This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft File: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft (raw, json) Hash identifier: tQpF2r64fIMSJsb6TeNTPOe5TDPYlvaw329/6UzqO7c= Subject key identifier: A1:07:B9:98:49:D3:6A:44:E3:32:D5:EF:64:77:4D:97:3F:99:DE:47 Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0C62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft Manifest number: 0C5B Signing time: Wed 24 Dec 2025 18:13:46 +0000 Manifest this update: Wed 24 Dec 2025 18:13:46 +0000 Manifest next update: Wed 31 Dec 2025 18:13:46 +0000 Files and hashes: 1: iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl (hash: OpbKZdUf9ffXUr64DrN/3gsGfydQ9mc1pZ9XEcNqbME=) 2: 0D2573FA173E11EA947B2976C4F9AE02.roa (hash: LIAL0RVUWvTNgpPqawClJ1GtfpOkeD0nFPnq/+uTw9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:24:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Dec 24 18:13:46 2025 GMT Not After : Dec 31 18:13:46 2025 GMT Subject: CN=694c2d5a-6a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fe:27:db:3c:07:b9:bb:07:e0:4b:41:4f:bb: 35:10:66:1b:4a:65:3c:8e:bb:f5:41:10:c8:74:b3: 72:4d:8e:43:24:58:6e:8b:0b:06:5c:2b:30:89:ea: 4e:41:c8:f2:f2:9c:1b:42:78:4e:5a:10:ec:21:b1: 36:5f:00:23:b8:a9:31:6f:63:b3:04:1e:de:cd:cf: df:29:e8:3a:94:2b:25:b3:a0:4e:e3:7d:6c:bc:d6: 19:bc:62:78:e6:70:b9:32:6a:94:42:91:dd:94:40: b4:92:86:6e:7e:67:87:e3:80:04:b4:79:dd:6a:4e: e7:16:64:41:78:e7:a9:37:93:c7:35:d9:31:3c:67: c6:5b:1d:20:83:45:d4:19:06:68:79:20:97:80:26: 8e:f7:62:db:6e:c0:0a:ad:55:9f:2e:33:41:93:0b: 07:ac:88:9f:8d:f3:9d:36:af:fb:cf:b2:9e:90:82: c3:57:ab:6a:a6:f0:e0:25:c7:67:a7:89:52:48:40: 22:c6:b1:05:f6:fa:bf:7a:19:e5:6b:32:08:b2:c7: 71:a3:4a:80:fb:a4:44:45:3c:10:12:b3:f2:e0:1a: c8:80:9a:34:5e:5f:89:0d:30:13:cb:67:3e:2c:29: ca:1b:f1:74:50:41:aa:fb:7c:bf:d7:3c:5f:a1:6d: 13:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:07:B9:98:49:D3:6A:44:E3:32:D5:EF:64:77:4D:97:3F:99:DE:47 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:7c:51:27:5e:12:1d:67:60:c8:49:db:e0:92:e6:b4:65:25: db:c0:0b:fd:58:fb:64:2d:c0:10:c2:66:8c:a8:e9:58:75:10: 07:c1:e4:2f:b3:d1:a9:67:58:3a:56:6c:c0:48:d4:a1:16:6c: 63:fd:f9:0b:dc:6c:f0:4e:b0:55:87:50:01:a4:f1:06:32:c7: 76:e0:4e:b3:6f:88:6f:93:59:fb:ab:6f:7e:6e:ca:c1:0f:b7: 0e:ee:f9:4e:b2:6d:b3:f6:4f:34:56:f9:56:b4:b5:89:65:06: 79:19:8c:90:2d:89:47:71:4e:9c:9d:46:f2:2c:8b:bb:89:6d: 9c:92:7f:c6:4e:b6:02:10:a1:3a:ba:61:fe:b9:91:27:dc:fb: 50:4d:c5:9f:19:9b:cf:e8:1c:af:33:92:d8:ca:cf:74:fa:c3: b0:24:77:3a:27:6e:d6:d6:94:b3:1e:6c:91:fc:06:d7:a0:6c: b6:2e:6a:72:be:ac:93:e0:3d:92:1a:39:4e:ff:e2:0e:fc:fc: e7:3f:94:06:08:f7:d9:f3:a6:dc:5d:94:20:61:5a:28:4e:d1: bd:d0:79:06:97:10:30:23:53:78:bd:f9:b4:12:ad:81:36:54: 16:ac:d4:42:5d:d5:7a:c4:fa:81:eb:cb:54:1a:7a:60:25:06: 1a:f7:b6:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjUxMjI0MTgxMzQ2WhcNMjUxMjMxMTgxMzQ2WjAYMRYwFAYD VQQDDA02OTRjMmQ1YS02YTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf4n2zwHubsH4EtBT7s1EGYbSmU8jrv1QRDIdLNyTY5DJFhuiwsGXCswiepO Qcjy8pwbQnhOWhDsIbE2XwAjuKkxb2OzBB7ezc/fKeg6lCsls6BO431svNYZvGJ4 5nC5MmqUQpHdlEC0koZufmeH44AEtHndak7nFmRBeOepN5PHNdkxPGfGWx0gg0XU GQZoeSCXgCaO92LbbsAKrVWfLjNBkwsHrIifjfOdNq/7z7KekILDV6tqpvDgJcdn p4lSSEAixrEF9vq/ehnlazIIssdxo0qA+6RERTwQErPy4BrIgJo0Xl+JDTATy2c+ LCnKG/F0UEGq+3y/1zxfoW0T2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEHuZhJ 02pE4zLV72R3TZc/md5HMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjA0Ni8zRkIwMkFFMjE0RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2tr T0N6RG5VWVBwSFpMQVhXVFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkfFEnXhIdZ2DISdvgkua0ZSXbwAv9WPtkLcAQwmaMqOlYdRAHweQv s9GpZ1g6VmzASNShFmxj/fkL3GzwTrBVh1ABpPEGMsd24E6zb4hvk1n7q29+bsrB D7cO7vlOsm2z9k80VvlWtLWJZQZ5GYyQLYlHcU6cnUbyLIu7iW2ckn/GTrYCEKE6 umH+uZEn3PtQTcWfGZvP6ByvM5LYys90+sOwJHc6J27W1pSzHmyR/AbXoGy2Lmpy vqyT4D2SGjlO/+IO/PznP5QGCPfZ86bcXZQgYVooTtG90HkGlxAwI1N4vfm0Eq2B NlQWrNRCXdV6xPqB68tUGnpgJQYa97Z6 -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:14 2025 by rpki-client