This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft File: iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft (raw, json) Hash identifier: 1uLPuT8OoT8PvaL5N7BXRQjlvKJcKQ/B6v0rT3zND9E= Subject key identifier: F0:01:6A:E3:81:9C:FA:C5:3C:FB:6F:23:02:86:BA:26:30:B4:D1:0D Authority key identifier: 88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 Certificate issuer: /CN=A919D588/serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft Manifest number: 3B Signing time: Fri 05 Dec 2025 05:19:31 +0000 Manifest this update: Fri 05 Dec 2025 05:19:31 +0000 Manifest next update: Fri 12 Dec 2025 05:19:31 +0000 Files and hashes: 1: iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl (hash: sTj+2XUMTT8paB6cYWOOD/yuBqk2fSJ9K98miMyn2SQ=) 2: 5C7DE69E7EFD11F0827C5F1DC4F9AE02.roa (hash: LhJsIUDxJjf34uwAXx8g7B6lkG4erRS20bGVNhkO1Ek=) 3: 8938B9DA7BF511F0BEBF8326C4F9AE02.roa (hash: vQ9ge67AKzH4HNbVsuxX3Mwi95vAo6POwUTMCo0fB8I=) 4: 8AF73C7E7BF511F0BEBF8326C4F9AE02.roa (hash: ccXunp3OE2ONSoYTGcr2m1hcygin6LHeeNQEO7if+44=) 5: 8B58F72A7BF511F0BEBF8326C4F9AE02.roa (hash: DPudtrZt3zDLn6cOKt8G2uNXGPQUskKpTDxbAvt9zzA=) 6: 8A65797E7BF511F0BEBF8326C4F9AE02.roa (hash: 8VEPDf924YuQ0JrYCDPzrjF2qm9rSo7AZ2xnXGQmqpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D588, serialNumber=882859D52301F01571D9D4CF953F45E075E09A98 Validity Not Before: Dec 5 05:19:31 2025 GMT Not After : Dec 12 05:19:31 2025 GMT Subject: CN=69326b63-f0ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:a3:65:1c:d4:5c:f1:8d:03:8a:20:30:b0:3f: c0:c0:da:18:04:91:28:e5:2e:c0:70:1c:76:58:2d: e0:d0:7e:20:e3:36:be:64:2d:dc:94:24:4b:70:b4: ec:b3:f7:35:7a:d2:08:24:05:4e:76:26:22:33:53: 7a:21:0d:f5:99:57:97:bf:6e:85:f0:cb:00:ea:d4: e1:c9:fe:b7:1c:04:9d:00:0a:31:3f:de:e5:3f:fc: 90:27:65:ee:4d:15:0d:50:1f:94:9f:78:7c:6a:2c: 38:2c:fb:bf:93:97:1e:ba:aa:f6:4e:9c:36:d4:02: a2:2c:11:1d:e8:af:f9:52:6e:d0:a4:0d:98:c5:d8: 23:84:51:30:b4:15:53:4e:e4:e5:c2:80:92:b5:a6: 2f:03:16:48:46:16:a0:ef:ef:61:3e:cb:9a:9f:99: 71:72:54:35:57:11:7c:89:d5:13:7f:0b:da:dd:25: 79:d6:c6:4a:48:9e:e4:81:86:f0:ed:31:bd:47:46: e0:8f:1e:b1:9f:5e:9f:b9:2d:24:a3:d7:2e:1a:39: 4e:d2:ae:bd:6d:88:9f:d7:ff:00:ac:fb:49:a7:50: ab:2f:58:73:33:b4:13:4e:7f:e4:32:1f:28:12:51: 60:6a:2a:d4:2e:c5:52:ed:d9:85:a8:0f:88:ca:73: 12:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:01:6A:E3:81:9C:FA:C5:3C:FB:6F:23:02:86:BA:26:30:B4:D1:0D X509v3 Authority Key Identifier: keyid:88:28:59:D5:23:01:F0:15:71:D9:D4:CF:95:3F:45:E0:75:E0:9A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iChZ1SMB8BVx2dTPlT9F4HXgmpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D588/BF7D5E767BF311F0A05FAD82C4F9AE02/iChZ1SMB8BVx2dTPlT9F4HXgmpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:2b:0f:f4:8e:c0:24:fa:95:01:7d:38:d1:cc:71:9e:e4:c7: 18:e3:76:04:ba:e4:df:4d:bd:e0:df:22:6f:31:83:bf:0c:22: e6:dc:87:6b:2a:e8:0a:27:45:69:6c:89:72:15:f6:53:c0:28: 17:7f:ac:4d:e6:3b:ab:ad:55:d6:a1:38:f1:14:08:43:d6:c6: f3:9f:29:ec:34:a2:1b:1d:85:51:03:be:e6:74:81:b6:94:3d: 12:c6:db:99:22:92:7b:a8:21:ef:54:13:07:4e:d6:22:c6:ed: 47:78:19:b0:56:37:bf:f4:da:37:d1:70:3f:3d:27:b1:48:fe: 50:07:cd:9e:d5:a6:70:be:82:7f:d5:11:8b:b1:05:50:72:2c: 77:97:dc:6a:d1:1c:e9:e0:0f:29:bc:76:4a:fb:a5:5c:1a:be: 43:37:27:e6:78:8a:39:95:4f:4f:47:1c:4c:88:e6:be:d6:7c: 3d:ef:11:89:76:2d:20:c5:65:04:c4:f4:86:38:4d:14:f2:e8: 61:1b:00:97:e0:89:70:a5:96:15:4c:c1:d0:44:1f:3b:e6:13: 31:89:0e:3a:98:6c:e8:49:29:aa:81:75:58:19:6f:fa:3c:be: 11:de:d8:bf:80:36:63:28:ce:e0:45:4b:47:b8:57:8c:ec:6c: ce:9b:2a:02 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDU4ODExMC8GA1UEBRMoODgyODU5RDUyMzAxRjAxNTcxRDlENENGOTUzRjQ1RTA3 NUUwOUE5ODAeFw0yNTEyMDUwNTE5MzFaFw0yNTEyMTIwNTE5MzFaMBgxFjAUBgNV BAMTDTY5MzI2YjYzLWYwYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCXo2Uc1FzxjQOKIDCwP8DA2hgEkSjlLsBwHHZYLeDQfiDjNr5kLdyUJEtwtOyz 9zV60ggkBU52JiIzU3ohDfWZV5e/boXwywDq1OHJ/rccBJ0ACjE/3uU//JAnZe5N FQ1QH5SfeHxqLDgs+7+Tlx66qvZOnDbUAqIsER3or/lSbtCkDZjF2COEUTC0FVNO 5OXCgJK1pi8DFkhGFqDv72E+y5qfmXFyVDVXEXyJ1RN/C9rdJXnWxkpInuSBhvDt Mb1HRuCPHrGfXp+5LSSj1y4aOU7Srr1tiJ/X/wCs+0mnUKsvWHMztBNOf+QyHygS UWBqKtQuxVLt2YWoD4jKcxKJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8AFq44Gc +sU8+28jAoa6JjC00Q0wHwYDVR0jBBgwFoAUiChZ1SMB8BVx2dTPlT9F4HXgmpgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTg4L0JGN0Q1RTc2N0JG MzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJWeDJkVFBsVDlGNEhYZ21w Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUNoWjFTTUI4QlZ4MmRUUGxUOUY0SFhnbXBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlE NTg4L0JGN0Q1RTc2N0JGMzExRjBBMDVGQUQ4MkM0RjlBRTAyL2lDaFoxU01COEJW eDJkVFBsVDlGNEhYZ21wZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJArD/SOwCT6lQF9ONHMcZ7kxxjjdgS65N9NveDfIm8xg78MIubch2sq 6AonRWlsiXIV9lPAKBd/rE3mO6utVdahOPEUCEPWxvOfKew0ohsdhVEDvuZ0gbaU PRLG25kiknuoIe9UEwdO1iLG7Ud4GbBWN7/02jfRcD89J7FI/lAHzZ7VpnC+gn/V EYuxBVByLHeX3GrRHOngDym8dkr7pVwavkM3J+Z4ijmVT09HHEyI5r7WfD3vEYl2 LSDFZQTE9IY4TRTy6GEbAJfgiXCllhVMwdBEHzvmEzGJDjqYbOhJKaqBdVgZb/o8 vhHe2L+ANmMozuBFS0e4V4zsbM6bKgI= -----END CERTIFICATE-----Generated at Sat Dec 6 12:13:05 2025 by rpki-client