This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft File: IpO9TF5PmillNYywGN8-Tu5N8c8.mft (raw, json) Hash identifier: RwwxLDL51vRHLrt3r04caRGaqvQp+tDfT6QkvG/HxHo= Subject key identifier: 0C:BF:79:B2:53:23:2A:13:B3:B5:B0:DB:35:22:1E:A8:F1:28:71:DE Authority key identifier: 22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF Certificate issuer: /CN=A915177C/serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Certificate serial: 304C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft Manifest number: 3027 Signing time: Sat 06 Dec 2025 15:16:24 +0000 Manifest this update: Sat 06 Dec 2025 15:16:23 +0000 Manifest next update: Sat 13 Dec 2025 15:16:23 +0000 Files and hashes: 1: IpO9TF5PmillNYywGN8-Tu5N8c8.crl (hash: VMpWvbE5WzAGqOBmexBvp8oNERuogVAlSjefcw+Y7Ds=) 2: 149AB4BE7CE911EEB9A02D83C4F9AE02.roa (hash: 2Zr7Hm+ka4YogIeAL8utcPORDLzzcWzkuQ8uJ6QbXYo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12364 (0x304c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915177C, serialNumber=2293BD4C5E4F9A2965358CB018DF3E4EEE4DF1CF Validity Not Before: Dec 6 15:16:23 2025 GMT Not After : Dec 13 15:16:23 2025 GMT Subject: CN=693448c8-dd27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:21:82:ea:0d:df:85:63:fb:7b:c1:ac:51:5e: be:95:5b:5e:ba:22:4e:76:ab:5d:27:be:7a:8e:6a: d7:0b:4a:d6:f4:0d:bc:30:d7:fa:fb:5f:08:43:0d: 0e:d2:bb:0e:e2:0c:7e:de:d0:68:3d:4c:64:63:69: 68:32:2b:a3:7c:2a:90:e8:4d:54:54:cf:fe:e7:fb: 27:ee:1b:84:36:23:a9:ba:11:07:74:9b:82:1e:b2: 31:b6:f4:7e:c8:b7:c1:de:c7:1c:9b:60:3f:c5:d4: fb:8a:c2:75:bf:e3:76:3b:3e:97:78:bb:6b:36:6e: 87:ee:64:f5:92:cc:83:50:ce:33:d3:5f:45:9c:21: c6:ac:ab:47:49:69:89:4e:5d:8e:ee:80:b8:f0:60: 40:2b:d8:9a:21:11:fb:ac:a0:79:cc:e1:a4:8a:0c: 1a:7c:b0:97:6d:8e:80:b6:e5:f7:69:60:05:74:22: 72:a8:e4:43:ea:8d:da:f9:75:4d:79:90:8a:8c:a3: d6:4a:ab:c5:0b:5e:6a:6e:0f:8d:ba:54:3b:92:b1: 5e:98:d1:97:aa:c8:f4:b0:93:9d:1b:53:94:02:b9: 8c:e2:67:87:3e:e4:ba:78:89:ba:b5:d1:e1:6f:6b: 30:ce:1f:12:6a:4a:67:3c:c5:63:0b:41:d2:28:b9: e5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BF:79:B2:53:23:2A:13:B3:B5:B0:DB:35:22:1E:A8:F1:28:71:DE X509v3 Authority Key Identifier: keyid:22:93:BD:4C:5E:4F:9A:29:65:35:8C:B0:18:DF:3E:4E:EE:4D:F1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IpO9TF5PmillNYywGN8-Tu5N8c8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915177C/924CDCC0143011E3A0B19F2A5911EA32/IpO9TF5PmillNYywGN8-Tu5N8c8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:59:15:05:a9:a4:c9:6c:22:34:7f:98:5d:26:cc:cb:5a:d5: