This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft File: IX2ikIx1R129zapw42ubQNSRLt0.mft (raw, json) Hash identifier: t+qJRSe6LMgUqFpdxDd3j2UlPG6TyIGKwgBbQYhBq1o= Subject key identifier: 20:6C:C6:C0:67:F7:30:81:45:B9:A2:05:89:1A:28:B9:4F:28:76:4A Authority key identifier: 21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD Certificate issuer: /CN=A91BABFD/serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft Manifest number: 018B Signing time: Fri 21 Nov 2025 01:54:21 +0000 Manifest this update: Fri 21 Nov 2025 01:54:20 +0000 Manifest next update: Fri 28 Nov 2025 01:54:20 +0000 Files and hashes: 1: IX2ikIx1R129zapw42ubQNSRLt0.crl (hash: 36WDgJTcbV2KxGCdxQ/U+3OQCEC8/m+IPfvLz5ow42I=) 2: E0E9B1966D8A11EEB33A1E83C4F9AE02.roa (hash: /Y8xFoBMkV8uPy89Axb0Y8yaa9CAWLFHVU01k7AfOCU=) 3: 164B8B986D8B11EEAE28C283C4F9AE02.roa (hash: olVXu+2blIiQ/nPaKs9oAvL7LtQPo2noHIFDjFZB8b8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Nov 2025 01:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BABFD, serialNumber=217DA2908C75475DBDCDAA70E36B9B40D4912EDD Validity Not Before: Nov 21 01:54:20 2025 GMT Not After : Nov 28 01:54:20 2025 GMT Subject: CN=691fc64d-9d89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ba:57:db:93:9e:28:cc:95:d2:5d:94:1c:de: 3a:d5:42:7a:f5:69:c6:a5:2f:ea:8f:d2:fc:25:4c: 7c:0d:df:44:f8:9c:50:f5:20:c4:19:3b:87:8d:06: c4:da:1e:b2:f0:75:73:d4:4a:fd:14:2b:47:2f:d4: 22:0d:92:74:db:9f:c5:c5:fd:e8:e5:2a:b6:63:78: d4:fa:ca:c8:86:a0:0b:52:dd:06:79:ea:d8:ee:db: 17:c9:9e:aa:fc:ed:ce:58:b5:3b:4e:b4:c7:11:fc: 9d:e3:f7:1f:9e:36:9b:64:6d:7b:20:7a:e8:45:d9: e0:0f:5e:f7:47:bc:ad:73:33:c5:03:53:b3:ec:68: 18:c4:af:0e:00:cb:ae:df:46:2c:af:e6:a9:b4:e0: b2:67:52:4c:07:c6:bb:0d:2d:f3:e7:24:e2:7b:d9: d8:76:76:12:5b:8d:82:de:3a:95:26:44:f4:2b:2a: 99:6b:1b:60:7a:8d:59:7a:23:1f:60:3b:64:ac:73: 96:8b:85:a2:8c:f8:b1:50:16:e3:1e:ad:d8:43:b7: 9b:81:f8:2f:0f:4b:8c:95:19:ed:4d:4d:cf:fc:b4: 5c:69:1a:cc:36:18:9e:92:96:a5:ce:bb:fa:22:8f: f2:75:1f:9c:6d:0c:f8:d5:04:96:23:b9:31:54:bc: 6a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6C:C6:C0:67:F7:30:81:45:B9:A2:05:89:1A:28:B9:4F:28:76:4A X509v3 Authority Key Identifier: keyid:21:7D:A2:90:8C:75:47:5D:BD:CD:AA:70:E3:6B:9B:40:D4:91:2E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IX2ikIx1R129zapw42ubQNSRLt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BABFD/895A49506D8911EE82A1F680C4F9AE02/IX2ikIx1R129zapw42ubQNSRLt0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:a5:67:6a:0a:a7:a4:34:be:0e:5d:d5:9a:42:38:a2:32:d9: