This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft File: ips7kjmTluj8a4YwntVzMMlOEX0.mft (raw, json) Hash identifier: iwbnwafpblMKJmB9xNvnXRxP/Hnp2KRxKh6/mSU+XbU= Subject key identifier: A4:9C:4E:7B:C6:55:EA:61:AF:E4:4C:C3:66:59:C3:F9:9C:C1:11:F8 Authority key identifier: 8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D Certificate issuer: /CN=A919A3CA/serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Certificate serial: 09F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft Manifest number: 09EC Signing time: Mon 22 Dec 2025 19:19:05 +0000 Manifest this update: Mon 22 Dec 2025 19:19:05 +0000 Manifest next update: Mon 29 Dec 2025 19:19:05 +0000 Files and hashes: 1: ips7kjmTluj8a4YwntVzMMlOEX0.crl (hash: oNUN6y+CJO9jssyaRNo9f2hI3TX5rWPp3inHF4HqHek=) 2: B972C58C8FA611EAB095C928C4F9AE02.roa (hash: pd0z6Py0ljyQXcBSw2555Qfaeo+rQ0qMyZ2LLvuE2Pc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2549 (0x9f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A3CA, serialNumber=8A9B3B92399396E8FC6B86309ED57330C94E117D Validity Not Before: Dec 22 19:19:05 2025 GMT Not After : Dec 29 19:19:05 2025 GMT Subject: CN=694999a9-d303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9e:59:9f:e8:94:73:ab:3b:7a:13:4c:72:56: 81:fd:7b:b0:48:9c:2a:2a:a6:7e:50:87:bb:cc:8b: 11:89:7d:81:ef:12:40:2d:0c:1b:4b:a6:4d:b2:3c: 36:bc:bd:42:45:1f:fe:ec:39:32:60:92:a2:6c:38: 0d:2a:a2:32:1e:31:18:85:12:5e:80:5c:e3:bd:57: a9:4c:5d:1b:40:85:87:72:ca:98:b3:1c:a2:0a:a1: ce:db:7b:43:40:72:59:b8:7f:36:5c:24:3f:a5:89: e4:cb:f7:67:d6:b1:d0:23:ba:75:a8:2c:be:b3:b1: 64:2c:54:ca:9c:f6:52:f7:d2:a8:15:c0:24:46:76: 45:2e:12:5b:66:5b:79:87:eb:aa:a7:7e:e4:96:4b: 2a:61:cb:d8:2c:db:4f:f8:7d:96:9c:74:30:5c:a7: e9:a3:37:94:84:bc:fd:29:a3:23:fb:14:c5:aa:67: 22:8a:a1:ba:b5:29:a3:f5:38:07:b4:9b:37:68:09: da:7b:88:1b:dc:5a:b6:f6:47:56:b6:8c:b9:b4:cf: 45:3c:95:fa:02:79:67:63:61:df:18:27:a9:0f:e8: 37:50:a9:f1:7c:90:e1:e5:5d:c8:78:dd:de:8a:ec: 7d:ab:fb:9b:c9:1e:f5:44:dd:b0:19:71:9e:d3:6d: 58:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:9C:4E:7B:C6:55:EA:61:AF:E4:4C:C3:66:59:C3:F9:9C:C1:11:F8 X509v3 Authority Key Identifier: keyid:8A:9B:3B:92:39:93:96:E8:FC:6B:86:30:9E:D5:73:30:C9:4E:11:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ips7kjmTluj8a4YwntVzMMlOEX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A3CA/57D238028FA211EA8EC06E1CC4F9AE02/ips7kjmTluj8a4YwntVzMMlOEX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:81:47:13:79:34:88:c2:7b:f1:fd:ca:b8:eb:bc:eb:ae:0e: