This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: O0tfW1dR7DyRZ1J89HJK+iFrSBTCfzNCy9BTWtlcJwI= Subject key identifier: 4C:2B:53:7C:81:FF:AF:65:3E:47:3B:54:A3:09:7F:73:1F:C0:6E:EA Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 35CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 3571 Signing time: Wed 24 Dec 2025 14:56:05 +0000 Manifest this update: Wed 24 Dec 2025 14:56:05 +0000 Manifest next update: Wed 31 Dec 2025 14:56:05 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: aEqyM3uoQNpD1WbYXZYY5rQ+xeDDf9wPvO+f/9rttow=) 2: 8A5484F6CB7E11F083D55078C4F9AE02.roa (hash: uM4f086LJzkkoa7xXHIa0o6HFRbtc1FhCKMEP/oqLJY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:56:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13771 (0x35cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5, serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Dec 24 14:56:05 2025 GMT Not After : Dec 31 14:56:05 2025 GMT Subject: CN=694bff05-a8df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:47:a4:c7:c3:ec:28:d4:ab:a0:95:f3:e7:0d: 8a:7d:00:cc:81:58:8c:f1:09:18:1b:58:af:c1:71: e5:70:37:77:32:26:8f:b2:11:a0:38:17:fe:f4:73: 27:57:b2:2f:73:9c:29:a8:24:9d:9f:61:18:c4:74: 6e:30:6d:33:73:54:1d:1f:52:39:e3:84:e8:20:04: 97:1c:96:fc:55:09:84:aa:98:72:f5:c0:26:a5:8f: ef:6a:1e:80:2d:9e:a6:90:34:6e:ea:b9:8b:7e:79: 54:74:2e:9a:ac:36:6a:8c:c2:3b:96:c3:56:a1:f8: c8:db:e9:e2:4e:08:68:5d:b2:dc:80:9d:e4:33:bd: 21:ed:f5:2e:2d:ee:3c:7f:8d:4b:5d:6c:00:1b:d9: 5d:ef:c2:29:27:17:46:b4:18:b7:f6:36:33:71:10: a7:80:92:17:5f:79:15:f2:75:5a:b1:eb:0a:80:06: aa:62:67:ce:0c:08:71:f1:31:2c:75:a6:c7:c0:8f: 9c:3a:74:33:68:51:8d:aa:05:a1:6d:62:10:f8:16: 2b:fc:da:da:a9:cf:6c:4b:58:fa:4f:83:77:6f:ce: e7:7b:db:fa:36:56:d6:fb:90:ef:66:3c:f3:52:3e: 46:32:10:93:e8:be:45:da:ff:bd:b7:79:ea:74:4f: 6e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2B:53:7C:81:FF:AF:65:3E:47:3B:54:A3:09:7F:73:1F:C0:6E:EA X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:68:d8:5d:6c:2b:d1:75:9f:58:13:c6:1a:1a:0d:60:8b:ce: c5:12:83:5d:56:d7:12:06:1a:b7:04:2c:ea:cf:7d:6f:2c:cf: 0e:5c:fc:b6:2b:d5:92:ea:af:fe:08:e2:3d:5e:4f:5b:f5:1d: a7:87:1a:6a:f1:7d:7a:31:d2:05:84:ce:45:ba:a4:74:e8:76: 34:46:38:2f:06:b3:7a:b0:7e:80:b6:6e:38:7a:87:04:19:2d: d0:01:03:c9:37:25:6b:64:87:f8:f0:30:cd:ec:f4:f9:cd:27: fa:57:8a:99:6b:39:47:b6:a7:41:6f:35:ca:3c:bf:0d:ff:f7: f1:32:7f:5b:30:42:71:1a:f7:41:3b:7b:a1:95:12:fe:73:94: 52:ce:a1:74:e8:e3:ed:50:cd:0c:d2:0c:e3:77:e6:ca:d8:45: 24:9d:1a:e7:14:94:d5:c1:99:b4:99:db:b6:5f:06:37:36:da: 72:38:07:e0:87:a9:94:da:29:29:f7:71:94:99:e4:67:33:58: ab:09:54:1d:1e:e0:f6:73:dc:17:91:55:ca:6a:20:bc:09:54: 72:4c:b6:74:b9:5e:f5:ee:24:1b:1b:87:58:ad:59:fe:5f:5d: 20:07:11:77:50:2c:ae:74:37:da:9e:86:b1:4b:63:cd:46:70: 1f:33:6b:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjUxMjI0MTQ1NjA1WhcNMjUxMjMxMTQ1NjA1WjAYMRYwFAYD VQQDDA02OTRiZmYwNS1hOGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEekx8PsKNSroJXz5w2KfQDMgViM8QkYG1ivwXHlcDd3MiaPshGgOBf+9HMn V7Ivc5wpqCSdn2EYxHRuMG0zc1QdH1I544ToIASXHJb8VQmEqphy9cAmpY/vah6A LZ6mkDRu6rmLfnlUdC6arDZqjMI7lsNWofjI2+niTghoXbLcgJ3kM70h7fUuLe48 f41LXWwAG9ld78IpJxdGtBi39jYzcRCngJIXX3kV8nVasesKgAaqYmfODAhx8TEs dabHwI+cOnQzaFGNqgWhbWIQ+BYr/Nraqc9sS1j6T4N3b87ne9v6NlbW+5DvZjzz Uj5GMhCT6L5F2v+9t3nqdE9uKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwrU3yB /69lPkc7VKMJf3MfwG7qMB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOaNhdbCvRdZ9YE8YaGg1gi87FEoNdVtcSBhq3BCzqz31vLM8OXPy2 K9WS6q/+COI9Xk9b9R2nhxpq8X16MdIFhM5FuqR06HY0RjgvBrN6sH6Atm44eocE GS3QAQPJNyVrZIf48DDN7PT5zSf6V4qZazlHtqdBbzXKPL8N//fxMn9bMEJxGvdB O3uhlRL+c5RSzqF06OPtUM0M0gzjd+bK2EUknRrnFJTVwZm0mdu2XwY3NtpyOAfg h6mU2ikp93GUmeRnM1irCVQdHuD2c9wXkVXKaiC8CVRyTLZ0uV717iQbG4dYrVn+ X10gBxF3UCyudDfanoaxS2PNRnAfM2sh -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:01 2025 by rpki-client