This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft File: Ic_hSZujbpQWt_68gTw8LqkWvEY.mft (raw, json) Hash identifier: 1CvooICAOMzqRoPXNtKX+mDcZvCz4Evn8EicDY1XraU= Subject key identifier: 73:FD:BF:7B:C5:92:04:DD:EA:16:DD:9E:2D:CF:37:74:CE:34:58:D6 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0B25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft Manifest number: 0B1C Signing time: Sat 06 Dec 2025 18:33:49 +0000 Manifest this update: Sat 06 Dec 2025 18:33:49 +0000 Manifest next update: Sat 13 Dec 2025 18:33:49 +0000 Files and hashes: 1: Ic_hSZujbpQWt_68gTw8LqkWvEY.crl (hash: xf1VeyNz6Pc52QxLzA4wa9Rf108JafpFn+LtJtExr6s=) 2: 498B6EFE942411EA816FC855C4F9AE02.roa (hash: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2853 (0xb25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413, serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Validity Not Before: Dec 6 18:33:49 2025 GMT Not After : Dec 13 18:33:49 2025 GMT Subject: CN=6934770d-992a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:01:bc:4f:a7:fc:eb:18:54:bb:d3:02:8e:44: ed:78:59:31:07:0b:77:d4:b2:e3:02:a3:3d:3a:28: 74:23:58:a9:a5:20:d5:10:b8:df:8b:42:29:96:04: 1a:d0:db:14:5d:22:fa:bc:31:b9:e9:a4:31:e4:54: 64:d0:0b:c4:7f:92:57:07:f4:64:76:88:8d:26:81: b5:1e:4e:86:30:de:55:f3:c2:6b:61:75:07:63:39: 7c:42:a7:44:c4:7b:92:d6:60:92:08:bf:32:89:39: fd:72:f2:00:61:99:18:08:ad:89:d3:bf:14:60:94: 01:14:f0:ea:c6:d1:86:ff:f6:e5:96:d1:6a:b9:f5: 87:72:2d:e0:90:3e:9e:1c:d7:93:17:6c:83:b1:0d: 2e:85:5f:10:dd:94:83:06:be:b4:8f:25:53:97:91: 30:0c:ce:0b:4b:ba:c1:6f:b2:52:40:1e:e9:93:ef: bc:d9:e3:57:b9:36:ab:f9:f8:4a:08:3b:f0:97:4c: b1:18:d9:b7:18:97:cd:3b:9e:49:5d:0b:78:7d:6f: c7:af:13:cc:9d:de:a0:fa:49:25:97:da:80:a0:da: 27:ae:76:b9:eb:d6:49:40:8b:fc:ad:9d:13:b1:d0: 9d:70:8d:ec:e6:e4:b6:5c:3a:ff:80:b9:87:62:f2: 03:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FD:BF:7B:C5:92:04:DD:EA:16:DD:9E:2D:CF:37:74:CE:34:58:D6 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:38:70:ea:e0:e4:8a:81:20:bb:77:1b:8e:ce:35:52:c7:ad: af:93:c1:b2:8e:0c:8f:11:09:53:9d:88:15:e0:9d:c9:6d:c9: e8:79:a3:ac:18:c2:3c:0e:97:42:fc:9c:af:bb:11:68:07:31: 0e:58:58:67:b8:1f:d9:b4:7c:1c:1f:7e:6f:79:14:90:b7:b2: 8b:aa:b4:ec:2b:db:8d:f6:c0:04:a9:cf:b4:83:bb:78:e4:b3: 72:fa:91:bf:be:cd:2e:22:10:33:c9:98:29:80:db:5a:a9:a9: 4e:0e:1e:90:91:0a:7c:e1:c5:a1:af:10:b6:f2:e8:e2:bd:ae: d2:30:a1:b9:fd:e3:ef:d9:b0:8e:0f:ff:d1:f6:b3:51:07:5c: ff:a6:30:d4:78:d8:43:87:34:2c:e5:1d:3c:f3:0c:c2:1d:c3: 4a:32:4f:d7:1f:56:d1:c0:85:ec:be:0a:ee:d8:f1:4f:a3:e9: 19:e4:23:1c:ef:f0:5a:ec:db:7a:ae:e3:0a:74:e6:b1:70:e4: 80:c0:fe:81:ec:bd:f3:2b:bd:77:fd:9b:08:1e:7a:d7:64:51: ce:fa:af:7b:7a:c2:27:79:22:84:91:5a:15:2a:59:c8:ba:ea: b4:cb:2f:c0:72:aa:0b:26:5e:0a:58:4d:a1:aa:ac:95:20:0a: 23:67:6d:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUxMjA2MTgzMzQ5WhcNMjUxMjEzMTgzMzQ5WjAYMRYwFAYD VQQDEw02OTM0NzcwZC05OTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6QG8T6f86xhUu9MCjkTteFkxBwt31LLjAqM9Oih0I1ippSDVELjfi0IplgQa 0NsUXSL6vDG56aQx5FRk0AvEf5JXB/RkdoiNJoG1Hk6GMN5V88JrYXUHYzl8QqdE xHuS1mCSCL8yiTn9cvIAYZkYCK2J078UYJQBFPDqxtGG//blltFqufWHci3gkD6e HNeTF2yDsQ0uhV8Q3ZSDBr60jyVTl5EwDM4LS7rBb7JSQB7pk++82eNXuTar+fhK CDvwl0yxGNm3GJfNO55JXQt4fW/HrxPMnd6g+kkll9qAoNonrna569ZJQIv8rZ0T sdCdcI3s5uS2XDr/gLmHYvIDdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHP9v3vF kgTd6hbdni3PN3TONFjWMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjQxMy9COEZDQTdCQTUxNkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJw UVd0XzY4Z1R3OExxa1d2RVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQOHDq4OSKgSC7dxuOzjVSx62vk8GyjgyPEQlTnYgV4J3JbcnoeaOs GMI8DpdC/JyvuxFoBzEOWFhnuB/ZtHwcH35veRSQt7KLqrTsK9uN9sAEqc+0g7t4 5LNy+pG/vs0uIhAzyZgpgNtaqalODh6QkQp84cWhrxC28ujiva7SMKG5/ePv2bCO D//R9rNRB1z/pjDUeNhDhzQs5R088wzCHcNKMk/XH1bRwIXsvgru2PFPo+kZ5CMc 7/Ba7Nt6ruMKdOaxcOSAwP6B7L3zK713/ZsIHnrXZFHO+q97esIneSKEkVoVKlnI uuq0yy/AcqoLJl4KWE2hqqyVIAojZ21V -----END CERTIFICATE-----Generated at Sun Dec 7 03:22:46 2025 by rpki-client