This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft File: IokuPYxEn1qaxkz8tjS1n2xTE2s.mft (raw, json) Hash identifier: GiWff2yZAs9FPYp3WC3vPvHC4WbLm/UWUTTnCckVt9E= Subject key identifier: 8A:9D:89:56:FE:23:6E:18:78:CA:0E:A1:17:5E:F1:47:F0:9A:FC:A4 Authority key identifier: 22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B Certificate issuer: /CN=A917BB59/serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Certificate serial: 07F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft Manifest number: 07EC Signing time: Sat 06 Dec 2025 20:11:34 +0000 Manifest this update: Sat 06 Dec 2025 20:11:33 +0000 Manifest next update: Sat 13 Dec 2025 20:11:33 +0000 Files and hashes: 1: IokuPYxEn1qaxkz8tjS1n2xTE2s.crl (hash: xYiJLPlIZ2yz4A2DfqPnoPOofnXbnL4QbLb6POKWFtI=) 2: 7BF36C680DCB11EBA17D032EC4F9AE02.roa (hash: x1swDqDbdRpW1YcvJW4XZPVqkw29NgcBcxcpOtDQ400=) 3: 8FEA9564C2AE11EB94777A0CC4F9AE02.roa (hash: faGNUns0UIB/6rsiDFhIe2V0V3MDd2DqirXM6CF0Z8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB59, serialNumber=22892E3D8C449F5A9AC64CFCB634B59F6C53136B Validity Not Before: Dec 6 20:11:33 2025 GMT Not After : Dec 13 20:11:33 2025 GMT Subject: CN=69348df5-13ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:84:a1:77:5f:ae:7b:aa:23:b1:0f:0e:55:85: 3e:94:8c:ef:ad:df:87:c6:c9:56:44:27:46:3e:e5: a9:e4:4b:0c:90:7e:f3:a5:6b:d2:5d:6a:c9:72:7c: 6e:6d:01:89:72:9f:c6:6e:e7:a5:f0:3a:86:f3:e5: 0d:5c:0d:34:87:25:6c:ad:a6:7f:42:40:5f:e6:0f: 19:24:31:92:74:c2:b6:d1:e5:eb:09:e9:d3:d5:60: 60:0c:a3:ab:18:16:a1:2d:e7:06:fb:1c:f2:98:67: 64:6b:0d:00:df:0a:b9:95:1c:06:77:4e:e2:b0:d2: d8:6d:f2:2a:8f:9a:80:80:9f:db:90:a3:35:4e:82: dc:44:9e:ca:dc:64:f1:6a:12:94:6a:28:fa:9f:59: a8:4e:c1:8e:b4:8e:e2:42:a1:95:a0:89:11:5c:f9: 6e:3d:6d:70:ed:af:c6:6d:3b:b4:1a:7e:e6:bf:8d: 85:61:ba:87:b0:53:96:fd:74:c0:0d:50:cb:4c:42: b8:f7:23:5d:40:3c:93:a3:d3:e9:c4:d7:c7:b2:19: cd:d0:0b:40:0f:4b:3c:62:31:b4:44:8f:13:86:b5: 69:17:d8:1f:b2:a9:82:a5:11:fe:b5:a3:36:4b:33: c9:22:92:9d:af:10:19:2a:c7:9d:4d:58:65:a9:06: a0:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:9D:89:56:FE:23:6E:18:78:CA:0E:A1:17:5E:F1:47:F0:9A:FC:A4 X509v3 Authority Key Identifier: keyid:22:89:2E:3D:8C:44:9F:5A:9A:C6:4C:FC:B6:34:B5:9F:6C:53:13:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IokuPYxEn1qaxkz8tjS1n2xTE2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB59/B68B90D60DCA11EBA7C2E22DC4F9AE02/IokuPYxEn1qaxkz8tjS1n2xTE2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:9f:01:2c:95:8c:9c:95:33:e4:f3:9d:42:2d:4d:9c:25:a3: 