This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft File: IooLm4TrYOtGFVZbAhDVR1xRiKk.mft (raw, json) Hash identifier: zpJI3QXN+Ctwm99ppqDRqQdrx0TeYp91froIrXHGLFI= Subject key identifier: CF:C3:F6:51:14:1A:A6:CD:01:5F:9F:39:15:39:C8:33:F8:AA:CA:4E Authority key identifier: 22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 Certificate issuer: /CN=A916BE2F/serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Certificate serial: 0B97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft Manifest number: 0B8F Signing time: Sat 06 Dec 2025 18:18:44 +0000 Manifest this update: Sat 06 Dec 2025 18:18:43 +0000 Manifest next update: Sat 13 Dec 2025 18:18:43 +0000 Files and hashes: 1: IooLm4TrYOtGFVZbAhDVR1xRiKk.crl (hash: XcO4gfVkhkLUuMk2J4bIp/weiZOGwNpJ07ix9gyDzn8=) 2: CFF490F63B3211EAA19CAB2DC4F9AE02.roa (hash: Q4J9l++n+la5Zfxccf3dc2lEQlGumKMJ7Sd1OPrz7gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2967 (0xb97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BE2F, serialNumber=228A0B9B84EB60EB4615565B0210D5475C5188A9 Validity Not Before: Dec 6 18:18:43 2025 GMT Not After : Dec 13 18:18:43 2025 GMT Subject: CN=69347384-d301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ac:70:7f:92:32:5f:6f:3b:18:52:16:aa:26: 90:8c:f1:f5:80:9f:77:94:35:f0:1b:49:5a:4c:b9: 5d:26:32:9d:b9:75:14:c5:af:c4:07:b6:17:c2:7b: 87:61:2e:80:69:fb:8e:5f:36:24:c2:6a:22:b5:25: fb:d5:ca:f2:48:b2:eb:f4:fa:b8:91:30:9b:d6:77: 1c:25:2c:58:9d:67:4f:d0:88:80:14:7e:ba:05:a2: c1:8f:de:2d:8e:35:4c:e9:f2:b0:56:fe:f9:46:31: fb:ca:4d:11:06:7a:a9:0a:a1:b8:d6:65:64:d4:6e: 53:85:bb:74:0f:3b:5f:88:4d:eb:1c:88:8b:18:39: 13:c5:62:75:75:95:af:1f:dc:39:55:f7:fe:1e:55: b5:be:f4:26:46:d9:9e:cd:a6:a5:78:eb:4f:4b:66: 2a:28:9d:9d:70:be:66:be:03:31:ff:06:97:8b:ad: d6:2d:e5:ff:62:46:95:77:19:25:50:92:aa:b7:a0: 85:2f:f2:dc:a3:43:99:73:71:d5:40:31:ca:88:37: 97:3b:15:55:92:dc:ee:36:7b:41:2b:17:da:f5:e0: 9e:f2:c5:2d:8f:e6:c6:3a:e6:d1:02:90:12:da:e3: e4:e9:d1:1d:da:f0:ed:c9:aa:92:ca:7b:c3:d4:1c: f8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C3:F6:51:14:1A:A6:CD:01:5F:9F:39:15:39:C8:33:F8:AA:CA:4E X509v3 Authority Key Identifier: keyid:22:8A:0B:9B:84:EB:60:EB:46:15:56:5B:02:10:D5:47:5C:51:88:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IooLm4TrYOtGFVZbAhDVR1xRiKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BE2F/FEB122583B3011EAA9B7A027C4F9AE02/IooLm4TrYOtGFVZbAhDVR1xRiKk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:c8:be:d5:85:29:a5:a3:04:48:ee:f2:8b:a5:98:ab:63:c1: