This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft File: iyhQBa2gBz4MCUttpqOLtR__oaQ.mft (raw, json) Hash identifier: aLkUo45tCmdMEfu3mJl0pgm1ZHxZQl2e8CI3lQL+HWY= Subject key identifier: CC:DD:10:5F:C3:03:D5:B5:10:50:30:94:9C:2D:40:6B:F5:3A:33:0E Authority key identifier: 8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 Certificate issuer: /CN=A918D14B/serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Certificate serial: 0438 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft Manifest number: 0425 Signing time: Mon 22 Dec 2025 23:24:56 +0000 Manifest this update: Mon 22 Dec 2025 23:24:56 +0000 Manifest next update: Mon 29 Dec 2025 23:24:56 +0000 Files and hashes: 1: iyhQBa2gBz4MCUttpqOLtR__oaQ.crl (hash: Raik+Ah4PgOkyP41EQCQzt1eAYhm+Xb3J1S80M2Ppew=) 2: 989BBF70904F11EC8B118911C4F9AE02.roa (hash: sO6E1E+nR+eYc5iIU6EYUSE2ekfNEYMYq4mKBPQmsro=) 3: 58C00854905211EC90E6100FC4F9AE02.roa (hash: 5eLmPskwIg5y4gDpqWBeusWbrOc+t34TIFwmF+boTps=) 4: 7E8442B68FE511EC94D98C7BC4F9AE02.roa (hash: oJI3ab/8fzhkHDC4Wzdxeh+CGGzoOkYJ9B82+ons7t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 23:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1080 (0x438) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D14B, serialNumber=8B285005ADA0073E0C094B6DA6A38BB51FFFA1A4 Validity Not Before: Dec 22 23:24:56 2025 GMT Not After : Dec 29 23:24:56 2025 GMT Subject: CN=6949d348-50fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c7:91:78:d4:eb:dd:25:5d:e0:af:c1:1a:5e: 58:96:bd:64:37:d3:24:7b:d6:c3:21:fa:5d:27:25: b7:34:ec:81:6a:2b:ba:9a:d5:b6:8c:8c:d3:57:7f: 9e:9d:0f:76:90:ba:c9:a7:7f:53:cf:bd:39:96:08: d9:f5:6e:b0:b1:49:ca:d8:0c:e0:29:ab:af:1b:af: 54:9a:98:97:f9:cb:8f:04:c1:ce:94:6b:9c:9d:ec: 84:45:5e:fa:8f:92:2f:d3:39:d9:d0:04:5a:e6:0e: 90:9e:44:f0:53:ea:3e:41:1e:97:b7:6e:ef:fa:7b: ea:87:0d:d3:23:d4:38:e0:75:5f:b1:09:00:49:85: 61:e0:e0:1c:af:cc:43:6a:34:37:42:bf:b2:f2:71: 0b:06:cb:44:d3:30:18:60:26:18:21:2b:5a:37:7c: 60:50:b0:a7:43:50:d7:b2:9c:bd:4e:1f:ba:25:d3: ae:01:27:32:a7:00:86:ec:0f:13:1b:d0:64:32:df: 50:1d:9f:b9:f1:89:7f:d1:df:26:a4:8f:f2:ab:1d: b7:7b:0c:dd:4e:8d:ac:29:4b:05:a5:93:0e:75:b2: 74:b8:18:43:1f:6a:e2:e5:c3:64:cc:08:ab:96:ab: c2:9b:e3:5f:66:7b:37:27:15:75:7f:4a:8c:7d:d5: 9b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DD:10:5F:C3:03:D5:B5:10:50:30:94:9C:2D:40:6B:F5:3A:33:0E X509v3 Authority Key Identifier: