This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft File: IHRtqWxsk0jpS7t03MtZAcbst7M.mft (raw, json) Hash identifier: l35tV10WiVnJvHHXGGM6/2Eo7031bQswevX/zCBbiK4= Subject key identifier: 50:34:5B:2A:58:EC:F3:C6:D2:38:3E:5F:98:52:07:A6:E9:C4:A9:A3 Authority key identifier: 20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 Certificate issuer: /CN=A918BD1A/serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Certificate serial: 040E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft Manifest number: 0407 Signing time: Sat 06 Dec 2025 23:06:06 +0000 Manifest this update: Sat 06 Dec 2025 23:06:05 +0000 Manifest next update: Sat 13 Dec 2025 23:06:05 +0000 Files and hashes: 1: IHRtqWxsk0jpS7t03MtZAcbst7M.crl (hash: sHzpOzihcOR81RNMFYLwxScRAL2meRjxADGx+MQnjdI=) 2: FC11F400240611EFA8F45A54C4F9AE02.roa (hash: o33RNCZroDwsAJGcMgsni5M3q2cYV8AkaewWNhrky5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:06:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1038 (0x40e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BD1A, serialNumber=20746DA96C6C9348E94BBB74DCCB5901C6ECB7B3 Validity Not Before: Dec 6 23:06:05 2025 GMT Not After : Dec 13 23:06:05 2025 GMT Subject: CN=6934b6de-69d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:84:2c:cd:d0:4e:d8:80:27:9d:a1:e7:43: c1:2b:dd:7c:37:dd:97:ad:67:ab:b2:bb:54:9f:25: 06:08:86:de:d4:87:6a:01:bd:f3:25:8d:83:a3:e7: c6:f6:50:64:b5:b5:56:84:1a:cb:6c:4d:24:19:e0: e8:d8:f7:a0:9a:95:81:aa:bb:d7:d4:e4:8c:53:7b: 38:19:59:bf:82:fc:c8:19:b7:c3:82:3f:96:1d:f4: 2f:65:a1:7e:f0:44:63:17:65:4a:ae:4d:de:50:7a: 9c:d0:e8:ce:8a:4f:92:43:40:ba:4d:bf:dd:7d:65: 24:2d:c4:b1:08:6a:7c:63:41:78:24:ec:cf:c2:9c: 58:f6:6d:17:0f:d7:00:11:b3:25:10:47:6a:35:ee: 65:e6:90:8f:a5:e8:e1:ea:31:0c:b9:c6:69:a6:f7: 97:6e:2e:1a:1b:89:aa:c6:e8:f6:f3:66:c2:66:41: 44:d8:64:b3:ef:d6:7f:b5:56:0e:05:86:c1:14:a0: 94:df:ca:94:c2:9c:65:6e:79:c0:5e:08:94:d7:0a: 9e:f4:b0:ff:be:47:80:62:cf:c4:dd:1b:23:43:e4: 01:2c:bc:29:3f:1b:18:71:b3:68:47:8a:81:d4:3c: e0:c2:d2:f6:af:e7:d2:05:e4:16:7a:00:55:b0:63: 91:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:34:5B:2A:58:EC:F3:C6:D2:38:3E:5F:98:52:07:A6:E9:C4:A9:A3 X509v3 Authority Key Identifier: keyid:20:74:6D:A9:6C:6C:93:48:E9:4B:BB:74:DC:CB:59:01:C6:EC:B7:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHRtqWxsk0jpS7t03MtZAcbst7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BD1A/4C6EABE899D811ECB9E3576FC4F9AE02/IHRtqWxsk0jpS7t03MtZAcbst7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:d8:2d:2d:1b:83:32:5f:6d:33:a6:ed:bd:b5:64:72:ad:22: 