This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft File: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft (raw, json) Hash identifier: xUWkMJWlP3B+V0ckybWKEcOswHIXSAv8fdcoOmsufNM= Subject key identifier: 59:1F:05:0B:BB:C1:47:70:A9:CD:18:A1:A3:12:41:0C:8E:D6:E2:32 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 075B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft Manifest number: 0C5F Signing time: Thu 04 Dec 2025 17:58:04 +0000 Manifest this update: Thu 04 Dec 2025 17:58:03 +0000 Manifest next update: Thu 11 Dec 2025 17:58:03 +0000 Files and hashes: 1: IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl (hash: opVd+pQrpvjNkchdF5PVdYE+yWlVok8nHU2+qPWa1hw=) 2: 01283BC2532011EBAE6D1F37C4F9AE02.roa (hash: JIJ/oCcEDSrDoKJ+TtwRZ0ixy/ch1ebZjc7Ukat5+wI=) 3: D6F76118231C11EF84144357C4F9AE02.roa (hash: MiuSv15VLIaeb36ClOcMlCFhKBkosPaBSp5hyovVY7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1883 (0x75b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475, serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Dec 4 17:58:03 2025 GMT Not After : Dec 11 17:58:03 2025 GMT Subject: CN=6931cbac-0a6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0c:cd:e8:1b:c0:93:d7:93:46:2c:48:e7:f3: 77:5f:11:e0:10:56:60:71:a1:a0:ff:66:c9:de:c5: 12:af:14:d7:db:3d:60:3a:cf:ec:15:72:b9:0c:84: 17:ae:90:35:18:db:db:e7:bc:e3:17:2d:bc:c6:16: c4:4b:c5:63:73:fb:fe:7f:1f:fb:b0:88:0d:36:b7: 31:fe:ea:b5:7c:62:46:72:0b:1a:17:16:ce:ab:2b: 95:47:56:85:98:55:62:53:e0:fd:88:76:4f:73:5b: 23:18:0b:a4:d6:c9:39:ad:5c:06:8e:00:2b:ca:fc: 3b:e7:e3:3a:36:06:12:bd:ae:3f:b4:7f:ca:89:c4: 38:ab:97:55:77:ea:9b:e5:57:7e:b0:ed:25:14:ef: cb:31:fe:53:56:fc:c3:cb:bd:51:aa:7e:86:f3:d5: 10:05:af:c7:52:b7:ea:c9:b2:96:5b:78:aa:28:e1: 4a:55:18:d9:01:95:e6:a7:8f:22:1d:d5:bc:4c:c6: 91:b3:6a:6b:2c:5a:27:ba:f2:e9:d6:c0:f9:2b:bb: a5:8b:2f:38:ef:c5:68:d6:57:a0:15:44:82:ef:88: 58:0e:9a:81:6c:5c:67:e5:24:8f:b0:1b:fe:67:69: 2e:be:1f:35:6b:dd:ad:16:40:8b:24:7f:e5:68:2a: 9c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:1F:05:0B:BB:C1:47:70:A9:CD:18:A1:A3:12:41:0C:8E:D6:E2:32 X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:77:7a:22:14:5c:7d:ca:2c:c7:29:60:55:ac:47:1a:9a:38: 51:eb:95:ee:63:15:be:7f:ca:88:0d:96:51:62:18:94:67:9d: 48:05:c7:68:36:cb:28:75:9d:07:92:1e:c8:ee:a4:45:d2:d9: d1:e3:93:7c:f1:9b:db:85:ac:07:0e:db:64:ca:4d:57:c9:2a: e1:12:b2:6f:95:05:93:a0:02:b7:c9:3e:4f:52:69:aa:01:2e: fb:0c:02:36:ca:2b:92:1f:05:28:b1:4b:07:61:c1:95:89:7d: 07:5a:97:ce:99:67:f6:e1:53:94:7e:ef:cd:01:a6:d5:a0:4d: e7:80:f2:42:50:8b:ed:29:64:82:9a:83:80:3b:d0:eb:ba:49: a9:be:8d:1f:7f:3a:63:9a:1b:64:6d:02:97:46:2b:e6:be:db: 40:f1:bc:d0:04:24:e2:d9:a3:44:58:e9:7e:2a:b2:64:0c:f4: 1c:61:d8:6e:06:07:f6:6c:11:bb:b8:a6:e5:92:26:32:0f:c5: e1:ee:0e:bb:8d:b8:9e:57:da:e0:e2:31:86:b3:34:9c:c5:31: 79:36:98:5e:f8:05:58:78:42:cd:d8:5b:c2:89:cf:26:fa:61: fe:f2:48:ab:70:64:b9:a5:a9:64:8d:c3:3c:8c:25:c3:32:2f: 27:46:51:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjUxMjA0MTc1ODAzWhcNMjUxMjExMTc1ODAzWjAYMRYwFAYD VQQDEw02OTMxY2JhYy0wYTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AzN6BvAk9eTRixI5/N3XxHgEFZgcaGg/2bJ3sUSrxTX2z1gOs/sFXK5DIQX rpA1GNvb57zjFy28xhbES8Vjc/v+fx/7sIgNNrcx/uq1fGJGcgsaFxbOqyuVR1aF mFViU+D9iHZPc1sjGAuk1sk5rVwGjgAryvw75+M6NgYSva4/tH/KicQ4q5dVd+qb 5Vd+sO0lFO/LMf5TVvzDy71Rqn6G89UQBa/HUrfqybKWW3iqKOFKVRjZAZXmp48i HdW8TMaRs2prLFonuvLp1sD5K7uliy8478Vo1legFUSC74hYDpqBbFxn5SSPsBv+ Z2kuvh81a92tFkCLJH/laCqcZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkfBQu7 wUdwqc0YoaMSQQyO1uIyMB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzQ3NS9FMDIyQTA1ODBFOTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9v NUpIakp2dlIzRHM4a0ljcmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrd3oiFFx9yizHKWBVrEcamjhR65XuYxW+f8qIDZZRYhiUZ51IBcdo NssodZ0Hkh7I7qRF0tnR45N88ZvbhawHDttkyk1XySrhErJvlQWToAK3yT5PUmmq AS77DAI2yiuSHwUosUsHYcGViX0HWpfOmWf24VOUfu/NAabVoE3ngPJCUIvtKWSC moOAO9Drukmpvo0ffzpjmhtkbQKXRivmvttA8bzQBCTi2aNEWOl+KrJkDPQcYdhu Bgf2bBG7uKblkiYyD8Xh7g67jbieV9rg4jGGszScxTF5Nphe+AVYeELN2FvCic8m +mH+8kircGS5palkjcM8jCXDMi8nRlFH -----END CERTIFICATE-----Generated at Sat Dec 6 17:27:40 2025 by rpki-client