This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: Vqo/f6ER1Qe2rkS/VdFkvzWrkU4ElwYu2P/GGUuSA24= Subject key identifier: 3A:87:9F:8E:6C:E2:63:BE:BD:E5:33:3C:54:1F:4B:E5:6D:CF:76:07 Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 0631 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 062B Signing time: Mon 22 Dec 2025 21:57:07 +0000 Manifest this update: Mon 22 Dec 2025 21:57:07 +0000 Manifest next update: Mon 29 Dec 2025 21:57:07 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: niG4X8zyblsN6kf6yYIwAlUQXA3EWJ6MGNTCVwU40LM=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1585 (0x631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: Dec 22 21:57:07 2025 GMT Not After : Dec 29 21:57:07 2025 GMT Subject: CN=6949beb3-eb10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:40:bb:13:d4:12:19:a3:21:87:1f:9f:a1:63: 49:31:4d:e7:bc:31:98:01:fa:ca:d2:86:76:94:41: 68:1c:dd:93:96:b6:9f:4c:ac:48:8f:c7:ea:f7:8f: fe:36:35:8e:8a:95:8a:21:97:e9:48:7f:13:b0:8e: 91:fc:3c:19:a2:0e:5b:9e:8b:d9:ef:0d:1d:a0:94: 6d:1f:53:ce:2f:ab:54:ea:e5:22:85:cd:dc:85:8a: 59:b8:71:0c:71:8d:06:4b:ea:83:2a:a9:a7:e0:a2: 74:45:63:12:a3:0b:63:04:8b:c4:58:40:f8:e4:a5: 01:4e:21:28:fd:7f:f1:f8:d4:ff:74:29:e5:b8:6f: 96:cb:92:96:e3:69:69:e3:49:ef:25:86:00:41:0d: c0:fc:72:5b:71:e5:4f:0d:8c:3b:5a:9a:ef:9b:3a: 43:e7:61:b1:0a:df:51:36:64:31:4f:f0:82:fc:1a: 71:06:9d:16:e5:02:cf:fd:b4:a8:76:2f:ed:ec:34: 04:c8:05:53:21:c4:3b:74:b1:b8:21:a5:37:ad:74: fa:a6:d0:05:cb:76:9d:5e:78:3c:d3:b5:ed:a4:e9: e6:d0:a4:dd:06:7e:43:58:d5:f0:b6:d1:cd:d6:43: c3:82:40:f6:4f:08:61:e8:7b:eb:99:8a:f0:0d:b6: 9d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:87:9F:8E:6C:E2:63:BE:BD:E5:33:3C:54:1F:4B:E5:6D:CF:76:07 X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:04:2f:90:7b:d1:b8:46:fa:fa:89:74:25:29:6d:fd:19:63: 68:3a:0f:0a:48:b6:25:51:db:bd:25:ae:84:39:e8:e7:db:15: 2e:fd:94:40:ce:0f:32:27:86:df:e4:c1:27:7f:e7:a5:d1:52: 24:27:7d:96:2b:18:76:3b:bd:a3:4e:0b:a4:f0:f3:23:6e:7c: 6c:db:ff:56:2f:ef:c2:a7:aa:50:2f:a4:24:87:ee:6a:01:cb: b6:aa:c5:e6:10:ac:13:e7:84:19:36:1f:ba:8b:19:e1:4d:8b: c3:85:75:a2:80:a3:f1:f7:fa:55:a7:0f:33:ba:15:d9:19:ae: 25:0b:f3:1a:be:8e:14:b8:09:54:c6:f9:90:c6:38:37:0e:03: 74:03:46:82:b6:55:df:e9:29:c2:d1:52:99:cf:ba:ad:cd:22: 95:b8:03:7d:3c:59:4f:a2:ca:b1:05:6f:7a:ed:07:09:3c:6b: c8:2a:aa:29:2e:f4:e3:7b:fb:2c:05:14:ed:de:81:2b:b2:42: 13:af:cc:e9:44:54:af:54:fa:29:63:4c:21:65:10:11:37:bd: e9:9f:cf:6e:96:6e:6f:3b:4c:df:ed:6e:96:2d:4b:8b:28:bc: 97:b3:56:87:dd:06:4e:ef:fc:99:8a:50:bf:d3:f4:6f:47:60: 36:45:c0:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUxMjIyMjE1NzA3WhcNMjUxMjI5MjE1NzA3WjAYMRYwFAYD VQQDDA02OTQ5YmViMy1lYjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUC7E9QSGaMhhx+foWNJMU3nvDGYAfrK0oZ2lEFoHN2TlrafTKxIj8fq94/+ NjWOipWKIZfpSH8TsI6R/DwZog5bnovZ7w0doJRtH1POL6tU6uUihc3chYpZuHEM cY0GS+qDKqmn4KJ0RWMSowtjBIvEWED45KUBTiEo/X/x+NT/dCnluG+Wy5KW42lp 40nvJYYAQQ3A/HJbceVPDYw7WprvmzpD52GxCt9RNmQxT/CC/BpxBp0W5QLP/bSo di/t7DQEyAVTIcQ7dLG4IaU3rXT6ptAFy3adXng807XtpOnm0KTdBn5DWNXwttHN 1kPDgkD2Twhh6HvrmYrwDbadMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqHn45s 4mO+veUzPFQfS+Vtz3YHMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANBC+Qe9G4Rvr6iXQlKW39GWNoOg8KSLYlUdu9Ja6EOejn2xUu/ZRA zg8yJ4bf5MEnf+el0VIkJ32WKxh2O72jTguk8PMjbnxs2/9WL+/Cp6pQL6Qkh+5q Acu2qsXmEKwT54QZNh+6ixnhTYvDhXWigKPx9/pVpw8zuhXZGa4lC/Mavo4UuAlU xvmQxjg3DgN0A0aCtlXf6SnC0VKZz7qtzSKVuAN9PFlPosqxBW967QcJPGvIKqop LvTje/ssBRTt3oErskITr8zpRFSvVPopY0whZRARN73pn89ulm5vO0zf7W6WLUuL KLyXs1aH3QZO7/yZilC/0/RvR2A2RcCB -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:26 2025 by rpki-client