This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft File: ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft (raw, json) Hash identifier: 1rbDMgC7THlTnKzycbuLPxGohu4StC5+xMq3r9bnG7k= Subject key identifier: 99:71:5F:6C:21:E0:E3:3B:53:18:BC:BE:E7:60:CB:9F:41:DF:66:EE Authority key identifier: 8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 Certificate issuer: /CN=A9167671/serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Certificate serial: 11 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft Manifest number: 10 Signing time: Fri 05 Dec 2025 05:39:35 +0000 Manifest this update: Fri 05 Dec 2025 05:39:34 +0000 Manifest next update: Fri 12 Dec 2025 05:39:34 +0000 Files and hashes: 1: ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl (hash: SEXUPKubOpzb92TwqMu9OBX5nyvfz4vDaNb1qyio8R8=) 2: 42AD4128C0FD11F0883D987DC4F9AE02.roa (hash: B3E19cErq0rxkUxEs2ukfuNM5Pd8kiV4OJ4LzCkwHF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167671, serialNumber=8A57717E62E115BAD0AF167942235B01B9B1F354 Validity Not Before: Dec 5 05:39:34 2025 GMT Not After : Dec 12 05:39:34 2025 GMT Subject: CN=69327016-7ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0b:d5:6f:a8:66:1e:06:36:91:b2:a9:73:77: 29:f1:a3:85:80:77:36:60:bd:8b:da:8a:c8:b5:a0: 69:11:26:6c:48:81:e8:ff:09:81:5f:f7:39:35:93: 58:5b:87:85:c9:97:62:dd:3b:1a:15:37:07:af:2c: 68:73:39:3c:20:35:7a:51:99:01:34:a5:69:39:e6: 7d:0b:86:2a:61:7e:5f:a0:5d:57:71:ae:98:d6:8a: f9:d5:e3:dc:6b:5c:84:f8:9c:11:0b:65:71:4e:d1: 2f:36:92:f1:7c:78:75:a5:0e:6c:11:70:04:50:92: 93:3d:2a:3a:b7:65:c5:08:51:e3:f4:e0:43:49:e6: 86:d0:de:47:30:ec:73:4d:d1:f2:01:4b:68:fd:81: 86:14:85:b6:79:8f:f3:de:cc:1c:84:cf:af:ff:a2: 5d:ee:ea:95:1e:99:85:73:2b:54:e6:e1:de:76:8b: 39:87:1a:4f:22:8a:51:b4:6e:a5:2f:b7:88:dd:f6: ea:54:78:a9:f9:a2:eb:e0:47:47:9f:af:30:c6:4c: 61:30:ff:b9:62:c9:75:32:22:62:95:55:83:af:b4: ec:0c:df:ca:3a:59:ea:91:42:35:51:6c:62:78:29: 36:93:24:f9:dc:6c:61:54:99:71:72:81:be:9e:56: c6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:71:5F:6C:21:E0:E3:3B:53:18:BC:BE:E7:60:CB:9F:41:DF:66:EE X509v3 Authority Key Identifier: keyid:8A:57:71:7E:62:E1:15:BA:D0:AF:16:79:42:23:5B:01:B9:B1:F3:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ildxfmLhFbrQrxZ5QiNbAbmx81Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167671/460B0804BE1F11F095435D6EC4F9AE02/ildxfmLhFbrQrxZ5QiNbAbmx81Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:66:8e:f9:81:57:8d:c8:d7:60:a7:6e:6b:2e:b9:8e:bb:ab: 