This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: qKQvoXadvg+jau9ANtsM0D3DdWOldVI8InicXdolPRk= Subject key identifier: FC:52:63:AA:73:76:35:40:3C:A1:3E:69:07:F1:5C:70:CB:83:B8:19 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 0588 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 0580 Signing time: Sat 06 Dec 2025 22:05:49 +0000 Manifest this update: Sat 06 Dec 2025 22:05:49 +0000 Manifest next update: Sat 13 Dec 2025 22:05:49 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: 2/0wMlxUBGIWPVWiTcOg185kF3JhxMF93FtB+Z+K9DA=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: ym0ByuNOndht95n45vmzI/LTnp1dbpbPf/6SayzC+38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Dec 6 22:05:49 2025 GMT Not After : Dec 13 22:05:49 2025 GMT Subject: CN=6934a8bd-26b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d3:c2:ba:94:99:22:4d:b4:19:1c:ce:6d:08: 1b:da:61:2b:e9:f4:fc:fb:3d:a0:99:70:07:b9:52: be:03:f7:cf:16:19:8f:ec:ad:3e:cc:34:32:62:25: 8c:2d:55:5d:e4:75:64:d1:d1:80:f1:52:d3:b5:06: d5:f5:fa:b0:6a:77:5c:9e:67:16:89:50:00:d4:2d: b9:90:9e:dd:13:8d:0e:d2:b4:4c:35:e7:ef:70:d4: 5f:62:f9:ee:4e:a5:fe:6e:46:35:7e:79:e7:38:d9: 88:91:3b:9f:2d:40:bd:be:73:72:61:6b:cd:1d:c6: 87:83:c1:a1:63:6d:a1:8a:84:97:bc:2d:29:e2:aa: a0:a4:35:c5:44:93:fb:60:2e:16:47:54:19:51:d0: f8:88:56:fe:1d:d3:30:64:8b:6d:c2:5f:99:10:58: 34:9b:7c:7e:7a:1d:97:2e:4c:ef:33:49:15:f0:7e: e9:5e:dd:63:fa:52:55:e8:14:8b:c1:3e:09:35:77: 3a:88:18:d1:7e:cd:ea:b7:a7:0f:03:59:68:23:e6: f1:e0:a8:00:fd:13:15:43:a0:86:06:47:c1:72:90: cf:c7:04:16:16:21:c8:b5:9c:e5:10:37:a1:f8:52: 31:34:ce:23:6b:6a:de:30:84:36:e6:0c:ee:13:93: a6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:52:63:AA:73:76:35:40:3C:A1:3E:69:07:F1:5C:70:CB:83:B8:19 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:cf:48:9b:8e:60:2e:83:55:bd:ea:5b:b8:94:d5:c3:22:87: c6:82:2b:a6:91:57:0e:99:23:b5:a0:b8:86:5a:08:db:54:a7: e3:7e:71:71:91:f2:0d:d5:1d:d0:f8:8e:54:ab:1e:ac:7a:fb: 8f:b8:46:fb:c0:f0:2d:28:49:dd:0b:93:1a:28:96:b8:31:44: a7:b7:d0:49:26:e7:5b:ac:36:6b:8a:b7:02:a8:0c:ca:be:ea: 28:62:ec:ab:89:f4:a6:c8:ed:bd:8f:0b:f3:a6:6e:01:fc:80: c2:6a:5e:45:e3:d5:a9:2e:f5:c7:80:2d:39:3b:a8:74:35:dd: b8:c1:82:1c:23:0f:83:82:22:fc:77:40:7a:7c:02:f9:5e:4e: f1:e1:e7:8c:89:58:de:95:0e:56:39:b2:53:34:d8:70:aa:ab: ba:d7:ab:46:b4:f7:42:6c:74:2e:cf:cd:a5:85:06:53:2e:f3: 97:97:11:bb:58:fb:ab:eb:83:72:e1:65:90:d2:e5:e0:44:e3: 99:b1:68:20:ec:c4:86:1b:d5:08:e0:33:44:6f:8d:c6:a8:c7: 2f:33:70:65:c9:1e:83:af:db:94:d2:13:1e:59:7a:1f:7d:53: ff:f0:0f:44:1a:da:f6:8d:41:1b:db:6a:87:8e:d0:3c:3d:1e: 3b:4f:fc:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUxMjA2MjIwNTQ5WhcNMjUxMjEzMjIwNTQ5WjAYMRYwFAYD VQQDEw02OTM0YThiZC0yNmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutPCupSZIk20GRzObQgb2mEr6fT8+z2gmXAHuVK+A/fPFhmP7K0+zDQyYiWM LVVd5HVk0dGA8VLTtQbV9fqwandcnmcWiVAA1C25kJ7dE40O0rRMNefvcNRfYvnu TqX+bkY1fnnnONmIkTufLUC9vnNyYWvNHcaHg8GhY22hioSXvC0p4qqgpDXFRJP7 YC4WR1QZUdD4iFb+HdMwZIttwl+ZEFg0m3x+eh2XLkzvM0kV8H7pXt1j+lJV6BSL wT4JNXc6iBjRfs3qt6cPA1loI+bx4KgA/RMVQ6CGBkfBcpDPxwQWFiHItZzlEDeh +FIxNM4ja2reMIQ25gzuE5OmEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxSY6pz djVAPKE+aQfxXHDLg7gZMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuz0ibjmAug1W96lu4lNXDIofGgiumkVcOmSO1oLiGWgjbVKfjfnFx kfIN1R3Q+I5Uqx6sevuPuEb7wPAtKEndC5MaKJa4MUSnt9BJJudbrDZrircCqAzK vuooYuyrifSmyO29jwvzpm4B/IDCal5F49WpLvXHgC05O6h0Nd24wYIcIw+DgiL8 d0B6fAL5Xk7x4eeMiVjelQ5WObJTNNhwqqu616tGtPdCbHQuz82lhQZTLvOXlxG7 WPur64Ny4WWQ0uXgROOZsWgg7MSGG9UI4DNEb43GqMcvM3BlyR6Dr9uU0hMeWXof fVP/8A9EGtr2jUEb22qHjtA8PR47T/wf -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:38 2025 by rpki-client