b2:36:df:3b:43:4e:3d:f1:40:a1:45:40:f5:4d:09:c8:5d:f4: 4d:f2:5c:e8:2e:e3:93:41:6b:2c:5b:ac:83:a3:f4:51:fe:bb: d1:13:81:02:f8:79:4f:87:c1:d4:fa:12:99:67:76:8f:f6:1d: df:d3:d1:5a:2b:6e:35:09:8b:e9:24:dd:c8:16:46:47:6f:8c: 14:30:7a:63:5a:8b:cb:67:5a:11:4b:4c:cf:61:d7:c8:9d:5d: e2:74:9e:65:fa:f2:5d:79:de:1d:5a:9f:5e:6f:d9:87:71:7a: 23:9e:d4:93:11:a0:50:b3:ec:a4:45:f3:32:91:a2:41:82:5c: fb:a5:13:e0:eb:f4:65:77:65:33:c2:0d:c2:41:0a:51:4f:14: 91:e5:14:81:e7:6d:06:3a:07:4a:33:b1:7f:5c:a7:e9:c9:44: 58:af:77:b8:3b:b1:e8:d3:ed:07:03:b1:2d:e5:f8:27:8a:78: 53:02:90:ae:f0:59:6d:35:a1:65:a8:7a:d7:db:1f:bc:6a:ae: 8b:2f:fa:b2:64:0f:b5:fe:1d:34:45:9f:6c:8e:48:b2:fc:63: c0:6f:61:76:a0:55:12:bc:85:46:65:b4:f9:05:68:d2:6a:36: 22:96:07:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEzQ0ExMTAvBgNVBAUTKDhBOUIzQjkyMzk5Mzk2RThGQzZCODYzMDlFRDU3MzMw Qzk0RTExN0QwHhcNMjUxMjIyMTkxOTA1WhcNMjUxMjI5MTkxOTA1WjAYMRYwFAYD VQQDDA02OTQ5OTlhOS1kMzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ5Zn+iUc6s7ehNMclaB/XuwSJwqKqZ+UIe7zIsRiX2B7xJALQwbS6ZNsjw2 vL1CRR/+7DkyYJKibDgNKqIyHjEYhRJegFzjvVepTF0bQIWHcsqYsxyiCqHO23tD QHJZuH82XCQ/pYnky/dn1rHQI7p1qCy+s7FkLFTKnPZS99KoFcAkRnZFLhJbZlt5 h+uqp37klksqYcvYLNtP+H2WnHQwXKfpozeUhLz9KaMj+xTFqmciiqG6tSmj9TgH tJs3aAnae4gb3Fq29kdWtoy5tM9FPJX6AnlnY2HfGCepD+g3UKnxfJDh5V3IeN3e iux9q/ubyR71RN2wGXGe021YBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKScTnvG Vephr+RMw2ZZw/mcwRH4MB8GA1UdIwQYMBaAFIqbO5I5k5bo/GuGMJ7VczDJThF9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTNDQS81N0QyMzgwMjhG QTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1ajhhNFl3bnRWek1NbE9F WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwczdram1UbHVqOGE0WXdudFZ6TU1sT0VYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTNDQS81N0QyMzgwMjhGQTIxMUVBOEVDMDZFMUNDNEY5QUUwMi9pcHM3a2ptVGx1 ajhhNFl3bnRWek1NbE9FWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOgUcTeTSIwnvx/cq467zrrg6yNt87Q0498UChRUD1TQnIXfRN8lzo LuOTQWssW6yDo/RR/rvRE4EC+HlPh8HU+hKZZ3aP9h3f09FaK241CYvpJN3IFkZH b4wUMHpjWovLZ1oRS0zPYdfInV3idJ5l+vJded4dWp9eb9mHcXojntSTEaBQs+yk RfMykaJBglz7pRPg6/Rld2Uzwg3CQQpRTxSR5RSB520GOgdKM7F/XKfpyURYr3e4 O7Ho0+0HA7Et5fgninhTApCu8FltNaFlqHrX2x+8aq6LL/qyZA+1/h00RZ9sjkiy /GPAb2F2oFUSvIVGZbT5BWjSajYilgc7 -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:48 2025 by rpki-client