This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: 91zpAPG0xXpEq8E5KzB4K21pGqpdYiZFgJ6uyRTZyBQ= Subject key identifier: A6:1F:D5:00:E1:60:1B:03:EA:01:D9:D6:B7:C0:A5:BF:F8:30:B8:B7 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 132C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 1317 Signing time: Sat 06 Dec 2025 16:34:00 +0000 Manifest this update: Sat 06 Dec 2025 16:33:59 +0000 Manifest next update: Sat 13 Dec 2025 16:33:59 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: jNilUED/7B12L9cdjBWGvfn4EBycdHXEh0FtkoKC1+0=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: F64rTtQK62WkoJ4T7LBeaKOnYlMCrnrGJqKnlzvZNxc=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: V0JrvauXWXNDpsL43DjdmMpgmoTrusHbq711Y8hqbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4908 (0x132c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Dec 6 16:33:59 2025 GMT Not After : Dec 13 16:33:59 2025 GMT Subject: CN=69345af7-d9b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:72:dc:99:5f:59:16:eb:32:a1:8d:bb:71:24: a8:65:e8:8a:fd:77:ac:6c:95:b8:9b:c6:32:57:90: 6e:8c:a6:f0:05:4b:50:db:de:b1:94:ca:43:18:e3: d7:cd:51:29:58:01:1c:06:a8:89:14:cc:83:4f:d7: 66:88:a7:d7:71:8a:7d:45:ee:39:29:96:8e:41:23: 7d:78:56:a6:c5:27:2f:03:c6:14:52:b9:b3:03:34: bd:83:b5:54:49:ca:5a:57:88:e4:3e:7e:d8:67:16: 2b:5b:c8:3c:4f:61:06:da:33:4e:95:a6:17:26:fa: 41:5e:4a:20:81:a9:a7:cb:91:f9:43:1a:4d:22:6c: ea:0a:d0:96:5d:c9:3a:57:5f:a8:08:6c:fd:05:4b: 12:02:80:2b:d3:5e:6a:a3:40:5b:34:ad:9d:1b:b0: a2:da:0a:bc:8e:eb:d1:dc:2e:a2:b5:51:91:10:77: df:f0:ed:8e:fd:50:22:8d:f5:f9:29:74:70:3c:11: c7:df:1e:4d:c6:79:d0:77:8e:64:25:e5:89:99:bf: 9d:1a:12:6d:10:66:60:89:c6:f7:3a:5e:5b:13:33: 0f:df:b9:d5:c0:6f:55:81:0a:b2:58:95:d2:ef:c1: b2:e1:da:f7:4b:f7:67:56:18:19:72:22:ba:d1:32: 68:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1F:D5:00:E1:60:1B:03:EA:01:D9:D6:B7:C0:A5:BF:F8:30:B8:B7 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f8:0e:d5:59:8e:4e:2d:24:be:3a:ca:ef:98:9c:f6:5c:79: 65:3f:ea:a1:3c:04:de:53:91:b2:04:4b:9b:aa:3d:8b:0a:70: 79:6f:f8:bd:ae:66:e8:59:be:60:ea:7a:c4:f1:71:50:95:c7: 88:54:ac:32:dd:cb:cf:16:5d:83:ef:73:e8:4b:d2:6e:c0:1a: 05:04:37:1b:8d:5c:07:d3:93:26:76:18:90:a4:96:aa:98:b9: cd:93:d9:f7:4e:e3:15:14:13:09:e8:a8:b3:27:81:e8:c1:f6: 30:dc:ed:5f:e4:fa:04:93:a0:ff:85:de:d8:2f:6d:e6:e0:68: 84:35:69:a1:5f:a4:1a:c4:c2:30:de:e4:3c:31:7a:51:b1:0c: b2:62:18:ac:21:1d:d4:74:77:6f:95:f7:ba:07:8c:0e:c2:28: ac:0a:e8:86:bc:ee:8c:1d:e8:bb:a1:f8:88:73:ad:c6:d8:cc: 88:b8:0c:ff:a4:52:d4:4b:ff:ae:0b:7d:eb:59:c2:da:d6:60: d1:65:29:58:8d:40:d1:39:00:d6:5e:53:58:50:58:56:be:38: 76:ad:75:f4:40:da:87:1f:81:75:e2:08:49:b6:ea:66:74:74: d8:e6:36:9d:3c:43:65:7f:c7:76:64:f4:68:b3:65:e9:84:f6: 60:e8:0e:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUxMjA2MTYzMzU5WhcNMjUxMjEzMTYzMzU5WjAYMRYwFAYD VQQDEw02OTM0NWFmNy1kOWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXLcmV9ZFusyoY27cSSoZeiK/XesbJW4m8YyV5BujKbwBUtQ296xlMpDGOPX zVEpWAEcBqiJFMyDT9dmiKfXcYp9Re45KZaOQSN9eFamxScvA8YUUrmzAzS9g7VU ScpaV4jkPn7YZxYrW8g8T2EG2jNOlaYXJvpBXkoggamny5H5QxpNImzqCtCWXck6 V1+oCGz9BUsSAoAr015qo0BbNK2dG7Ci2gq8juvR3C6itVGREHff8O2O/VAijfX5 KXRwPBHH3x5NxnnQd45kJeWJmb+dGhJtEGZgicb3Ol5bEzMP37nVwG9VgQqyWJXS 78Gy4dr3S/dnVhgZciK60TJoxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYf1QDh YBsD6gHZ1rfApb/4MLi3MB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO+A7VWY5OLSS+OsrvmJz2XHllP+qhPATeU5GyBEubqj2LCnB5b/i9 rmboWb5g6nrE8XFQlceIVKwy3cvPFl2D73PoS9JuwBoFBDcbjVwH05MmdhiQpJaq mLnNk9n3TuMVFBMJ6KizJ4HowfYw3O1f5PoEk6D/hd7YL23m4GiENWmhX6QaxMIw 3uQ8MXpRsQyyYhisIR3UdHdvlfe6B4wOwiisCuiGvO6MHei7ofiIc63G2MyIuAz/ pFLUS/+uC33rWcLa1mDRZSlYjUDROQDWXlNYUFhWvjh2rXX0QNqHH4F14ghJtupm dHTY5jadPENlf8d2ZPRos2XphPZg6A47 -----END CERTIFICATE-----Generated at Sat Dec 6 22:08:19 2025 by rpki-client