This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft File: iXa1-0jy5BEdeNWjzVovyhlhOXo.mft (raw, json) Hash identifier: jZcS6OiDf6fQBTTDSA7krbcsY6YH90OE3D/PvcyW1Bs= Subject key identifier: B4:89:EB:1E:95:06:4B:60:D0:1B:10:A9:33:87:F5:A5:5E:06:A4:60 Authority key identifier: 89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A Certificate issuer: /CN=A9128C7F/serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Certificate serial: 0283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft Manifest number: 0272 Signing time: Tue 23 Dec 2025 00:38:14 +0000 Manifest this update: Tue 23 Dec 2025 00:38:13 +0000 Manifest next update: Tue 30 Dec 2025 00:38:13 +0000 Files and hashes: 1: iXa1-0jy5BEdeNWjzVovyhlhOXo.crl (hash: smgFDujHgZXvZuqmFsVTEDYMgsZLNLynV494GOpIJZw=) 2: FBE538ECC55511F0B6ACB62BC4F9AE02.roa (hash: Xm8YDhtFdsbSB/JaCf1eeLvxGvfVGvAsGyj9y3iXBIE=) 3: A0A9D798C0AB11F0B1CBD10FC4F9AE02.roa (hash: meFnR87+GI3v6nomBtYeU7WZPVYP4nD3qbJitsfc+J0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C7F, serialNumber=8976B5FB48F2E4111D78D5A3CD5A2FCA1961397A Validity Not Before: Dec 23 00:38:13 2025 GMT Not After : Dec 30 00:38:13 2025 GMT Subject: CN=6949e476-a881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:54:e3:2e:fa:77:cc:50:6d:3a:7d:9d:ce:c0: 6c:66:47:0b:73:12:84:12:8e:b2:cb:58:c5:31:8c: 9c:bf:a3:7d:11:d5:03:59:56:25:91:5e:d2:1d:0d: 68:47:9e:d4:b4:77:68:fb:a7:59:c6:b1:dd:8b:79: 25:9b:95:82:88:bd:81:b1:7c:57:e8:25:f5:cf:89: f7:1a:1f:9f:42:9a:4c:7d:f1:4c:f1:d2:90:3b:26: e9:31:a5:ac:ac:24:cd:96:be:7f:a3:c3:fe:dd:8a: 9a:23:ae:3d:c4:fb:31:6a:1e:f7:66:cd:68:09:a4: 57:3e:cb:6a:cd:90:11:0d:83:02:12:42:77:2e:a9: 68:80:e5:e5:30:6f:46:47:9c:4d:ce:de:5f:c9:02: c8:14:8b:e6:fb:16:c0:16:3a:7c:5d:1a:59:4c:da: a2:d3:86:a0:60:3e:b8:93:82:36:f6:59:33:60:fc: c2:31:32:d8:06:a4:fb:43:6c:bd:71:5c:0a:b2:d6: ae:c2:3c:7c:e8:d6:34:0a:37:2b:01:89:59:2e:54: 4a:c1:fc:c4:88:b2:6a:4b:55:ad:0d:33:07:3d:37: 7f:b6:77:90:7d:a6:40:6a:42:96:7a:a6:21:0a:58: bc:ef:02:3f:86:b6:6a:bc:65:95:ec:94:83:6c:63: c8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:89:EB:1E:95:06:4B:60:D0:1B:10:A9:33:87:F5:A5:5E:06:A4:60 X509v3 Authority Key Identifier: keyid:89:76:B5:FB:48:F2:E4:11:1D:78:D5:A3:CD:5A:2F:CA:19:61:39:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXa1-0jy5BEdeNWjzVovyhlhOXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C7F/3B7BDABE3FC711EDAC9B221DC4F9AE02/iXa1-0jy5BEdeNWjzVovyhlhOXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:55:a4:60:76:37:62:10:92:6b:9c:db:be:ba:50:ec:ff:e3: 