This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.mft File: iz8j61_ij1gF49J7lTe7r6fN-UY.mft (raw, json) Hash identifier: LCuONdj0nqx4wXZb7IEk5lfHB9ZjeoMMpWghgyMKJws= Subject key identifier: 09:03:CD:9C:3A:25:8B:0B:6E:46:AA:80:A7:C7:7F:98:FF:70:7C:68 Authority key identifier: 8B:3F:23:EB:5F:E2:8F:58:05:E3:D2:7B:95:37:BB:AF:A7:CD:F9:46 Certificate issuer: /CN=A91E6C2D/serialNumber=8B3F23EB5FE28F5805E3D27B9537BBAFA7CDF946 Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iz8j61_ij1gF49J7lTe7r6fN-UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.mft Manifest number: 022D Signing time: Sun 21 Dec 2025 01:17:34 +0000 Manifest this update: Sun 21 Dec 2025 01:17:33 +0000 Manifest next update: Sun 28 Dec 2025 01:17:33 +0000 Files and hashes: 1: iz8j61_ij1gF49J7lTe7r6fN-UY.crl (hash: 5eih8xmYFFu5fcd34spEGONFyRc5Ct7DUNqS+Y0XoWc=) 2: E8F4B2C48A0911ED8FCEE137C4F9AE02.roa (hash: hyVOWGrjCzsgaB5t6a964tLdF9KDC2L1JSe9IYMG8n4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.crl rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iz8j61_ij1gF49J7lTe7r6fN-UY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6C2D, serialNumber=8B3F23EB5FE28F5805E3D27B9537BBAFA7CDF946 Validity Not Before: Dec 21 01:17:33 2025 GMT Not After : Dec 28 01:17:33 2025 GMT Subject: CN=69474aae-429f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b4:c0:74:43:41:6e:f0:89:8a:3c:b9:ab:a1: 52:3e:6f:59:3d:e2:5d:09:76:e9:68:7f:63:42:0e: a9:2b:fa:c8:d8:ff:02:b1:28:01:c6:a8:06:d1:e7: 68:e4:ad:8b:38:9d:ec:25:a9:67:51:85:ad:4c:88: 26:e1:e2:f7:ed:62:41:da:b8:29:14:56:f8:b6:55: 57:f7:32:2d:24:fd:c7:b4:7c:bb:2f:09:70:3d:f5: 22:ee:7c:2c:be:99:ca:41:4b:18:06:17:60:39:21: 7a:d2:70:51:56:b4:b1:9c:06:31:fe:18:67:78:0b: 04:d5:75:0b:94:8a:93:2b:10:db:30:95:70:73:5c: e8:f0:a0:f6:f2:81:8e:d4:15:ef:9f:fc:bb:36:1f: 52:26:50:99:e7:66:a6:2b:ce:cd:9c:26:33:97:c4: 95:bd:21:44:fe:bf:ba:83:48:98:dd:04:80:f0:4e: d3:89:36:b4:4f:32:84:61:2d:5a:6c:5a:85:46:0e: 99:bb:da:9c:24:69:9b:60:2e:8f:f9:18:d6:2c:73: b0:e4:f6:2f:73:12:7a:e0:3f:9f:66:96:bb:48:cd: 7b:4b:03:a7:9a:91:39:3a:d6:87:d9:58:b0:f6:6f: 44:68:d2:02:5d:24:90:72:34:70:d9:98:8c:67:aa: 06:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:03:CD:9C:3A:25:8B:0B:6E:46:AA:80:A7:C7:7F:98:FF:70:7C:68 X509v3 Authority Key Identifier: keyid:8B:3F:23:EB:5F:E2:8F:58:05:E3:D2:7B:95:37:BB:AF:A7:CD:F9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iz8j61_ij1gF49J7lTe7r6fN-UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6C2D/C372132C8A0711ED8290A837C4F9AE02/iz8j61_ij1gF49J7lTe7r6fN-UY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:db:cb:96:5b:40:44:d4:cd:c6:95:e6:09:cc:05:6a:79:d7: 