This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft File: ivWYKUtrI6E57fVPJCi8YZZRqhc.mft (raw, json) Hash identifier: yNXrPFpkDuaYnyFgG1xelyTmK1DvEmreFIP0kUZsmT4= Subject key identifier: 73:B6:D0:FB:63:75:A0:2F:A5:E7:78:92:DB:AF:6E:09:AA:9A:54:E3 Authority key identifier: 8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 Certificate issuer: /CN=A917DB77/serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft Manifest number: 50 Signing time: Fri 05 Dec 2025 05:06:43 +0000 Manifest this update: Fri 05 Dec 2025 05:06:43 +0000 Manifest next update: Fri 12 Dec 2025 05:06:43 +0000 Files and hashes: 1: ivWYKUtrI6E57fVPJCi8YZZRqhc.crl (hash: iDQQtOc7lKlsRj7D/aUFyrMhctPHeKKVXFbJYJ82oEs=) 2: 69F70CA058AC11F09233031BC4F9AE02.roa (hash: 2Puhp7/s84Ka+c1PIsRk7dV+hCO9uJyQczuwL9aw3Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB77, serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Validity Not Before: Dec 5 05:06:43 2025 GMT Not After : Dec 12 05:06:43 2025 GMT Subject: CN=69326863-9ca5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1e:79:6c:60:ce:ce:3e:46:82:ed:54:49:1a: fc:bc:d4:c6:e8:42:01:c6:b4:d7:6c:d2:75:21:06: 3e:d3:5a:ef:ed:51:ef:f9:db:49:f3:37:80:2f:16: da:50:92:f3:b2:d8:21:66:50:eb:fb:e4:df:43:08: f1:c0:76:de:9e:f1:1e:57:cb:2f:b8:72:56:23:f4: 55:88:ff:83:44:c5:f4:bd:2a:b1:d1:4d:06:f2:75: 46:0b:4f:1b:ef:60:8e:7b:4f:a4:52:f9:a2:ba:5d: 4e:e8:a8:0e:92:58:8c:04:e5:52:5f:15:6d:c8:13: d1:27:ee:59:14:d5:54:71:94:dc:ad:9b:b4:7e:47: 5c:9e:74:3d:91:1a:30:3d:56:4b:e1:d4:73:ce:0d: b3:75:b1:52:2a:c2:ed:32:b8:1f:ae:be:57:6b:c6: b3:59:bf:4c:fa:3c:8b:e0:ec:05:19:36:88:0e:0d: 39:b6:be:c1:e4:01:80:6c:64:3d:bb:ac:3e:f8:59: 87:86:c1:6b:1f:87:8b:83:dd:bb:b6:64:eb:18:16: 43:63:a4:b4:2e:ee:0b:58:f5:d2:1d:09:6e:0e:42: 66:6f:b2:60:eb:27:ac:37:04:7d:34:12:10:8a:17: 78:6b:ea:7c:48:95:d4:f3:51:82:14:54:c2:bf:74: e2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B6:D0:FB:63:75:A0:2F:A5:E7:78:92:DB:AF:6E:09:AA:9A:54:E3 X509v3 Authority Key Identifier: keyid:8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:46:0f:b3:a2:2f:7b:d7:39:a7:8c:59:60:97:e2:1d:95:6e: ac:61:df:97:e0:83:54:8e:09:4f:f0:85:f0:d6:62:48:09:55: 8e:19:e4:ae:b9:69:c6:c7:75:2c:e5:2b:03:69:c9:53:a0:24: 5e:7f:16:50:08:14:60:8a:b0:88:3b:b5:78:8c:d6:ce:70:96: 46:c3:0d:96:33:6f:78:ce:1d:7c:37:94:dd:22:8b:7a:8a:d1: 56:e9:6c:ce:96:9a:61:45:31:d1:03:4e:26:38:69:65:53:dc: 60:87:49:7e:a0:7c:07:65:f0:1f:53:03:3f:a0:43:f9:4c:4d: 79:0f:3e:4c:9e:6b:b0:b5:c0:14:75:e7:ed:57:e9:81:23:35: 25:7a:13:83:21:b1:7e:13:ef:4b:7a:61:7b:4e:ff:8b:d9:4b: fe:6f:33:87:f9:cc:16:43:fd:a4:ba:53:86:21:32:65:59:ed: 85:f4:ec:e5:eb:61:08:79:55:11:0c:08:68:68:49:3e:77:03: 24:13:49:a4:33:8f:25:ab:87:f1:ad:fd:69:fc:2e:9c:5a:db: e5:dc:29:0c:67:ba:6a:cd:09:6f:29:2a:cf:27:b7:87:58:67: 42:36:f9:cb:fc:b4:43:cf:03:bf:89:df:10:62:a3:ae:c0:86: 5d:51:42:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REI3NzExMC8GA1UEBRMoOEFGNTk4Mjk0QjZCMjNBMTM5RURGNTRGMjQyOEJDNjE5 NjUxQUExNzAeFw0yNTEyMDUwNTA2NDNaFw0yNTEyMTIwNTA2NDNaMBgxFjAUBgNV BAMTDTY5MzI2ODYzLTljYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkHnlsYM7OPkaC7VRJGvy81MboQgHGtNds0nUhBj7TWu/tUe/520nzN4AvFtpQ kvOy2CFmUOv75N9DCPHAdt6e8R5Xyy+4clYj9FWI/4NExfS9KrHRTQbydUYLTxvv YI57T6RS+aK6XU7oqA6SWIwE5VJfFW3IE9En7lkU1VRxlNytm7R+R1yedD2RGjA9 Vkvh1HPODbN1sVIqwu0yuB+uvldrxrNZv0z6PIvg7AUZNogODTm2vsHkAYBsZD27 rD74WYeGwWsfh4uD3bu2ZOsYFkNjpLQu7gtY9dIdCW4OQmZvsmDrJ6w3BH00EhCK F3hr6nxIldTzUYIUVMK/dOKNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc7bQ+2N1 oC+l53iS269uCaqaVOMwHwYDVR0jBBgwFoAUivWYKUtrI6E57fVPJCi8YZZRqhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEQjc3LzkzNEUzNTYyNThB QTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZFNTdmVlBKQ2k4WVpaUnFo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZXWUtVdHJJNkU1N2ZWUEpDaThZWlpScWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE Qjc3LzkzNEUzNTYyNThBQTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZF NTdmVlBKQ2k4WVpaUnFoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC9GD7OiL3vXOaeMWWCX4h2Vbqxh35fgg1SOCU/whfDWYkgJVY4Z5K65 acbHdSzlKwNpyVOgJF5/FlAIFGCKsIg7tXiM1s5wlkbDDZYzb3jOHXw3lN0ii3qK 0VbpbM6WmmFFMdEDTiY4aWVT3GCHSX6gfAdl8B9TAz+gQ/lMTXkPPkyea7C1wBR1 5+1X6YEjNSV6E4MhsX4T70t6YXtO/4vZS/5vM4f5zBZD/aS6U4YhMmVZ7YX07OXr YQh5VREMCGhoST53AyQTSaQzjyWrh/Gt/Wn8Lpxa2+XcKQxnumrNCW8pKs8nt4dY Z0I2+cv8tEPPA7+J3xBio67Ahl1RQrs= -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:00 2025 by rpki-client