This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: d8JIfLqpshtYHAsZ/jisTOckBpH7woNPqGyyaW6XOBA= Subject key identifier: 3B:58:CA:7D:C0:9B:C7:D6:D4:BC:F3:EB:EC:B2:EC:BE:1C:40:D7:8C Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: 01A1 Signing time: Tue 23 Dec 2025 02:20:56 +0000 Manifest this update: Tue 23 Dec 2025 02:20:55 +0000 Manifest next update: Tue 30 Dec 2025 02:20:55 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: Igr0US0pJFSSnMk7lefU2fxUKVg3n2g/dtdAc4GyZOE=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: 5hu6VPOMwmE3voYXkmp3eUb3lVDeCA+zJokawI+UD3A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:20:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B, serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Dec 23 02:20:55 2025 GMT Not After : Dec 30 02:20:55 2025 GMT Subject: CN=6949fc87-f390 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:e1:2e:f8:99:d2:d9:49:d1:19:4d:ce:58:da: 41:ac:d1:4a:2d:2d:9c:1c:30:d0:14:09:34:e8:24: 53:9b:6f:08:96:05:45:6e:e4:2a:8d:d9:7d:ef:7c: 5c:54:9c:55:a1:16:c1:65:e8:1b:05:f7:44:99:7c: ae:ea:13:cb:d6:57:fc:3b:0d:55:e3:23:bb:2b:18: 3c:1d:a5:a1:d2:68:64:91:a5:68:35:6b:52:e6:20: d6:51:4a:96:04:bb:17:dd:9b:25:62:95:0e:9d:2b: 95:69:0b:c4:70:73:91:0c:06:63:e6:21:bd:09:5d: ed:3a:8a:e8:a9:bb:25:5b:dc:0d:c7:d1:b9:8b:61: c8:40:45:11:17:18:d6:14:86:ab:43:2d:80:56:ee: d0:d7:30:f4:f6:61:69:91:87:da:01:f3:8e:4d:39: 7e:8f:2a:a5:2d:43:04:83:85:96:52:44:31:50:98: 34:47:2a:4d:55:09:d5:ec:62:57:8d:4a:00:99:8b: 69:17:7e:b2:f2:f4:87:b3:cd:d7:ec:0d:d2:94:bf: 4e:b7:8f:dc:9a:63:36:d4:d8:63:7b:c9:c1:d8:a5: a8:e6:67:24:1f:da:79:44:93:4f:ac:be:af:8c:9f: e3:9d:ef:cb:d3:c7:d7:f7:74:f5:d9:e3:2f:be:02: 82:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:58:CA:7D:C0:9B:C7:D6:D4:BC:F3:EB:EC:B2:EC:BE:1C:40:D7:8C X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:03:8c:a7:c7:10:4e:fd:f4:dd:52:83:7f:94:7e:b4:42:0a: 13:12:c9:1f:45:24:55:44:a5:62:dc:8c:71:4e:95:b7:6f:45: 88:e9:ad:25:6c:be:01:00:8d:41:43:60:15:18:e2:fb:ea:d6: 55:60:ce:d6:66:a7:57:20:ff:7e:8c:5a:d1:4a:6a:34:f3:b4: 23:54:a0:c7:dd:10:4b:a2:11:67:51:a8:b0:22:bf:d5:66:44: 72:34:a0:f5:3e:22:b7:46:10:0d:09:9e:85:9d:f5:26:c6:1c: ae:0a:16:e7:3e:89:ef:33:82:9c:c7:24:d2:8b:69:46:67:51: 36:53:9e:2b:6b:5b:df:07:f0:dd:d0:50:8b:c2:60:9b:7e:a2: 9e:83:9b:19:29:7e:ce:65:b0:34:f8:aa:7e:29:21:0b:52:13: f3:79:e6:ea:ff:08:1e:35:86:52:93:e4:e7:ec:51:94:46:fa: b0:db:4d:fa:93:7b:78:4e:20:78:52:1b:eb:51:5c:c1:8f:5c: bd:ec:ad:54:82:c5:50:3d:71:d9:9a:97:f4:65:82:cd:74:4f: 4b:3e:26:b4:e5:8e:12:83:de:4b:25:40:92:2a:11:6f:d6:54: d1:6c:ae:f2:b6:10:16:ad:33:df:0c:1d:67:83:88:2d:f1:52: 53:2a:ac:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjUxMjIzMDIyMDU1WhcNMjUxMjMwMDIyMDU1WjAYMRYwFAYD VQQDDA02OTQ5ZmM4Ny1mMzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh+Eu+JnS2UnRGU3OWNpBrNFKLS2cHDDQFAk06CRTm28IlgVFbuQqjdl973xc VJxVoRbBZegbBfdEmXyu6hPL1lf8Ow1V4yO7Kxg8HaWh0mhkkaVoNWtS5iDWUUqW BLsX3ZslYpUOnSuVaQvEcHORDAZj5iG9CV3tOoroqbslW9wNx9G5i2HIQEURFxjW FIarQy2AVu7Q1zD09mFpkYfaAfOOTTl+jyqlLUMEg4WWUkQxUJg0RypNVQnV7GJX jUoAmYtpF36y8vSHs83X7A3SlL9Ot4/cmmM21Nhje8nB2KWo5mckH9p5RJNPrL6v jJ/jne/L08fX93T12eMvvgKCUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtYyn3A m8fW1Lzz6+yy7L4cQNeMMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABA4ynxxBO/fTdUoN/lH60QgoTEskfRSRVRKVi3IxxTpW3b0WI6a0l bL4BAI1BQ2AVGOL76tZVYM7WZqdXIP9+jFrRSmo087QjVKDH3RBLohFnUaiwIr/V ZkRyNKD1PiK3RhANCZ6FnfUmxhyuChbnPonvM4KcxyTSi2lGZ1E2U54ra1vfB/Dd 0FCLwmCbfqKeg5sZKX7OZbA0+Kp+KSELUhPzeebq/wgeNYZSk+Tn7FGURvqw2036 k3t4TiB4UhvrUVzBj1y97K1UgsVQPXHZmpf0ZYLNdE9LPia05Y4Sg95LJUCSKhFv 1lTRbK7ythAWrTPfDB1ng4gt8VJTKqwI -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:14 2025 by rpki-client