cd:6b:63:55:32:b0:75:8b:20:a8:5b:81:18:97:15:0f:b2:8c: 3b:84:68:f1:c5:df:c8:b3:0c:ce:f9:4d:a7:13:85:7f:67:2e: 29:be:c5:b9:90:a4:bc:8a:d2:2c:f7:93:a2:71:6b:f8:e6:0c: 52:ff:69:42:49:dd:e2:b2:61:2a:10:dc:f2:5c:51:53:57:8c: 9f:6b:ac:01:41:7b:b7:2e:38:2f:5d:95:e2:47:d3:01:4c:b6: 39:87:c2:6e:45:25:fa:4f:89:22:21:da:16:9b:74:03:a0:34: 87:d6:3a:ff:45:7b:f2:2a:93:b5:83:94:97:00:06:d7:44:d5: b2:f6:b2:05:9a:3d:76:ca:af:b1:81:04:f4:ab:41:94:7a:c0: af:ac:c9:cb:7b:4c:bb:bf:2d:ee:d7:cb:46:8c:0c:e3:2c:84: c6:86:3e:15:6c:34:c5:c0:6a:94:66:60:38:44:d6:61:05:45: 6b:fb:42:6c:fe:8b:c2:f6:39:7c:0b:43:70:c3:37:ca:1a:e7: c7:78:e6:28:c1:6c:7b:53:bc:35:b4:bd:6d:45:26:24:6f:fe: 29:5b:7c:b8:c1:57:35:f0:49:8c:90:0b:13:bc:5e:31:00:12: 31:0f:74:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3N0MxMTAvBgNVBAUTKDIyOTNCRDRDNUU0RjlBMjk2NTM1OENCMDE4REYzRTRF RUU0REYxQ0YwHhcNMjUxMjA2MTUxNjIzWhcNMjUxMjEzMTUxNjIzWjAYMRYwFAYD VQQDEw02OTM0NDhjOC1kZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yGC6g3fhWP7e8GsUV6+lVteuiJOdqtdJ756jmrXC0rW9A28MNf6+18IQw0O 0rsO4gx+3tBoPUxkY2loMiujfCqQ6E1UVM/+5/sn7huENiOpuhEHdJuCHrIxtvR+ yLfB3sccm2A/xdT7isJ1v+N2Oz6XeLtrNm6H7mT1ksyDUM4z019FnCHGrKtHSWmJ Tl2O7oC48GBAK9iaIRH7rKB5zOGkigwafLCXbY6AtuX3aWAFdCJyqORD6o3a+XVN eZCKjKPWSqvFC15qbg+NulQ7krFemNGXqsj0sJOdG1OUArmM4meHPuS6eIm6tdHh b2swzh8SakpnPMVjC0HSKLnlQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAy/ebJT IyoTs7Ww2zUiHqjxKHHeMB8GA1UdIwQYMBaAFCKTvUxeT5opZTWMsBjfPk7uTfHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTc3Qy85MjRDRENDMDE0 MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1pbGxOWXl3R044LVR1NU44 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lwTzlURjVQbWlsbE5ZeXdHTjgtVHU1TjhjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTc3Qy85MjRDRENDMDE0MzAxMUUzQTBCMTlGMkE1OTExRUEzMi9JcE85VEY1UG1p bGxOWXl3R044LVR1NU44YzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuWRUFqaTJbCI0f5hdJszLWtXNa2NVMrB1iyCoW4EYlxUPsow7hGjx xd/IswzO+U2nE4V/Zy4pvsW5kKS8itIs95OicWv45gxS/2lCSd3ismEqENzyXFFT V4yfa6wBQXu3LjgvXZXiR9MBTLY5h8JuRSX6T4kiIdoWm3QDoDSH1jr/RXvyKpO1 g5SXAAbXRNWy9rIFmj12yq+xgQT0q0GUesCvrMnLe0y7vy3u18tGjAzjLITGhj4V bDTFwGqUZmA4RNZhBUVr+0Js/ovC9jl8C0NwwzfKGufHeOYowWx7U7w1tL1tRSYk b/4pW3y4wVc18EmMkAsTvF4xABIxD3TZ -----END CERTIFICATE-----Generated at Sun Dec 7 04:46:29 2025 by rpki-client