This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft File: IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft (raw, json) Hash identifier: UOXODlu0A6wA4t0wRxswu2CUnkJ0gIk7FOIuX+7kabM= Subject key identifier: 22:82:87:AE:77:18:A2:00:A7:BB:4A:0E:D0:2D:42:08:78:20:88:33 Authority key identifier: 21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 Certificate issuer: /CN=A9170BBF/serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Certificate serial: 0515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft Manifest number: 050B Signing time: Thu 04 Dec 2025 22:13:03 +0000 Manifest this update: Thu 04 Dec 2025 22:13:03 +0000 Manifest next update: Thu 11 Dec 2025 22:13:03 +0000 Files and hashes: 1: IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl (hash: 01Xfd7B4rPyYLtV4cMs87I4eIvxAzc7Y9Gh8a2/YJnc=) 2: 06CAA9C230C211ECBB5A4116C4F9AE02.roa (hash: CU8ZA4/4TdlPTUdktMFTY7GCuwd/QCyrxC7+CMDATDo=) 3: 0628D74630C211ECBB5A4116C4F9AE02.roa (hash: yUQWHT36J9pLE1kpKGBgRzyjB4VNhd4/HCHR7qeOtAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170BBF, serialNumber=210FF16668DF963BE0FCA906933917FFEDED9F95 Validity Not Before: Dec 4 22:13:03 2025 GMT Not After : Dec 11 22:13:03 2025 GMT Subject: CN=6932076f-4d5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f3:38:47:3d:f5:18:54:0b:34:36:d1:61:8f: 37:2f:1c:80:2b:f6:68:2c:5b:27:12:b3:d5:ad:ee: c5:0e:02:66:21:89:19:ac:45:90:2f:2b:51:93:6e: 76:1f:d4:dc:ce:44:64:d9:f1:01:91:37:e0:9e:bc: e1:a2:eb:55:60:93:22:ee:24:70:99:96:60:8e:19: 54:5c:7a:77:ed:8e:1f:85:d2:cd:37:1f:46:88:74: 4f:b0:52:d5:bf:32:ef:ee:e7:59:f9:2f:1e:c0:8a: 5c:d8:51:5e:af:e3:ff:b4:c7:f2:96:ac:e3:97:da: 0b:cb:8f:da:2f:bf:e5:c5:73:28:53:30:ff:91:a3: 3e:73:bd:c9:de:0d:f4:5b:69:02:24:db:ac:f2:f7: 79:c1:a8:c5:86:fa:e8:9e:fb:de:96:71:a7:70:8f: 65:45:36:cc:9e:61:8d:cf:75:54:a5:07:48:57:ce: 42:df:bd:b6:26:05:c3:01:5a:c6:8e:37:35:28:e1: 44:65:7a:23:26:63:bd:1e:4c:a6:a6:69:7a:ba:1f: d5:d1:6b:8b:a6:59:c3:c3:f7:0b:b0:84:ef:2c:47: 86:2d:f2:ad:8c:03:2e:8f:8f:bf:cf:79:9c:98:30: 79:dd:95:97:cf:4a:0a:d9:43:fd:ee:cc:a1:eb:7a: 22:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:82:87:AE:77:18:A2:00:A7:BB:4A:0E:D0:2D:42:08:78:20:88:33 X509v3 Authority Key Identifier: keyid:21:0F:F1:66:68:DF:96:3B:E0:FC:A9:06:93:39:17:FF:ED:ED:9F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IQ_xZmjfljvg_KkGkzkX_-3tn5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170BBF/E491123A30BF11ECA85C4414C4F9AE02/IQ_xZmjfljvg_KkGkzkX_-3tn5U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:bc:75:ab:81:a6:44:a3:a8:71:35:a7:e5:87:fc:bf:1a:02: 