This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: mQDfor90voUxFPaVYExdajGogIV2JMH6ZlnpE5s5LAs= Subject key identifier: C9:59:B0:F3:6C:9B:61:2B:3E:03:BB:27:7F:ED:08:57:71:38:EA:EA Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 076C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 076C Signing time: Mon 22 Dec 2025 20:53:42 +0000 Manifest this update: Mon 22 Dec 2025 20:53:42 +0000 Manifest next update: Mon 29 Dec 2025 20:53:42 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: TehYNhTS0nsjkVWbuEEG6ZLoxvpXDwcHP+ktyr41gKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:53:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1900 (0x76c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03, serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Dec 22 20:53:42 2025 GMT Not After : Dec 29 20:53:42 2025 GMT Subject: CN=6949afd6-b07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:80:fa:7f:09:0d:bf:e6:90:f1:ed:a6:f5:78: 5a:bd:2c:f4:ca:20:ca:c8:56:7d:a8:3e:d5:e9:1a: c8:e2:ba:98:f4:84:b9:ed:84:de:17:5b:8c:2f:06: 47:fd:89:09:24:c0:3e:db:3d:de:52:1f:d0:fe:52: 80:04:9a:1d:4b:77:51:c3:d4:5e:f9:a1:ae:16:0e: d2:4b:36:b0:56:ec:5f:3e:8b:c2:7e:f3:6e:dc:00: 4a:c1:0f:2d:62:19:9a:c0:9c:31:bd:8b:20:61:53: 9b:db:3d:4a:34:36:57:5a:ff:40:b9:f1:71:59:01: 54:c4:89:1c:84:23:22:33:4e:85:1a:2a:81:d7:67: 50:0a:ad:c0:85:41:95:0c:2d:71:0d:45:61:f2:f3: 33:fc:1d:fb:e3:71:c7:48:2d:36:ae:e1:2c:2d:d0: 33:32:7f:33:ae:d2:83:b4:00:f8:d1:67:4c:4e:98: fd:16:c1:03:87:f9:69:a0:54:ba:b2:86:b3:c0:9d: 0d:c5:ec:c7:67:18:f4:8a:5a:5f:68:c2:6a:66:57: f8:a7:65:5f:74:10:0c:ae:01:aa:51:b4:84:35:2e: 33:13:07:39:1c:e6:74:bd:34:c0:75:94:93:b7:18: 9c:9d:68:6e:17:e7:46:50:d9:4c:5b:4d:12:b4:ec: 33:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:59:B0:F3:6C:9B:61:2B:3E:03:BB:27:7F:ED:08:57:71:38:EA:EA X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e1:c4:59:c7:91:9a:1f:5e:ac:73:be:0c:41:3d:d1:78:79: db:21:93:dc:f2:92:62:54:88:d2:14:53:9f:65:ed:c5:0e:6e: 1c:a4:de:92:40:fb:17:55:7b:af:12:5f:b4:db:8a:83:08:00: 95:99:44:df:f5:59:e5:1c:e3:c2:62:11:23:af:fc:66:71:1e: bb:5f:56:5e:cc:11:9c:55:a6:59:c2:2e:1c:d0:46:b5:e1:49: b9:f4:ee:31:aa:dc:95:d8:6f:4e:7f:f6:c1:82:59:97:6c:1c: 54:62:78:56:36:61:0f:be:db:f3:7f:12:da:4c:91:d6:7e:03: 5e:7b:35:19:bf:40:4b:e1:74:ac:28:4b:45:40:fc:5c:4c:e7: 42:07:20:3d:d2:d4:31:8a:6e:24:3a:37:53:ba:cf:17:22:8f: b1:9b:c3:ea:80:fc:94:88:74:92:6e:2f:62:10:78:0d:38:d9: 86:1f:41:4c:41:d3:9b:77:e6:1a:d8:30:17:7a:9c:ac:dd:14: 9c:98:c1:3a:29:9f:4a:37:3d:9e:54:f0:5b:b6:87:b8:9a:26: 81:4d:96:3c:2b:e0:15:3e:d0:cf:22:91:b7:d9:1b:c3:7c:33: 92:65:6d:39:c1:5d:80:5b:5b:fe:e3:d2:73:2b:b3:d1:7e:ca: 87:65:9c:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjUxMjIyMjA1MzQyWhcNMjUxMjI5MjA1MzQyWjAYMRYwFAYD VQQDDA02OTQ5YWZkNi1iMDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYD6fwkNv+aQ8e2m9XhavSz0yiDKyFZ9qD7V6RrI4rqY9IS57YTeF1uMLwZH /YkJJMA+2z3eUh/Q/lKABJodS3dRw9Re+aGuFg7SSzawVuxfPovCfvNu3ABKwQ8t YhmawJwxvYsgYVOb2z1KNDZXWv9AufFxWQFUxIkchCMiM06FGiqB12dQCq3AhUGV DC1xDUVh8vMz/B3743HHSC02ruEsLdAzMn8zrtKDtAD40WdMTpj9FsEDh/lpoFS6 soazwJ0NxezHZxj0ilpfaMJqZlf4p2VfdBAMrgGqUbSENS4zEwc5HOZ0vTTAdZST txicnWhuF+dGUNlMW00StOwz5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMlZsPNs m2ErPgO7J3/tCFdxOOrqMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB24cRZx5GaH16sc74MQT3ReHnbIZPc8pJiVIjSFFOfZe3FDm4cpN6S QPsXVXuvEl+024qDCACVmUTf9VnlHOPCYhEjr/xmcR67X1ZezBGcVaZZwi4c0Ea1 4Um59O4xqtyV2G9Of/bBglmXbBxUYnhWNmEPvtvzfxLaTJHWfgNeezUZv0BL4XSs KEtFQPxcTOdCByA90tQxim4kOjdTus8XIo+xm8PqgPyUiHSSbi9iEHgNONmGH0FM QdObd+Ya2DAXepys3RScmME6KZ9KNz2eVPBbtoe4miaBTZY8K+AVPtDPIpG32RvD fDOSZW05wV2AW1v+49JzK7PRfsqHZZxz -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:40 2025 by rpki-client