This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft File: iU_hE5i2ea6xsRixveZz4Yz26TQ.mft (raw, json) Hash identifier: lGK8LilmsuQ10bLdFFd20NJsy4aAzNGvL5dzNSnmhJU= Subject key identifier: 38:44:2B:65:7C:14:2C:C0:88:5D:5A:FC:83:CE:A1:C5:F1:25:2F:39 Authority key identifier: 89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 Certificate issuer: /CN=A919C47E/serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Certificate serial: 13D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft Manifest number: 13A4 Signing time: Sat 06 Dec 2025 16:32:27 +0000 Manifest this update: Sat 06 Dec 2025 16:32:26 +0000 Manifest next update: Sat 13 Dec 2025 16:32:26 +0000 Files and hashes: 1: iU_hE5i2ea6xsRixveZz4Yz26TQ.crl (hash: jr0woTmyGo4biGxq9h/BvKgPx1jZjolE4vLGPIuDFd4=) 2: 1AE4CD843AF511F0B702C741C4F9AE02.roa (hash: Ev9eMpCw/MzuG/D+D40guHshDgyLCaCtAL+5ytANYiw=) 3: AF14F7EC516411F08E03714FC4F9AE02.roa (hash: 96q0yHBSk/Rmlo0qmQ4XhZWgKPNkJp4u/4iyHTCtNz4=) 4: B2E4A482E4D611EDB15EDE36C4F9AE02.roa (hash: jOCYNbolAoXMHScfQ9iviRSTkspAFWIu2eYuLyyZDaI=) 5: 02BFF64EE6A811EFB5943878C4F9AE02.roa (hash: GoAy5cjhZ6tHusMFJznhNoSIq/l4hxWlmp0vD6wrtPc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5080 (0x13d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C47E, serialNumber=894FE11398B679AEB1B118B1BDE673E18CF6E934 Validity Not Before: Dec 6 16:32:26 2025 GMT Not After : Dec 13 16:32:26 2025 GMT Subject: CN=69345a9a-8b09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:18:fb:11:85:50:48:4d:95:45:5e:89:c0:33: a9:a8:f3:5f:80:86:32:32:80:96:50:94:35:35:6f: 66:b5:47:13:95:bd:07:f8:8c:c9:e7:03:0b:4f:b0: 38:30:0f:61:ef:b7:03:b4:9d:c6:de:bd:00:74:d9: 02:3e:af:d8:24:f9:95:5e:88:29:c0:15:8b:44:de: 69:aa:f7:2f:fb:ab:8a:43:11:8f:8e:50:ef:05:bf: 90:14:ae:9c:dc:b1:9a:d8:d0:fe:72:a8:d1:34:11: 8c:a3:f8:7b:c7:c8:0f:20:fe:6c:95:b0:35:46:f0: aa:fd:ac:df:24:40:df:1f:06:44:8f:91:5a:97:86: 52:1a:39:b4:f6:6c:28:2e:9e:7e:c2:36:86:f3:b8: 6b:d3:cd:58:0b:61:5c:7c:a1:fd:4c:45:57:72:9f: 98:0e:8c:1b:89:fb:65:73:14:19:1d:42:04:85:a1: c3:02:5d:fd:50:73:f3:06:04:fc:6f:b7:39:22:27: 40:5c:e5:1f:53:2d:21:88:99:e7:ef:3e:8b:a5:6f: a1:37:02:96:33:47:35:8c:cd:d2:3e:c8:b4:2d:d0: 22:92:e9:60:88:21:b1:55:7c:87:ff:f9:f1:b1:29: 85:46:2c:8f:a8:66:e3:ee:ae:21:3f:e3:15:6a:8e: e3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:44:2B:65:7C:14:2C:C0:88:5D:5A:FC:83:CE:A1:C5:F1:25:2F:39 X509v3 Authority Key Identifier: