This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft File: IiyUNfXVTN9jafhecaodhG7MXz4.mft (raw, json) Hash identifier: A3RFLKgHaX3ojT+cQEka+o3KMjfV+k7a+h+z4XDGx6U= Subject key identifier: 8C:FD:85:58:34:6D:87:0F:AC:CE:FC:A9:75:82:B1:03:79:E1:67:87 Authority key identifier: 22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E Certificate issuer: /CN=A9142E4E/serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Certificate serial: 0CA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft Manifest number: 0C9F Signing time: Thu 04 Dec 2025 17:49:13 +0000 Manifest this update: Thu 04 Dec 2025 17:49:13 +0000 Manifest next update: Thu 11 Dec 2025 17:49:13 +0000 Files and hashes: 1: IiyUNfXVTN9jafhecaodhG7MXz4.crl (hash: mXV/KvqY1SVBxsILHwlHjRYE6CJeL8KhyHNNGJ7+BVo=) 2: 778B8788063711EA981E916CC4F9AE02.roa (hash: ZF76+TdQMAvJkkO6rvtsiHzBwUDEVkLOtw/tW67c6tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E4E, serialNumber=222C9435F5D54CDF6369F85E71AA1D846ECC5F3E Validity Not Before: Dec 4 17:49:13 2025 GMT Not After : Dec 11 17:49:13 2025 GMT Subject: CN=6931c999-41b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:14:a3:d3:b2:1b:b8:ef:66:c7:88:48:90:c9: bc:f3:31:58:5c:8a:a9:e0:b2:0a:d1:c6:6c:11:22: 6d:2d:47:38:fd:58:19:df:39:7d:d4:2b:53:22:85: f4:43:a4:a8:7a:db:5b:d4:b3:bc:05:2b:15:3a:50: f0:c3:53:5c:01:e2:f1:d9:52:fc:fa:95:45:2d:31: 79:0f:bf:50:6a:69:40:be:46:ec:ec:a2:56:d6:87: b1:76:88:ec:73:a6:55:7d:ba:ed:b9:6d:f9:46:8f: 20:af:c1:f6:8b:2f:a4:a5:43:df:02:36:3d:b4:0a: d8:4b:0e:99:b9:b5:b8:15:ff:69:00:62:09:6a:48: 1b:7c:94:f0:b6:a3:8f:c9:9e:16:65:25:e8:eb:a0: ae:ec:80:ba:64:a5:81:9c:ae:1f:b4:db:3e:83:56: d5:86:35:43:03:47:8a:f4:b3:26:de:08:97:8b:e5: 3c:e3:e6:8c:71:f7:25:ba:c7:98:27:57:85:41:b8: 33:01:28:1e:1a:db:77:28:4f:ec:0c:d0:8e:b1:3c: 0d:59:15:1c:8e:45:0f:e9:27:1c:d6:1f:8f:b1:ab: 29:70:f8:37:b5:de:a7:12:f0:c8:57:0f:ba:23:1a: 30:84:6b:e0:82:9b:90:0b:a1:1d:c1:de:9d:48:53: c1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:FD:85:58:34:6D:87:0F:AC:CE:FC:A9:75:82:B1:03:79:E1:67:87 X509v3 Authority Key Identifier: keyid:22:2C:94:35:F5:D5:4C:DF:63:69:F8:5E:71:AA:1D:84:6E:CC:5F:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiyUNfXVTN9jafhecaodhG7MXz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E4E/C173CDE8063611EAB249B96BC4F9AE02/IiyUNfXVTN9jafhecaodhG7MXz4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:a7:ef:9f:3e:19:93:7d:bb:0f:07:72:2f:99:d9:5d:ec:e5: 