This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft File: 0Iw24m8k-51RTztAqON6mgS1gCU.mft (raw, json) Hash identifier: ORFKx+nms6sWBx47Y/L/RlF0KbstN47BTHJ8grhP23A= Subject key identifier: 90:7F:24:F1:EB:0A:CC:EB:5C:0E:95:FA:24:42:E2:8E:05:5A:01:28 Authority key identifier: D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 Certificate issuer: /CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Certificate serial: 34F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft Manifest number: 34EE Signing time: Mon 22 Dec 2025 14:51:20 +0000 Manifest this update: Mon 22 Dec 2025 14:51:20 +0000 Manifest next update: Mon 29 Dec 2025 14:51:20 +0000 Files and hashes: 1: 0Iw24m8k-51RTztAqON6mgS1gCU.crl (hash: Y+8zF7diR/opSu4zBg/dhi6795agzYcuORT9gz0OdMQ=) 2: 1D790596F25D11EF8C5D7036C4F9AE02.roa (hash: iNsO7cF/R2QXqUgpMP30uDesOyEoXfSG3XEpacTBeVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 14:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13552 (0x34f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E03C, serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Validity Not Before: Dec 22 14:51:20 2025 GMT Not After : Dec 29 14:51:20 2025 GMT Subject: CN=69495ae8-5b28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a4:4d:cf:d3:d7:b3:b1:1a:e7:f0:04:7b:ad: c7:98:5e:d0:90:83:68:c3:60:c7:d8:ad:a0:e7:22: aa:b1:fb:a1:8f:6e:45:5c:b2:1d:7e:11:76:11:c9: 86:3f:d1:b7:ee:8e:29:47:19:25:8a:ce:88:b1:43: ff:02:47:88:65:91:e9:b6:cc:c2:41:01:66:d9:76: 2a:2a:52:42:4f:f4:6d:03:91:11:2c:fa:67:dd:e8: 6a:56:6f:66:0b:f5:d6:2c:e8:e2:98:45:24:b4:f4: 9a:1a:95:61:52:e4:5e:87:9a:ec:34:2a:f9:c1:43: b0:ce:77:4a:e2:a1:58:a7:49:ca:dd:dd:fd:63:e3: 1f:4d:a0:94:29:28:93:92:50:3e:5e:26:b5:41:70: e4:1d:63:1c:b0:bf:7d:24:9a:1c:ec:cc:4f:d0:4b: ef:de:68:58:a3:d1:d2:0e:bd:30:6c:e8:92:39:4d: c3:8a:4a:84:a0:f8:41:8b:14:04:7c:b0:2a:32:fe: 3a:dd:2e:a1:98:7d:ac:30:5a:fc:48:f5:51:e9:41: a8:20:ae:c1:83:1a:62:42:6b:f0:58:ae:d7:32:a9: 38:91:de:64:f8:54:9f:38:ef:b3:ff:1c:ac:9f:be: ac:33:fb:5a:ad:87:68:e2:3c:36:32:88:8f:96:88: 15:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7F:24:F1:EB:0A:CC:EB:5C:0E:95:FA:24:42:E2:8E:05:5A:01:28 X509v3 Authority Key Identifier: keyid:D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:8e:f4:f9:f2:5d:dd:a0:9b:56:73:7f:8c:de:e5:f8:2a:7a: 09:25:5d:94:89:d1:72:34:35:f1:a1:a4:ee:3d:04:46:72:e6: 76:7f:51:71:b9:af:f2:6c:83:df:36:c8:e5:4f:3a:8e:d5:f7: bd:88:f3:d7:f7:49:51:5d:9c:fd:b3:4c:b6:db:05:df:76:91: 67:af:dc:e7:37:9c:e6:8a:8a:56:33:66:41:5a:1e:47:5d:13: df:5b:49:d6:ad:f0:f7:d0:ff:d3:ca:8f:25:c2:39:d1:c5:9f: 02:cf:48:91:e6:f0:7d:de:7b:79:9c:a4:e3:1a:f8:c9:b5:19: 1b:83:47:30:90:30:b5:2a:ba:be:9b:aa:c2:59:74:0d:c5:a4: e1:7c:5b:8b:51:03:2e:c2:4f:70:a0:73:9c:74:3c:71:d3:d2: 61:52:23:41:37:1d:53:5f:6b:2b:6e:2b:78:33:a6:0e:b7:40: f2:0d:f3:1f:ae:c0:77:31:a0:17:02:41:c4:24:b4:74:a0:3b: 8b:6e:14:10:28:a7:05:7a:b8:64:f4:bc:fb:38:23:8d:43:6d: bb:3c:cd:0a:8e:5c:7e:75:ce:e4:64:9f:5b:57:14:02:67:56: 04:39:a3:da:b7:d4:03:40:7a:a3:12:67:1d:89:3b:61:29:5d: 01:44:22:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwM0MxMTAvBgNVBAUTKEQwOEMzNkUyNkYyNEZCOUQ1MTRGM0I0MEE4RTM3QTlB MDRCNTgwMjUwHhcNMjUxMjIyMTQ1MTIwWhcNMjUxMjI5MTQ1MTIwWjAYMRYwFAYD VQQDDA02OTQ5NWFlOC01YjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqRNz9PXs7Ea5/AEe63HmF7QkINow2DH2K2g5yKqsfuhj25FXLIdfhF2EcmG P9G37o4pRxklis6IsUP/AkeIZZHptszCQQFm2XYqKlJCT/RtA5ERLPpn3ehqVm9m C/XWLOjimEUktPSaGpVhUuReh5rsNCr5wUOwzndK4qFYp0nK3d39Y+MfTaCUKSiT klA+Xia1QXDkHWMcsL99JJoc7MxP0Evv3mhYo9HSDr0wbOiSOU3DikqEoPhBixQE fLAqMv463S6hmH2sMFr8SPVR6UGoIK7BgxpiQmvwWK7XMqk4kd5k+FSfOO+z/xys n76sM/tarYdo4jw2MoiPlogVNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJB/JPHr CszrXA6V+iRC4o4FWgEoMB8GA1UdIwQYMBaAFNCMNuJvJPudUU87QKjjepoEtYAl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTAzQy9CNkUwRjRBQTFE OUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01MVJUenRBcU9ONm1nUzFn Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBJdzI0bThrLTUxUlR6dEFxT042bWdTMWdDVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTAzQy9CNkUwRjRBQTFEOUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01 MVJUenRBcU9ONm1nUzFnQ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyjvT58l3doJtWc3+M3uX4KnoJJV2UidFyNDXxoaTuPQRGcuZ2f1Fx ua/ybIPfNsjlTzqO1fe9iPPX90lRXZz9s0y22wXfdpFnr9znN5zmiopWM2ZBWh5H XRPfW0nWrfD30P/Tyo8lwjnRxZ8Cz0iR5vB93nt5nKTjGvjJtRkbg0cwkDC1Krq+ m6rCWXQNxaThfFuLUQMuwk9woHOcdDxx09JhUiNBNx1TX2srbit4M6YOt0DyDfMf rsB3MaAXAkHEJLR0oDuLbhQQKKcFerhk9Lz7OCONQ227PM0Kjlx+dc7kZJ9bVxQC Z1YEOaPat9QDQHqjEmcdiTthKV0BRCIQ -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:17 2025 by rpki-client