This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft File: IPxzgnJ0AC605K7oniD9DRc_soU.mft (raw, json) Hash identifier: w/DVGgzdgMwUhE0yEaH5ulyWCNp0mSkVQUJv+zYGHUw= Subject key identifier: 8F:E1:E4:C3:B1:D6:F0:A6:C7:62:BD:49:A0:48:1D:CE:AD:A7:24:A6 Authority key identifier: 20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 Certificate issuer: /CN=A91578DF/serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft Manifest number: 36 Signing time: Tue 23 Dec 2025 06:25:18 +0000 Manifest this update: Tue 23 Dec 2025 06:25:17 +0000 Manifest next update: Tue 30 Dec 2025 06:25:17 +0000 Files and hashes: 1: IPxzgnJ0AC605K7oniD9DRc_soU.crl (hash: FXdOgekpw4QQQ9Lk8iZmQ/YhNAasssL3LvuVAekDTug=) 2: 067CE6C895C811F09500A713C4F9AE02.roa (hash: DaXXWX4PSZTEEnKA/Wr/hB6+tz0WGbj29+yIsXyWSwM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:25:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91578DF, serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Validity Not Before: Dec 23 06:25:17 2025 GMT Not After : Dec 30 06:25:17 2025 GMT Subject: CN=694a35ce-7aa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:92:05:b0:fa:4d:3e:a3:8d:2f:77:19:f5:64: 68:a9:9d:7f:ab:a2:d4:c5:6a:13:26:05:2d:bc:45: 02:db:0e:2e:f7:31:69:7a:9c:3b:4e:dd:cf:60:74: 98:26:61:d8:9c:d0:99:55:fe:16:13:21:03:02:d5: 9d:90:de:46:83:6e:d1:63:f8:43:11:16:55:aa:8e: a8:44:e3:64:33:ad:75:31:bf:bd:49:33:33:0b:26: cb:25:da:07:c5:bb:e6:cf:2a:cc:db:69:41:fb:d6: 33:c9:7b:91:2b:37:1a:aa:ef:96:6a:12:19:3b:06: b7:f6:79:4a:f2:c4:10:2d:fd:5a:d9:14:ca:5e:dd: 22:21:3a:af:17:32:08:e7:26:29:12:9b:81:71:6b: f5:38:a4:c0:79:bb:2f:6e:b9:fb:6b:50:f1:58:c3: dc:66:cb:3a:1d:69:a9:3f:c5:da:27:37:dd:90:2d: 80:f5:ed:2d:c1:ad:83:6c:c6:47:cc:38:f1:ea:4b: 5f:5a:7a:74:7b:f8:ab:b1:79:66:19:1f:08:35:14: f6:e2:8c:13:6e:86:b3:5c:e4:9a:92:15:a1:00:fd: 13:6e:a3:67:30:2a:33:48:16:a6:1c:be:cc:67:9f: c3:c8:a4:9d:f3:5f:68:91:d4:7d:36:b4:0b:38:76: 74:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E1:E4:C3:B1:D6:F0:A6:C7:62:BD:49:A0:48:1D:CE:AD:A7:24:A6 X509v3 Authority Key Identifier: keyid:20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:7f:ba:cc:4c:d3:5a:ab:46:51:fe:68:1c:99:6f:ee:1b:fb: 95:28:97:60:f3:4c:c5:57:a7:92:0b:cf:cf:4f:c0:d8:a8:25: 6c:17:5b:6d:92:e8:cc:2f:df:10:c1:51:4d:43:2f:08:00:a0: 00:33:8b:18:eb:f8:1f:91:a5:e1:a7:86:2b:06:42:a0:3b:3f: b9:7a:64:e8:77:31:03:34:42:54:88:dc:55:6f:1d:2d:39:dc: ef:f0:8f:e2:0d:9a:fe:3a:a9:e4:90:a1:0d:a4:27:22:7d:a2: 89:d5:e9:99:70:77:9a:59:95:f3:5a:44:20:32:6a:25:92:44: 6b:54:73:5a:6d:7a:30:93:e7:fd:4c:c7:d9:3f:11:54:e4:fa: 17:1c:c5:32:80:ff:c7:da:05:73:d2:97:3e:ba:a4:9e:39:d4: de:8a:78:63:27:d5:b7:d7:0b:a1:44:8d:1f:75:8b:2d:b0:26: 9e:b8:ce:60:98:95:5e:6c:2e:e7:35:be:6c:8a:86:01:ec:1d: b8:32:25:fc:25:70:4a:1d:cd:03:8f:68:7a:d3:68:94:b2:40: 56:b5:ee:ae:01:6d:b9:e3:3f:14:f6:45:6a:d7:82:f7:51:d6: d9:7d:fd:4d:d3:f6:55:cb:ab:bd:40:bc:40:4f:1b:0e:90:57: 45:6e:42:a2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NzhERjExMC8GA1UEBRMoMjBGQzczODI3Mjc0MDAyRUI0RTRBRUU4OUUyMEZEMEQx NzNGQjI4NTAeFw0yNTEyMjMwNjI1MTdaFw0yNTEyMzAwNjI1MTdaMBgxFjAUBgNV BAMMDTY5NGEzNWNlLTdhYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCskgWw+k0+o40vdxn1ZGipnX+rotTFahMmBS28RQLbDi73MWl6nDtO3c9gdJgm Ydic0JlV/hYTIQMC1Z2Q3kaDbtFj+EMRFlWqjqhE42QzrXUxv71JMzMLJssl2gfF u+bPKszbaUH71jPJe5ErNxqq75ZqEhk7Brf2eUryxBAt/VrZFMpe3SIhOq8XMgjn JikSm4Fxa/U4pMB5uy9uuftrUPFYw9xmyzodaak/xdonN92QLYD17S3BrYNsxkfM OPHqS19aenR7+KuxeWYZHwg1FPbijBNuhrNc5JqSFaEA/RNuo2cwKjNIFqYcvsxn n8PIpJ3zX2iR1H02tAs4dnSNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj+Hkw7HW 8KbHYr1JoEgdzq2nJKYwHwYDVR0jBBgwFoAUIPxzgnJ0AC605K7oniD9DRc/soUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3OERGLzA1MUNGMUQ0OTVD NzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2MDVLN29uaUQ5RFJjX3Nv VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVB4emduSjBBQzYwNUs3b25pRDlEUmNfc29VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 OERGLzA1MUNGMUQ0OTVDNzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2 MDVLN29uaUQ5RFJjX3NvVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACd/usxM01qrRlH+aByZb+4b+5Uol2DzTMVXp5ILz89PwNioJWwXW22S 6Mwv3xDBUU1DLwgAoAAzixjr+B+RpeGnhisGQqA7P7l6ZOh3MQM0QlSI3FVvHS05 3O/wj+INmv46qeSQoQ2kJyJ9oonV6Zlwd5pZlfNaRCAyaiWSRGtUc1ptejCT5/1M x9k/EVTk+hccxTKA/8faBXPSlz66pJ451N6KeGMn1bfXC6FEjR91iy2wJp64zmCY lV5sLuc1vmyKhgHsHbgyJfwlcEodzQOPaHrTaJSyQFa17q4BbbnjPxT2RWrXgvdR 1tl9/U3T9lXLq71AvEBPGw6QV0VuQqI= -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:57 2025 by rpki-client