5a:e6:2d:ea:10:be:3a:19:46:2d:10:10:d7:b9:90:a4:49:c8: fa:65:b1:cd:35:79:b6:a9:23:3c:f0:a5:ed:f7:c6:63:fe:d9: d4:26:65:18:67:f5:99:93:50:32:7e:87:73:8d:12:f9:8c:2d: 7f:7f:e4:e8:e3:68:36:9f:04:b3:c6:42:e1:bf:f9:77:8a:be: 3f:1e:7b:c3:be:bc:97:46:49:51:a4:ae:4c:c0:78:b5:bf:86: 2f:b8:a3:de:a1:7e:06:08:41:88:25:21:6d:9c:9c:b6:9f:9f: bb:64:c5:0b:6f:26:39:2f:aa:42:ad:e4:9e:2d:8f:c9:cf:25: d8:79:05:62:b5:e0:ef:e5:9b:ba:2a:07:d8:10:82:1f:ff:9d: 9c:90:01:58:65:cd:ec:9c:9f:60:75:ea:20:5d:f0:33:6b:1f: 87:f1:b8:48:47:25:7b:c8:87:29:88:fb:6a:21:ce:ea:70:33: 19:bf:3d:01:55:80:bc:ea:f3:d4:f4:24:86:91:d0:81:30:40: d7:22:e0:02:30:75:a2:04:8f:bb:29:c5:78:3d:9e:3a:3e:51: 2b:fa:88:55:cd:4f:45:2d:1a:d6:72:51:95:bd:9c:7d:f2:f0: 05:ec:bf:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDN0YxMTAvBgNVBAUTKDg5NzZCNUZCNDhGMkU0MTExRDc4RDVBM0NENUEyRkNB MTk2MTM5N0EwHhcNMjUxMjIzMDAzODEzWhcNMjUxMjMwMDAzODEzWjAYMRYwFAYD VQQDDA02OTQ5ZTQ3Ni1hODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1TjLvp3zFBtOn2dzsBsZkcLcxKEEo6yy1jFMYycv6N9EdUDWVYlkV7SHQ1o R57UtHdo+6dZxrHdi3klm5WCiL2BsXxX6CX1z4n3Gh+fQppMffFM8dKQOybpMaWs rCTNlr5/o8P+3YqaI649xPsxah73Zs1oCaRXPstqzZARDYMCEkJ3LqlogOXlMG9G R5xNzt5fyQLIFIvm+xbAFjp8XRpZTNqi04agYD64k4I29lkzYPzCMTLYBqT7Q2y9 cVwKstauwjx86NY0CjcrAYlZLlRKwfzEiLJqS1WtDTMHPTd/tneQfaZAakKWeqYh Cli87wI/hrZqvGWV7JSDbGPIiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLSJ6x6V Bktg0BsQqTOH9aVeBqRgMB8GA1UdIwQYMBaAFIl2tftI8uQRHXjVo81aL8oZYTl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM3Ri8zQjdCREFCRTNG QzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVCRWRlTldqelZvdnlobGhP WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYYTEtMGp5NUJFZGVOV2p6Vm92eWhsaE9Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM3Ri8zQjdCREFCRTNGQzcxMUVEQUM5QjIyMURDNEY5QUUwMi9pWGExLTBqeTVC RWRlTldqelZvdnlobGhPWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaVaRgdjdiEJJrnNu+ulDs/+Na5i3qEL46GUYtEBDXuZCkScj6ZbHN NXm2qSM88KXt98Zj/tnUJmUYZ/WZk1AyfodzjRL5jC1/f+To42g2nwSzxkLhv/l3 ir4/HnvDvryXRklRpK5MwHi1v4YvuKPeoX4GCEGIJSFtnJy2n5+7ZMULbyY5L6pC reSeLY/JzyXYeQViteDv5Zu6KgfYEIIf/52ckAFYZc3snJ9gdeogXfAzax+H8bhI RyV7yIcpiPtqIc7qcDMZvz0BVYC86vPU9CSGkdCBMEDXIuACMHWiBI+7KcV4PZ46 PlEr+ohVzU9FLRrWclGVvZx98vAF7L85 -----END CERTIFICATE-----Generated at Tue Dec 23 12:55:14 2025 by rpki-client