This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: CvSlk6a4cq/NyRIrTJJV0/FqJr/26Wm29iDOncCBM5c= Subject key identifier: C1:8E:82:7C:AA:09:3D:66:87:C5:F4:74:4D:CA:7A:BE:A4:1A:4E:82 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 09EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 09E3 Signing time: Thu 04 Dec 2025 19:11:08 +0000 Manifest this update: Thu 04 Dec 2025 19:11:07 +0000 Manifest next update: Thu 11 Dec 2025 19:11:07 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: 0XX6CKo6mnBDxN8XgrWuTnL0t6QxNMcF7KAoYBJ+0Dk=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2540 (0x9ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Dec 4 19:11:07 2025 GMT Not After : Dec 11 19:11:07 2025 GMT Subject: CN=6931dccb-345c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:01:7d:a9:5b:c9:b7:ad:67:34:02:7a:fa:fc: 25:0c:43:d2:35:f3:73:26:06:d4:32:9b:b9:b3:72: 57:c1:68:18:6d:64:22:ee:4b:ea:9f:1b:c9:b0:88: e6:0b:ad:e0:0e:1b:a8:ca:b5:a5:13:c8:1e:40:a7: 15:19:87:92:24:a0:1c:6f:a9:02:49:5a:3d:84:bb: d0:21:c9:d5:32:d7:43:a0:0b:52:18:a4:93:b6:f1: f7:61:0c:74:10:e3:df:56:8e:24:c7:8f:d7:03:c9: 03:a1:d5:75:9e:10:84:0b:20:11:75:5a:cc:26:6c: b8:9c:c6:3a:6f:d4:dd:08:b9:b3:56:5d:ae:c9:67: 57:a6:ea:b4:20:e9:b7:1a:39:c8:69:00:d6:65:e5: ab:1d:7b:b8:c9:7a:db:74:c0:a0:8b:f4:2e:82:f4: 08:43:4f:c3:01:74:0c:d9:04:98:a9:ff:b3:d9:16: e2:ce:cb:24:54:94:ef:a2:06:4a:36:02:26:fc:9e: ca:1f:4f:e5:3f:97:fe:a5:e3:4c:5e:70:6a:82:24: d6:f5:e2:05:1a:cf:04:4e:97:fb:7c:48:c0:fc:40: 38:3c:8d:8d:34:46:83:8c:65:e0:2d:0f:c9:8e:8c: 79:db:71:0d:ce:59:cf:92:8b:9b:d4:c6:28:8b:1c: a2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:8E:82:7C:AA:09:3D:66:87:C5:F4:74:4D:CA:7A:BE:A4:1A:4E:82 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:7c:9b:67:54:e6:e3:ff:17:57:15:59:a6:75:60:30:0f:aa: ce:68:dc:7f:53:5a:85:19:c5:51:b3:4c:dc:f8:c5:3d:c7:bd: 6b:46:08:23:82:ad:42:a7:8f:2d:e1:2b:03:99:7e:af:92:ac: fb:89:2e:8c:04:22:85:a4:96:0a:68:65:a9:34:0b:44:db:70: 2b:e1:58:e5:51:36:3c:b6:fc:12:c2:7f:4e:35:79:b3:4e:08: 78:e2:07:f0:e2:b4:d2:0e:ff:77:27:10:4d:66:73:3c:37:3e: 1a:78:37:b7:9f:6b:39:7d:27:dd:19:25:a4:8b:47:c7:47:f2: 0c:32:b2:86:41:e0:aa:7f:ca:f8:01:2d:63:5e:ef:04:29:69: 31:d7:d4:03:86:09:f6:65:40:23:ed:28:ca:4d:50:fc:cd:41: 81:b3:a4:bb:de:bf:2a:23:29:de:d7:1c:73:e2:3d:ce:42:4d: c1:fa:45:f1:be:44:d3:2d:2a:21:71:77:0b:af:ec:7d:64:59: 20:e8:03:4a:17:f4:19:31:82:39:e2:a4:12:8d:98:69:8c:57: 3d:37:b2:16:04:79:98:b5:80:fa:e0:08:1b:bf:ff:a0:22:d7: 36:d9:3a:40:4e:bd:b8:09:23:b7:d3:e0:cd:6a:5c:32:6e:56: ba:b3:d7:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUxMjA0MTkxMTA3WhcNMjUxMjExMTkxMTA3WjAYMRYwFAYD VQQDEw02OTMxZGNjYi0zNDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwF9qVvJt61nNAJ6+vwlDEPSNfNzJgbUMpu5s3JXwWgYbWQi7kvqnxvJsIjm C63gDhuoyrWlE8geQKcVGYeSJKAcb6kCSVo9hLvQIcnVMtdDoAtSGKSTtvH3YQx0 EOPfVo4kx4/XA8kDodV1nhCECyARdVrMJmy4nMY6b9TdCLmzVl2uyWdXpuq0IOm3 GjnIaQDWZeWrHXu4yXrbdMCgi/QugvQIQ0/DAXQM2QSYqf+z2RbizsskVJTvogZK NgIm/J7KH0/lP5f+peNMXnBqgiTW9eIFGs8ETpf7fEjA/EA4PI2NNEaDjGXgLQ/J jox523ENzlnPkoub1MYoixyixQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGOgnyq CT1mh8X0dE3Ker6kGk6CMB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkfJtnVObj/xdXFVmmdWAwD6rOaNx/U1qFGcVRs0zc+MU9x71rRggj gq1Cp48t4SsDmX6vkqz7iS6MBCKFpJYKaGWpNAtE23Ar4VjlUTY8tvwSwn9ONXmz Tgh44gfw4rTSDv93JxBNZnM8Nz4aeDe3n2s5fSfdGSWki0fHR/IMMrKGQeCqf8r4 AS1jXu8EKWkx19QDhgn2ZUAj7SjKTVD8zUGBs6S73r8qIyne1xxz4j3OQk3B+kXx vkTTLSohcXcLr+x9ZFkg6ANKF/QZMYI54qQSjZhpjFc9N7IWBHmYtYD64Agbv/+g Itc22TpATr24CSO30+DNalwybla6s9eG -----END CERTIFICATE-----Generated at Sat Dec 6 20:08:18 2025 by rpki-client