c9:60:4d:17:1c:6a:5b:70:8e:b9:40:37:23:72:f9:9e:36:41: 16:cf:1c:f1:f6:2c:b2:bc:6c:8e:2a:25:c0:0f:12:32:50:eb: 66:18:da:0b:30:22:0b:5d:d8:1e:53:70:b6:8c:f2:a1:57:50: 0e:f7:51:9d:3a:08:69:32:14:bd:3e:13:64:68:0d:ee:11:13: 40:a0:cb:7f:21:6c:00:be:64:e3:d0:63:03:d3:34:4b:ff:7b: b6:bd:a9:91:00:bd:de:2d:e2:0e:05:ae:c3:4f:14:ed:1f:04: be:7a:d2:55:66:db:46:c1:2a:49:68:cb:35:58:b4:b9:9c:be: 3a:d1:66:27:4e:85:20:a5:03:d4:9b:d9:28:8b:f1:50:9e:3c: d0:fd:20:0c:47:1e:ce:5c:ab:ff:3a:c6:73:0d:26:58:33:18: 90:98:6d:bd:3b:42:0c:a2:a6:ef:75:55:7b:a3:74:ec:cd:41: 0e:b5:1b:9e:c5:4d:2f:12:68:30:c3:0e:27:1f:27:10:74:d8: be:38:af:2c:17:03:d4:86:9c:79:ff:66:f6:22:e1:ce:04:5f: 3c:8c:0d:02:e4:54:b7:c1:b3:5a:1e:49:19:c9:dc:b9:84:06: d7:d3:51:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFCRkQxMTAvBgNVBAUTKDIxN0RBMjkwOEM3NTQ3NURCRENEQUE3MEUzNkI5QjQw RDQ5MTJFREQwHhcNMjUxMTIxMDE1NDIwWhcNMjUxMTI4MDE1NDIwWjAYMRYwFAYD VQQDEw02OTFmYzY0ZC05ZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybpX25OeKMyV0l2UHN461UJ69WnGpS/qj9L8JUx8Dd9E+JxQ9SDEGTuHjQbE 2h6y8HVz1Er9FCtHL9QiDZJ025/Fxf3o5Sq2Y3jU+srIhqALUt0GeerY7tsXyZ6q /O3OWLU7TrTHEfyd4/cfnjabZG17IHroRdngD173R7ytczPFA1Oz7GgYxK8OAMuu 30Ysr+aptOCyZ1JMB8a7DS3z5yTie9nYdnYSW42C3jqVJkT0KyqZaxtgeo1ZeiMf YDtkrHOWi4WijPixUBbjHq3YQ7ebgfgvD0uMlRntTU3P/LRcaRrMNhiekpalzrv6 Io/ydR+cbQz41QSWI7kxVLxquQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBsxsBn 9zCBRbmiBYkaKLlPKHZKMB8GA1UdIwQYMBaAFCF9opCMdUddvc2qcONrm0DUkS7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUJGRC84OTVBNDk1MDZE ODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIxMjl6YXB3NDJ1YlFOU1JM dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYMmlrSXgxUjEyOXphcHc0MnViUU5TUkx0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUJGRC84OTVBNDk1MDZEODkxMUVFODJBMUY2ODBDNEY5QUUwMi9JWDJpa0l4MVIx Mjl6YXB3NDJ1YlFOU1JMdDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxpWdqCqekNL4OXdWaQjiiMtnJYE0XHGpbcI65QDcjcvmeNkEWzxzx 9iyyvGyOKiXADxIyUOtmGNoLMCILXdgeU3C2jPKhV1AO91GdOghpMhS9PhNkaA3u ERNAoMt/IWwAvmTj0GMD0zRL/3u2vamRAL3eLeIOBa7DTxTtHwS+etJVZttGwSpJ aMs1WLS5nL460WYnToUgpQPUm9koi/FQnjzQ/SAMRx7OXKv/OsZzDSZYMxiQmG29 O0IMoqbvdVV7o3TszUEOtRuexU0vEmgwww4nHycQdNi+OK8sFwPUhpx5/2b2IuHO BF88jA0C5FS3wbNaHkkZydy5hAbX01GM -----END CERTIFICATE-----Generated at Sat Nov 22 21:40:34 2025 by rpki-client