This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: 7MJo94NUdAPlv95G/+Dujg0hHyIZyP4pcgNxerakJzA= Subject key identifier: 9E:F7:D5:90:A5:01:CF:21:FD:09:54:96:FB:A8:0A:92:AF:2F:16:D1 Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 0817 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 0810 Signing time: Mon 22 Dec 2025 20:18:49 +0000 Manifest this update: Mon 22 Dec 2025 20:18:49 +0000 Manifest next update: Mon 29 Dec 2025 20:18:49 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: d40P7xw1wSnNarnUYGIoHx7p5FXu/w/xh2ovz7tS+W0=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: DLKvz3rwnGGBIag3RK7ssCkmYQ1hx8lImaGotS18Gqc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5, serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Dec 22 20:18:49 2025 GMT Not After : Dec 29 20:18:49 2025 GMT Subject: CN=6949a7a9-9d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:4e:58:51:cd:95:4f:c2:55:08:d3:e5:3b: d8:04:41:42:95:14:2c:b0:75:b4:c4:7f:d6:a1:54: 9d:62:43:aa:9c:f6:0f:30:f6:35:56:b7:4a:6f:fc: b3:c6:52:6c:1a:8f:c6:3e:8e:86:60:00:2a:0d:61: 13:90:6f:29:0d:92:72:c7:94:bf:5e:ff:79:9d:54: 46:5b:6d:4f:65:11:dc:c3:0c:be:3e:ec:70:bb:e5: 12:9e:62:10:ca:cd:f7:52:b7:89:2a:3c:63:6f:dc: ce:67:a2:12:6c:92:d8:16:ea:fb:66:3d:e0:de:26: 2b:e6:5e:1f:df:92:b0:98:0d:c0:08:08:c6:09:16: 88:13:49:39:a8:56:da:52:e9:25:9b:59:c0:5a:72: 4d:bd:b0:ca:2e:bb:a6:df:97:8c:c7:13:f6:29:30: f6:1a:fe:c7:36:6e:73:da:03:16:03:55:bd:c5:cf: 4d:25:51:04:32:3c:ae:d3:86:f1:55:71:52:4d:97: dd:2b:db:8a:fa:19:ea:0e:f2:0b:37:d7:72:a2:ce: 8e:8b:fb:ed:a6:9d:61:fa:09:42:be:16:50:bd:03: a9:f9:da:fa:fd:db:39:29:e6:91:e9:f7:a8:63:40: ae:6e:2d:1a:f4:62:d5:55:d8:59:24:db:66:71:5a: a5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F7:D5:90:A5:01:CF:21:FD:09:54:96:FB:A8:0A:92:AF:2F:16:D1 X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:8c:98:0e:9d:0b:e8:e4:5b:6c:60:cc:15:38:9d:12:f4:ba: 7e:e8:f9:b0:aa:50:9a:99:0e:c4:e2:ad:ac:1f:52:fa:fb:85: ba:b3:ba:20:11:b9:fb:96:52:cb:9f:bd:28:f8:9b:df:ae:c4: c6:f5:97:0e:39:83:72:40:33:a6:fe:45:76:62:f8:1b:ee:6e: 1a:a3:09:f8:9a:2a:7c:d2:15:49:c6:ae:77:43:19:a0:3a:6c: d2:b8:08:ed:4d:0d:7e:e3:4c:1a:36:5f:6b:e9:15:74:da:2e: 4a:78:2d:46:81:7e:d4:f3:6b:b9:0c:40:1a:c7:98:dc:10:6c: de:6b:81:6f:35:dc:7e:2e:0a:e6:47:54:18:a0:96:28:53:b3: 49:7b:13:3a:c4:59:37:29:2a:3d:fa:03:3e:08:57:ed:c0:51: 03:eb:55:b8:c9:fb:04:cb:f7:1d:8b:c2:a5:b9:5b:3f:28:3e: 4c:62:00:b0:17:63:ed:da:7f:6e:ee:b0:f8:4f:43:73:ec:39: 42:a9:5c:92:f5:06:ca:3f:8d:65:12:78:09:97:03:28:6e:48: e6:a2:15:f0:b1:b2:25:0c:dc:2e:b2:09:56:28:9f:81:a1:25: 18:07:99:91:45:e8:1c:71:f3:f4:ba:c2:d2:2b:2a:4e:bf:29: 61:5c:98:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjUxMjIyMjAxODQ5WhcNMjUxMjI5MjAxODQ5WjAYMRYwFAYD VQQDDA02OTQ5YTdhOS05ZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ9OWFHNlU/CVQjT5TvYBEFClRQssHW0xH/WoVSdYkOqnPYPMPY1VrdKb/yz xlJsGo/GPo6GYAAqDWETkG8pDZJyx5S/Xv95nVRGW21PZRHcwwy+Puxwu+USnmIQ ys33UreJKjxjb9zOZ6ISbJLYFur7Zj3g3iYr5l4f35KwmA3ACAjGCRaIE0k5qFba Uuklm1nAWnJNvbDKLrum35eMxxP2KTD2Gv7HNm5z2gMWA1W9xc9NJVEEMjyu04bx VXFSTZfdK9uK+hnqDvILN9dyos6Oi/vtpp1h+glCvhZQvQOp+dr6/ds5KeaR6feo Y0Cubi0a9GLVVdhZJNtmcVqlTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ731ZCl Ac8h/QlUlvuoCpKvLxbRMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwjJgOnQvo5FtsYMwVOJ0S9Lp+6PmwqlCamQ7E4q2sH1L6+4W6s7og Ebn7llLLn70o+JvfrsTG9ZcOOYNyQDOm/kV2Yvgb7m4aown4mip80hVJxq53Qxmg OmzSuAjtTQ1+40waNl9r6RV02i5KeC1GgX7U82u5DEAax5jcEGzea4FvNdx+Lgrm R1QYoJYoU7NJexM6xFk3KSo9+gM+CFftwFED61W4yfsEy/cdi8KluVs/KD5MYgCw F2Pt2n9u7rD4T0Nz7DlCqVyS9QbKP41lEngJlwMobkjmohXwsbIlDNwusglWKJ+B oSUYB5mRRegccfP0usLSKypOvylhXJiX -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:19 2025 by rpki-client