This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft File: iX4CzNjrQDmng9AjecVf7p8M7lk.mft (raw, json) Hash identifier: S0zms3CUjC0c2fwmGePSsZVREk7+y2EdQs8unYBKH1o= Subject key identifier: D7:B6:D1:25:0F:98:0A:7F:DD:9F:FC:C2:D9:69:16:E7:6E:2E:B7:78 Authority key identifier: 89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 Certificate issuer: /CN=A9146207/serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Certificate serial: 0873 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft Manifest number: 084C Signing time: Sat 06 Dec 2025 15:39:50 +0000 Manifest this update: Sat 06 Dec 2025 15:39:50 +0000 Manifest next update: Sat 13 Dec 2025 15:39:50 +0000 Files and hashes: 1: iX4CzNjrQDmng9AjecVf7p8M7lk.crl (hash: iRwns94sSCMLy0Jv+xGz2G+wKJdpLw6ZUrQ3yaIwlTI=) 2: E19826A0EAA511EBA4C1F32CC4F9AE02.roa (hash: tG1HGaU5DUimsEMDFRA50jlq68FCzHx0C3arFNqcuaY=) 3: 0CC38EEC80E711EBB8CFF825C4F9AE02.roa (hash: MfRtvCwn59famvfu05RMk6NPUwzQW1gti+aq8XhNzyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2163 (0x873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=897E02CCD8EB4039A783D02379C55FEE9F0CEE59 Validity Not Before: Dec 6 15:39:50 2025 GMT Not After : Dec 13 15:39:50 2025 GMT Subject: CN=69344e46-d54f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:23:14:2f:39:dc:0d:74:ba:8d:62:88:83:f9: 15:2f:62:11:02:f1:b9:61:22:71:bb:32:85:3f:4d: 6c:8d:9c:53:f1:f6:5c:51:a2:ea:63:89:2e:9b:2b: 59:41:dd:bc:f1:1b:8f:2b:89:05:79:16:e1:d8:38: fb:d8:a9:94:f6:92:42:7e:3a:0d:35:cd:60:0f:fc: 88:db:eb:65:43:9e:06:89:5b:60:50:f1:a9:19:50: f0:ba:43:bf:61:40:77:41:39:98:8a:34:a5:f6:38: 0e:77:20:46:df:d9:08:41:29:0d:4e:b7:c8:72:93: 49:ce:a7:c2:89:aa:b4:d5:8c:fa:d6:73:c6:8a:5b: d2:6d:e3:4f:f7:9a:ce:fa:14:57:8a:e0:a4:5f:81: 6c:55:33:97:bc:84:b9:ec:a4:4d:fa:ca:27:58:ad: a8:9b:f4:1e:13:7e:08:3b:59:6a:97:cd:eb:96:3b: 63:8b:70:72:29:e5:17:4b:6e:ff:68:4a:a4:e3:97: f1:62:6b:59:f0:3a:af:c0:48:95:51:4b:2c:88:14: f7:4d:dd:b7:18:20:03:16:20:6e:29:92:30:40:ec: 22:2e:6e:c8:52:9b:71:0f:d1:06:55:7d:84:d6:82: 76:5e:17:7a:b3:e4:60:ad:ad:18:3c:c0:a5:85:18: 46:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B6:D1:25:0F:98:0A:7F:DD:9F:FC:C2:D9:69:16:E7:6E:2E:B7:78 X509v3 Authority Key Identifier: keyid:89:7E:02:CC:D8:EB:40:39:A7:83:D0:23:79:C5:5F:EE:9F:0C:EE:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iX4CzNjrQDmng9AjecVf7p8M7lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/8C68B9A2098111EB9D461B30C4F9AE02/iX4CzNjrQDmng9AjecVf7p8M7lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:2c:e8:0f:ed:75:27:e0:c1:aa:5b:64:8f:0e:ef:0b:b2:9b: