This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft File: iH4RB6g_EXT_fj54CIjbVyO3kls.mft (raw, json) Hash identifier: rWsNFkXNdjEttl47WW2D8BiUDxkweufyHnb7vdICBBs= Subject key identifier: 37:14:94:9D:09:35:33:3B:60:9A:EA:E4:37:56:BC:5E:49:33:52:4A Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft Manifest number: F0 Signing time: Wed 03 Dec 2025 03:49:13 +0000 Manifest this update: Wed 03 Dec 2025 03:49:12 +0000 Manifest next update: Wed 10 Dec 2025 03:49:12 +0000 Files and hashes: 1: iH4RB6g_EXT_fj54CIjbVyO3kls.crl (hash: KCrooSpxSQYmkpOiEERmB1kTr5bBeiOSu9FeilGrobI=) 2: 10435EE8740511EF93658977C4F9AE02.roa (hash: UNDsVo30szdipukbzlDQPptsnvJEU3B7e/F2B79HvTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 03:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806, serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Dec 3 03:49:12 2025 GMT Not After : Dec 10 03:49:12 2025 GMT Subject: CN=692fb339-bdfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d7:69:bc:6f:59:94:eb:05:b3:c2:c8:35:3c: 20:37:bc:b9:0a:3d:ea:d4:88:ba:e8:35:44:df:03: ed:db:c5:7e:45:a6:5d:25:be:24:78:4a:84:6b:e2: d7:2b:af:31:d3:fa:f4:e4:7c:3b:f0:72:4f:5d:bb: 4b:c4:c4:8f:6f:58:7a:be:9d:ba:e7:61:e2:d1:46: 73:02:81:09:81:85:4b:93:ca:24:bf:6a:bc:15:3e: d2:ea:f8:74:4e:3d:aa:be:d5:99:2c:3c:75:e7:5e: a7:62:76:12:1e:f4:83:fd:00:5a:ca:41:59:26:6e: 6e:5b:c3:19:f1:d6:4c:5a:08:51:ce:10:ac:ec:b1: aa:ac:66:88:85:44:f3:06:fe:72:3e:14:ed:87:6c: 2e:e0:39:7a:2d:94:16:cb:6d:2a:3b:fb:19:4e:5d: c8:8e:48:fe:98:8a:73:22:dd:bd:ab:37:3b:76:89: 21:ab:f4:2d:3a:ad:42:d7:0e:1a:0e:6b:d8:78:b1: 7f:96:3b:c4:a8:77:06:ba:09:84:6e:25:71:34:d3: da:70:a0:cc:cf:f1:80:7e:9b:e2:41:b4:55:30:b6: 7e:41:dd:0e:2a:ca:b0:dc:b3:3b:02:b7:9f:96:14: 36:54:bb:f9:b4:51:55:2a:8e:49:54:27:42:ac:24: 2a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:14:94:9D:09:35:33:3B:60:9A:EA:E4:37:56:BC:5E:49:33:52:4A X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:95:73:a1:65:9c:55:5d:45:70:a9:2b:40:d8:15:64:84:36: 75:14:cb:4a:0a:8c:d6:ba:45:7b:9d:8c:95:c0:2f:7b:10:57: 71:03:c6:be:88:a5:09:77:9a:a5:88:c6:f4:3b:fc:4a:5f:70: 2f:ef:f5:1e:e1:f5:3c:d8:59:69:08:31:89:e1:e1:7c:db:be: 38:20:c2:f2:71:ca:41:34:de:2c:1f:ba:03:a7:ab:f9:a4:db: 8e:c8:d5:36:88:25:c5:aa:0f:7e:b7:3e:ad:04:d0:72:a1:38: 5e:03:db:c8:f7:8e:27:7c:71:e0:b8:52:6c:30:bb:7c:a2:12: 86:ab:5d:4f:13:20:61:70:83:3e:01:b1:d0:ae:4f:4c:9e:aa: fb:20:3e:1d:52:54:54:4c:3d:ed:76:ab:3a:13:f8:d3:7a:cd: e1:f6:73:03:1d:54:7f:0d:5f:72:4a:a1:c5:9a:1a:91:a7:97: e8:ad:06:72:3c:ca:bb:b0:3e:b6:b4:b5:a4:74:d5:82:65:12: 84:4b:13:ea:30:77:f5:61:2e:1e:20:ef:8e:e0:df:b9:15:b3: dc:c6:86:d5:8d:78:1a:09:33:39:9f:a7:de:ad:86:22:43:86: a2:4c:89:41:ae:70:1b:11:ef:3c:24:da:8c:d9:4b:6a:61:1a: 55:94:4a:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU4MDYxMTAvBgNVBAUTKDg4N0UxMTA3QTgzRjExNzRGRjdFM0U3ODA4ODhEQjU3 MjNCNzkyNUIwHhcNMjUxMjAzMDM0OTEyWhcNMjUxMjEwMDM0OTEyWjAYMRYwFAYD VQQDEw02OTJmYjMzOS1iZGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqddpvG9ZlOsFs8LINTwgN7y5Cj3q1Ii66DVE3wPt28V+RaZdJb4keEqEa+LX K68x0/r05Hw78HJPXbtLxMSPb1h6vp2652Hi0UZzAoEJgYVLk8okv2q8FT7S6vh0 Tj2qvtWZLDx1516nYnYSHvSD/QBaykFZJm5uW8MZ8dZMWghRzhCs7LGqrGaIhUTz Bv5yPhTth2wu4Dl6LZQWy20qO/sZTl3Ijkj+mIpzIt29qzc7dokhq/QtOq1C1w4a DmvYeLF/ljvEqHcGugmEbiVxNNPacKDMz/GAfpviQbRVMLZ+Qd0OKsqw3LM7Aref lhQ2VLv5tFFVKo5JVCdCrCQq6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcUlJ0J NTM7YJrq5DdWvF5JM1JKMB8GA1UdIwQYMBaAFIh+EQeoPxF0/34+eAiI21cjt5Jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTgwNi9DNzM5QkFFRTZF OTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VYVF9majU0Q0lqYlZ5TzNr bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2tscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTgwNi9DNzM5QkFFRTZFOTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VY VF9majU0Q0lqYlZ5TzNrbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3lXOhZZxVXUVwqStA2BVkhDZ1FMtKCozWukV7nYyVwC97EFdxA8a+ iKUJd5qliMb0O/xKX3Av7/Ue4fU82FlpCDGJ4eF82744IMLyccpBNN4sH7oDp6v5 pNuOyNU2iCXFqg9+tz6tBNByoTheA9vI944nfHHguFJsMLt8ohKGq11PEyBhcIM+ AbHQrk9Mnqr7ID4dUlRUTD3tdqs6E/jTes3h9nMDHVR/DV9ySqHFmhqRp5forQZy PMq7sD62tLWkdNWCZRKESxPqMHf1YS4eIO+O4N+5FbPcxobVjXgaCTM5n6ferYYi Q4aiTIlBrnAbEe88JNqM2UtqYRpVlEpq -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:36 2025 by rpki-client