This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft File: ihHrdksVeFOdbtOykDv2H0wIAHw.mft (raw, json) Hash identifier: 4DRLjKspGkm94DSzmoLPT69VewOexZAOoGXfAOyPK+c= Subject key identifier: 60:1B:36:75:FA:06:E8:5B:55:56:67:02:08:48:F7:85:25:B5:7C:6F Authority key identifier: 8A:11:EB:76:4B:15:78:53:9D:6E:D3:B2:90:3B:F6:1F:4C:08:00:7C Certificate issuer: /CN=A914CC0F/serialNumber=8A11EB764B1578539D6ED3B2903BF61F4C08007C Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft Manifest number: 70 Signing time: Sat 06 Dec 2025 19:11:20 +0000 Manifest this update: Sat 06 Dec 2025 19:11:19 +0000 Manifest next update: Sat 13 Dec 2025 19:11:19 +0000 Files and hashes: 1: ihHrdksVeFOdbtOykDv2H0wIAHw.crl (hash: iiiXTMUPPnAXoMdrXB0dhZofbrrwmfTaJvTyISlBXas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.crl rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CC0F, serialNumber=8A11EB764B1578539D6ED3B2903BF61F4C08007C Validity Not Before: Dec 6 19:11:19 2025 GMT Not After : Dec 13 19:11:19 2025 GMT Subject: CN=69347fd8-b5be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9d:c7:07:51:94:26:3c:fa:e3:4e:41:e2:1b: ba:a9:64:5c:91:54:dc:9c:50:98:05:79:b7:c6:65: 7b:0a:45:20:d3:79:c8:fc:cc:21:3e:15:6d:d6:82: b4:62:9e:56:bd:ae:37:b5:e6:95:70:7c:c4:d6:ae: b4:28:9e:d7:b2:bd:49:ad:b0:a0:8b:73:d3:62:2a: f4:47:61:ee:c5:82:4a:3a:0f:71:bd:4f:f6:db:e3: e2:e2:7a:c3:09:80:3f:e6:99:b0:db:90:ce:cf:e8: cd:17:c7:03:67:89:7c:63:a9:7c:6e:4b:eb:a5:26: 34:f7:40:6f:9d:7b:42:a9:93:61:46:9d:87:f9:76: d5:4b:d0:fd:76:30:1b:fb:e6:07:17:e1:c8:05:23: 2d:be:b4:4b:e5:f7:a5:b8:5b:45:05:9d:ca:3f:b3: 75:e7:61:63:75:7e:44:be:41:cd:d7:75:ae:bb:0c: 78:da:86:f3:f6:d0:3a:04:6e:a1:eb:b9:e0:9a:ce: 02:30:69:5f:9f:ed:71:f3:07:4d:cd:9a:b2:b2:7b: af:6d:36:f4:97:cf:79:ed:82:3a:6c:83:93:06:2f: 2c:c4:a2:97:0e:f7:cd:a4:e8:65:1e:c8:ad:97:6e: a2:97:c2:7f:0a:43:f4:59:bb:9e:5a:1c:5c:a2:77: 29:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:1B:36:75:FA:06:E8:5B:55:56:67:02:08:48:F7:85:25:B5:7C:6F X509v3 Authority Key Identifier: keyid:8A:11:EB:76:4B:15:78:53:9D:6E:D3:B2:90:3B:F6:1F:4C:08:00:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ihHrdksVeFOdbtOykDv2H0wIAHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CC0F/49E996C42C6211F0A9B1C65AC4F9AE02/ihHrdksVeFOdbtOykDv2H0wIAHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:66:b4:cf:b8:fd:3b:0a:4c:77:db:94:b1:b0:cb:2e:96:5a: 