18:8b:58:d8:b6:27:7e:30:f1:83:75:a1:a3:06:b5:88:98:22: 00:6e:b7:74:f1:a7:e6:de:89:b4:47:1f:0d:bb:c2:a1:d0:7d: 2f:38:68:31:4b:89:36:4b:9a:50:c9:fb:de:cb:94:05:c1:77: 98:50:e5:dd:a6:1d:88:34:05:f6:9f:a1:5e:eb:7d:c7:d5:76: 6e:98:8b:ab:4d:a2:58:ef:64:01:51:13:8a:8e:6f:49:21:07: 00:39:5d:1f:01:b5:79:98:ba:7e:50:67:97:2c:35:4a:8f:2d: 1f:2f:00:f6:f9:cc:5b:e3:78:f1:e6:16:eb:35:12:1a:8e:ef: f0:e7:4f:94:cc:5e:14:6c:12:03:cc:3e:89:6d:c6:1a:5a:76: 4d:7e:dd:32:8c:b6:11:93:b9:57:a1:c2:9a:52:83:91:10:58: 94:48:71:c6:28:0f:24:8c:c7:f6:85:6e:a4:ba:2c:22:e6:1d: ce:5c:82:70:a4:47:46:a5:f6:e0:66:56:08:e3:45:99:56:a5: 37:94:15:a5:e2:a0:86:7d:a1:d0:dd:b4:dc:23:c6:b7:3a:b6: 67:08:b6:c3:93:ae:75:52:2e:ce:e9:eb:5f:58:97:2d:5c:98: 6b:6c:2d:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEMUExMTAvBgNVBAUTKDIwNzQ2REE5NkM2QzkzNDhFOTRCQkI3NERDQ0I1OTAx QzZFQ0I3QjMwHhcNMjUxMjA2MjMwNjA1WhcNMjUxMjEzMjMwNjA1WjAYMRYwFAYD VQQDEw02OTM0YjZkZS02OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdWELM3QTtiAJ52h50PBK918N92XrWersrtUnyUGCIbe1IdqAb3zJY2Do+fG 9lBktbVWhBrLbE0kGeDo2PegmpWBqrvX1OSMU3s4GVm/gvzIGbfDgj+WHfQvZaF+ 8ERjF2VKrk3eUHqc0OjOik+SQ0C6Tb/dfWUkLcSxCGp8Y0F4JOzPwpxY9m0XD9cA EbMlEEdqNe5l5pCPpejh6jEMucZppveXbi4aG4mqxuj282bCZkFE2GSz79Z/tVYO BYbBFKCU38qUwpxlbnnAXgiU1wqe9LD/vkeAYs/E3RsjQ+QBLLwpPxsYcbNoR4qB 1DzgwtL2r+fSBeQWegBVsGORNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFA0WypY 7PPG0jg+X5hSB6bpxKmjMB8GA1UdIwQYMBaAFCB0balsbJNI6Uu7dNzLWQHG7Lez MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkQxQS80QzZFQUJFODk5 RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2swanBTN3QwM010WkFjYnN0 N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIUnRxV3hzazBqcFM3dDAzTXRaQWNic3Q3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkQxQS80QzZFQUJFODk5RDgxMUVDQjlFMzU3NkZDNEY5QUUwMi9JSFJ0cVd4c2sw anBTN3QwM010WkFjYnN0N00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB52C0tG4MyX20zpu29tWRyrSIYi1jYtid+MPGDdaGjBrWImCIAbrd0 8afm3om0Rx8Nu8Kh0H0vOGgxS4k2S5pQyfvey5QFwXeYUOXdph2INAX2n6Fe633H 1XZumIurTaJY72QBUROKjm9JIQcAOV0fAbV5mLp+UGeXLDVKjy0fLwD2+cxb43jx 5hbrNRIaju/w50+UzF4UbBIDzD6JbcYaWnZNft0yjLYRk7lXocKaUoOREFiUSHHG KA8kjMf2hW6kuiwi5h3OXIJwpEdGpfbgZlYI40WZVqU3lBWl4qCGfaHQ3bTcI8a3 OrZnCLbDk651Ui7O6etfWJctXJhrbC2/ -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:29 2025 by rpki-client