This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json) Hash identifier: 1EpYfwA0H7SyueMOg/pNUkoWpn2ruOmIFe78+dQz0As= Subject key identifier: BB:98:F7:CD:5F:31:D4:B5:45:5C:69:55:E8:D7:6D:3F:F0:E7:38:A2 Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 01A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft Manifest number: 0199 Signing time: Fri 19 Dec 2025 02:36:37 +0000 Manifest this update: Fri 19 Dec 2025 02:36:36 +0000 Manifest next update: Fri 26 Dec 2025 02:36:36 +0000 Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: bStgNEh6Th9CqES6lfn2Vl3ycjnXPQ0V1c0KBUMJbF8=) 2: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: /Y8xFoBMkV8uPy89Axb0Y8yaa9CAWLFHVU01k7AfOCU=) 3: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: olVXu+2blIiQ/nPaKs9oAvL7LtQPo2noHIFDjFZB8b8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Dec 19 02:36:36 2025 GMT Not After : Dec 26 02:36:36 2025 GMT Subject: CN=6944ba34-05a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5f:30:1e:ff:9d:92:2f:92:9e:2e:ad:e2:8d: fc:fd:f0:cc:03:e6:3c:6a:28:04:99:99:a1:8f:57: 18:d2:3a:79:58:f2:28:81:12:4d:94:22:ec:8c:45: 11:93:72:66:88:01:1a:76:34:80:00:52:5f:51:7f: fd:b9:32:45:bb:25:32:b0:a8:da:9d:fc:56:d7:f7: 40:f6:c5:6c:97:f2:e9:1d:b5:59:ea:77:fc:1a:0a: 31:9a:f5:e3:31:19:7f:31:61:f8:e5:09:95:ac:d3: c8:25:44:70:0e:1f:57:eb:11:3b:c4:75:c9:44:b4: e7:db:8c:09:dc:52:f1:7a:7b:5d:5a:97:05:3d:de: c9:60:12:69:97:1b:05:4d:49:2f:c2:fd:2e:3a:eb: 2e:73:7f:c9:87:9c:37:c8:70:29:17:c8:87:17:e8: 4e:86:c5:b3:fa:ca:50:9b:2f:6f:70:a7:21:01:12: 9e:ea:e6:70:01:5f:77:71:8c:d8:ee:31:d0:21:e3: 6c:68:78:0b:24:53:bc:f7:70:63:7e:c0:99:c7:31: b2:e4:f1:19:de:f5:1d:d2:07:21:2a:1b:a8:dc:9f: 86:6a:0b:0d:b7:ef:37:60:20:0d:8a:13:03:83:68: c7:24:f1:c3:20:90:8d:f5:a3:b0:12:3d:b6:59:30: 83:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:98:F7:CD:5F:31:D4:B5:45:5C:69:55:E8:D7:6D:3F:F0:E7:38:A2 X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:80:46:62:b5:e8:bb:c8:83:d6:23:ff:26:6d:84:ae:13:2f: 74:41:04:9a:0c:a0:97:6d:77:13:c9:19:2b:00:a8:3a:73:0a: 76:20:c3:ee:95:22:2d:c7:bd:f0:c2:a8:88:0f:0b:00:8e:e0: 33:73:c0:b7:37:3a:c3:6c:c4:bf:e6:94:f5:b2:f5:fa:93:de: 94:53:51:5d:3f:9e:a9:dd:61:83:4d:f7:7c:1d:70:83:f4:18: f0:82:d2:db:a0:6c:e6:46:ec:a5:70:87:ec:a4:07:58:a3:c6: 40:2f:08:53:0b:00:d9:1a:47:9a:2d:3c:b6:42:d8:72:21:5d: 90:8a:dd:fb:8b:3b:f0:6d:ec:fe:05:78:21:84:df:59:90:60: d0:84:bb:93:cc:e8:3b:4b:a3:ca:fc:57:ab:14:63:4f:ef:94: 60:c5:7f:82:3d:4a:e3:2e:4d:7c:aa:15:de:ad:5c:95:ab:f9: 6c:be:e7:fc:29:e3:be:82:2b:68:63:1a:d3:fe:41:5b:6d:1c: c8:de:74:ea:6d:49:92:de:fb:91:13:e6:c0:ba:9b:26:64:2d: 2a:34:18:4c:91:6e:b9:4b:d1:5d:98:65:5f:1c:5a:12:9a:06: 27:b5:09:de:b6:a7:48:31:14:51:6f:b2:7d:2f:e5:f8:eb:c8: 7d:0d:af:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjUxMjE5MDIzNjM2WhcNMjUxMjI2MDIzNjM2WjAYMRYwFAYD VQQDDA02OTQ0YmEzNC0wNWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA118wHv+dki+Sni6t4o38/fDMA+Y8aigEmZmhj1cY0jp5WPIogRJNlCLsjEUR k3JmiAEadjSAAFJfUX/9uTJFuyUysKjanfxW1/dA9sVsl/LpHbVZ6nf8GgoxmvXj MRl/MWH45QmVrNPIJURwDh9X6xE7xHXJRLTn24wJ3FLxentdWpcFPd7JYBJplxsF TUkvwv0uOusuc3/Jh5w3yHApF8iHF+hOhsWz+spQmy9vcKchARKe6uZwAV93cYzY 7jHQIeNsaHgLJFO893BjfsCZxzGy5PEZ3vUd0gchKhuo3J+GagsNt+83YCANihMD g2jHJPHDIJCN9aOwEj22WTCDvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuY981f MdS1RVxpVejXbT/w5ziiMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIx Mjl6YXB3NDJ1YlFOU1JMdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArgEZitei7yIPWI/8mbYSuEy90QQSaDKCXbXcTyRkrAKg6cwp2IMPu lSItx73wwqiIDwsAjuAzc8C3NzrDbMS/5pT1svX6k96UU1FdP56p3WGDTfd8HXCD 9BjwgtLboGzmRuylcIfspAdYo8ZALwhTCwDZGkeaLTy2QthyIV2Qit37izvwbez+ BXghhN9ZkGDQhLuTzOg7S6PK/FerFGNP75RgxX+CPUrjLk18qhXerVyVq/lsvuf8 KeO+gitoYxrT/kFbbRzI3nTqbUmS3vuRE+bAupsmZC0qNBhMkW65S9FdmGVfHFoS mgYntQnetqdIMRRRb7J9L+X468h9Da/M -----END CERTIFICATE-----Generated at Sat Dec 20 07:35:14 2025 by rpki-client