11:f4:e0:b1:2d:17:90:27:93:b6:d6:e2:5f:82:aa:25:ed:ae: 4b:e5:87:3c:8b:d4:a4:ef:a4:b3:f3:cb:6c:6f:48:dd:1a:14: d1:5c:e5:39:6f:fd:5e:19:10:ab:7a:d6:62:ff:40:41:3b:fd: bd:5b:99:b1:51:1a:7e:ef:23:6a:24:29:f2:a5:42:3c:b8:f4: 0d:98:a4:07:05:8d:2c:5c:0d:95:3b:7d:31:0b:35:01:77:f5: 6b:b9:bb:1e:6d:69:86:97:9e:d4:bc:7e:a8:12:89:aa:a3:0a: ee:2a:af:a8:3e:8c:03:29:06:76:cd:fc:c8:b4:91:f5:48:4d: 17:e7:8e:ce:50:06:1e:2a:dd:a1:ca:c0:3b:ac:2b:69:6e:07: 4d:65:de:d6:3c:68:2b:53:e9:ab:8f:61:ad:aa:6f:1d:85:41: d7:c8:c6:95:fc:da:26:46:3c:ff:4a:fe:78:59:ea:44:e3:e9: 76:8b:da:c6:91:2e:a9:24:a5:db:b6:54:e4:c3:4f:84:fc:17: d5:67:5a:5f:c1:71:8a:a0:3d:72:fe:c8:39:a8:71:b5:d9:1e: 30:d2:f9:a0:b6:02:84:67:96:86:c3:65:a9:c0:a2:e4:12:14: 2b:1d:6e:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJFNEUxMTAvBgNVBAUTKDIyMkM5NDM1RjVENTRDREY2MzY5Rjg1RTcxQUExRDg0 NkVDQzVGM0UwHhcNMjUxMjA0MTc0OTEzWhcNMjUxMjExMTc0OTEzWjAYMRYwFAYD VQQDEw02OTMxYzk5OS00MWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RSj07IbuO9mx4hIkMm88zFYXIqp4LIK0cZsESJtLUc4/VgZ3zl91CtTIoX0 Q6Soettb1LO8BSsVOlDww1NcAeLx2VL8+pVFLTF5D79QamlAvkbs7KJW1oexdojs c6ZVfbrtuW35Ro8gr8H2iy+kpUPfAjY9tArYSw6ZubW4Ff9pAGIJakgbfJTwtqOP yZ4WZSXo66Cu7IC6ZKWBnK4ftNs+g1bVhjVDA0eK9LMm3giXi+U84+aMcfcluseY J1eFQbgzASgeGtt3KE/sDNCOsTwNWRUcjkUP6Scc1h+PsaspcPg3td6nEvDIVw+6 IxowhGvggpuQC6Edwd6dSFPBAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIz9hVg0 bYcPrM78qXWCsQN54WeHMB8GA1UdIwQYMBaAFCIslDX11UzfY2n4XnGqHYRuzF8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkU0RS9DMTczQ0RFODA2 MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlROOWphZmhlY2FvZGhHN01Y ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpeVVOZlhWVE45amFmaGVjYW9kaEc3TVh6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkU0RS9DMTczQ0RFODA2MzYxMUVBQjI0OUI5NkJDNEY5QUUwMi9JaXlVTmZYVlRO OWphZmhlY2FvZGhHN01YejQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1p++fPhmTfbsPB3Ivmdld7OUR9OCxLReQJ5O21uJfgqol7a5L5Yc8 i9Sk76Sz88tsb0jdGhTRXOU5b/1eGRCretZi/0BBO/29W5mxURp+7yNqJCnypUI8 uPQNmKQHBY0sXA2VO30xCzUBd/VrubsebWmGl57UvH6oEomqowruKq+oPowDKQZ2 zfzItJH1SE0X547OUAYeKt2hysA7rCtpbgdNZd7WPGgrU+mrj2Gtqm8dhUHXyMaV /NomRjz/Sv54WepE4+l2i9rGkS6pJKXbtlTkw0+E/BfVZ1pfwXGKoD1y/sg5qHG1 2R4w0vmgtgKEZ5aGw2WpwKLkEhQrHW7e -----END CERTIFICATE-----Generated at Sat Dec 6 15:11:09 2025 by rpki-client