This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: QsgPKtAJZyKURsMbh0a1V8c6ysCWX0sjdNTz1v0KqTE= Subject key identifier: 87:42:E5:0A:FF:6B:FA:DC:77:16:D0:FC:9F:CD:71:5E:8B:7B:1A:64 Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 15AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 15A0 Signing time: Mon 22 Dec 2025 16:29:50 +0000 Manifest this update: Mon 22 Dec 2025 16:29:50 +0000 Manifest next update: Mon 29 Dec 2025 16:29:50 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: GKRbIagY6hCcFcf09F3rDXA/voCzSGxAGNvh+yc/V7E=) 2: 13EB2806503611F0AE9ACE86C4F9AE02.roa (hash: 5U+qNAcyg11e1mcFFeSSmJQHAt3E5ngFjCNuSAbr96I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5548 (0x15ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233, serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: Dec 22 16:29:50 2025 GMT Not After : Dec 29 16:29:50 2025 GMT Subject: CN=694971fe-f6f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1b:b3:0a:bd:d4:33:bf:f3:0f:3a:c9:25:02: c6:68:af:d2:72:de:f7:b1:23:ce:70:ea:8c:17:00: 22:d7:63:da:88:2d:5c:f1:72:b5:11:44:1d:80:ab: 33:56:7b:43:98:dd:92:be:f9:02:0f:28:88:7e:9b: ad:de:6e:5f:4a:0a:92:d0:d8:d8:52:01:e8:74:a3: 97:8e:36:cc:9c:40:d0:58:2c:58:b9:98:17:7e:21: 6b:d3:f1:73:ba:2c:91:70:82:2b:52:77:2e:0f:59: 67:a2:ac:2e:ca:76:21:00:93:3d:1a:af:42:94:96: 75:3a:4b:43:36:47:05:23:19:03:23:6c:8c:5a:64: c6:86:75:45:10:ef:ee:66:88:2a:7b:ec:9f:a2:21: 2c:33:ca:0e:7c:4d:c6:eb:42:f5:82:14:06:3a:da: 89:75:3a:66:06:ee:ef:32:8c:76:52:7e:84:eb:ff: b0:04:c2:93:19:00:d8:05:4f:da:fd:6e:54:27:81: af:e0:66:2b:2e:94:9b:2e:bd:1d:41:e4:c4:ca:d2: fe:6d:11:12:22:9e:f2:c1:d1:c1:95:87:f9:63:f5: b3:55:55:f9:8b:9a:5d:52:e8:ce:5e:fa:27:9a:8e: 3a:f6:11:14:22:59:20:a0:be:30:90:59:8d:00:77: f9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:42:E5:0A:FF:6B:FA:DC:77:16:D0:FC:9F:CD:71:5E:8B:7B:1A:64 X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:f6:4c:9e:32:23:b3:cd:dd:ff:06:d7:bd:6f:0a:d0:24:3e: fe:df:39:1c:ce:7c:a1:d2:28:36:a9:e4:ce:17:76:1b:49:cf: 08:a1:ce:7f:ba:26:a5:87:b0:8a:8c:52:61:e5:be:23:63:9d: 14:c9:79:5e:b8:e2:49:6d:97:5a:03:a5:a1:2b:21:dc:bf:6a: 12:c0:87:0d:6a:57:95:74:20:b8:44:9e:51:0a:30:01:dd:86: 80:75:2c:3e:dd:40:79:ca:d4:9a:ba:a3:16:d8:b7:2e:76:cb: dd:4c:e8:ec:0c:b8:e2:a5:7e:cd:5d:ed:78:e6:95:90:de:74: 1c:19:1d:8d:5c:a3:16:81:6a:c6:54:40:b8:d6:63:de:b4:bd: aa:2c:9b:28:b6:b6:17:d1:bf:b3:3a:9d:3a:f8:79:90:7d:83: 7f:f5:ae:0f:61:10:af:0f:0d:40:2d:fd:2e:23:6f:90:73:88: 39:f9:03:2c:0c:8d:80:a2:19:8a:0a:e2:34:c9:8a:0f:fd:9f: 84:e0:ed:b2:be:7d:a0:a5:72:9f:d3:c7:3e:3f:fd:a3:71:89: df:55:e2:54:8b:7b:6d:57:56:fb:56:92:78:63:ba:60:f0:06: 14:cd:d0:0d:8a:c7:1a:7a:49:3b:b1:5d:7e:4a:e5:05:3a:06: 81:70:85:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjUxMjIyMTYyOTUwWhcNMjUxMjI5MTYyOTUwWjAYMRYwFAYD VQQDDA02OTQ5NzFmZS1mNmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBuzCr3UM7/zDzrJJQLGaK/Sct73sSPOcOqMFwAi12PaiC1c8XK1EUQdgKsz VntDmN2SvvkCDyiIfput3m5fSgqS0NjYUgHodKOXjjbMnEDQWCxYuZgXfiFr0/Fz uiyRcIIrUncuD1lnoqwuynYhAJM9Gq9ClJZ1OktDNkcFIxkDI2yMWmTGhnVFEO/u Zogqe+yfoiEsM8oOfE3G60L1ghQGOtqJdTpmBu7vMox2Un6E6/+wBMKTGQDYBU/a /W5UJ4Gv4GYrLpSbLr0dQeTEytL+bRESIp7ywdHBlYf5Y/WzVVX5i5pdUujOXvon mo469hEUIlkgoL4wkFmNAHf5jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdC5Qr/ a/rcdxbQ/J/NcV6LexpkMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK9kyeMiOzzd3/Bte9bwrQJD7+3zkcznyh0ig2qeTOF3YbSc8Ioc5/ uialh7CKjFJh5b4jY50UyXleuOJJbZdaA6WhKyHcv2oSwIcNaleVdCC4RJ5RCjAB 3YaAdSw+3UB5ytSauqMW2LcudsvdTOjsDLjipX7NXe145pWQ3nQcGR2NXKMWgWrG VEC41mPetL2qLJsotrYX0b+zOp06+HmQfYN/9a4PYRCvDw1ALf0uI2+Qc4g5+QMs DI2AohmKCuI0yYoP/Z+E4O2yvn2gpXKf08c+P/2jcYnfVeJUi3ttV1b7VpJ4Y7pg 8AYUzdANiscaekk7sV1+SuUFOgaBcIXm -----END CERTIFICATE-----Generated at Wed Dec 24 14:07:48 2025 by rpki-client