2b:75:e9:9c:f1:2f:6a:11:8b:3a:84:aa:48:2d:b3:c6:89:b4: 82:c2:68:e5:91:09:4f:fe:ca:af:2e:c9:e4:75:89:37:9d:ea: 7b:d5:68:97:c7:c7:e9:0f:89:db:f1:1c:ff:51:9a:35:1e:c1: 4b:89:b5:dc:82:d0:f1:71:99:b4:ed:84:29:e7:62:c2:14:b5: d0:35:64:3c:3d:83:84:6a:09:b7:68:6a:6b:41:ed:ea:b6:10: e9:49:83:97:30:50:ef:7d:62:21:83:c7:2c:04:87:8c:08:28: 98:30:35:91:79:90:98:c9:cc:e2:68:56:ac:23:fa:cc:7d:6d: 26:b3:94:c5:88:4e:c1:cb:9f:be:0a:3c:7b:ec:99:dc:ea:d2: 09:96:62:ba:91:db:00:de:f6:1f:5b:6d:14:1b:55:83:c4:50: 6e:ef:fc:b8:ea:87:98:5b:12:30:8e:17:a7:70:49:fb:7d:e1: 18:73:37:c1:9e:75:f0:4d:23:e8:2a:84:76:3c:4d:66:4b:d4: e9:d6:54:de:49:2c:c8:8e:39:b8:99:45:de:35:5a:45:be:bf: 4c:d2:5f:2a:d4:82:11:f4:23:d9:96:6f:31:9b:f0:1b:78:41: 4b:9d:f8:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzY3MTExMC8GA1UEBRMoOEE1NzcxN0U2MkUxMTVCQUQwQUYxNjc5NDIyMzVCMDFC OUIxRjM1NDAeFw0yNTEyMDUwNTM5MzRaFw0yNTEyMTIwNTM5MzRaMBgxFjAUBgNV BAMTDTY5MzI3MDE2LTdlZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFC9VvqGYeBjaRsqlzdynxo4WAdzZgvYvaisi1oGkRJmxIgej/CYFf9zk1k1hb h4XJl2LdOxoVNwevLGhzOTwgNXpRmQE0pWk55n0Lhiphfl+gXVdxrpjWivnV49xr XIT4nBELZXFO0S82kvF8eHWlDmwRcARQkpM9Kjq3ZcUIUeP04ENJ5obQ3kcw7HNN 0fIBS2j9gYYUhbZ5j/PezByEz6//ol3u6pUemYVzK1Tm4d52izmHGk8iilG0bqUv t4jd9upUeKn5ouvgR0efrzDGTGEw/7liyXUyImKVVYOvtOwM38o6WeqRQjVRbGJ4 KTaTJPncbGFUmXFygb6eVsbjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmXFfbCHg 4ztTGLy+52DLn0HfZu4wHwYDVR0jBBgwFoAUildxfmLhFbrQrxZ5QiNbAbmx81Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3NjcxLzQ2MEIwODA0QkUx RjExRjA5NTQzNUQ2RUM0RjlBRTAyL2lsZHhmbUxoRmJyUXJ4WjVRaU5iQWJteDgx US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaWxkeGZtTGhGYnJRcnhaNVFpTmJBYm14ODFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 NjcxLzQ2MEIwODA0QkUxRjExRjA5NTQzNUQ2RUM0RjlBRTAyL2lsZHhmbUxoRmJy UXJ4WjVRaU5iQWJteDgxUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJxmjvmBV43I12CnbmsuuY67qyt16ZzxL2oRizqEqkgts8aJtILCaOWR CU/+yq8uyeR1iTed6nvVaJfHx+kPidvxHP9RmjUewUuJtdyC0PFxmbTthCnnYsIU tdA1ZDw9g4RqCbdoamtB7eq2EOlJg5cwUO99YiGDxywEh4wIKJgwNZF5kJjJzOJo Vqwj+sx9bSazlMWITsHLn74KPHvsmdzq0gmWYrqR2wDe9h9bbRQbVYPEUG7v/Ljq h5hbEjCOF6dwSft94RhzN8GedfBNI+gqhHY8TWZL1OnWVN5JLMiOObiZRd41WkW+ v0zSXyrUghH0I9mWbzGb8Bt4QUud+G4= -----END CERTIFICATE-----Generated at Sat Dec 6 19:45:03 2025 by rpki-client