This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft File: iBzVaxmrfMJiYzdmnqtzClWnLLY.mft (raw, json) Hash identifier: rAMa5LDpNP324C/QM9Zz+aVGeoMfNwUAjf8HKdQzfOE= Subject key identifier: BE:14:84:02:53:11:87:B6:7A:E3:63:F1:53:FC:50:5C:73:4B:67:31 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft Manifest number: 015D Signing time: Sun 21 Dec 2025 03:18:04 +0000 Manifest this update: Sun 21 Dec 2025 03:18:03 +0000 Manifest next update: Sun 28 Dec 2025 03:18:03 +0000 Files and hashes: 1: iBzVaxmrfMJiYzdmnqtzClWnLLY.crl (hash: 7Pzb3kv67hFkQ6F/AZA0i1BC0mDlUn9/afsOxgXJaeQ=) 2: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (hash: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Dec 21 03:18:03 2025 GMT Not After : Dec 28 03:18:03 2025 GMT Subject: CN=694766ec-524c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:52:08:42:04:07:42:2b:73:6d:9a:18:75:ff: 96:92:c6:c0:05:29:36:94:b4:c4:52:bb:89:52:11: be:bb:9b:05:0e:07:c8:94:1b:29:96:b5:01:e3:be: 53:19:23:0b:14:dd:6f:3d:99:4b:80:16:1b:c1:71: b2:45:7d:58:77:6a:6b:35:76:d3:39:13:89:06:7f: aa:4a:cb:47:1a:c2:b0:a7:09:11:35:b3:c9:44:03: be:db:03:5d:36:51:03:9e:f8:03:49:6c:75:ff:72: 87:c7:15:36:91:91:4e:d3:2c:fe:c0:b0:2b:90:56: ed:4a:9f:4a:ca:2d:16:f4:30:35:a2:13:0e:7d:df: 1d:61:e8:0e:cc:8d:b6:d1:4e:97:25:02:cb:ed:1e: 86:db:79:e1:fe:b2:df:00:6a:42:29:fb:e7:6e:9c: 51:f6:30:7e:70:bd:03:85:e1:9b:16:c3:e3:ef:30: 33:40:01:f0:ee:61:11:7a:46:54:8a:c3:d2:75:ff: c7:7d:9d:96:f0:5b:5e:58:4b:4d:66:7d:19:c7:c7: 9b:f5:d3:dd:25:2a:3e:c0:37:eb:ca:c8:80:e8:58: 9e:b2:a4:ee:0e:b7:2d:9e:ac:ea:fc:c3:45:b3:2a: e4:22:7d:7e:e7:3d:69:2c:36:9e:c2:95:76:67:e1: f2:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:14:84:02:53:11:87:B6:7A:E3:63:F1:53:FC:50:5C:73:4B:67:31 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:40:7a:7e:18:0b:5a:99:e2:fa:b5:4c:fb:75:46:11:66:b8: 83:9e:7c:87:36:45:35:c9:22:57:7f:d3:98:b6:ef:c4:0e:87: 60:42:67:1f:49:2f:1c:1b:5d:b7:7f:e9:b2:05:20:76:24:1d: ee:63:92:06:1d:89:74:ff:1a:20:23:ea:a2:3a:92:4d:1a:f9: 2a:af:d7:33:78:62:29:3e:e8:11:c9:b6:29:2e:f2:3f:23:69: 80:a3:db:b6:77:b1:af:bc:6a:0a:e5:b9:59:bd:2a:bf:a2:26: 42:16:49:76:b2:a9:e4:40:a2:a3:71:d0:09:2d:b8:07:ed:32: ee:de:e6:57:8e:85:80:96:86:2a:f1:9c:58:39:3b:99:92:91: 63:3f:60:a8:4a:94:a7:df:66:5f:32:3d:28:82:bb:be:61:43: b6:12:6d:74:e5:55:dc:10:10:ba:bc:d0:41:3f:1d:f4:d5:8c: ab:67:da:22:a6:0e:d6:16:3f:60:1a:dd:a2:90:42:6c:23:61: c5:9e:96:aa:fc:c3:73:f3:8a:9b:25:e8:61:3d:c7:d2:07:cd: d4:aa:28:61:0f:7f:0f:15:12:e2:40:38:4b:4e:02:07:fa:10: 00:99:2c:23:57:1e:fc:7a:02:ca:21:0c:fd:a6:65:bd:9f:21: 6c:5d:5b:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUxMjIxMDMxODAzWhcNMjUxMjI4MDMxODAzWjAYMRYwFAYD VQQDDA02OTQ3NjZlYy01MjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAj1IIQgQHQitzbZoYdf+WksbABSk2lLTEUruJUhG+u5sFDgfIlBsplrUB475T GSMLFN1vPZlLgBYbwXGyRX1Yd2prNXbTOROJBn+qSstHGsKwpwkRNbPJRAO+2wNd NlEDnvgDSWx1/3KHxxU2kZFO0yz+wLArkFbtSp9Kyi0W9DA1ohMOfd8dYegOzI22 0U6XJQLL7R6G23nh/rLfAGpCKfvnbpxR9jB+cL0DheGbFsPj7zAzQAHw7mERekZU isPSdf/HfZ2W8FteWEtNZn0Zx8eb9dPdJSo+wDfrysiA6FiesqTuDrctnqzq/MNF syrkIn1+5z1pLDaewpV2Z+HypwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL4UhAJT EYe2euNj8VP8UFxzS2cxMB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDlGOS81RjM3OURCMEM5NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZN SmlZemRtbnF0ekNsV25MTFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvQHp+GAtameL6tUz7dUYRZriDnnyHNkU1ySJXf9OYtu/EDodgQmcf SS8cG123f+myBSB2JB3uY5IGHYl0/xogI+qiOpJNGvkqr9czeGIpPugRybYpLvI/ I2mAo9u2d7GvvGoK5blZvSq/oiZCFkl2sqnkQKKjcdAJLbgH7TLu3uZXjoWAloYq 8ZxYOTuZkpFjP2CoSpSn32ZfMj0ogru+YUO2Em105VXcEBC6vNBBPx301YyrZ9oi pg7WFj9gGt2ikEJsI2HFnpaq/MNz84qbJehhPcfSB83UqihhD38PFRLiQDhLTgIH +hAAmSwjVx78egLKIQz9pmW9nyFsXVuJ -----END CERTIFICATE-----Generated at Mon Dec 22 07:06:01 2025 by rpki-client