This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft File: IMAbBSwVg-NofN7L_BPplBAa1C8.mft (raw, json) Hash identifier: 8u1VI3NWJoWX/sUCkpK7beLpXWjhTGB8N/KTzrlgkv0= Subject key identifier: 2A:BC:4D:54:AF:CF:79:29:1A:8C:D3:CA:CA:CD:33:5A:0A:72:86:17 Authority key identifier: 20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F Certificate issuer: /CN=A919794D/serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft Manifest number: 01F0 Signing time: Fri 19 Dec 2025 01:45:26 +0000 Manifest this update: Fri 19 Dec 2025 01:45:26 +0000 Manifest next update: Fri 26 Dec 2025 01:45:26 +0000 Files and hashes: 1: IMAbBSwVg-NofN7L_BPplBAa1C8.crl (hash: Ssjgo6CTu4bvGy3C3d0tFlK1NlCoe0Air2SZfWvtVak=) 2: CFC4BC00EB2911ED882B8A32C4F9AE02.roa (hash: KHyj1otfkf2S5YApB/OtC5OI1QkNCQ8X27Eo+XCQipE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919794D, serialNumber=20C01B052C1583E3687CDECBFC13E994101AD42F Validity Not Before: Dec 19 01:45:26 2025 GMT Not After : Dec 26 01:45:26 2025 GMT Subject: CN=6944ae36-3f9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a0:13:d0:1d:6f:e3:cb:4a:6f:c9:14:f7:f6: 8e:4d:5c:cb:b8:0e:39:e5:9e:60:07:5a:b3:38:07: b2:62:49:5a:fc:08:63:8b:92:7e:af:21:2b:de:e0: 88:52:00:72:20:d3:8c:71:63:f4:11:41:6d:22:c2: 50:08:33:5c:ce:35:28:f6:c3:07:59:5b:a8:1b:14: 26:85:60:b3:2d:00:4f:ad:97:51:fd:74:5a:86:50: 19:81:fc:6a:d2:87:08:28:34:14:c8:0b:61:4e:f9: 16:6e:17:74:d1:ed:68:fe:26:da:6b:1e:7a:35:17: 85:54:2e:47:c6:59:9b:4a:a7:c1:58:90:19:ef:ae: 3f:2f:1f:01:3a:9b:b1:e1:aa:39:bb:cf:48:fe:23: 3c:8a:0e:d0:e7:40:25:0d:cc:05:7d:36:b0:fc:45: b2:54:bb:1f:56:ab:3f:76:48:7d:7a:05:b8:c1:d9: 2c:17:31:f5:d7:d7:32:f3:a8:36:4d:33:3e:c0:f9: d8:7f:12:b9:15:86:69:db:0a:5d:52:4d:22:a9:23: 0c:ba:6e:42:2e:2d:6c:08:e2:bf:cd:48:32:c6:1c: 46:70:68:5f:e0:8d:2d:5a:39:ad:00:c1:a4:52:ed: a7:80:d6:32:42:be:3e:d4:ad:4d:68:b8:50:02:97: 1d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:BC:4D:54:AF:CF:79:29:1A:8C:D3:CA:CA:CD:33:5A:0A:72:86:17 X509v3 Authority Key Identifier: keyid:20:C0:1B:05:2C:15:83:E3:68:7C:DE:CB:FC:13:E9:94:10:1A:D4:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IMAbBSwVg-NofN7L_BPplBAa1C8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919794D/C2CCE1DCE42411ED9AD5935FC4F9AE02/IMAbBSwVg-NofN7L_BPplBAa1C8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:ce:21:c9:c3:87:32:c4:51:0d:4c:00:8c:fa:a4:66:a4:04: b9:16:cc:36:8a:94:f6:24:2a:0e:91:c4:f2:f1:0b:ae:a0:3b: 72:a9:f7:fe:10:47:cb:b3:ef:dc:9c:39:65:49:08:88:67:37: 92:15:33:2e:64:93:08:89:dd:ce:9e:04:b3:5f:bc:66:63:84: ed:70:f9:19:08:96:0a:6e:2f:75:3d:ff:b7:61:42:02:6b:0e: 59:a4:7d:b2:f6:32:70:01:b8:98:1e:be:4e:47:ee:a9:70:a5: 87:f4:c9:71:60:a7:50:92:c1:01:87:0d:c3:ec:01:f0:54:b7: f8:c5:6c:15:4b:78:6f:0c:57:d6:68:54:8d:02:f6:1e:6b:4b: 3e:fc:87:ed:39:ea:16:b2:85:4d:bc:56:87:76:16:0d:b8:e0: e0:f6:7c:4f:12:da:10:f2:86:e3:c4:82:08:98:8c:ba:93:bc: e9:a3:08:7e:d0:fd:4f:db:ff:6e:eb:dd:6e:c8:c2:1f:f5:a1: 47:93:47:61:4c:e2:0c:03:c3:0d:1f:e8:cf:f4:2e:6f:e1:fa: 88:6b:cf:19:ac:fa:df:75:03:39:2e:b1:8c:0b:6e:73:12:78: 75:13:af:39:f4:1e:23:fa:d1:a5:06:f3:ff:e2:ec:48:05:ba: 9f:cb:2f:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc5NEQxMTAvBgNVBAUTKDIwQzAxQjA1MkMxNTgzRTM2ODdDREVDQkZDMTNFOTk0 MTAxQUQ0MkYwHhcNMjUxMjE5MDE0NTI2WhcNMjUxMjI2MDE0NTI2WjAYMRYwFAYD VQQDDA02OTQ0YWUzNi0zZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKAT0B1v48tKb8kU9/aOTVzLuA455Z5gB1qzOAeyYkla/Ahji5J+ryEr3uCI UgByINOMcWP0EUFtIsJQCDNczjUo9sMHWVuoGxQmhWCzLQBPrZdR/XRahlAZgfxq 0ocIKDQUyAthTvkWbhd00e1o/ibaax56NReFVC5HxlmbSqfBWJAZ764/Lx8BOpux 4ao5u89I/iM8ig7Q50AlDcwFfTaw/EWyVLsfVqs/dkh9egW4wdksFzH119cy86g2 TTM+wPnYfxK5FYZp2wpdUk0iqSMMum5CLi1sCOK/zUgyxhxGcGhf4I0tWjmtAMGk Uu2ngNYyQr4+1K1NaLhQApcdGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCq8TVSv z3kpGozTysrNM1oKcoYXMB8GA1UdIwQYMBaAFCDAGwUsFYPjaHzey/wT6ZQQGtQv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Nzk0RC9DMkNDRTFEQ0U0 MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3VmctTm9mTjdMX0JQcGxCQWEx QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lNQWJCU3dWZy1Ob2ZON0xfQlBwbEJBYTFDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Nzk0RC9DMkNDRTFEQ0U0MjQxMUVEOUFENTkzNUZDNEY5QUUwMi9JTUFiQlN3Vmct Tm9mTjdMX0JQcGxCQWExQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRziHJw4cyxFENTACM+qRmpAS5Fsw2ipT2JCoOkcTy8QuuoDtyqff+ EEfLs+/cnDllSQiIZzeSFTMuZJMIid3OngSzX7xmY4TtcPkZCJYKbi91Pf+3YUIC aw5ZpH2y9jJwAbiYHr5OR+6pcKWH9MlxYKdQksEBhw3D7AHwVLf4xWwVS3hvDFfW aFSNAvYea0s+/IftOeoWsoVNvFaHdhYNuODg9nxPEtoQ8objxIIImIy6k7zpowh+ 0P1P2/9u691uyMIf9aFHk0dhTOIMA8MNH+jP9C5v4fqIa88ZrPrfdQM5LrGMC25z Enh1E6859B4j+tGlBvP/4uxIBbqfyy+B -----END CERTIFICATE-----Generated at Sun Dec 21 00:17:34 2025 by rpki-client