This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft File: Icv-KamU2PngPkxNRObPW2SLeOw.mft (raw, json) Hash identifier: DzK6vVItzQKo/tp1jQcwvQfYXsnzU7wO/5JMdbnNqlw= Subject key identifier: 02:07:26:48:3E:34:CC:B3:E7:09:F7:B6:7F:C9:4C:49:A2:BC:F1:88 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft Manifest number: 131F Signing time: Mon 22 Dec 2025 16:44:21 +0000 Manifest this update: Mon 22 Dec 2025 16:44:20 +0000 Manifest next update: Mon 29 Dec 2025 16:44:20 +0000 Files and hashes: 1: Icv-KamU2PngPkxNRObPW2SLeOw.crl (hash: jcpfV8AMZR6DjENUH5HV4HrvqWoE5Xi8l54aL+ebV4w=) 2: AA5A77C88DB811EBA0613421C4F9AE02.roa (hash: F64rTtQK62WkoJ4T7LBeaKOnYlMCrnrGJqKnlzvZNxc=) 3: A5393FF2E70911E8B4D19B84C4F9AE02.roa (hash: V0JrvauXWXNDpsL43DjdmMpgmoTrusHbq711Y8hqbp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4916 (0x1334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9, serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Dec 22 16:44:20 2025 GMT Not After : Dec 29 16:44:20 2025 GMT Subject: CN=69497565-77fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:66:ec:73:e5:72:d6:cb:f5:cc:fe:2a:bb:c0: 59:04:81:59:f7:16:b9:49:50:8a:14:e6:bc:26:b9: ff:ec:3b:c7:1f:ff:74:df:fd:50:a1:2d:7c:02:a2: 7f:85:61:7a:1d:b7:a2:62:5a:75:4a:bd:2e:75:e6: 10:7c:27:ed:aa:5f:51:cc:0b:2b:92:ea:2d:68:53: 92:a7:78:9d:d0:f3:b2:51:bb:3a:cf:40:fb:31:3f: 37:43:ca:1a:f0:f4:28:d1:a1:59:5c:4f:3d:93:e1: 41:ec:1f:6e:13:9c:e5:2a:ba:0b:ae:33:5a:3f:fd: bc:d3:9e:eb:fd:3a:88:54:4a:b2:14:c9:c6:a9:67: 45:75:ff:eb:60:43:d3:5c:0a:cf:88:bf:74:f4:01: b5:e2:1b:11:1c:66:29:d2:a9:8b:5f:c5:04:45:52: 90:3f:bb:93:31:ff:1f:53:6a:8a:30:15:d8:ee:59: 49:cd:03:bf:96:a2:8e:77:49:b8:2a:1d:2c:f8:bf: e0:00:31:df:c0:9e:d5:43:fa:ac:a1:c5:ff:d1:41: 2a:66:ef:35:da:80:36:9c:de:82:f8:e7:73:29:12: f8:49:fb:c9:d2:d5:3e:b4:37:f8:18:80:b0:00:89: 47:db:67:ee:ab:50:44:7c:03:9c:cd:df:20:68:37: d0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:07:26:48:3E:34:CC:B3:E7:09:F7:B6:7F:C9:4C:49:A2:BC:F1:88 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:d0:ac:16:ce:0b:12:56:ac:9a:31:0d:c5:a1:35:1d:90:c9: a6:b4:56:4c:65:14:23:67:54:25:ec:d8:c2:9e:49:47:cb:0a: b4:f5:9c:3e:3e:8a:18:7f:66:77:f7:1b:c8:f2:13:d1:e4:c5: 34:ae:ee:62:43:8c:c8:dc:99:00:04:c4:47:ed:d5:3e:52:67: ca:03:15:a6:c4:09:75:7c:8a:47:59:1a:ad:b9:6c:2e:f9:e0: a0:ef:44:dd:f4:5b:52:d6:f0:81:1e:47:f1:25:8d:ca:bd:58: 6f:1f:a8:97:05:c0:db:a4:0a:56:df:32:98:ae:56:f7:e4:4e: 15:05:98:8a:ac:3c:71:75:e6:4b:58:37:d9:e4:d1:e6:50:c1: 6d:50:5b:db:ca:a7:09:23:85:1d:29:22:fc:e8:2a:71:88:e2: 2e:64:6a:d5:dc:4f:dd:cf:4e:09:b8:3d:29:75:44:37:64:57: 28:47:fe:48:7a:c5:49:d8:68:b1:de:02:c6:0b:b2:ab:92:5b: 15:db:70:1d:66:39:3d:02:f7:29:78:2a:b8:65:e6:e9:a4:a8: 39:ce:d4:3c:0f:70:1c:83:f1:f1:fe:0d:89:af:e5:78:6d:7d: 10:aa:a0:f9:0e:2e:b6:0f:6b:4e:ab:52:ae:04:3f:85:85:98: 62:70:c9:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjUxMjIyMTY0NDIwWhcNMjUxMjI5MTY0NDIwWjAYMRYwFAYD VQQDDA02OTQ5NzU2NS03N2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmbsc+Vy1sv1zP4qu8BZBIFZ9xa5SVCKFOa8Jrn/7DvHH/903/1QoS18AqJ/ hWF6HbeiYlp1Sr0udeYQfCftql9RzAsrkuotaFOSp3id0POyUbs6z0D7MT83Q8oa 8PQo0aFZXE89k+FB7B9uE5zlKroLrjNaP/28057r/TqIVEqyFMnGqWdFdf/rYEPT XArPiL909AG14hsRHGYp0qmLX8UERVKQP7uTMf8fU2qKMBXY7llJzQO/lqKOd0m4 Kh0s+L/gADHfwJ7VQ/qsocX/0UEqZu812oA2nN6C+OdzKRL4SfvJ0tU+tDf4GICw AIlH22fuq1BEfAOczd8gaDfQ2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIHJkg+ NMyz5wn3tn/JTEmivPGIMB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzJGOS9EMkVENDlDMkMyNkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQ bmdQa3hOUk9iUFcyU0xlT3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw0KwWzgsSVqyaMQ3FoTUdkMmmtFZMZRQjZ1Ql7NjCnklHywq09Zw+ PooYf2Z39xvI8hPR5MU0ru5iQ4zI3JkABMRH7dU+UmfKAxWmxAl1fIpHWRqtuWwu +eCg70Td9FtS1vCBHkfxJY3KvVhvH6iXBcDbpApW3zKYrlb35E4VBZiKrDxxdeZL WDfZ5NHmUMFtUFvbyqcJI4UdKSL86CpxiOIuZGrV3E/dz04JuD0pdUQ3ZFcoR/5I esVJ2Gix3gLGC7KrklsV23AdZjk9AvcpeCq4ZebppKg5ztQ8D3Acg/Hx/g2Jr+V4 bX0QqqD5Di62D2tOq1KuBD+FhZhicMlF -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:33 2025 by rpki-client