c9:99:56:44:13:cd:9c:4b:bb:e0:b7:5e:33:63:92:ad:a8:b0: bb:1c:7e:e6:55:79:4e:06:a3:98:52:e5:c5:9c:55:b9:6b:c4: cf:a5:eb:8c:0d:b1:c1:76:b5:ad:37:89:07:8b:94:9a:c6:2d: a6:7e:59:92:8d:6a:9e:f8:93:31:39:da:36:a3:15:e5:8e:d6: 8d:5b:c3:0c:9e:ae:40:4d:69:1f:c3:e9:24:42:21:44:9d:9d: 9d:01:03:be:6a:47:3b:00:87:b9:9d:60:ee:57:db:b3:f8:5e: 22:6a:06:c8:11:da:74:90:e6:2b:cf:b7:3f:1e:ac:ad:38:04: 60:5e:08:15:ff:20:77:d1:d1:e9:2a:b9:45:79:0f:3a:6e:0d: f7:34:8b:c8:03:e6:c1:f2:09:cc:77:1f:98:59:2d:b6:c1:92: 96:0f:23:ac:67:8b:d3:12:de:fe:0a:c3:4b:04:ff:52:46:fa: a0:e2:d1:7e:f7:40:53:03:37:41:08:58:61:db:6c:c1:71:9b: 34:1c:6f:a2:29:c0:79:0c:bb:47:a9:8c:00:ef:e9:0f:2f:0c: bc:e6:8d:0c:6e:10:45:4b:8b:e6:27:2c:03:c4:fe:d4:f2:ce: 6c:8f:df:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDg5N0UwMkNDRDhFQjQwMzlBNzgzRDAyMzc5QzU1RkVF OUYwQ0VFNTkwHhcNMjUxMjA2MTUzOTUwWhcNMjUxMjEzMTUzOTUwWjAYMRYwFAYD VQQDEw02OTM0NGU0Ni1kNTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSMULzncDXS6jWKIg/kVL2IRAvG5YSJxuzKFP01sjZxT8fZcUaLqY4kumytZ Qd288RuPK4kFeRbh2Dj72KmU9pJCfjoNNc1gD/yI2+tlQ54GiVtgUPGpGVDwukO/ YUB3QTmYijSl9jgOdyBG39kIQSkNTrfIcpNJzqfCiaq01Yz61nPGilvSbeNP95rO +hRXiuCkX4FsVTOXvIS57KRN+sonWK2om/QeE34IO1lql83rljtji3ByKeUXS27/ aEqk45fxYmtZ8DqvwEiVUUssiBT3Td23GCADFiBuKZIwQOwiLm7IUptxD9EGVX2E 1oJ2Xhd6s+Rgra0YPMClhRhG3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNe20SUP mAp/3Z/8wtlpFuduLrd4MB8GA1UdIwQYMBaAFIl+AszY60A5p4PQI3nFX+6fDO5Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy84QzY4QjlBMjA5 ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFEbW5nOUFqZWNWZjdwOE03 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lYNEN6TmpyUURtbmc5QWplY1ZmN3A4TTdsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjIwNy84QzY4QjlBMjA5ODExMUVCOUQ0NjFCMzBDNEY5QUUwMi9pWDRDek5qclFE bW5nOUFqZWNWZjdwOE03bGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArLOgP7XUn4MGqW2SPDu8LspvJmVZEE82cS7vgt14zY5KtqLC7HH7m VXlOBqOYUuXFnFW5a8TPpeuMDbHBdrWtN4kHi5Saxi2mflmSjWqe+JMxOdo2oxXl jtaNW8MMnq5ATWkfw+kkQiFEnZ2dAQO+akc7AIe5nWDuV9uz+F4iagbIEdp0kOYr z7c/HqytOARgXggV/yB30dHpKrlFeQ86bg33NIvIA+bB8gnMdx+YWS22wZKWDyOs Z4vTEt7+CsNLBP9SRvqg4tF+90BTAzdBCFhh22zBcZs0HG+iKcB5DLtHqYwA7+kP Lwy85o0MbhBFS4vmJywDxP7U8s5sj9/G -----END CERTIFICATE-----Generated at Sun Dec 7 03:38:10 2025 by rpki-client