79:a2:c7:34:54:28:ee:ea:dd:f9:31:54:81:68:76:ca:ff:24: e9:dc:91:ce:b6:ad:80:b2:14:a9:87:cc:d8:a8:21:8c:c7:e9: a5:ed:4e:40:a8:3f:a3:e8:f8:8b:79:c6:b0:88:09:f0:2a:7f: d4:51:13:f9:6f:dd:0b:eb:0d:f3:5c:0b:66:df:0e:38:5a:75: f1:8d:af:f2:52:60:89:0e:5b:81:0e:7c:1c:6f:c6:88:ab:c3: 55:63:e3:8a:53:20:4c:df:e6:d6:96:cc:f8:36:01:ae:ed:6b: b3:30:c2:19:6a:32:ca:91:ee:e2:93:96:48:4b:58:24:14:a0: e1:b1:7a:8a:c9:01:82:67:52:8a:56:26:ee:bb:33:a2:32:92: e3:03:bc:73:b5:a0:65:bc:af:93:d3:4e:13:7e:4e:5c:9d:07: 01:01:86:c9:ba:d9:00:a9:13:e8:aa:cb:8c:c5:6a:7d:0e:99: bb:ea:f4:41:6e:27:ec:cc:ce:d5:86:bd:f3:7e:db:10:55:af: 38:17:79:24:57:6a:69:6c:24:29:15:ad:35:d1:3d:33:f7:f3: df:21:09:41:eb:36:0a:83:7b:0e:1a:d2:6e:27:1b:6c:6b:0f: d5:e2:55:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZDMkQxMTAvBgNVBAUTKDhCM0YyM0VCNUZFMjhGNTgwNUUzRDI3Qjk1MzdCQkFG QTdDREY5NDYwHhcNMjUxMjIxMDExNzMzWhcNMjUxMjI4MDExNzMzWjAYMRYwFAYD VQQDDA02OTQ3NGFhZS00MjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbTAdENBbvCJijy5q6FSPm9ZPeJdCXbpaH9jQg6pK/rI2P8CsSgBxqgG0edo 5K2LOJ3sJalnUYWtTIgm4eL37WJB2rgpFFb4tlVX9zItJP3HtHy7LwlwPfUi7nws vpnKQUsYBhdgOSF60nBRVrSxnAYx/hhneAsE1XULlIqTKxDbMJVwc1zo8KD28oGO 1BXvn/y7Nh9SJlCZ52amK87NnCYzl8SVvSFE/r+6g0iY3QSA8E7TiTa0TzKEYS1a bFqFRg6Zu9qcJGmbYC6P+RjWLHOw5PYvcxJ64D+fZpa7SM17SwOnmpE5OtaH2Viw 9m9EaNICXSSQcjRw2ZiMZ6oGmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkDzZw6 JYsLbkaqgKfHf5j/cHxoMB8GA1UdIwQYMBaAFIs/I+tf4o9YBePSe5U3u6+nzflG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkMyRC9DMzcyMTMyQzhB MDcxMUVEODI5MEE4MzdDNEY5QUUwMi9pejhqNjFfaWoxZ0Y0OUo3bFRlN3I2Zk4t VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l6OGo2MV9pajFnRjQ5SjdsVGU3cjZmTi1VWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkMyRC9DMzcyMTMyQzhBMDcxMUVEODI5MEE4MzdDNEY5QUUwMi9pejhqNjFfaWox Z0Y0OUo3bFRlN3I2Zk4tVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV28uWW0BE1M3GleYJzAVqedd5osc0VCju6t35MVSBaHbK/yTp3JHO tq2AshSph8zYqCGMx+ml7U5AqD+j6PiLecawiAnwKn/UURP5b90L6w3zXAtm3w44 WnXxja/yUmCJDluBDnwcb8aIq8NVY+OKUyBM3+bWlsz4NgGu7WuzMMIZajLKke7i k5ZIS1gkFKDhsXqKyQGCZ1KKVibuuzOiMpLjA7xztaBlvK+T004Tfk5cnQcBAYbJ utkAqRPoqsuMxWp9Dpm76vRBbifszM7Vhr3zftsQVa84F3kkV2ppbCQpFa010T0z 9/PfIQlB6zYKg3sOGtJuJxtsaw/V4lV/ -----END CERTIFICATE-----Generated at Mon Dec 22 07:06:20 2025 by rpki-client