This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft File: iV-zzi-cLke5FLsqa2bHfVOXpAo.mft (raw, json) Hash identifier: PgbRbYatre4/kkxSOOhzpilB8CJgfxO8JZy10BUFCtE= Subject key identifier: 2D:00:DB:22:5C:7C:F9:49:7C:FB:F5:34:D7:87:9F:8B:40:54:88:EE Authority key identifier: 89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A Certificate issuer: /CN=A91E6419/serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft Manifest number: 0250 Signing time: Fri 19 Dec 2025 00:56:19 +0000 Manifest this update: Fri 19 Dec 2025 00:56:19 +0000 Manifest next update: Fri 26 Dec 2025 00:56:19 +0000 Files and hashes: 1: iV-zzi-cLke5FLsqa2bHfVOXpAo.crl (hash: f3cHVIneYBPcMmPlQP0ObP1KGtWwqm9mPSV09zn/dVc=) 2: 38DEC3C04ED611ED84336740C4F9AE02.roa (hash: GwA8WNqmVW1s9tawzkiqtYC7xFjjdtlbsl+Ur+WNSNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6419, serialNumber=895FB3CE2F9C2E47B914BB2A6B66C77D5397A40A Validity Not Before: Dec 19 00:56:19 2025 GMT Not After : Dec 26 00:56:19 2025 GMT Subject: CN=6944a2b3-0972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:da:7f:57:d9:44:e5:ab:fa:e5:eb:95:a2:41: 7d:02:c8:79:bd:09:58:b1:c6:69:8d:88:03:07:0b: 49:65:71:ac:4d:34:0b:8b:5e:2f:aa:28:1d:d3:d3: 95:0c:d7:5e:d0:9a:30:8e:2b:59:b6:3b:9b:57:b2: 04:15:b6:64:20:e9:78:42:ea:8a:bf:d8:7d:4a:43: 77:2c:d1:ff:da:c8:01:59:0d:2f:5c:e6:df:20:c5: a2:3e:ed:29:87:28:e6:45:38:21:ec:f9:2f:90:eb: 38:94:7e:cf:30:a8:3f:0f:7a:16:e9:44:08:c8:d8: 98:b1:2c:09:ce:b7:a3:de:9c:90:7e:f5:87:bc:a9: 03:c5:b4:de:da:2a:ef:bc:b7:be:ad:30:ea:cb:b6: bb:8f:a2:0f:08:51:56:0d:df:4f:49:66:7e:9c:92: fd:3a:2d:24:bf:fb:87:f9:a8:c5:10:c0:bd:3c:8e: 82:92:26:ac:b7:2e:0c:72:62:66:a3:df:a0:66:81: 50:4c:93:6f:95:f2:7f:57:a9:ec:d3:ba:f5:cf:d1: 0d:bb:91:6b:af:7d:88:d2:c0:94:89:78:83:a4:e9: c2:8e:26:ce:1b:7c:ed:8f:f8:2f:07:0c:7c:f8:93: b9:40:9c:8c:aa:77:c3:3f:96:66:2e:5b:b7:76:f1: 15:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:00:DB:22:5C:7C:F9:49:7C:FB:F5:34:D7:87:9F:8B:40:54:88:EE X509v3 Authority Key Identifier: keyid:89:5F:B3:CE:2F:9C:2E:47:B9:14:BB:2A:6B:66:C7:7D:53:97:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV-zzi-cLke5FLsqa2bHfVOXpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6419/FA6E36CC4ED311EDA5E53040C4F9AE02/iV-zzi-cLke5FLsqa2bHfVOXpAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:b8:a4:ce:79:ae:09:88:89:e8:34:45:5e:3e:5a:4d:76:39: 