89:bc:eb:d7:c9:8f:c1:70:4e:26:30:f1:af:c8:81:b3:ff:eb: 50:56:91:23:73:fc:b6:f8:22:3e:26:8a:b4:88:f0:d8:ab:9f: 8c:b4:72:53:fd:6e:14:c7:ed:28:d8:d7:dd:3a:66:4e:6a:00: 1d:16:3b:a8:79:56:57:d9:0e:eb:f1:d9:0c:58:72:83:8b:a6: f0:7d:f4:39:24:78:47:a3:42:4c:d9:bc:80:ff:c1:d4:f5:d9: c6:cb:86:f4:84:a4:4a:c2:5d:54:61:5e:d7:7a:79:ee:1c:8b: fc:83:5d:e8:15:24:d4:31:5d:cc:31:a5:12:35:43:b4:38:44: 0f:89:28:2c:ac:6f:88:33:92:bb:79:88:d4:4a:07:95:25:e3: a9:38:64:27:f8:a7:41:15:dc:24:e2:21:3e:d7:0b:01:90:46: 12:1c:a1:90:af:57:a8:82:11:e3:d3:4d:9f:a7:40:47:73:e6: 9a:bd:2d:0f:7b:dc:67:d8:27:d8:9a:33:5f:98:a6:28:07:e6: 95:05:1b:ba:47:d4:3d:ae:8f:b0:5e:7b:67:3a:c5:fa:49:d6: 99:6d:82:69:4e:ef:9e:61:99:d5:4c:6f:bd:9c:f3:2e:c2:41: 3f:58:e9:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Q0MwRjExMC8GA1UEBRMoOEExMUVCNzY0QjE1Nzg1MzlENkVEM0IyOTAzQkY2MUY0 QzA4MDA3QzAeFw0yNTEyMDYxOTExMTlaFw0yNTEyMTMxOTExMTlaMBgxFjAUBgNV BAMTDTY5MzQ3ZmQ4LWI1YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwnccHUZQmPPrjTkHiG7qpZFyRVNycUJgFebfGZXsKRSDTecj8zCE+FW3WgrRi nla9rje15pVwfMTWrrQonteyvUmtsKCLc9NiKvRHYe7Fgko6D3G9T/bb4+LiesMJ gD/mmbDbkM7P6M0XxwNniXxjqXxuS+ulJjT3QG+de0Kpk2FGnYf5dtVL0P12MBv7 5gcX4cgFIy2+tEvl96W4W0UFnco/s3XnYWN1fkS+Qc3Xda67DHjahvP20DoEbqHr ueCazgIwaV+f7XHzB03NmrKye69tNvSXz3ntgjpsg5MGLyzEopcO982k6GUeyK2X bqKXwn8KQ/RZu55aHFyidynxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYBs2dfoG 6FtVVmcCCEj3hSW1fG8wHwYDVR0jBBgwFoAUihHrdksVeFOdbtOykDv2H0wIAHww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDQzBGLzQ5RTk5NkM0MkM2 MjExRjBBOUIxQzY1QUM0RjlBRTAyL2loSHJka3NWZUZPZGJ0T3lrRHYySDB3SUFI dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaWhIcmRrc1ZlRk9kYnRPeWtEdjJIMHdJQUh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRD QzBGLzQ5RTk5NkM0MkM2MjExRjBBOUIxQzY1QUM0RjlBRTAyL2loSHJka3NWZUZP ZGJ0T3lrRHYySDB3SUFIdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM9mtM+4/TsKTHfblLGwyy6WWom869fJj8FwTiYw8a/IgbP/61BWkSNz /Lb4Ij4mirSI8Nirn4y0clP9bhTH7SjY1906Zk5qAB0WO6h5VlfZDuvx2QxYcoOL pvB99DkkeEejQkzZvID/wdT12cbLhvSEpErCXVRhXtd6ee4ci/yDXegVJNQxXcwx pRI1Q7Q4RA+JKCysb4gzkrt5iNRKB5Ul46k4ZCf4p0EV3CTiIT7XCwGQRhIcoZCv V6iCEePTTZ+nQEdz5pq9LQ973GfYJ9iaM1+YpigH5pUFG7pH1D2uj7Bee2c6xfpJ 1pltgmlO755hmdVMb72c8y7CQT9Y6dw= -----END CERTIFICATE-----Generated at Sat Dec 6 21:04:41 2025 by rpki-client