This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: t44UvJeiUWnrL6vJ6184ylPwJ2fbW4+W0qs7lwFpGJ4= Subject key identifier: C6:74:E3:2D:43:71:09:70:82:90:FB:6A:52:B4:47:05:E1:3F:16:5E Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2DF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2DD7 Signing time: Wed 24 Dec 2025 15:23:07 +0000 Manifest this update: Wed 24 Dec 2025 15:23:07 +0000 Manifest next update: Wed 31 Dec 2025 15:23:07 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: MI1B3lqK/4vEwDZRqpLcTFAW5JYmtBuvLEKI5dBa12E=) 2: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: hRzik5kXimOwUS6S1oWYsWN9k919CD3fLtMBHNWUanA=) 3: 0F6B8D969A6B11F08E49AE43C4F9AE02.roa (hash: Pdk6bT7HhSqGJ2GX150nm/IL+DXi5SGrlxiId38sTmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11767 (0x2df7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Dec 24 15:23:07 2025 GMT Not After : Dec 31 15:23:07 2025 GMT Subject: CN=694c055b-8a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:1b:ba:59:e5:cc:4c:82:91:72:81:a7:56:6a: 2f:83:7d:d7:cd:ee:0f:98:7e:8c:eb:f3:cc:93:08: c4:5a:a0:a0:14:0d:ea:ee:4d:b8:de:bb:a0:69:f7: 86:46:86:34:92:86:c0:34:c5:22:73:d9:88:0c:ba: 2d:ec:d6:60:76:0a:a7:10:fc:18:07:9d:0e:fb:cd: 8c:ac:1c:23:47:71:11:79:d9:40:10:71:f9:cd:27: b9:f6:a9:0c:cc:66:22:2d:23:28:ed:41:5a:f9:90: eb:60:25:78:ee:e6:85:bd:9c:d1:50:66:ba:85:39: f2:53:5d:22:8e:3a:45:73:04:f6:98:c5:40:3e:09: b2:d2:58:d8:a3:b6:5f:3c:c6:69:a7:9c:ae:4b:a8: 74:cb:20:70:22:19:09:9a:66:0b:c3:a5:15:1b:da: af:12:78:7a:f3:64:f5:45:e0:73:bb:02:ae:2d:53: f4:ed:eb:81:10:66:fb:5a:3e:e6:19:28:e0:3d:7c: c2:9a:1d:eb:7b:b0:0c:3b:75:8e:57:69:63:68:dd: 63:2b:75:a1:05:c3:e4:cd:2d:de:50:d3:f1:ba:5a: 62:cd:14:ec:8a:6f:d9:4a:1a:3b:ed:64:31:3c:28: 4a:58:f0:5e:4d:47:f2:41:55:64:07:9d:05:67:5b: a5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:74:E3:2D:43:71:09:70:82:90:FB:6A:52:B4:47:05:E1:3F:16:5E X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:1e:c4:31:ce:a5:c1:c8:5b:cd:1d:2f:68:6c:e3:0c:74:d4: d7:96:26:98:4b:38:c8:12:4d:ef:22:cf:98:8b:c7:ff:4b:81: 7e:5f:05:b8:9e:9b:6c:6f:b0:cc:08:aa:da:ad:b8:9e:db:78: c9:61:96:3e:8a:be:c4:9f:53:1a:d9:b5:0c:5a:2a:7b:4f:d2: 79:7e:e5:fc:f3:07:aa:e5:d8:0f:d8:0c:fc:70:ef:e9:84:7c: 1a:eb:96:4f:67:66:e7:68:73:58:c3:f8:cd:87:42:d2:42:53: 6c:38:74:4c:cf:32:24:ae:0f:a5:e2:ae:f1:70:54:db:db:3c: a7:49:e1:10:2e:9a:18:3a:ce:dd:2b:21:20:d8:05:d5:d1:d0: e1:79:15:01:2d:1a:b3:e2:22:f1:42:45:1f:1f:d3:3e:cb:6d: 8e:33:d5:95:bb:1a:16:0b:b1:da:f5:05:cd:6a:65:c4:ba:14: 94:db:f5:26:0a:9d:ff:31:5a:e4:a7:34:ac:1a:b6:17:45:8b: a0:f7:df:e6:47:de:64:81:a7:eb:74:21:d9:07:2a:67:4b:be: 11:f5:58:a0:93:13:76:f0:29:54:3a:a4:d5:4a:48:d0:d2:25: 89:f0:55:03:ee:11:d7:bd:ea:eb:04:1b:3f:16:8b:91:e6:d5: 72:54:0c:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjUxMjI0MTUyMzA3WhcNMjUxMjMxMTUyMzA3WjAYMRYwFAYD VQQDDA02OTRjMDU1Yi04YTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRu6WeXMTIKRcoGnVmovg33Xze4PmH6M6/PMkwjEWqCgFA3q7k243rugafeG RoY0kobANMUic9mIDLot7NZgdgqnEPwYB50O+82MrBwjR3ERedlAEHH5zSe59qkM zGYiLSMo7UFa+ZDrYCV47uaFvZzRUGa6hTnyU10ijjpFcwT2mMVAPgmy0ljYo7Zf PMZpp5yuS6h0yyBwIhkJmmYLw6UVG9qvEnh682T1ReBzuwKuLVP07euBEGb7Wj7m GSjgPXzCmh3re7AMO3WOV2ljaN1jK3WhBcPkzS3eUNPxulpizRTsim/ZSho77WQx PChKWPBeTUfyQVVkB50FZ1ulaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZ04y1D cQlwgpD7alK0RwXhPxZeMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/HsQxzqXByFvNHS9obOMMdNTXliaYSzjIEk3vIs+Yi8f/S4F+XwW4 nptsb7DMCKrarbie23jJYZY+ir7En1Ma2bUMWip7T9J5fuX88weq5dgP2Az8cO/p hHwa65ZPZ2bnaHNYw/jNh0LSQlNsOHRMzzIkrg+l4q7xcFTb2zynSeEQLpoYOs7d KyEg2AXV0dDheRUBLRqz4iLxQkUfH9M+y22OM9WVuxoWC7Ha9QXNamXEuhSU2/Um Cp3/MVrkpzSsGrYXRYug99/mR95kgafrdCHZBypnS74R9VigkxN28ClUOqTVSkjQ 0iWJ8FUD7hHXverrBBs/FouR5tVyVAxs -----END CERTIFICATE-----Generated at Wed Dec 24 19:29:45 2025 by rpki-client