This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: OyrhBnpgbQ3rNbGXVVOLMMSi2biOngM45OYVC4G4qrA= Subject key identifier: 28:20:36:B9:18:41:25:70:40:BD:CF:20:57:ED:9F:99:16:7F:C2:5F Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 0162 Signing time: Tue 23 Dec 2025 03:02:52 +0000 Manifest this update: Tue 23 Dec 2025 03:02:52 +0000 Manifest next update: Tue 30 Dec 2025 03:02:52 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: XQ1da5Y5OWvD1kldgWAroJ6JtW8gLdjzkdyyfy53sps=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: Dm164N8IoyQt1jp0TcwYgwG4HOUHThII1pGgU4Frf9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0, serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: Dec 23 03:02:52 2025 GMT Not After : Dec 30 03:02:52 2025 GMT Subject: CN=694a065c-f980 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:2c:d8:d5:f4:85:e2:5c:62:56:72:8e:8e: a5:d7:aa:fc:25:bc:cd:21:34:65:60:26:bf:a3:92: 9e:01:de:d2:ad:3f:a4:60:a3:0e:90:fb:01:d8:1a: a2:bb:05:ac:a4:9f:f2:de:9d:55:d1:75:8a:13:45: 19:f7:05:b7:97:ed:27:fc:df:aa:00:c2:20:90:90: a0:62:78:f4:72:ef:6f:4b:f9:2c:a0:a1:a5:ef:e1: 4d:8c:78:4e:22:a4:b1:c1:6e:e4:50:d1:05:5c:a5: 07:28:ff:bd:f3:d4:c4:fc:3f:dd:41:74:de:23:91: 97:6d:cd:66:72:4d:5a:64:b7:a7:16:6b:7e:76:a0: 16:11:15:93:3e:30:17:9d:1f:3e:b4:1e:57:b9:2a: cd:91:05:8b:f3:fd:4b:77:a8:05:39:84:a8:29:ec: 29:61:41:72:13:ca:6a:b1:b6:c5:55:df:87:bb:74: 1b:fe:33:17:60:ce:a9:a2:76:b1:79:88:cb:9e:1d: 05:9e:0d:5a:46:01:6a:0b:26:49:4c:3e:94:c6:bd: 1b:d0:9a:3c:0a:e4:5e:27:ac:38:51:c0:5a:6d:89: 67:a9:d7:a6:46:32:e7:71:7c:9a:db:b9:75:13:a5: f8:17:fa:b7:ba:4e:3b:1c:30:72:02:f5:1e:3b:eb: 25:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:20:36:B9:18:41:25:70:40:BD:CF:20:57:ED:9F:99:16:7F:C2:5F X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:ff:21:95:73:2a:46:40:67:85:b1:31:2c:65:78:be:78:39: 6a:40:80:38:95:c9:af:11:46:43:bf:ea:5f:23:5d:f4:c7:96: e0:0f:b9:a6:6c:b2:6b:ec:ac:1b:83:2c:c5:71:63:c6:11:84: 49:c9:7a:da:80:14:05:ac:10:4c:a9:77:51:16:84:44:a0:fd: 0d:bb:53:7a:c2:eb:68:c1:9f:a8:86:90:c6:0c:ba:bf:f7:02: 0a:68:60:93:20:7e:94:27:7c:6f:c2:4b:6f:7c:dc:2e:f0:8e: 50:56:ef:61:f2:57:95:fc:a5:46:a7:52:cd:e0:ef:5e:62:96: ae:77:15:56:44:4e:43:7f:33:d6:d1:d9:74:83:fa:41:7f:16: 41:0a:5f:33:cf:f9:99:fa:6f:a0:41:78:16:d6:ed:03:cc:af: 74:1a:0c:16:de:af:fe:14:f3:bc:d7:10:3d:5c:67:30:19:50: e1:da:79:3c:d8:16:b7:5f:f2:7a:9b:2f:a1:1f:4e:e7:6b:1a: da:42:c7:08:92:7e:12:93:f0:ac:d7:99:bf:ea:f4:47:ec:32: bb:df:8f:39:e2:1d:5d:0e:6d:a0:94:9a:df:e5:fd:0d:49:a0: 1a:a9:6e:fe:01:c2:20:d1:17:8a:3c:02:07:33:e2:10:5a:1e: de:25:6c:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjUxMjIzMDMwMjUyWhcNMjUxMjMwMDMwMjUyWjAYMRYwFAYD VQQDDA02OTRhMDY1Yy1mOTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTQs2NX0heJcYlZyjo6l16r8JbzNITRlYCa/o5KeAd7SrT+kYKMOkPsB2Bqi uwWspJ/y3p1V0XWKE0UZ9wW3l+0n/N+qAMIgkJCgYnj0cu9vS/ksoKGl7+FNjHhO IqSxwW7kUNEFXKUHKP+989TE/D/dQXTeI5GXbc1mck1aZLenFmt+dqAWERWTPjAX nR8+tB5XuSrNkQWL8/1Ld6gFOYSoKewpYUFyE8pqsbbFVd+Hu3Qb/jMXYM6ponax eYjLnh0Fng1aRgFqCyZJTD6Uxr0b0Jo8CuReJ6w4UcBabYlnqdemRjLncXya27l1 E6X4F/q3uk47HDByAvUeO+slbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCggNrkY QSVwQL3PIFftn5kWf8JfMB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM/yGVcypGQGeFsTEsZXi+eDlqQIA4lcmvEUZDv+pfI130x5bgD7mm bLJr7KwbgyzFcWPGEYRJyXragBQFrBBMqXdRFoREoP0Nu1N6wutowZ+ohpDGDLq/ 9wIKaGCTIH6UJ3xvwktvfNwu8I5QVu9h8leV/KVGp1LN4O9eYpaudxVWRE5DfzPW 0dl0g/pBfxZBCl8zz/mZ+m+gQXgW1u0DzK90GgwW3q/+FPO81xA9XGcwGVDh2nk8 2Ba3X/J6my+hH07naxraQscIkn4Sk/Cs15m/6vRH7DK734854h1dDm2glJrf5f0N SaAaqW7+AcIg0ReKPAIHM+IQWh7eJWzt -----END CERTIFICATE-----Generated at Wed Dec 24 17:41:46 2025 by rpki-client