This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft File: IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft (raw, json) Hash identifier: sUSY+EqrjoO+DcEjRlklcxJAnbe5iuCchdqGcaPSpns= Subject key identifier: 7C:F4:32:DC:7D:EB:DA:F2:8C:A6:96:EC:58:7C:3A:08:9B:35:78:01 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 0467 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft Manifest number: 045B Signing time: Thu 04 Dec 2025 22:41:10 +0000 Manifest this update: Thu 04 Dec 2025 22:41:09 +0000 Manifest next update: Thu 11 Dec 2025 22:41:09 +0000 Files and hashes: 1: IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl (hash: Wjct0WDycSNYiZxrfD2cq+Elp4JLbxgJM1HGi38ZBHg=) 2: E986DDEC979911ECB3B7CE39C4F9AE02.roa (hash: ciNIImuAbj1AO0K4GihG7jlhzLEKvAURaWl26eH889E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1127 (0x467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Dec 4 22:41:09 2025 GMT Not After : Dec 11 22:41:09 2025 GMT Subject: CN=69320e06-d0cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:b6:7c:87:e2:47:5d:5f:1a:d0:57:b5:be: 41:b6:e5:d5:1a:71:40:4b:91:c8:35:da:fd:8e:25: 43:79:fa:eb:a8:1a:0b:45:48:c3:89:f6:aa:a7:9b: 02:f3:46:4f:04:5e:3a:b3:0d:89:7b:a1:41:2d:47: e6:21:0b:c8:2d:9d:03:d7:ea:8f:6f:02:59:ee:36: 74:04:86:06:dc:28:b8:32:1c:03:bc:f8:ed:08:90: a0:0f:d6:aa:3a:63:f7:ab:28:a8:81:f9:8b:35:f9: 5e:bc:11:e8:21:c0:2e:aa:d5:bb:c9:6b:d1:3b:a6: 28:2f:4f:a0:2b:ec:f6:40:af:59:0c:3a:e3:60:e5: fd:54:9d:5d:a4:30:17:a2:8b:0a:af:9c:10:f1:2d: b4:81:9b:10:fd:be:43:91:cd:30:0a:90:cd:f7:81: 26:ad:59:e1:c5:aa:ae:95:94:dc:1e:77:22:f2:cc: b2:91:85:b4:75:22:0c:6b:80:19:87:c7:ec:43:ce: 09:c4:13:db:6c:45:55:9f:41:15:1d:48:3a:1c:d9: 7d:d6:ce:a2:54:a1:13:1f:2a:a0:05:cf:e5:04:2b: bf:dd:45:6b:1c:54:22:ac:74:99:8c:81:fe:f7:2a: 26:4a:c6:0b:f3:ae:82:8a:84:37:81:a2:96:11:3d: 75:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:F4:32:DC:7D:EB:DA:F2:8C:A6:96:EC:58:7C:3A:08:9B:35:78:01 X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:74:f1:e5:2a:28:03:3f:16:6c:18:f1:46:5c:3b:f2:4b:b2: f0:45:15:c7:6c:b8:43:9a:2d:0a:98:2b:70:e5:13:8c:dc:8b: e4:c5:43:2b:13:6d:38:0c:28:fb:a1:1a:b8:b6:cf:32:f2:20: fa:a4:fa:f4:57:ab:42:d0:75:1c:98:86:50:a6:64:08:8c:87: ed:3b:7f:b5:b0:a7:18:4b:bd:c3:07:36:81:27:ac:f7:82:01: 0d:d9:35:00:82:7e:8d:c9:e1:00:28:5a:40:69:3c:d7:8e:ff: 6e:03:69:26:8f:17:35:ad:c6:05:63:57:75:d2:62:04:7c:5f: 51:e9:f7:ff:58:80:8b:4c:0c:9a:2d:37:92:42:9b:1e:32:d8: 97:b1:7d:b7:ad:5a:9b:92:cc:17:94:16:10:dc:e9:48:47:0b: 96:3c:91:79:50:15:c9:1c:2c:d6:69:c8:30:b7:d6:b4:89:5a: 24:9a:7d:8d:ca:e3:c5:b6:fd:5f:70:02:93:75:d6:4a:3c:73: 1f:fc:e2:1b:55:40:a4:2e:86:11:67:12:ac:0d:79:69:39:41: 3c:c8:3c:a9:0f:3f:99:05:66:f9:f8:96:58:74:25:0c:87:33: 24:c1:c0:3f:31:8c:d2:dc:3b:e8:be:41:4d:74:98:9f:3f:b7: 15:6c:b3:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjUxMjA0MjI0MTA5WhcNMjUxMjExMjI0MTA5WjAYMRYwFAYD VQQDEw02OTMyMGUwNi1kMGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4a2fIfiR11fGtBXtb5BtuXVGnFAS5HINdr9jiVDefrrqBoLRUjDifaqp5sC 80ZPBF46sw2Je6FBLUfmIQvILZ0D1+qPbwJZ7jZ0BIYG3Ci4MhwDvPjtCJCgD9aq OmP3qyiogfmLNflevBHoIcAuqtW7yWvRO6YoL0+gK+z2QK9ZDDrjYOX9VJ1dpDAX oosKr5wQ8S20gZsQ/b5Dkc0wCpDN94EmrVnhxaqulZTcHnci8syykYW0dSIMa4AZ h8fsQ84JxBPbbEVVn0EVHUg6HNl91s6iVKETHyqgBc/lBCu/3UVrHFQirHSZjIH+ 9yomSsYL866CioQ3gaKWET11SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHz0Mtx9 69ryjKaW7Fh8OgibNXgBMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkRFNC80Q0NDQzMzMjc5MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFN RDdDSXRaN201bHJteG1IdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmdPHlKigDPxZsGPFGXDvyS7LwRRXHbLhDmi0KmCtw5ROM3IvkxUMr E204DCj7oRq4ts8y8iD6pPr0V6tC0HUcmIZQpmQIjIftO3+1sKcYS73DBzaBJ6z3 ggEN2TUAgn6NyeEAKFpAaTzXjv9uA2kmjxc1rcYFY1d10mIEfF9R6ff/WICLTAya LTeSQpseMtiXsX23rVqbkswXlBYQ3OlIRwuWPJF5UBXJHCzWacgwt9a0iVokmn2N yuPFtv1fcAKTddZKPHMf/OIbVUCkLoYRZxKsDXlpOUE8yDypDz+ZBWb5+JZYdCUM hzMkwcA/MYzS3DvovkFNdJifP7cVbLPZ -----END CERTIFICATE-----Generated at Sun Dec 7 00:00:33 2025 by rpki-client