This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft File: iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft (raw, json) Hash identifier: A9zpnpwUHtRc9FMRLYGlgCbkdfZfdAmPUM3rPqMcuBE= Subject key identifier: 62:82:46:3C:32:AB:94:F1:3C:02:24:A8:35:49:36:25:BF:65:3B:E3 Authority key identifier: 88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 Certificate issuer: /CN=A9157DA0/serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Certificate serial: 3515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft Manifest number: 3501 Signing time: Sat 20 Dec 2025 14:34:34 +0000 Manifest this update: Sat 20 Dec 2025 14:34:34 +0000 Manifest next update: Sat 27 Dec 2025 14:34:34 +0000 Files and hashes: 1: iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl (hash: jEytRVTh9vL+KB3/tt/dwe8/o+MG9fXz6IO/zfTrZ6I=) 2: E52708AADFCE11EFBC4CD631C4F9AE02.roa (hash: /pC0o36JZbc/+sMAFn6ZasM1rRw+KC7uxqzujpRX3bY=) 3: 075152B253CB11F09DA22358C4F9AE02.roa (hash: zuQumTbCd8/+WRCpCpTlfL5cCnKF+yOSXxN8EoHEiUM=) 4: 10BC8836509B11F0A1C78F35C4F9AE02.roa (hash: 5P8iz2/f75JawHS84+uOtc39+Wj5fIfZ/CgqWjpJHIs=) 5: E4BA3CE8DFCE11EFBC4CD631C4F9AE02.roa (hash: H2psEBDgMdRvNZgUPZApVJCLqrPQ8EnSpGElYQR9ZLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:30:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13589 (0x3515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA0, serialNumber=8887CF6CF5102F0FB713F4C4A1BDE389481F1C44 Validity Not Before: Dec 20 14:34:34 2025 GMT Not After : Dec 27 14:34:34 2025 GMT Subject: CN=6946b3fa-4416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:60:07:16:f4:cd:55:33:7d:cb:69:69:fc:57: 8b:d4:46:78:f3:a3:76:0e:e5:20:66:60:64:0b:a4: 79:19:81:b6:56:f2:c6:4f:d1:42:34:6b:d5:8b:4f: fe:62:b9:3b:df:cd:b7:63:35:77:37:b5:b9:1a:59: d3:bc:39:1c:2f:81:ae:32:0d:c0:e4:24:f8:f7:a7: f6:47:2d:4b:4c:cb:d3:df:db:6e:31:10:36:57:3d: b5:e8:66:6c:cb:27:72:33:e4:8d:fc:c5:57:9f:9b: 20:5c:4f:32:25:ed:14:a9:38:3b:cf:ce:ca:b6:ed: 13:13:67:5a:2a:a1:0c:3c:5a:17:4f:ac:23:8a:03: 08:1e:5a:7d:3c:8d:82:a0:29:d3:86:61:0a:00:bf: 69:af:66:26:ce:26:06:5c:da:5a:fe:67:81:98:5d: 50:37:89:31:4a:09:95:c2:cf:ea:3d:39:c8:b9:ad: b7:5b:c8:fb:f3:5c:75:cb:8c:bd:68:81:b9:17:b9: 1d:01:f0:54:84:23:0b:56:09:0b:9b:b8:2a:03:ee: 1e:4c:e4:55:fe:65:5b:1d:a6:57:67:46:0a:99:55: d0:75:a8:f4:86:7c:12:fc:b4:a2:53:8d:ad:d6:cd: 7d:a1:f3:01:9f:09:3a:ae:07:5f:cb:ec:50:fd:9b: f8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:82:46:3C:32:AB:94:F1:3C:02:24:A8:35:49:36:25:BF:65:3B:E3 X509v3 Authority Key Identifier: