This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: v1ZSBvqoaxjbHgwMQCbEWSCumqL258AZufwv98N1Rb0= Subject key identifier: E2:07:60:FE:F9:3F:C4:49:6D:FA:20:4C:6C:49:A1:1E:C3:8E:BA:95 Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: 016C Signing time: Tue 09 Dec 2025 02:12:01 +0000 Manifest this update: Tue 09 Dec 2025 02:12:01 +0000 Manifest next update: Tue 16 Dec 2025 02:12:01 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: fuu7edsMTQ1dUUfrocOZ0ApRx1vDAK1ZnN3txFjyzfk=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: k8ciaOJiovKzhjLhsMW8Olbo59H12ftecdkV4UavoKg=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: BGxl2SOPQW6C/i2r2VN80go3aEYSETpmK67AkebR/E4=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: Z74c44o/GimXrdeWvw94wRAl3MPTrcV7W0A3AuI0ILk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Dec 2025 02:12:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B, serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Dec 9 02:12:01 2025 GMT Not After : Dec 16 02:12:01 2025 GMT Subject: CN=69378571-e63f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6a:60:4a:29:97:fa:cc:97:6b:4d:2b:67:f0: f8:78:29:22:8b:8a:37:da:6c:3a:a5:69:79:4e:12: 98:cc:6b:db:9b:70:2d:ec:c3:3f:a4:1d:7b:51:d8: d9:08:42:aa:17:6b:dd:3b:4d:31:d9:64:df:52:3b: 1b:8e:af:84:0d:34:d0:78:e0:09:a0:9c:66:e4:fa: 4d:73:19:b6:df:95:be:54:f3:ed:54:54:80:00:8a: 29:2d:22:0c:3d:0e:90:4a:6e:48:67:62:12:9e:f7: b3:9e:ee:d5:c9:40:45:61:03:57:e1:5e:80:46:e6: 7e:90:f0:7b:0d:f8:b1:42:a9:c9:f2:c3:56:5d:5b: aa:46:b5:bf:88:4c:17:18:17:e3:cb:fc:13:ab:46: 2f:9a:60:07:1f:dd:c5:cb:08:34:c4:a1:d9:a4:68: 89:d0:4f:cb:04:81:09:3a:1f:9d:c5:60:32:eb:ac: 6e:3d:94:f8:b3:e4:52:47:b2:06:71:6c:b3:05:1b: 3d:a1:ec:58:da:33:a0:18:ac:b8:0d:0a:a4:5e:c5: 28:ea:1e:41:cf:44:30:8f:3f:77:bb:60:0c:47:7d: e7:d8:41:48:4c:bb:ab:60:21:8b:44:b3:49:8e:f0: ec:af:51:67:e1:85:40:0b:09:09:a9:94:43:71:5b: d2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:07:60:FE:F9:3F:C4:49:6D:FA:20:4C:6C:49:A1:1E:C3:8E:BA:95 X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d2:c3:f7:97:d9:59:21:a2:b1:55:82:c2:82:00:be:30:d0: d8:f3:24:f1:aa:47:ff:b5:4e:00:43:4e:06:5d:0b:69:63:89: 5c:ca:2c:2e:5f:4e:36:7e:d6:f0:b6:14:65:41:39:88:ee:9c: b1:a3:50:9f:6d:e7:25:9d:53:0f:59:ba:a3:2d:2f:e4:b0:c2: 65:d2:a5:37:d8:dc:e7:f1:3c:cd:c8:83:3e:c3:17:91:99:57: a5:6b:8b:96:d7:49:2b:79:ef:95:df:56:22:65:23:b4:9a:47: 2a:ce:ef:58:38:90:fa:88:05:b4:96:bc:45:64:e9:6e:aa:ec: f2:f8:61:dd:9e:47:2d:4f:67:e6:e8:5d:3d:e9:0f:23:14:d9: 6e:7d:e8:7f:12:2c:5c:13:6f:2a:8a:7c:61:f4:8e:a1:ea:b2: d4:c3:2b:e5:18:fc:72:45:13:1d:98:e3:33:8a:a9:1b:a0:03: cf:97:be:40:97:d3:b0:d0:89:84:e7:a9:ea:47:a6:68:2a:7b: 75:0d:f8:80:67:5b:2f:c5:b4:1b:90:5a:a2:9d:b8:61:3a:87: e5:45:97:bd:57:f0:19:b4:d8:36:a2:c3:af:b7:b6:e9:06:32: be:8f:bd:d7:6b:5c:fe:38:39:10:f0:98:c5:93:b5:9e:ea:17: 1b:39:77:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjUxMjA5MDIxMjAxWhcNMjUxMjE2MDIxMjAxWjAYMRYwFAYD VQQDEw02OTM3ODU3MS1lNjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWpgSimX+syXa00rZ/D4eCkii4o32mw6pWl5ThKYzGvbm3At7MM/pB17UdjZ CEKqF2vdO00x2WTfUjsbjq+EDTTQeOAJoJxm5PpNcxm235W+VPPtVFSAAIopLSIM PQ6QSm5IZ2ISnveznu7VyUBFYQNX4V6ARuZ+kPB7DfixQqnJ8sNWXVuqRrW/iEwX GBfjy/wTq0YvmmAHH93Fywg0xKHZpGiJ0E/LBIEJOh+dxWAy66xuPZT4s+RSR7IG cWyzBRs9oexY2jOgGKy4DQqkXsUo6h5Bz0Qwjz93u2AMR33n2EFITLurYCGLRLNJ jvDsr1Fn4YVACwkJqZRDcVvSAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOIHYP75 P8RJbfogTGxJoR7DjrqVMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC0sP3l9lZIaKxVYLCggC+MNDY8yTxqkf/tU4AQ04GXQtpY4lcyiwu X042ftbwthRlQTmI7pyxo1CfbeclnVMPWbqjLS/ksMJl0qU32Nzn8TzNyIM+wxeR mVela4uW10kree+V31YiZSO0mkcqzu9YOJD6iAW0lrxFZOluquzy+GHdnkctT2fm 6F096Q8jFNlufeh/EixcE28qinxh9I6h6rLUwyvlGPxyRRMdmOMziqkboAPPl75A l9Ow0ImE56nqR6ZoKnt1DfiAZ1svxbQbkFqinbhhOoflRZe9V/AZtNg2osOvt7bp BjK+j73Xa1z+ODkQ8JjFk7We6hcbOXcN -----END CERTIFICATE-----Generated at Wed Dec 10 04:58:43 2025 by rpki-client