9a:72:75:7b:e8:ac:d9:28:d1:30:d0:f0:2d:f1:de:53:c8:9e: 1d:57:b1:a7:a7:45:77:48:df:c2:9f:17:bb:f3:f4:88:41:a7: 8f:2e:04:d2:06:cb:b6:e5:17:ad:61:c4:85:cf:43:5e:17:ec: 0b:3e:2d:9f:67:6b:fb:62:91:ad:1b:61:60:2c:5c:21:6d:d8: f1:46:df:b8:e7:f7:a1:6b:be:11:95:49:bb:07:23:d8:1c:77: 39:78:00:85:ee:77:c4:d1:35:71:7e:74:2c:08:b1:24:72:7a: 48:ee:33:4d:22:2b:47:7d:96:a7:79:65:7c:9e:c9:6a:8c:34: 2a:f2:5f:ae:fa:53:a3:f0:65:df:3e:fd:fc:4f:29:eb:a3:fe: 2c:4d:d4:22:1f:c8:14:09:5f:85:39:3b:41:41:d1:18:67:1f: 22:48:f2:07:4b:56:32:17:7b:3a:03:d0:6b:24:71:41:e7:5b: 66:9e:ef:47:be:3a:44:08:ed:c3:9a:72:cb:ca:b3:3c:4a:80: 33:b6:f8:9b:e9:0c:26:8f:eb:dc:41:15:06:4d:7f:19:05:c0: 2d:e7:2d:d9:0f:18:0f:7b:45:e0:61:58:60:9d:67:25:dc:f4: 60:ab:7f:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY0MTkxMTAvBgNVBAUTKDg5NUZCM0NFMkY5QzJFNDdCOTE0QkIyQTZCNjZDNzdE NTM5N0E0MEEwHhcNMjUxMjE5MDA1NjE5WhcNMjUxMjI2MDA1NjE5WjAYMRYwFAYD VQQDDA02OTQ0YTJiMy0wOTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9p/V9lE5av65euVokF9Ash5vQlYscZpjYgDBwtJZXGsTTQLi14vqigd09OV DNde0JowjitZtjubV7IEFbZkIOl4QuqKv9h9SkN3LNH/2sgBWQ0vXObfIMWiPu0p hyjmRTgh7PkvkOs4lH7PMKg/D3oW6UQIyNiYsSwJzrej3pyQfvWHvKkDxbTe2irv vLe+rTDqy7a7j6IPCFFWDd9PSWZ+nJL9Oi0kv/uH+ajFEMC9PI6Ckiasty4McmJm o9+gZoFQTJNvlfJ/V6ns07r1z9ENu5Frr32I0sCUiXiDpOnCjibOG3ztj/gvBwx8 +JO5QJyMqnfDP5ZmLlu3dvEVzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0A2yJc fPlJfPv1NNeHn4tAVIjuMB8GA1UdIwQYMBaAFIlfs84vnC5HuRS7Kmtmx31Tl6QK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjQxOS9GQTZFMzZDQzRF RDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xrZTVGTHNxYTJiSGZWT1hw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWLXp6aS1jTGtlNUZMc3FhMmJIZlZPWHBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjQxOS9GQTZFMzZDQzRFRDMxMUVEQTVFNTMwNDBDNEY5QUUwMi9pVi16emktY0xr ZTVGTHNxYTJiSGZWT1hwQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHuKTOea4JiInoNEVePlpNdjmacnV76KzZKNEw0PAt8d5TyJ4dV7Gn p0V3SN/Cnxe78/SIQaePLgTSBsu25RetYcSFz0NeF+wLPi2fZ2v7YpGtG2FgLFwh bdjxRt+45/eha74RlUm7ByPYHHc5eACF7nfE0TVxfnQsCLEkcnpI7jNNIitHfZan eWV8nslqjDQq8l+u+lOj8GXfPv38Tynro/4sTdQiH8gUCV+FOTtBQdEYZx8iSPIH S1YyF3s6A9BrJHFB51tmnu9HvjpECO3DmnLLyrM8SoAztvib6Qwmj+vcQRUGTX8Z BcAt5y3ZDxgPe0XgYVhgnWcl3PRgq3+v -----END CERTIFICATE-----Generated at Fri Dec 19 09:33:15 2025 by rpki-client