41:6e:cb:75:ad:92:1d:0d:ce:94:b0:b7:84:14:c2:71:a6:61: fb:60:23:73:26:27:8d:be:cc:d7:29:f5:a5:65:7f:12:ab:9e: bf:e4:20:a9:64:88:0d:b9:2c:43:37:2f:27:1d:03:b6:e9:3d: 02:1f:9e:fe:a3:a3:ab:ec:cb:f7:1f:3f:5e:90:30:9a:31:ea: 5d:ec:83:55:b7:a0:91:7c:ca:1d:f3:ee:de:e6:14:aa:df:3d: 45:e5:2b:de:ea:14:60:a3:fe:2e:e4:02:f9:79:f4:b1:a9:ca: 08:92:2a:20:a2:82:e2:95:d7:76:db:8b:71:3e:69:d1:19:ec: 7d:c4:49:e2:d7:82:a2:9b:91:52:17:eb:b9:a4:e6:25:25:4f: 5e:11:f6:8e:37:93:d5:46:73:e9:e1:e5:51:58:5c:48:43:69: 98:68:e3:d8:a0:ac:91:2f:38:ab:74:cd:6e:78:e3:92:5a:bd: c2:b6:da:d7:11:ed:d7:96:74:f8:70:54:3d:92:15:5b:88:cb: af:a0:4c:12:ce:00:d8:8e:7b:5b:4c:66:a4:6b:77:cc:4a:1a: d5:03:8a:5d:ee:25:12:3c:4b:12:2a:ec:ee:e4:85:ac:c6:60: 01:f0:6a:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBCQkYxMTAvBgNVBAUTKDIxMEZGMTY2NjhERjk2M0JFMEZDQTkwNjkzMzkxN0ZG RURFRDlGOTUwHhcNMjUxMjA0MjIxMzAzWhcNMjUxMjExMjIxMzAzWjAYMRYwFAYD VQQDEw02OTMyMDc2Zi00ZDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvM4Rz31GFQLNDbRYY83LxyAK/ZoLFsnErPVre7FDgJmIYkZrEWQLytRk252 H9TczkRk2fEBkTfgnrzhoutVYJMi7iRwmZZgjhlUXHp37Y4fhdLNNx9GiHRPsFLV vzLv7udZ+S8ewIpc2FFer+P/tMfylqzjl9oLy4/aL7/lxXMoUzD/kaM+c73J3g30 W2kCJNus8vd5wajFhvronvvelnGncI9lRTbMnmGNz3VUpQdIV85C3722JgXDAVrG jjc1KOFEZXojJmO9Hkympml6uh/V0WuLplnDw/cLsITvLEeGLfKtjAMuj4+/z3mc mDB53ZWXz0oK2UP97syh63oilQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKCh653 GKIAp7tKDtAtQgh4IIgzMB8GA1UdIwQYMBaAFCEP8WZo35Y74PypBpM5F//t7Z+V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEJCRi9FNDkxMTIzQTMw QkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxqdmdfS2tHa3prWF8tM3Ru NVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lRX3habWpmbGp2Z19La0dremtYXy0zdG41VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEJCRi9FNDkxMTIzQTMwQkYxMUVDQTg1QzQ0MTRDNEY5QUUwMi9JUV94Wm1qZmxq dmdfS2tHa3prWF8tM3RuNVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhvHWrgaZEo6hxNaflh/y/GgJBbst1rZIdDc6UsLeEFMJxpmH7YCNz JieNvszXKfWlZX8Sq56/5CCpZIgNuSxDNy8nHQO26T0CH57+o6Or7Mv3Hz9ekDCa Mepd7INVt6CRfMod8+7e5hSq3z1F5Sve6hRgo/4u5AL5efSxqcoIkiogooLildd2 24txPmnRGex9xEni14Kim5FSF+u5pOYlJU9eEfaON5PVRnPp4eVRWFxIQ2mYaOPY oKyRLzirdM1ueOOSWr3CttrXEe3XlnT4cFQ9khVbiMuvoEwSzgDYjntbTGaka3fM ShrVA4pd7iUSPEsSKuzu5IWsxmAB8Gow -----END CERTIFICATE-----Generated at Sat Dec 6 23:22:49 2025 by rpki-client