f6:dd:0c:d0:4e:49:d4:a1:30:53:e2:f4:29:88:20:25:21:3b: 4a:c4:59:12:32:b1:79:f4:32:f7:b0:ef:dc:ed:ab:76:d6:f8: 3a:91:17:87:43:84:31:e6:00:0b:33:5c:6a:a4:2c:7b:72:a8: ec:9d:8a:d4:29:28:5a:ea:1d:89:88:10:6c:41:71:3c:01:59: c8:2b:ac:1c:0e:3a:71:22:55:52:2a:bb:4c:ed:a6:c3:5b:1b: 51:28:34:cd:86:99:a0:ad:87:a7:e9:47:0d:11:bd:28:56:4a: de:6b:1f:cb:5d:95:62:f9:9b:c4:9d:b3:26:ca:ac:44:04:5b: b4:ce:4a:ae:e5:94:61:9f:e6:57:32:55:02:82:39:ab:31:0b: ac:f6:c0:eb:59:fa:fd:7e:76:8d:30:81:a1:33:22:bc:e7:43: c4:16:4e:61:dc:97:4a:0e:34:6f:ff:ba:40:6d:93:f1:30:b2: cc:d9:1a:24:a5:40:73:83:57:34:17:d8:40:56:43:20:e9:6b: 91:b5:63:15:85:20:47:ce:fa:4d:25:a5:35:74:5a:70:35:19: 90:32:81:90:6c:c4:17:d8:d7:33:56:1f:c4:62:29:2c:19:d0: d1:5e:fe:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJFMkYxMTAvBgNVBAUTKDIyOEEwQjlCODRFQjYwRUI0NjE1NTY1QjAyMTBENTQ3 NUM1MTg4QTkwHhcNMjUxMjA2MTgxODQzWhcNMjUxMjEzMTgxODQzWjAYMRYwFAYD VQQDEw02OTM0NzM4NC1kMzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16xwf5IyX287GFIWqiaQjPH1gJ93lDXwG0laTLldJjKduXUUxa/EB7YXwnuH YS6AafuOXzYkwmoitSX71crySLLr9Pq4kTCb1nccJSxYnWdP0IiAFH66BaLBj94t jjVM6fKwVv75RjH7yk0RBnqpCqG41mVk1G5Thbt0DztfiE3rHIiLGDkTxWJ1dZWv H9w5Vff+HlW1vvQmRtmezaaleOtPS2YqKJ2dcL5mvgMx/waXi63WLeX/YkaVdxkl UJKqt6CFL/Lco0OZc3HVQDHKiDeXOxVVktzuNntBKxfa9eCe8sUtj+bGOubRApAS 2uPk6dEd2vDtyaqSynvD1Bz4KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/D9lEU GqbNAV+fORU5yDP4qspOMB8GA1UdIwQYMBaAFCKKC5uE62DrRhVWWwIQ1UdcUYip MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkUyRi9GRUIxMjI1ODNC MzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllPdEdGVlpiQWhEVlIxeFJp S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvb0xtNFRyWU90R0ZWWmJBaERWUjF4UmlLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QkUyRi9GRUIxMjI1ODNCMzAxMUVBQTlCN0EwMjdDNEY5QUUwMi9Jb29MbTRUcllP dEdGVlpiQWhEVlIxeFJpS2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbyL7VhSmlowRI7vKLpZirY8H23QzQTknUoTBT4vQpiCAlITtKxFkS MrF59DL3sO/c7at21vg6kReHQ4Qx5gALM1xqpCx7cqjsnYrUKSha6h2JiBBsQXE8 AVnIK6wcDjpxIlVSKrtM7abDWxtRKDTNhpmgrYen6UcNEb0oVkreax/LXZVi+ZvE nbMmyqxEBFu0zkqu5ZRhn+ZXMlUCgjmrMQus9sDrWfr9fnaNMIGhMyK850PEFk5h 3JdKDjRv/7pAbZPxMLLM2RokpUBzg1c0F9hAVkMg6WuRtWMVhSBHzvpNJaU1dFpw NRmQMoGQbMQX2NczVh/EYiksGdDRXv6U -----END CERTIFICATE-----Generated at Sat Dec 6 22:02:53 2025 by rpki-client