keyid:88:87:CF:6C:F5:10:2F:0F:B7:13:F4:C4:A1:BD:E3:89:48:1F:1C:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA0/3A0D93101D8C11E28EFF57E708B02CD2/iIfPbPUQLw-3E_TEob3jiUgfHEQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:6d:d5:80:91:4c:c1:80:8b:0f:75:0a:76:be:27:d5:cc:c4: 2f:33:a2:95:27:d8:f1:44:41:4a:c9:56:f3:68:14:b3:ea:a6: 72:b6:84:be:ef:26:af:b5:22:a1:16:37:46:5c:2a:95:f6:ee: 18:13:3e:51:cd:93:f0:e3:a1:a3:26:cf:78:55:a2:dc:17:3a: 54:8c:fc:aa:be:1e:3c:84:86:ec:ea:38:f0:a4:2f:21:7c:71: 52:45:e2:f8:a2:44:76:ab:31:a0:dd:c2:21:6e:1a:72:1b:81: 3c:8f:48:b4:32:4a:1c:60:3b:31:e3:60:ce:29:24:1d:ef:51: 9b:6a:e1:7b:ae:fd:b1:1c:fe:d4:13:ed:82:05:db:06:b6:5a: ec:74:57:30:d0:11:d2:cb:19:a2:f7:81:b1:03:0b:13:6b:1e: 51:d7:85:da:e2:70:bb:c0:10:6d:f8:11:73:ec:49:0b:f8:6b: 1f:1e:9b:41:9b:33:5c:71:21:0b:f9:f8:5d:eb:aa:c8:9c:a0: 0d:d0:92:9d:00:39:3f:f3:68:25:47:30:55:d3:64:ca:d2:28: 9c:f7:a7:27:cd:e0:fe:de:f2:51:63:a7:de:01:7a:4e:ff:14: f4:2b:78:c6:45:43:30:10:fb:7c:f9:7b:e9:c6:d0:96:5c:89: b2:5f:20:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTAxMTAvBgNVBAUTKDg4ODdDRjZDRjUxMDJGMEZCNzEzRjRDNEExQkRFMzg5 NDgxRjFDNDQwHhcNMjUxMjIwMTQzNDM0WhcNMjUxMjI3MTQzNDM0WjAYMRYwFAYD VQQDDA02OTQ2YjNmYS00NDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWAHFvTNVTN9y2lp/FeL1EZ486N2DuUgZmBkC6R5GYG2VvLGT9FCNGvVi0/+ Yrk73823YzV3N7W5GlnTvDkcL4GuMg3A5CT496f2Ry1LTMvT39tuMRA2Vz216GZs yydyM+SN/MVXn5sgXE8yJe0UqTg7z87Ktu0TE2daKqEMPFoXT6wjigMIHlp9PI2C oCnThmEKAL9pr2YmziYGXNpa/meBmF1QN4kxSgmVws/qPTnIua23W8j781x1y4y9 aIG5F7kdAfBUhCMLVgkLm7gqA+4eTORV/mVbHaZXZ0YKmVXQdaj0hnwS/LSiU42t 1s19ofMBnwk6rgdfy+xQ/Zv4fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKCRjwy q5TxPAIkqDVJNiW/ZTvjMB8GA1UdIwQYMBaAFIiHz2z1EC8PtxP0xKG944lIHxxE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBMC8zQTBEOTMxMDFE OEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3LTNFX1RFb2IzamlVZ2ZI RVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lJZlBiUFVRTHctM0VfVEVvYjNqaVVnZkhFUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBMC8zQTBEOTMxMDFEOEMxMUUyOEVGRjU3RTcwOEIwMkNEMi9pSWZQYlBVUUx3 LTNFX1RFb2IzamlVZ2ZIRVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBObdWAkUzBgIsPdQp2vifVzMQvM6KVJ9jxREFKyVbzaBSz6qZytoS+ 7yavtSKhFjdGXCqV9u4YEz5RzZPw46GjJs94VaLcFzpUjPyqvh48hIbs6jjwpC8h fHFSReL4okR2qzGg3cIhbhpyG4E8j0i0MkocYDsx42DOKSQd71GbauF7rv2xHP7U E+2CBdsGtlrsdFcw0BHSyxmi94GxAwsTax5R14Xa4nC7wBBt+BFz7EkL+GsfHptB mzNccSEL+fhd66rInKAN0JKdADk/82glRzBV02TK0iic96cnzeD+3vJRY6feAXpO /xT0K3jGRUMwEPt8+XvpxtCWXImyXyDj -----END CERTIFICATE-----Generated at Sat Dec 20 16:06:20 2025 by rpki-client