keyid:89:4F:E1:13:98:B6:79:AE:B1:B1:18:B1:BD:E6:73:E1:8C:F6:E9:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iU_hE5i2ea6xsRixveZz4Yz26TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C47E/BCEDF442B0BF11E886392237C4F9AE02/iU_hE5i2ea6xsRixveZz4Yz26TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:da:f6:28:3f:e6:3b:fe:12:73:fb:2a:38:ce:3a:02:9e:ac: ea:30:eb:7b:33:93:fb:4b:29:d7:10:7d:8f:89:fe:33:de:c8: 7e:31:1a:91:d0:ee:7d:61:3d:e0:9b:d8:94:ea:1e:f9:93:a8: 3b:f5:bd:da:59:92:c1:fd:0e:52:a4:79:ac:b2:62:ee:77:d8: 11:71:0d:d2:33:9d:bf:e9:aa:8d:6a:1f:9c:23:17:12:1b:1a: 5a:f6:7c:29:4b:19:8b:c2:96:4a:76:59:c0:55:4a:8b:c4:b3: 05:9b:0c:48:8e:0b:96:e1:e6:08:1c:9a:de:de:61:63:cd:5b: 6c:91:aa:2d:4f:73:42:34:a7:cf:b3:0a:83:28:96:2e:8b:a2: 6c:db:bd:e0:1d:cf:89:80:16:01:45:4d:0c:59:70:f1:9f:6c: 99:45:b7:8b:82:60:45:5b:9d:90:a8:40:0b:1b:4c:72:0b:e6: f2:3a:b1:14:7b:0d:b7:a9:22:c6:60:6e:17:2f:b1:f4:ea:0e: 6a:ac:67:69:9e:cd:44:b4:7c:bd:71:c0:a2:06:6a:25:41:7a: ff:11:80:f9:c7:93:c8:aa:f4:c1:2f:c3:39:77:0b:06:c1:23: a7:0c:87:1f:39:23:ae:ae:3c:55:3c:61:e5:4a:53:cc:19:44: 79:33:50:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM0N0UxMTAvBgNVBAUTKDg5NEZFMTEzOThCNjc5QUVCMUIxMThCMUJERTY3M0Ux OENGNkU5MzQwHhcNMjUxMjA2MTYzMjI2WhcNMjUxMjEzMTYzMjI2WjAYMRYwFAYD VQQDEw02OTM0NWE5YS04YjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Bj7EYVQSE2VRV6JwDOpqPNfgIYyMoCWUJQ1NW9mtUcTlb0H+IzJ5wMLT7A4 MA9h77cDtJ3G3r0AdNkCPq/YJPmVXogpwBWLRN5pqvcv+6uKQxGPjlDvBb+QFK6c 3LGa2ND+cqjRNBGMo/h7x8gPIP5slbA1RvCq/azfJEDfHwZEj5Fal4ZSGjm09mwo Lp5+wjaG87hr081YC2FcfKH9TEVXcp+YDowbiftlcxQZHUIEhaHDAl39UHPzBgT8 b7c5IidAXOUfUy0hiJnn7z6LpW+hNwKWM0c1jM3SPsi0LdAikulgiCGxVXyH//nx sSmFRiyPqGbj7q4hP+MVao7jewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhEK2V8 FCzAiF1a/IPOocXxJS85MB8GA1UdIwQYMBaAFIlP4ROYtnmusbEYsb3mc+GM9uk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzQ3RS9CQ0VERjQ0MkIw QkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVhNnhzUml4dmVaejRZejI2 VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVX2hFNWkyZWE2eHNSaXh2ZVp6NFl6MjZUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzQ3RS9CQ0VERjQ0MkIwQkYxMUU4ODYzOTIyMzdDNEY5QUUwMi9pVV9oRTVpMmVh NnhzUml4dmVaejRZejI2VFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR2vYoP+Y7/hJz+yo4zjoCnqzqMOt7M5P7SynXEH2Pif4z3sh+MRqR 0O59YT3gm9iU6h75k6g79b3aWZLB/Q5SpHmssmLud9gRcQ3SM52/6aqNah+cIxcS Gxpa9nwpSxmLwpZKdlnAVUqLxLMFmwxIjguW4eYIHJre3mFjzVtskaotT3NCNKfP swqDKJYui6Js273gHc+JgBYBRU0MWXDxn2yZRbeLgmBFW52QqEALG0xyC+byOrEU ew23qSLGYG4XL7H06g5qrGdpns1EtHy9ccCiBmolQXr/EYD5x5PIqvTBL8M5dwsG wSOnDIcfOSOurjxVPGHlSlPMGUR5M1BR -----END CERTIFICATE-----Generated at Sat Dec 6 18:55:05 2025 by rpki-client