This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: sn2XrG7eX+UwUvsPMFnk5NhZzgiPnJ+3NhPaqCniKY0= Subject key identifier: DD:3D:03:33:D5:2C:05:CD:69:91:CF:03:D3:F5:89:8B:04:5D:A3:41 Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A19 Signing time: Thu 04 Dec 2025 19:03:47 +0000 Manifest this update: Thu 04 Dec 2025 19:03:47 +0000 Manifest next update: Thu 11 Dec 2025 19:03:46 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: IOvlyGxEowJxazZNVYAtVbQ9lHPOc91MRKgtyBvVA4I=) 2: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) 3: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:03:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2597 (0xa25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Dec 4 19:03:47 2025 GMT Not After : Dec 11 19:03:46 2025 GMT Subject: CN=6931db13-43ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d1:2a:37:16:1f:06:2f:20:a6:db:55:d6:b5: 78:be:b1:b9:91:b5:b8:f1:88:9c:ac:fe:18:fa:b8: ed:ef:f2:e0:e6:ab:0b:74:ee:f2:81:76:a2:27:02: 5c:ec:33:c3:f2:35:88:4f:28:39:d6:e2:93:f9:2e: 9b:01:36:ad:2c:72:28:23:be:35:d2:85:db:ba:3e: 0e:ec:7c:4d:db:45:78:d7:34:c4:fa:58:e2:c4:65: 19:e7:8a:57:1d:4e:01:95:c8:c6:38:62:71:5c:69: 31:a9:b1:6c:75:e0:91:68:ef:cc:1e:16:f5:4e:75: 33:16:f2:9c:ab:a7:a4:0e:66:7b:94:78:a2:f2:8c: 56:1d:2a:c4:66:35:0b:1e:5f:09:cc:f3:0a:39:96: 43:a5:65:4a:ec:38:12:fc:8e:6c:6d:22:37:20:5b: 6d:b7:aa:ca:31:bb:e0:2d:bf:d3:ba:a8:f9:e5:80: 05:0a:21:80:73:e1:bd:a0:2f:78:c8:32:2b:3e:c1: 43:9b:66:48:61:a7:d1:5d:cf:2c:06:e9:ae:2c:6b: 5a:37:8c:a5:95:10:f1:b4:c3:83:98:4f:0f:a7:3b: fb:37:a2:09:1a:05:b9:42:76:b4:ff:4c:16:8e:d5: 5d:39:af:48:29:9e:1a:08:39:98:92:e1:a9:ce:e0: 35:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3D:03:33:D5:2C:05:CD:69:91:CF:03:D3:F5:89:8B:04:5D:A3:41 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:f4:df:0a:fc:c8:65:52:ac:84:8a:a4:d0:aa:77:7c:b3:c5: f2:40:b1:f9:da:2f:a3:9d:41:74:41:cc:01:38:b7:fd:3f:94: b6:a8:f8:d9:0b:0d:9d:a3:8f:4c:70:0b:65:49:98:0d:d2:6a: 9b:9f:70:9d:c6:61:0e:4e:f2:1a:82:02:46:ca:8a:1d:e5:ec: bc:3a:6f:de:4a:4d:a7:04:f1:bc:0e:02:0a:94:4b:e3:a5:7f: 51:90:41:71:f1:ea:ab:fa:58:c2:cb:75:d3:06:bc:04:20:8b: 79:b2:ae:2d:01:5d:fd:91:69:64:25:91:3f:18:2c:36:35:46: b2:d9:a9:eb:6c:c5:4b:73:89:87:23:b9:37:b8:66:0a:5c:53: 67:b1:77:97:d4:c6:35:fd:3a:55:63:c1:bf:70:9d:17:65:87: 03:59:cc:12:9b:08:dc:4b:ca:1f:81:78:75:2b:96:e6:01:12: 82:cd:bf:99:31:35:1d:76:ab:42:b7:25:07:e8:74:4f:87:3f: da:d5:53:df:10:4b:44:53:6e:3b:af:3f:11:60:24:b5:03:ab: dc:6c:88:d9:c7:e8:fd:5f:52:31:6d:60:c8:e7:60:fc:81:30: c4:92:e3:5c:9e:ab:ac:0e:f5:ba:8b:c9:f3:99:ca:28:56:73: 51:87:73:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUxMjA0MTkwMzQ3WhcNMjUxMjExMTkwMzQ2WjAYMRYwFAYD VQQDEw02OTMxZGIxMy00M2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAptEqNxYfBi8gpttV1rV4vrG5kbW48YicrP4Y+rjt7/Lg5qsLdO7ygXaiJwJc 7DPD8jWITyg51uKT+S6bATatLHIoI7410oXbuj4O7HxN20V41zTE+ljixGUZ54pX HU4BlcjGOGJxXGkxqbFsdeCRaO/MHhb1TnUzFvKcq6ekDmZ7lHii8oxWHSrEZjUL Hl8JzPMKOZZDpWVK7DgS/I5sbSI3IFttt6rKMbvgLb/Tuqj55YAFCiGAc+G9oC94 yDIrPsFDm2ZIYafRXc8sBumuLGtaN4yllRDxtMODmE8Ppzv7N6IJGgW5Qna0/0wW jtVdOa9IKZ4aCDmYkuGpzuA1NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN09AzPV LAXNaZHPA9P1iYsEXaNBMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj9N8K/MhlUqyEiqTQqnd8s8XyQLH52i+jnUF0QcwBOLf9P5S2qPjZ Cw2do49McAtlSZgN0mqbn3CdxmEOTvIaggJGyood5ey8Om/eSk2nBPG8DgIKlEvj pX9RkEFx8eqr+ljCy3XTBrwEIIt5sq4tAV39kWlkJZE/GCw2NUay2anrbMVLc4mH I7k3uGYKXFNnsXeX1MY1/TpVY8G/cJ0XZYcDWcwSmwjcS8ofgXh1K5bmARKCzb+Z MTUddqtCtyUH6HRPhz/a1VPfEEtEU247rz8RYCS1A6vcbIjZx+j9X1IxbWDI52D8 gTDEkuNcnqusDvW6i8nzmcooVnNRh3MC -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:59 2025 by rpki-client