keyid:8B:28:50:05:AD:A0:07:3E:0C:09:4B:6D:A6:A3:8B:B5:1F:FF:A1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyhQBa2gBz4MCUttpqOLtR__oaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D14B/94C898CC8FE211ECA8AFEE78C4F9AE02/iyhQBa2gBz4MCUttpqOLtR__oaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:75:47:c6:a9:6f:6c:aa:35:5c:1a:04:d5:4c:44:b6:b8:a2: 78:0c:51:23:6f:98:34:a3:8c:64:de:be:58:88:56:5e:3e:35: ae:4f:8d:0a:be:45:d3:c9:1f:81:f2:34:63:dd:fb:6d:d5:ac: 74:a2:bc:c3:4e:e4:ff:17:0b:62:51:0c:9e:0e:0a:ac:73:f9: e7:c9:ad:45:c0:4f:e2:70:42:58:fa:4d:fd:a8:1d:c7:c0:40: 37:f6:70:4b:4f:c0:a1:e9:51:71:34:5d:13:f7:f2:fe:e4:23: d9:39:d9:04:a2:5c:c7:97:28:e7:ec:5d:f9:2c:54:99:ec:bd: 03:9f:9c:3d:db:70:d6:7d:40:e0:75:58:e7:02:b7:84:f6:5d: 09:e9:73:d3:bb:84:7d:13:bd:52:88:e8:35:24:3e:d2:31:27: 2b:ff:23:a6:e9:b0:a3:95:d2:d6:03:a6:8b:9c:6b:ac:d0:8a: ba:86:4f:80:63:c4:47:54:92:2a:31:be:0b:c5:73:86:d2:0f: ab:23:8c:84:8a:3c:84:da:51:b8:51:6b:45:00:2c:c1:bd:81: da:5c:d6:1b:b0:3f:93:85:81:6e:f6:fb:e2:16:1e:fa:bf:9c: ca:90:b8:bf:cf:3f:51:56:a4:77:3b:20:be:82:ed:99:37:b5: 1f:ee:43:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxNEIxMTAvBgNVBAUTKDhCMjg1MDA1QURBMDA3M0UwQzA5NEI2REE2QTM4QkI1 MUZGRkExQTQwHhcNMjUxMjIyMjMyNDU2WhcNMjUxMjI5MjMyNDU2WjAYMRYwFAYD VQQDDA02OTQ5ZDM0OC01MGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8eReNTr3SVd4K/BGl5Ylr1kN9Mke9bDIfpdJyW3NOyBaiu6mtW2jIzTV3+e nQ92kLrJp39Tz705lgjZ9W6wsUnK2AzgKauvG69UmpiX+cuPBMHOlGucneyERV76 j5Iv0znZ0ARa5g6QnkTwU+o+QR6Xt27v+nvqhw3TI9Q44HVfsQkASYVh4OAcr8xD ajQ3Qr+y8nELBstE0zAYYCYYIStaN3xgULCnQ1DXspy9Th+6JdOuAScypwCG7A8T G9BkMt9QHZ+58Yl/0d8mpI/yqx23ewzdTo2sKUsFpZMOdbJ0uBhDH2ri5cNkzAir lqvCm+NfZns3JxV1f0qMfdWbBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzdEF/D A9W1EFAwlJwtQGv1OjMOMB8GA1UdIwQYMBaAFIsoUAWtoAc+DAlLbaaji7Uf/6Gk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDE0Qi85NEM4OThDQzhG RTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6NE1DVXR0cHFPTHRSX19v YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5aFFCYTJnQno0TUNVdHRwcU9MdFJfX29hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDE0Qi85NEM4OThDQzhGRTIxMUVDQThBRkVFNzhDNEY5QUUwMi9peWhRQmEyZ0J6 NE1DVXR0cHFPTHRSX19vYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZdUfGqW9sqjVcGgTVTES2uKJ4DFEjb5g0o4xk3r5YiFZePjWuT40K vkXTyR+B8jRj3ftt1ax0orzDTuT/FwtiUQyeDgqsc/nnya1FwE/icEJY+k39qB3H wEA39nBLT8Ch6VFxNF0T9/L+5CPZOdkEolzHlyjn7F35LFSZ7L0Dn5w923DWfUDg dVjnAreE9l0J6XPTu4R9E71SiOg1JD7SMScr/yOm6bCjldLWA6aLnGus0Iq6hk+A Y8RHVJIqMb4LxXOG0g+rI4yEijyE2lG4UWtFACzBvYHaXNYbsD+ThYFu9vviFh76 v5zKkLi/zz9RVqR3OyC+gu2ZN7Uf7kMm -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:43 2025 by rpki-client