This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: maisBIRh4wOktgmRrVD7vwRXfGfzYGP6bMir4y/HzCg= Subject key identifier: FF:01:77:FD:A0:34:A5:4B:09:C1:43:0E:54:B9:6F:C8:C2:6B:44:80 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 350E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 34FA Signing time: Sat 06 Dec 2025 14:32:36 +0000 Manifest this update: Sat 06 Dec 2025 14:32:35 +0000 Manifest next update: Sat 13 Dec 2025 14:32:35 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: 7PVwz2X8iaD4IW48avzOvE8gbFZ74RSFgESn3UpSkys=) 2: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 5P8iz2/f75JawHS84+uOtc39+Wj5fIfZ/CgqWjpJHIs=) 3: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 4: 075152B253CB11F09DA22358C4F9AE02.roa (hash: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM=) 5: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: H2psEBDgMdRvNZgUPZApVJCLqrPQ8EnSpGElYQR9ZLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13582 (0x350e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Dec 6 14:32:35 2025 GMT Not After : Dec 13 14:32:35 2025 GMT Subject: CN=69343e84-1d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7e:81:35:00:b5:f3:c3:8b:34:1f:94:b8:9f: 68:6b:92:77:8f:a8:c4:a3:9f:00:43:e1:5a:4b:ba: 84:d3:e7:2c:23:3b:24:e7:0e:48:98:ed:c5:78:7a: 7a:70:e4:be:f9:ee:aa:bb:d3:42:b7:4e:dd:61:6c: e7:2e:d0:0c:0e:fa:13:98:dc:23:eb:c2:45:8b:e0: 80:e9:48:4f:0e:8d:9d:56:de:50:6b:01:b4:c2:63: 7b:78:2e:de:d1:27:27:e0:31:b2:7d:2c:0c:30:88: a9:88:ba:f8:ce:0d:54:42:42:80:39:de:78:8c:2b: e8:e1:8a:91:2e:67:50:d4:1c:f6:87:4e:2d:f8:09: a8:3d:52:d1:0e:d7:1f:e3:fb:e3:60:01:a4:e2:95: ae:ac:03:43:43:34:64:6a:41:87:6b:3b:8b:9b:6a: ce:99:18:b9:1a:89:82:3b:82:ea:ae:55:45:0a:86: dd:f6:d6:d4:41:d1:ad:39:7b:95:26:0e:1c:b1:89: 3a:d7:0b:d7:ec:a6:a1:ce:47:35:d8:f0:61:36:85: 48:46:fc:cf:a8:bd:39:7b:52:4f:82:4f:77:8b:ec: d8:1a:00:f4:9a:19:cd:5c:53:f9:9b:f1:4c:9b:c4: d2:35:e1:e6:ee:1e:b7:09:38:5d:16:85:ea:df:32: 63:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:01:77:FD:A0:34:A5:4B:09:C1:43:0E:54:B9:6F:C8:C2:6B:44:80 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:a3:55:62:00:0c:23:e0:7a:f0:07:4f:bc:fe:ff:52:93:82: c7:e7:96:e9:c7:7f:ef:c9:4f:64:fc:fd:89:de:d3:df:24:c5: 7b:b0:a2:32:5e:60:62:f3:1e:f9:a3:e8:af:b8:f0:bf:9f:dc: 52:76:18:b8:fd:37:f3:44:78:7f:9b:de:83:67:51:36:02:ca: 5b:e3:d9:dc:55:b4:1a:22:51:4f:f1:10:f5:03:f7:b4:8e:5e: 03:ee:56:84:ef:a0:e3:13:72:17:2b:01:07:fc:c3:f0:37:e2: 11:57:78:7a:7c:a3:cd:5d:fa:1a:4c:84:8a:c7:13:c3:62:69: ee:70:eb:ba:fa:01:30:d2:03:2b:ab:5d:91:85:ab:76:f7:54: 61:32:53:49:37:c9:47:e6:e6:ed:d0:7d:4a:5e:d0:ae:c6:6a: a3:d4:3e:0a:a0:ed:8b:e8:55:11:63:e7:2a:52:e4:81:56:8a: e7:f7:b7:31:fc:ea:bd:60:4c:33:14:9f:d5:f7:89:1c:ab:56: 54:1e:26:cb:32:37:95:d7:ed:d2:82:21:24:09:80:8b:bb:c9: 63:be:2b:95:47:d3:c6:5f:2e:a1:69:29:bb:70:cc:22:9d:3a: 9d:67:0b:99:39:46:e4:fe:04:59:ba:5f:60:64:db:2a:58:f8: d4:92:76:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUxMjA2MTQzMjM1WhcNMjUxMjEzMTQzMjM1WjAYMRYwFAYD VQQDEw02OTM0M2U4NC0xZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvn6BNQC188OLNB+UuJ9oa5J3j6jEo58AQ+FaS7qE0+csIzsk5w5ImO3FeHp6 cOS++e6qu9NCt07dYWznLtAMDvoTmNwj68JFi+CA6UhPDo2dVt5QawG0wmN7eC7e 0Scn4DGyfSwMMIipiLr4zg1UQkKAOd54jCvo4YqRLmdQ1Bz2h04t+AmoPVLRDtcf 4/vjYAGk4pWurANDQzRkakGHazuLm2rOmRi5GomCO4LqrlVFCobd9tbUQdGtOXuV Jg4csYk61wvX7Kahzkc12PBhNoVIRvzPqL05e1JPgk93i+zYGgD0mhnNXFP5m/FM m8TSNeHm7h63CThdFoXq3zJjGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8Bd/2g NKVLCcFDDlS5b8jCa0SAMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlo1ViAAwj4HrwB0+8/v9Sk4LH55bpx3/vyU9k/P2J3tPfJMV7sKIy XmBi8x75o+ivuPC/n9xSdhi4/TfzRHh/m96DZ1E2Aspb49ncVbQaIlFP8RD1A/e0 jl4D7laE76DjE3IXKwEH/MPwN+IRV3h6fKPNXfoaTISKxxPDYmnucOu6+gEw0gMr q12Rhat291RhMlNJN8lH5ubt0H1KXtCuxmqj1D4KoO2L6FURY+cqUuSBVorn97cx /Oq9YEwzFJ/V94kcq1ZUHibLMjeV1+3SgiEkCYCLu8ljviuVR9PGXy6haSm7cMwi nTqdZwuZOUbk/gRZul9gZNsqWPjUknbE -----END CERTIFICATE-----Generated at Sat Dec 6 22:27:28 2025 by rpki-client