60:2a:99:a8:08:2a:78:5f:45:e9:18:25: f0:6c:ba:39:8c:be:8d:c6:57:2a:a9:39:3f:36:b0: 81:f0:4e:02:b2:19:bb:29:11:20:a1:4b:0e:5f:c3: c0:5b:57:ae:36:33:2c:c4:f2:a6:9f:60:ae:d2:5d: eb:ee:82:a1:b3:79:0f:33:a4:6b:7b:10:12:4a:f0: 3c:f1:b3:f5:5e:a6:f1:f7:e2:af:37:3b:27:6a:ce: 86:18:61:fa:b6:23:d7:b5:d4:dc:ab:26:7f:26:52: fa:4a:00:5b:a7:32:81:15:a9:5d:53:af:7d:b7:a5: 37:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2B:B9:6B:CF:C0:4F:76:F1:AB:83:7E:AF:8F:2A:7A:C7:C3:E3:1C X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:7d:87:5e:e5:6e:cc:9e:95:c2:50:d9:ae:38:91:a6:d8:30: dc:81:60:77:03:43:0f:76:22:22:46:76:ae:d2:16:4b:35:ed: 65:e4:0e:8d:b6:47:ec:8a:3c:50:db:97:a6:70:14:93:61:63: 02:af:67:f0:9e:e9:90:35:ae:76:61:77:42:57:4b:dd:d4:5b: a9:06:ad:ca:56:3b:35:98:e4:eb:5d:60:00:db:c9:a4:cf:16: b4:e4:5f:6f:d5:0b:04:ad:b0:73:10:28:39:db:ff:43:31:74: 2b:1d:77:40:60:9f:e2:a2:c8:b9:30:8f:21:23:d4:73:9c:91: 87:70:f4:8c:c8:61:7c:66:e7:55:67:a4:f1:42:f9:a6:60:89: ac:41:9f:6a:75:24:75:73:f2:d0:86:fd:02:40:53:ef:6b:bd: 1b:3a:26:85:27:a8:2e:82:24:47:ad:39:9c:f7:4e:33:d6:b2: 61:5d:3e:64:7e:15:cd:b9:97:8a:8d:ff:32:62:77:0c:68:05: fd:b3:0d:b3:d4:5c:1c:ea:72:01:3c:20:52:1b:4f:41:84:be: a2:ab:d2:c9:e0:7f:4f:44:65:ee:66:72:6b:e1:db:a5:7c:16: 61:9c:86:57:2a:6c:cd:50:8d:34:50:50:f1:97:63:02:96:a6: 5b:38:6d:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUxMjA1MDEzODU5WhcNMjUxMjEyMDEzODU5WjAYMRYwFAYD VQQDEw02OTMyMzdiNC00NDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxURxiPko+B3Tce3MjlvY2LrZh6vTphAs6ugNtehcU0ZGWxYLZpbqbPAr9Jv7 81OXUhH5NX90SFXjMDYvpvyeLL0YjjSpRIT1HLGik1Hz4a53pTCcIQXoJnTGXBZz o1SF585wJojOv4zMeOTpaBhJ3v7UAVjo5oAWRVWRcQOO0q14X/dLz+0klJZgKpmo CCp4X0XpGCXwbLo5jL6NxlcqqTk/NrCB8E4Cshm7KREgoUsOX8PAW1euNjMsxPKm n2Cu0l3r7oKhs3kPM6RrexASSvA88bP1Xqbx9+KvNzsnas6GGGH6tiPXtdTcqyZ/ JlL6SgBbpzKBFaldU699t6U3HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0ruWvP wE928auDfq+PKnrHw+McMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSfYde5W7MnpXCUNmuOJGm2DDcgWB3A0MPdiIiRnau0hZLNe1l5A6N tkfsijxQ25emcBSTYWMCr2fwnumQNa52YXdCV0vd1FupBq3KVjs1mOTrXWAA28mk zxa05F9v1QsErbBzECg52/9DMXQrHXdAYJ/iosi5MI8hI9RznJGHcPSMyGF8ZudV Z6TxQvmmYImsQZ9qdSR1c/LQhv0CQFPva70bOiaFJ6gugiRHrTmc904z1rJhXT5k fhXNuZeKjf8yYncMaAX9sw2z1Fwc6nIBPCBSG09BhL6iq9LJ4H9PRGXuZnJr4dul fBZhnIZXKmzNUI00UFDxl2MClqZbOG1w -----END CERTIFICATE-----Generated at Sat Dec 6 20:29:11 2025 by rpki-client