This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft File: ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft (raw, json) Hash identifier: U0dF/ffmRs3y3iBfoBoLSx4L3k3ZspGrdyXsLATAvHQ= Subject key identifier: 04:AE:0D:D7:AF:32:89:57:B9:15:76:7B:C7:75:B3:75:03:52:E1:E5 Authority key identifier: 21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC Certificate issuer: /CN=A912382E/serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Certificate serial: 1906 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft Manifest number: 18FD Signing time: Sat 06 Dec 2025 16:04:44 +0000 Manifest this update: Sat 06 Dec 2025 16:04:43 +0000 Manifest next update: Sat 13 Dec 2025 16:04:43 +0000 Files and hashes: 1: ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl (hash: Paoj4U1ioB+W557icRT8xPDfO3YeSs5I8+vQI9YzJd0=) 2: BD843CCE984011E79A256C82C4F9AE02.roa (hash: cv0ZUc0lebxpCeCaHLbic5zL6MtIPbL3843SH+qN9Dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6406 (0x1906) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912382E, serialNumber=213436BA23A9AF250BF25DDEA50C762219F906BC Validity Not Before: Dec 6 16:04:43 2025 GMT Not After : Dec 13 16:04:43 2025 GMT Subject: CN=6934541c-fdbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:56:70:b0:ab:1e:e2:65:44:09:9e:94:f4:f0: 18:ed:6b:6f:35:2f:a8:e6:1b:39:d3:b0:79:26:8f: 89:24:19:53:95:7b:6f:08:b1:96:38:c7:20:6d:ea: 2d:28:a0:43:a0:70:27:81:dc:6b:cb:17:0d:c0:7a: 42:14:ab:15:b8:bd:d4:4d:68:8e:82:01:9b:f5:bd: ec:da:1e:fc:fa:5e:56:0d:cf:0b:a8:df:7d:87:43: aa:23:da:c6:20:e3:e2:49:ed:73:11:f1:31:f1:ad: 13:1f:44:a3:83:1c:bb:4d:50:6e:88:23:01:21:fe: c4:ce:10:0f:63:2a:7b:c3:ce:4e:db:b9:58:f1:01: 68:65:a3:78:50:41:9b:18:80:31:c0:f6:89:26:da: d7:bc:52:f5:46:15:98:a5:cc:60:9c:99:28:77:04: eb:c2:02:fd:cf:66:19:98:4c:68:8b:32:5b:b9:10: 5d:13:1d:fd:a8:c6:f0:81:59:3f:ab:74:9a:b4:8e: 94:2f:d3:fc:21:3b:99:f5:ad:0d:c7:9d:ec:77:ec: 4a:5c:16:8f:48:12:a6:17:42:05:4e:72:74:9b:df: 6a:1e:53:26:85:01:eb:21:27:4c:3c:67:80:16:25: 25:eb:52:ce:aa:38:3b:21:de:a1:0a:8b:9b:3c:3a: 04:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AE:0D:D7:AF:32:89:57:B9:15:76:7B:C7:75:B3:75:03:52:E1:E5 X509v3 Authority Key Identifier: keyid:21:34:36:BA:23:A9:AF:25:0B:F2:5D:DE:A5:0C:76:22:19:F9:06:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ITQ2uiOpryUL8l3epQx2Ihn5Brw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912382E/311EAC56984011E7B768EB81C4F9AE02/ITQ2uiOpryUL8l3epQx2Ihn5Brw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:06:0d:4e:1b:b4:2a:bc:f3:40:bf:da:4a:0c:e2:f9:89:f3: 