This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft File: IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft (raw, json) Hash identifier: GyicteAKALSe9IyGWZPZMpIeAeVFZvNdA3ehw4+kLK0= Subject key identifier: 78:33:78:DC:0D:25:65:74:F9:39:51:AA:46:65:D0:CB:30:35:CD:8E Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 0A2C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft Manifest number: 0A20 Signing time: Thu 18 Dec 2025 19:21:29 +0000 Manifest this update: Thu 18 Dec 2025 19:21:29 +0000 Manifest next update: Thu 25 Dec 2025 19:21:29 +0000 Files and hashes: 1: IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl (hash: S91x3qT0KSpLfPJbqUR+JF725xXzTbWgAbPbkti08ns=) 2: 54DD69FA839011EAB5B82263C4F9AE02.roa (hash: YJ7W6HYFgOqdoVWF2hJtmCaUJf59puKnAmoMTngU5VA=) 3: 543CDDF0839011EAB5B82263C4F9AE02.roa (hash: PG+DCY3DsnT1DiiJh/CX8LITvJqbEq/+Av+Qqgc42Yc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:21:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2604 (0xa2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Dec 18 19:21:29 2025 GMT Not After : Dec 25 19:21:29 2025 GMT Subject: CN=69445439-ebe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a0:4b:c6:3e:f6:d3:46:0b:1f:99:45:17:ba: 5f:15:a7:18:ae:75:c3:97:c5:4e:68:c4:4b:6f:d1: c0:79:7e:45:9c:e2:9b:75:23:48:9f:11:a0:d8:a2: 01:03:37:89:64:0d:bb:fb:38:98:54:89:51:41:96: 96:5e:00:8a:55:92:f2:11:a5:ac:92:16:aa:31:db: 21:47:c1:e8:f7:c4:ca:0d:3a:66:1f:26:c4:12:a5: 21:77:61:61:c3:5b:06:cf:c0:7c:16:e4:d8:a1:86: 8b:2c:c5:87:65:f9:0d:33:37:4f:0d:52:c6:85:9b: 15:66:3e:c0:55:b7:ca:7e:89:ea:d5:22:77:50:87: 14:4a:43:b2:5c:df:80:70:c9:e3:e8:69:9e:0b:59: 3d:bc:1b:62:f8:eb:0b:78:ed:5c:10:72:68:29:79: 76:b9:56:f9:0a:70:35:2e:1e:89:56:ca:c0:e9:31: ce:c3:0b:6d:10:f5:bc:a5:af:f9:25:fc:99:49:15: 66:32:0b:d2:73:61:76:6b:a0:09:cc:46:15:f3:fa: 94:d0:ba:0f:2d:d9:42:be:78:57:0d:2a:34:98:f6: 02:f1:c7:80:a2:14:60:10:71:cb:bd:e1:d4:d4:47: b8:69:93:f3:00:66:76:f8:b9:5d:f1:2c:f4:a1:2a: b3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:33:78:DC:0D:25:65:74:F9:39:51:AA:46:65:D0:CB:30:35:CD:8E X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:79:4f:40:28:64:b6:50:5b:6a:48:34:fd:90:1a:c2:b3:54: af:0c:1b:06:7b:2c:56:91:d3:f2:3c:5c:37:d2:4d:03:57:62: a6:cc:ed:8b:26:23:ae:ac:fb:ad:ab:86:fd:8f:50:31:a5:97: 0f:ef:13:e0:40:28:f0:71:42:5a:43:de:b2:63:68:d1:d6:da: f3:49:c0:38:90:bc:ce:00:de:36:65:f2:d8:d6:b2:cf:e6:82: 3f:ee:15:8f:0a:4d:4d:25:ff:8e:dd:15:f0:64:4e:e2:d1:06: bb:e9:a2:a8:9f:d0:f4:01:f9:40:06:e6:78:33:31:99:95:6a: 65:92:a8:c7:c5:a8:34:fa:12:f0:30:1d:a2:15:de:45:fd:c0: 1d:d5:8f:92:6c:22:d2:2d:de:f1:ff:2b:48:b5:2b:6c:f8:b3: 89:e6:68:21:53:0f:52:a3:da:fd:11:4a:f8:e5:8f:12:98:13: eb:58:0f:15:32:4f:41:95:47:03:83:e1:38:b1:1a:ea:43:f3: f6:36:fa:7a:b2:24:c4:d4:57:c5:99:3b:b7:64:41:ca:31:1b: de:57:4d:bf:96:84:d6:88:0f:5b:1e:2d:cf:0e:2c:0e:95:a5: 41:6a:62:19:43:53:3a:97:24:1f:58:6e:e8:14:8f:67:d4:c9: be:91:b4:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjUxMjE4MTkyMTI5WhcNMjUxMjI1MTkyMTI5WjAYMRYwFAYD VQQDDA02OTQ0NTQzOS1lYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqBLxj7200YLH5lFF7pfFacYrnXDl8VOaMRLb9HAeX5FnOKbdSNInxGg2KIB AzeJZA27+ziYVIlRQZaWXgCKVZLyEaWskhaqMdshR8Ho98TKDTpmHybEEqUhd2Fh w1sGz8B8FuTYoYaLLMWHZfkNMzdPDVLGhZsVZj7AVbfKfonq1SJ3UIcUSkOyXN+A cMnj6GmeC1k9vBti+OsLeO1cEHJoKXl2uVb5CnA1Lh6JVsrA6THOwwttEPW8pa/5 JfyZSRVmMgvSc2F2a6AJzEYV8/qU0LoPLdlCvnhXDSo0mPYC8ceAohRgEHHLveHU 1Ee4aZPzAGZ2+Lld8Sz0oSqzcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgzeNwN JWV0+TlRqkZl0MswNc2OMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9EODkxNDc4QzgzOEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNh MTRFajNVRmRaWnUxTFYtMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFeU9AKGS2UFtqSDT9kBrCs1SvDBsGeyxWkdPyPFw30k0DV2KmzO2L JiOurPutq4b9j1AxpZcP7xPgQCjwcUJaQ96yY2jR1trzScA4kLzOAN42ZfLY1rLP 5oI/7hWPCk1NJf+O3RXwZE7i0Qa76aKon9D0AflABuZ4MzGZlWplkqjHxag0+hLw MB2iFd5F/cAd1Y+SbCLSLd7x/ytItSts+LOJ5mghUw9So9r9EUr45Y8SmBPrWA8V Mk9BlUcDg+E4sRrqQ/P2Nvp6siTE1FfFmTu3ZEHKMRveV02/loTWiA9bHi3PDiwO laVBamIZQ1M6lyQfWG7oFI9n1Mm+kbS8 -----END CERTIFICATE-----Generated at Fri Dec 19 21:29:28 2025 by rpki-client