This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: xxPIRmfrqjHn/VMGnB8Ji8jACYevL9vOa1U/AN7o19g= Subject key identifier: 9F:D8:06:72:1E:0C:20:68:AB:76:BE:FC:71:B3:99:AA:1B:01:6E:E6 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 0764 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 0764 Signing time: Sat 06 Dec 2025 20:38:10 +0000 Manifest this update: Sat 06 Dec 2025 20:38:09 +0000 Manifest next update: Sat 13 Dec 2025 20:38:09 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: Dtqua2ifgNCWifnyGGkDbgZUAoMAyqH6k6YxszrRNg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1892 (0x764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Dec 6 20:38:09 2025 GMT Not After : Dec 13 20:38:09 2025 GMT Subject: CN=69349431-1419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f0:ba:43:40:46:9f:f3:08:b5:9d:cf:82:69: aa:cb:ad:d7:10:c5:88:7b:61:57:3c:82:b2:19:11: 98:c3:77:33:7d:9c:b0:60:42:0a:31:db:c4:d9:1d: 67:a9:cb:de:95:eb:74:41:28:2f:c8:13:b8:cd:79: 03:cc:19:cc:41:46:f1:82:90:32:cf:e9:15:5a:ea: 1f:5b:da:0e:0f:24:a2:db:38:69:5d:b5:d2:7c:47: e9:d7:42:4c:c8:07:25:2d:9d:5d:27:40:ea:d3:43: 05:45:d0:13:7b:8d:fd:3e:22:2f:6f:c3:d2:1a:3e: ba:bf:5c:78:9f:30:ee:4a:84:21:b8:91:3a:de:e9: 29:3a:d0:ac:51:7a:9d:c8:12:75:4f:d7:a8:45:9b: 2c:7c:a1:a3:67:ad:1f:13:30:d7:ff:84:11:e6:6e: ef:b3:8e:8a:72:87:b4:cc:27:53:26:12:88:c7:60: 6d:c5:1d:46:5b:8e:b3:39:54:a9:9c:49:a6:ba:b0: a3:dc:d4:d4:fd:50:66:d4:8e:6e:fd:03:4f:c3:0a: 2c:8f:17:d9:71:29:7f:22:68:b6:3b:00:17:f7:15: 6a:1e:1a:76:d6:41:53:0f:3b:f1:f6:39:01:40:57: cd:6a:41:ea:61:4f:d9:cb:aa:a6:37:8f:b8:4c:cd: d6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D8:06:72:1E:0C:20:68:AB:76:BE:FC:71:B3:99:AA:1B:01:6E:E6 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:12:45:25:07:b2:f4:02:d7:48:79:13:00:4f:74:22:fc:4c: 52:f4:65:da:c1:6c:08:a3:0c:4b:1c:5e:71:f5:b2:95:8f:6f: a4:af:b8:5d:6f:33:00:f4:bc:28:49:c8:10:16:a0:22:72:a7: 39:73:a7:bb:e9:6f:8b:e6:ee:d6:40:2e:3b:51:1f:41:8b:52: 6e:e6:b8:81:2f:a7:6b:32:0f:9f:31:61:e6:52:ad:10:30:8f: eb:3d:b1:25:bc:36:80:3c:7d:a4:8a:19:80:c9:d9:9d:f6:6f: 2c:2f:4e:28:c3:f6:66:0e:21:a9:89:fd:e7:2d:e8:fa:28:37: ec:d0:f0:70:e2:c2:9a:94:c3:22:85:86:2b:71:5e:b5:b9:7b: 3c:b2:54:98:a7:b0:d3:38:08:44:90:cd:1c:ef:f3:1a:3c:67: 40:08:54:b5:5b:c2:4d:c2:f6:4e:ee:9e:66:b6:dd:96:a5:6b: b7:ae:e9:ea:9c:39:e8:e1:ba:3e:a8:97:6e:b9:a5:c1:46:9c: 60:be:e8:99:5c:8f:61:1c:cb:2b:be:31:b1:df:a7:a8:cf:14: 72:29:f0:11:f5:02:14:0c:d6:0e:65:99:05:23:f4:66:88:35: 1c:04:29:8f:21:e0:b5:42:4a:0c:cc:63:1b:e1:a1:95:59:4f: e2:09:95:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUxMjA2MjAzODA5WhcNMjUxMjEzMjAzODA5WjAYMRYwFAYD VQQDEw02OTM0OTQzMS0xNDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/C6Q0BGn/MItZ3Pgmmqy63XEMWIe2FXPIKyGRGYw3czfZywYEIKMdvE2R1n qcvelet0QSgvyBO4zXkDzBnMQUbxgpAyz+kVWuofW9oODySi2zhpXbXSfEfp10JM yAclLZ1dJ0Dq00MFRdATe439PiIvb8PSGj66v1x4nzDuSoQhuJE63ukpOtCsUXqd yBJ1T9eoRZssfKGjZ60fEzDX/4QR5m7vs46Kcoe0zCdTJhKIx2BtxR1GW46zOVSp nEmmurCj3NTU/VBm1I5u/QNPwwosjxfZcSl/Imi2OwAX9xVqHhp21kFTDzvx9jkB QFfNakHqYU/Zy6qmN4+4TM3WBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/YBnIe DCBoq3a+/HGzmaobAW7mMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArEkUlB7L0AtdIeRMAT3Qi/ExS9GXawWwIowxLHF5x9bKVj2+kr7hd bzMA9LwoScgQFqAicqc5c6e76W+L5u7WQC47UR9Bi1Ju5riBL6drMg+fMWHmUq0Q MI/rPbElvDaAPH2kihmAydmd9m8sL04ow/ZmDiGpif3nLej6KDfs0PBw4sKalMMi hYYrcV61uXs8slSYp7DTOAhEkM0c7/MaPGdACFS1W8JNwvZO7p5mtt2WpWu3runq nDno4bo+qJduuaXBRpxgvuiZXI9hHMsrvjGx36eozxRyKfAR9QIUDNYOZZkFI/Rm iDUcBCmPIeC1QkoMzGMb4aGVWU/iCZVG -----END CERTIFICATE-----Generated at Sun Dec 7 03:09:41 2025 by rpki-client