9a:a6:4b:69:6c:2d:51:ad:06:1c:bb:80:6a:88:cc:32:35:2e: 61:9f:83:d6:b5:ee:ba:1a:62:10:2c:d3:ff:04:28:c6:32:8a: 2f:52:25:6b:04:ff:2d:31:26:ff:8f:7a:ac:96:a4:9a:f3:3b: c0:59:7a:d9:e9:82:b8:a7:7c:d1:40:61:2f:df:e8:8f:52:9b: ce:3e:d5:62:bd:6b:10:b7:ed:c9:4f:ca:a6:e7:ef:f2:d4:96: 72:66:87:76:ed:85:2b:0f:89:e8:86:1e:cd:79:1c:d7:0c:74: de:a3:43:98:e2:5e:0d:48:31:9c:09:7b:30:65:36:d3:31:97: 62:68:39:34:41:dc:86:d9:18:e5:e4:13:4e:08:2a:54:6a:1a: f4:22:4f:ce:66:5a:36:e7:92:f3:5b:c3:06:c6:6a:75:5e:a8: b0:6e:9f:e1:14:77:1c:3c:b5:1b:ba:b5:1d:ea:d7:d7:1d:c1: 66:0d:70:3e:ca:56:82:0f:4d:38:97:fb:c4:34:11:61:29:62: 5c:43:42:24:d0:5b:ae:21:d9:47:52:47:6d:74:a9:ac:0d:36: bf:bb:81:c7:61:69:1f:bd:71:92:ff:bb:0e:88:4c:df:47:17: 2c:ed:48:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4MkUxMTAvBgNVBAUTKDIxMzQzNkJBMjNBOUFGMjUwQkYyNURERUE1MEM3NjIy MTlGOTA2QkMwHhcNMjUxMjA2MTYwNDQzWhcNMjUxMjEzMTYwNDQzWjAYMRYwFAYD VQQDEw02OTM0NTQxYy1mZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVZwsKse4mVECZ6U9PAY7WtvNS+o5hs507B5Jo+JJBlTlXtvCLGWOMcgbeot KKBDoHAngdxryxcNwHpCFKsVuL3UTWiOggGb9b3s2h78+l5WDc8LqN99h0OqI9rG IOPiSe1zEfEx8a0TH0Sjgxy7TVBuiCMBIf7EzhAPYyp7w85O27lY8QFoZaN4UEGb GIAxwPaJJtrXvFL1RhWYpcxgnJkodwTrwgL9z2YZmExoizJbuRBdEx39qMbwgVk/ q3SatI6UL9P8ITuZ9a0Nx53sd+xKXBaPSBKmF0IFTnJ0m99qHlMmhQHrISdMPGeA FiUl61LOqjg7Id6hCoubPDoEzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASuDdev MolXuRV2e8d1s3UDUuHlMB8GA1UdIwQYMBaAFCE0Nrojqa8lC/Jd3qUMdiIZ+Qa8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgyRS8zMTFFQUM1Njk4 NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5VUw4bDNlcFF4MklobjVC cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lUUTJ1aU9wcnlVTDhsM2VwUXgySWhuNUJydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzgyRS8zMTFFQUM1Njk4NDAxMUU3Qjc2OEVCODFDNEY5QUUwMi9JVFEydWlPcHJ5 VUw4bDNlcFF4MklobjVCcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/Bg1OG7QqvPNAv9pKDOL5ifOapktpbC1RrQYcu4BqiMwyNS5hn4PW te66GmIQLNP/BCjGMoovUiVrBP8tMSb/j3qslqSa8zvAWXrZ6YK4p3zRQGEv3+iP UpvOPtVivWsQt+3JT8qm5+/y1JZyZod27YUrD4nohh7NeRzXDHTeo0OY4l4NSDGc CXswZTbTMZdiaDk0QdyG2Rjl5BNOCCpUahr0Ik/OZlo255LzW8MGxmp1Xqiwbp/h FHccPLUburUd6tfXHcFmDXA+ylaCD004l/vENBFhKWJcQ0Ik0FuuIdlHUkdtdKms DTa/u4HHYWkfvXGS/7sOiEzfRxcs7UhQ -----END CERTIFICATE-----Generated at Sat Dec 6 23:24:20 2025 by rpki-client