This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft File: -ibzSoM5sd823JwRkSBXw6WD9nM.mft (raw, json) Hash identifier: NZfji26U3HB77VilQCRxtyhgwGJyAWWdJvMAjV7LiVk= Subject key identifier: 3E:D6:63:42:78:FA:2F:C9:BA:95:34:CF:3E:51:36:1D:A4:29:E7:E4 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 03B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft Manifest number: 03AF Signing time: Mon 22 Dec 2025 23:43:34 +0000 Manifest this update: Mon 22 Dec 2025 23:43:34 +0000 Manifest next update: Mon 29 Dec 2025 23:43:34 +0000 Files and hashes: 1: -ibzSoM5sd823JwRkSBXw6WD9nM.crl (hash: r+Ah2A2DuI1y+UGxMwO7zi3685rjvwxPNqv4K/bifLY=) 2: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (hash: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 947 (0x3b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: Dec 22 23:43:34 2025 GMT Not After : Dec 29 23:43:34 2025 GMT Subject: CN=6949d7a6-db9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:7c:86:0a:84:e7:ef:80:be:83:81:b8:68:35: a7:c3:48:17:9e:14:6a:3c:ef:05:77:55:b6:b4:40: f0:8c:9b:39:01:19:52:28:6c:2e:70:c5:f7:70:aa: 78:fc:c9:60:80:1f:b4:f2:3f:9b:d9:2c:71:48:be: a7:85:98:61:9a:5d:74:af:d3:36:5c:27:05:bb:41: b8:f1:ea:20:95:b6:fc:78:16:2e:30:74:bc:58:9d: a5:4c:69:76:78:b9:22:b9:58:8f:b5:14:b7:f3:fd: ba:e0:82:ab:d0:c3:c1:e0:95:85:ea:1e:32:1d:84: 62:2b:b6:6b:31:b8:79:41:1c:a2:c9:57:43:d4:9d: 36:cd:40:6e:9e:bc:76:8d:4a:24:a1:dc:4e:0e:c8: 41:bc:89:9e:73:c6:55:0c:87:f8:bb:ed:f7:80:82: 33:06:08:11:bb:3e:02:b4:73:80:2a:f3:03:ff:99: 50:b8:30:39:7c:99:a4:89:3d:da:19:6e:2f:d7:99: 17:6a:73:70:ab:ae:db:b2:43:c5:13:6f:f2:1c:a7: 60:22:b6:96:2a:cb:4c:25:06:23:dd:a4:20:cf:5c: ef:9c:71:40:22:f1:39:fd:19:59:9c:86:6b:d6:eb: 56:56:da:a1:d8:09:d2:00:c7:2d:be:75:28:70:8e: df:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D6:63:42:78:FA:2F:C9:BA:95:34:CF:3E:51:36:1D:A4:29:E7:E4 X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:cb:d7:8c:dc:43:07:97:d0:bd:ef:2a:c7:b1:18:4c:4c:d1: 83:e4:64:3c:73:2f:a3:8c:ab:89:e9:6b:2e:5d:7c:9b:3c:ec: 1b:83:cc:61:58:16:ac:0c:71:02:ab:3e:df:e2:1f:53:97:fe: 70:35:c0:9b:fc:31:b3:68:fa:bf:da:1a:69:74:82:e2:da:af: 76:f3:0b:0e:bd:c6:3e:c2:76:27:e7:44:f3:c0:74:14:c9:80: 5d:2c:e1:ab:5f:3d:e0:f1:e4:86:34:c6:07:8c:19:01:86:23: a7:ed:62:1b:ff:4f:f2:fe:f5:62:77:5f:5d:2a:86:ba:83:67: 7b:7a:af:f9:3a:d6:05:16:41:7e:61:94:bf:12:e6:ef:02:5d: 40:94:6b:9c:11:5c:a9:c3:7c:35:f6:77:af:95:1e:ad:e7:f4: d2:bb:f5:59:38:3a:5d:d7:55:77:cf:d3:16:1b:13:38:f0:dd: 9c:d3:fe:4d:e9:aa:02:4c:dc:14:cd:29:54:9c:ab:bf:bb:1f: 33:f2:8b:f4:bc:54:7e:69:ac:0a:3c:9f:d4:b2:3a:94:37:02: 2e:4b:47:3a:55:04:d2:c1:47:a1:39:62:48:29:fa:f4:12:cb: 94:bf:0f:b3:b3:7e:12:72:6b:7e:51:7a:dd:24:00:76:19:16: 5b:fa:0e:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUxMjIyMjM0MzM0WhcNMjUxMjI5MjM0MzM0WjAYMRYwFAYD VQQDDA02OTQ5ZDdhNi1kYjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXyGCoTn74C+g4G4aDWnw0gXnhRqPO8Fd1W2tEDwjJs5ARlSKGwucMX3cKp4 /MlggB+08j+b2SxxSL6nhZhhml10r9M2XCcFu0G48eoglbb8eBYuMHS8WJ2lTGl2 eLkiuViPtRS38/264IKr0MPB4JWF6h4yHYRiK7ZrMbh5QRyiyVdD1J02zUBunrx2 jUokodxODshBvImec8ZVDIf4u+33gIIzBggRuz4CtHOAKvMD/5lQuDA5fJmkiT3a GW4v15kXanNwq67bskPFE2/yHKdgIraWKstMJQYj3aQgz1zvnHFAIvE5/RlZnIZr 1utWVtqh2AnSAMctvnUocI7f0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7WY0J4 +i/JupU0zz5RNh2kKefkMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzExQy9BOEFDNzI1MEJCQTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNk ODIzSndSa1NCWHc2V0Q5bk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXy9eM3EMHl9C97yrHsRhMTNGD5GQ8cy+jjKuJ6WsuXXybPOwbg8xh WBasDHECqz7f4h9Tl/5wNcCb/DGzaPq/2hppdILi2q928wsOvcY+wnYn50TzwHQU yYBdLOGrXz3g8eSGNMYHjBkBhiOn7WIb/0/y/vVid19dKoa6g2d7eq/5OtYFFkF+ YZS/EubvAl1AlGucEVypw3w19nevlR6t5/TSu/VZODpd11V3z9MWGxM48N2c0/5N 6aoCTNwUzSlUnKu/ux8z8ov0vFR+aawKPJ/UsjqUNwIuS0c6VQTSwUehOWJIKfr0 EsuUvw+zs34Scmt+UXrdJAB2GRZb+g4K -----END CERTIFICATE-----Generated at Wed Dec 24 15:59:08 2025 by rpki-client