This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft File: iaMdROlPHMJ4ULusFsAsIKqznOU.mft (raw, json) Hash identifier: XxmQ5x5SyebuFQ6D3fwckvLNXAinX1CyAJtkzoOlx4w= Subject key identifier: 2D:68:C1:79:B1:17:C3:43:75:D1:22:59:3F:DB:F6:45:7E:C1:8D:54 Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Certificate serial: 0B2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft Manifest number: 0B1C Signing time: Sat 20 Dec 2025 18:50:58 +0000 Manifest this update: Sat 20 Dec 2025 18:50:57 +0000 Manifest next update: Sat 27 Dec 2025 18:50:57 +0000 Files and hashes: 1: iaMdROlPHMJ4ULusFsAsIKqznOU.crl (hash: acU0WzsYEWfEn23NUR2BV6CUqnmFIm8UB1pe6wTOIuM=) 2: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (hash: 89pX8L61+7/doNBHrf2hbiHhbWGDIaRrzWG5JEfI2wc=) 3: F392CF9E53A311EAB1641213C4F9AE02.roa (hash: xmLzVeIZmzkbeElNyJqCqgJSwLYX+MndAV0BI8RRNy0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2862 (0xb2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F73, serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Validity Not Before: Dec 20 18:50:57 2025 GMT Not After : Dec 27 18:50:57 2025 GMT Subject: CN=6946f011-7e4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:ad:60:1b:f0:c0:2f:0d:73:d4:e1:63:51:18: 44:91:e4:2f:40:e4:15:8e:26:4f:53:22:8b:94:52: cf:2a:9a:08:4e:32:b9:98:54:7e:44:6f:b6:e4:c6: bd:84:59:3f:e0:e7:dc:08:dc:87:10:73:29:36:fc: 98:e1:02:77:e9:cd:82:52:de:d6:21:1a:9f:63:52: ac:0e:bc:22:4c:46:b2:b6:f9:4e:61:c5:23:fd:8d: 92:9b:10:cb:49:ce:24:ee:a1:da:91:8d:1c:db:4d: 99:5a:bf:e8:33:ff:45:a2:aa:29:87:3c:85:8d:77: ca:75:f8:df:58:0c:f7:f6:63:76:f4:37:60:71:5f: 3f:08:09:78:1a:a6:5e:96:10:87:41:df:3e:5d:65: 73:55:66:37:5c:87:a0:42:7b:8e:df:90:17:c3:12: b0:a9:0e:b6:8b:21:e1:67:6e:81:72:a4:27:e0:f7: ae:1f:f3:e9:e7:74:8e:92:fc:8f:0c:34:5c:85:e8: 6b:f1:77:85:16:3b:09:2d:50:13:cf:c5:e1:f1:b4: 4b:36:29:b6:38:0e:e3:18:8d:22:4b:9c:2a:68:ca: 03:a7:7e:9d:aa:58:af:41:82:9f:7d:54:77:57:7c: 25:fb:0d:66:0a:6b:cd:17:14:97:3c:6d:78:e2:eb: 8d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:68:C1:79:B1:17:C3:43:75:D1:22:59:3F:DB:F6:45:7E:C1:8D:54 X509v3 Authority Key Identifier: keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b7:21:c9:3c:81:35:7d:2b:1a:49:bc:13:3e:e2:8a:e0:69: 2f:22:c9:fa:49:26:b4:11:15:41:4d:95:49:75:43:36:b2:0b: 62:7c:d9:1c:23:62:a6:14:c5:d4:48:82:3e:88:b8:e9:66:3e: 3e:7d:88:15:ef:f7:15:de:72:ca:da:23:8a:8f:c0:56:35:67: 7f:19:a6:d7:55:2d:e4:7a:08:77:bd:cb:68:25:33:52:af:9c: ac:12:81:a9:d3:ec:7f:6b:d4:44:bb:8c:a0:71:cb:9a:36:f8: bd:07:2d:03:55:4a:f1:7a:31:c1:86:4e:28:1d:e8:90:4a:3c: dc:77:d1:ac:48:ee:bf:30:23:ba:e4:48:2c:04:11:a8:90:d4: 38:63:d6:ae:f2:0a:aa:91:d0:ef:bc:d0:b4:b6:fc:e9:45:84: c4:eb:2d:67:5f:a9:52:fd:87:8d:89:cd:18:f9:3f:73:99:13: 9d:9c:eb:d2:c6:8d:e0:df:b0:8d:84:e0:67:9b:54:12:d3:92: b1:13:2a:e7:c4:10:d8:c2:bc:fd:26:8d:16:19:f4:02:7f:54: 69:2f:18:a5:9e:2b:e4:e6:f9:96:9e:6d:a5:79:69:6d:8b:fe: 0b:1d:1f:01:78:2c:45:b2:f2:55:a6:44:eb:cb:5c:eb:97:fe: 26:37:f1:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGNzMxMTAvBgNVBAUTKDg5QTMxRDQ0RTk0RjFDQzI3ODUwQkJBQzE2QzAyQzIw QUFCMzlDRTUwHhcNMjUxMjIwMTg1MDU3WhcNMjUxMjI3MTg1MDU3WjAYMRYwFAYD VQQDDA02OTQ2ZjAxMS03ZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg61gG/DALw1z1OFjURhEkeQvQOQVjiZPUyKLlFLPKpoITjK5mFR+RG+25Ma9 hFk/4OfcCNyHEHMpNvyY4QJ36c2CUt7WIRqfY1KsDrwiTEaytvlOYcUj/Y2SmxDL Sc4k7qHakY0c202ZWr/oM/9FoqophzyFjXfKdfjfWAz39mN29DdgcV8/CAl4GqZe lhCHQd8+XWVzVWY3XIegQnuO35AXwxKwqQ62iyHhZ26BcqQn4PeuH/Pp53SOkvyP DDRchehr8XeFFjsJLVATz8Xh8bRLNim2OA7jGI0iS5wqaMoDp36dqlivQYKffVR3 V3wl+w1mCmvNFxSXPG144uuNuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1owXmx F8NDddEiWT/b9kV+wY1UMB8GA1UdIwQYMBaAFImjHUTpTxzCeFC7rBbALCCqs5zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3My9BMjk3MDdGNjUz QTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhNSjRVTHVzRnNBc0lLcXpu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhTWRST2xQSE1KNFVMdXNGc0FzSUtxem5PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkY3My9BMjk3MDdGNjUzQTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhN SjRVTHVzRnNBc0lLcXpuT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWtyHJPIE1fSsaSbwTPuKK4GkvIsn6SSa0ERVBTZVJdUM2sgtifNkc I2KmFMXUSII+iLjpZj4+fYgV7/cV3nLK2iOKj8BWNWd/GabXVS3kegh3vctoJTNS r5ysEoGp0+x/a9REu4ygccuaNvi9By0DVUrxejHBhk4oHeiQSjzcd9GsSO6/MCO6 5EgsBBGokNQ4Y9au8gqqkdDvvNC0tvzpRYTE6y1nX6lS/YeNic0Y+T9zmROdnOvS xo3g37CNhOBnm1QS05KxEyrnxBDYwrz9Jo0WGfQCf1RpLxilnivk5vmWnm2leWlt i/4LHR8BeCxFsvJVpkTry1zrl/4mN/FA -----END CERTIFICATE-----Generated at Sun Dec 21 19:47:28 2025 by rpki-client