This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft File: ivWYKUtrI6E57fVPJCi8YZZRqhc.mft (raw, json) Hash identifier: 8qpZUcb1QIoyYi+/kpv2TK9nc1rF3HoLlnvu7gNck74= Subject key identifier: 00:F7:7C:7F:71:A0:C1:9B:D7:E9:D3:99:F4:28:2F:35:A2:F3:85:8F Authority key identifier: 8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 Certificate issuer: /CN=A917DB77/serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft Manifest number: 59 Signing time: Tue 23 Dec 2025 06:01:19 +0000 Manifest this update: Tue 23 Dec 2025 06:01:18 +0000 Manifest next update: Tue 30 Dec 2025 06:01:18 +0000 Files and hashes: 1: ivWYKUtrI6E57fVPJCi8YZZRqhc.crl (hash: VmAJfZbzRNas9B2OBOBxTLwg5qPp32wJ9wH2CWwhli4=) 2: 69F70CA058AC11F09233031BC4F9AE02.roa (hash: 2Puhp7/s84Ka+c1PIsRk7dV+hCO9uJyQczuwL9aw3Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB77, serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Validity Not Before: Dec 23 06:01:18 2025 GMT Not After : Dec 30 06:01:18 2025 GMT Subject: CN=694a302f-04e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:a7:46:d3:49:c5:0a:e7:55:45:32:11:b0: 5b:13:30:b7:3d:dd:34:4d:d2:fb:c0:ca:cb:08:88: 3a:79:c5:34:ba:58:29:02:2b:6b:dc:10:fa:98:c6: b4:3f:18:3c:23:94:b2:b4:be:dd:02:32:55:13:56: b4:c1:0d:32:f2:20:3c:dc:d8:94:97:ee:ff:37:86: c9:b4:62:89:13:cc:e1:9e:f8:6f:d3:c9:1c:9e:55: a0:e4:2a:b2:de:eb:6d:71:74:8c:16:8a:34:44:18: b8:f9:88:83:07:00:78:3d:36:95:40:44:3a:1a:30: 79:e0:62:b1:ea:27:fe:0c:eb:ef:e9:b0:99:9e:68: 40:b9:fb:fd:b9:fc:09:fe:58:43:a7:a7:8c:ff:75: ba:83:3b:28:01:e5:52:a1:27:81:44:bb:84:d1:8b: 3f:b3:df:58:79:e7:c9:8f:23:30:c7:be:34:2d:6f: 27:7c:0d:1a:57:dc:d1:e7:73:17:d9:5b:ae:1e:41: c2:89:ca:54:9b:8a:90:fa:a3:44:a7:37:37:73:ac: 33:de:be:f3:b6:74:e3:70:bf:b0:97:b0:36:e7:38: 28:19:cf:64:0b:93:53:9a:bd:25:58:ba:13:43:84: 8e:92:fb:c5:7e:17:99:04:5a:9c:e2:f8:94:e2:5f: 3e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F7:7C:7F:71:A0:C1:9B:D7:E9:D3:99:F4:28:2F:35:A2:F3:85:8F X509v3 Authority Key Identifier: keyid:8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:46:dc:74:3e:c9:77:99:af:d3:3d:a6:d3:df:a3:76:b8:ff: 3b:9f:3e:57:6e:18:99:b2:a3:09:be:76:fb:f1:d0:42:29:cd: 38:92:0e:19:a7:bf:7c:bf:90:a2:de:9a:f1:32:65:15:90:17: 28:ee:db:3f:99:cd:2a:a4:88:de:50:9e:6a:c9:35:39:b3:8c: 66:1c:35:0a:08:5c:8f:dc:e6:fe:fc:d1:5b:d1:42:0d:df:c0: 13:08:a6:45:f6:6b:d1:f4:80:b8:e2:ab:4a:df:57:03:85:c7: be:d2:ab:33:6d:75:47:ba:5e:ee:7b:4d:cc:a3:c3:90:bf:4a: 9d:40:a4:3c:8f:73:72:62:9c:15:7e:6d:68:5c:26:01:58:16: 57:7d:aa:3e:1a:8e:7f:a8:06:4f:a9:ae:61:fc:77:7f:10:f6: f3:ba:7e:f0:3f:5f:f2:3b:0d:5c:c2:a2:70:bc:2b:00:ae:d0: 64:10:de:10:78:b8:60:e2:ce:27:da:41:65:fd:1c:cd:b9:e4: b5:c5:26:83:bc:b1:26:88:97:c8:b4:14:c1:b3:91:a2:52:de: 57:e8:7b:4b:75:23:cd:4f:e5:cc:61:33:f4:74:58:01:96:68: 8e:be:6a:1a:a3:72:f1:9d:54:2b:0a:f5:90:bb:63:33:98:b8: a9:9f:94:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REI3NzExMC8GA1UEBRMoOEFGNTk4Mjk0QjZCMjNBMTM5RURGNTRGMjQyOEJDNjE5 NjUxQUExNzAeFw0yNTEyMjMwNjAxMThaFw0yNTEyMzAwNjAxMThaMBgxFjAUBgNV BAMMDTY5NGEzMDJmLTA0ZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDG4adG00nFCudVRTIRsFsTMLc93TRN0vvAyssIiDp5xTS6WCkCK2vcEPqYxrQ/ GDwjlLK0vt0CMlUTVrTBDTLyIDzc2JSX7v83hsm0YokTzOGe+G/TyRyeVaDkKrLe 621xdIwWijREGLj5iIMHAHg9NpVARDoaMHngYrHqJ/4M6+/psJmeaEC5+/25/An+ WEOnp4z/dbqDOygB5VKhJ4FEu4TRiz+z31h558mPIzDHvjQtbyd8DRpX3NHncxfZ W64eQcKJylSbipD6o0SnNzdzrDPevvO2dONwv7CXsDbnOCgZz2QLk1OavSVYuhND hI6S+8V+F5kEWpzi+JTiXz5PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAPd8f3Gg wZvX6dOZ9CgvNaLzhY8wHwYDVR0jBBgwFoAUivWYKUtrI6E57fVPJCi8YZZRqhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEQjc3LzkzNEUzNTYyNThB QTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZFNTdmVlBKQ2k4WVpaUnFo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZXWUtVdHJJNkU1N2ZWUEpDaThZWlpScWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE Qjc3LzkzNEUzNTYyNThBQTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZF NTdmVlBKQ2k4WVpaUnFoYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF1G3HQ+yXeZr9M9ptPfo3a4/zufPlduGJmyowm+dvvx0EIpzTiSDhmn v3y/kKLemvEyZRWQFyju2z+ZzSqkiN5QnmrJNTmzjGYcNQoIXI/c5v780VvRQg3f wBMIpkX2a9H0gLjiq0rfVwOFx77SqzNtdUe6Xu57Tcyjw5C/Sp1ApDyPc3JinBV+ bWhcJgFYFld9qj4ajn+oBk+prmH8d38Q9vO6fvA/X/I7DVzConC8KwCu0GQQ3hB4 uGDizifaQWX9HM255LXFJoO8sSaIl8i0FMGzkaJS3lfoe0t1I81P5cxhM/R0WAGW aI6+ahqjcvGdVCsK9ZC7YzOYuKmflBU= -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:18 2025 by rpki-client