This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: 1xDLvIPsTjwy+JWjjxoNa8ttCxfyI84HcDm1xBIFlhE= Subject key identifier: 1D:3A:F7:E1:7B:FD:97:87:DA:35:A8:E0:76:47:82:6F:D9:73:4C:46 Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 080E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 0807 Signing time: Thu 04 Dec 2025 20:03:17 +0000 Manifest this update: Thu 04 Dec 2025 20:03:15 +0000 Manifest next update: Thu 11 Dec 2025 20:03:15 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: YqRLUqQx7vcuP6Q8wocLB2BdoLAJdK9lv3z6m5KMu6Y=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2062 (0x80e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Dec 4 20:03:15 2025 GMT Not After : Dec 11 20:03:15 2025 GMT Subject: CN=6931e904-5a4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:63:52:37:52:46:ba:25:74:8b:d3:ef:44:b7: 6b:b0:e4:1e:28:57:e2:8d:3f:3e:0a:d9:22:b6:cb: 25:b4:3d:98:53:7a:c5:96:02:d5:a7:c1:1a:8e:c8: c3:62:84:62:ec:af:85:f1:9a:17:14:ed:79:5f:75: f6:e6:c7:3d:0b:09:79:0f:98:7c:75:61:63:90:03: da:7a:00:53:d3:6e:9e:23:28:49:97:b2:95:6f:6d: 82:99:50:18:55:ef:6a:16:db:37:a7:d4:16:77:26: b3:9e:69:24:3e:c7:48:46:d3:3f:cb:ab:6c:c6:f1: d2:03:0c:ff:dd:a8:e7:3d:f2:83:b2:d5:79:d2:b1: 49:91:07:79:7c:64:3d:af:4c:de:93:3d:75:2b:8e: 3a:f8:36:74:b7:7f:27:c1:51:96:fe:9b:bf:05:1d: 86:78:69:61:6c:0e:25:66:25:05:8a:5d:83:01:92: 9e:98:35:8d:f6:df:6e:62:b0:5c:57:2f:1d:eb:ff: 5f:b3:13:52:0c:74:38:9c:b5:e9:b3:2c:b2:58:1d: e4:8e:7e:00:db:58:12:f7:bb:38:34:dc:8f:73:56: 23:1c:4f:46:8d:4e:ab:8d:87:21:96:2b:55:fb:ff: 66:e9:cd:c8:ba:28:cc:2f:5e:44:4f:48:cc:8b:4c: b7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3A:F7:E1:7B:FD:97:87:DA:35:A8:E0:76:47:82:6F:D9:73:4C:46 X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c8:fd:c3:ee:da:7c:bd:b3:1c:76:85:3d:b2:03:9d:51:f7: 91:0d:84:e9:2e:21:e4:3d:17:1b:14:e0:2e:4f:11:c5:86:61: e4:30:88:30:68:72:f6:01:72:ff:b7:07:a1:4b:93:61:71:7f: 81:6e:fd:31:a7:83:ad:d0:e5:c6:a8:7b:3a:b8:08:57:72:5c: 0d:dd:19:38:be:ce:78:8e:f4:91:30:9a:7c:3f:9a:7c:3e:46: 30:e4:52:76:39:20:c3:e8:95:27:05:d0:13:db:16:53:80:c8: 90:27:9d:6c:df:9b:ee:c7:b6:22:57:53:ef:10:68:ff:54:94: 9a:ad:87:7a:d9:b9:7e:56:f3:7b:8b:34:cf:e0:19:04:7f:99: 94:d0:b5:d1:2d:69:b9:8c:b1:8e:d7:bd:3f:20:68:1c:7b:57: ec:6e:0b:43:79:51:2f:51:9a:b3:62:80:3c:2c:fa:ec:5b:26: 01:6c:90:b1:92:24:af:0f:fa:8c:df:6b:15:4d:27:b1:37:18: e6:46:05:9e:12:d9:5c:d7:24:c0:d4:02:7c:08:96:5e:2f:d9: d0:4a:5d:1e:b8:98:bc:ba:48:95:e3:55:b2:5f:8e:20:d5:89: bc:c1:41:65:7e:26:ef:d6:3e:04:39:c1:7d:6f:93:7d:c2:5b: 51:26:c3:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUxMjA0MjAwMzE1WhcNMjUxMjExMjAwMzE1WjAYMRYwFAYD VQQDEw02OTMxZTkwNC01YTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0GNSN1JGuiV0i9PvRLdrsOQeKFfijT8+CtkitssltD2YU3rFlgLVp8EajsjD YoRi7K+F8ZoXFO15X3X25sc9Cwl5D5h8dWFjkAPaegBT026eIyhJl7KVb22CmVAY Ve9qFts3p9QWdyaznmkkPsdIRtM/y6tsxvHSAwz/3ajnPfKDstV50rFJkQd5fGQ9 r0zekz11K446+DZ0t38nwVGW/pu/BR2GeGlhbA4lZiUFil2DAZKemDWN9t9uYrBc Vy8d6/9fsxNSDHQ4nLXpsyyyWB3kjn4A21gS97s4NNyPc1YjHE9GjU6rjYchlitV +/9m6c3IuijML15ET0jMi0y3JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB069+F7 /ZeH2jWo4HZHgm/Zc0xGMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhyP3D7tp8vbMcdoU9sgOdUfeRDYTpLiHkPRcbFOAuTxHFhmHkMIgw aHL2AXL/twehS5NhcX+Bbv0xp4Ot0OXGqHs6uAhXclwN3Rk4vs54jvSRMJp8P5p8 PkYw5FJ2OSDD6JUnBdAT2xZTgMiQJ51s35vux7YiV1PvEGj/VJSarYd62bl+VvN7 izTP4BkEf5mU0LXRLWm5jLGO170/IGgce1fsbgtDeVEvUZqzYoA8LPrsWyYBbJCx kiSvD/qM32sVTSexNxjmRgWeEtlc1yTA1AJ8CJZeL9nQSl0euJi8ukiV41WyX44g 1Ym8wUFlfibv1j4EOcF9b5N9wltRJsPz -----END CERTIFICATE-----Generated at Sat Dec 6 12:20:30 2025 by rpki-client