73:d5:36:cd:27:5e:41:71:df:61:91:39:33:c0:75:7f:20:0c: b9:20:d7:a8:16:25:0f:93:5c:94:cb:67:8c:77:8a:71:df:b0: a8:19:96:0a:f3:40:7f:ff:eb:08:89:2c:b9:f9:39:99:12:4f: 81:51:6c:0a:06:64:aa:7c:f5:3d:8d:15:33:73:9b:f7:10:f0: c2:3b:37:ee:94:65:27:90:af:7d:3d:cc:8d:d1:3d:c0:50:fc: fe:55:d0:c4:81:c2:24:03:f5:63:c0:50:87:15:8b:99:54:01: 07:67:22:c5:fe:1a:da:ac:c4:85:91:fa:83:0c:ea:b3:d0:b7: 73:17:47:d5:c6:03:cd:57:f1:30:c5:a1:86:85:10:b0:88:b1: 54:39:22:ca:ea:99:59:55:d4:67:f4:36:d6:e7:6a:50:91:4c: a7:35:a8:ac:f1:c2:82:f3:aa:85:75:5c:e9:b5:ae:9d:8c:71: 0d:0f:e6:38:f0:50:5b:12:23:92:8c:d6:27:5a:15:81:8f:f7: 45:72:4d:1d:f5:f1:9e:ac:ef:f8:cc:73:5f:36:a0:77:e8:95: 75:6f:4c:66:8a:0b:0d:a1:37:07:6a:83:84:4c:c8:61:b9:84: 5c:6d:1d:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTkxMTAvBgNVBAUTKDIyODkyRTNEOEM0NDlGNUE5QUM2NENGQ0I2MzRCNTlG NkM1MzEzNkIwHhcNMjUxMjA2MjAxMTMzWhcNMjUxMjEzMjAxMTMzWjAYMRYwFAYD VQQDEw02OTM0OGRmNS0xM2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYShd1+ue6ojsQ8OVYU+lIzvrd+HxslWRCdGPuWp5EsMkH7zpWvSXWrJcnxu bQGJcp/Gbuel8DqG8+UNXA00hyVsraZ/QkBf5g8ZJDGSdMK20eXrCenT1WBgDKOr GBahLecG+xzymGdkaw0A3wq5lRwGd07isNLYbfIqj5qAgJ/bkKM1ToLcRJ7K3GTx ahKUaij6n1moTsGOtI7iQqGVoIkRXPluPW1w7a/GbTu0Gn7mv42FYbqHsFOW/XTA DVDLTEK49yNdQDyTo9PpxNfHshnN0AtAD0s8YjG0RI8ThrVpF9gfsqmCpRH+taM2 SzPJIpKdrxAZKsedTVhlqQagUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqdiVb+ I24YeMoOoRde8UfwmvykMB8GA1UdIwQYMBaAFCKJLj2MRJ9amsZM/LY0tZ9sUxNr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1OS9CNjhCOTBENjBE Q0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4xcWF4a3o4dGpTMW4yeFRF MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lva3VQWXhFbjFxYXhrejh0alMxbjJ4VEUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI1OS9CNjhCOTBENjBEQ0ExMUVCQTdDMkUyMkRDNEY5QUUwMi9Jb2t1UFl4RW4x cWF4a3o4dGpTMW4yeFRFMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTnwEslYyclTPk851CLU2cJaNz1TbNJ15Bcd9hkTkzwHV/IAy5INeo FiUPk1yUy2eMd4px37CoGZYK80B//+sIiSy5+TmZEk+BUWwKBmSqfPU9jRUzc5v3 EPDCOzfulGUnkK99PcyN0T3AUPz+VdDEgcIkA/VjwFCHFYuZVAEHZyLF/hrarMSF kfqDDOqz0LdzF0fVxgPNV/EwxaGGhRCwiLFUOSLK6plZVdRn9DbW52pQkUynNais 8cKC86qFdVzpta6djHEND+Y48FBbEiOSjNYnWhWBj/dFck0d9fGerO/4zHNfNqB3 6JV1b0xmigsNoTcHaoOETMhhuYRcbR2S -----END CERTIFICATE-----Generated at Sun Dec 7 01:50:50 2025 by rpki-client