This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: L7aN4Sc+eij/NJFSss0paq9cDlXfHCK8pZ7K9WVzSR4= Subject key identifier: 6B:33:E2:73:5C:2B:CD:B3:9C:0C:AA:8C:CE:8E:EB:B7:A4:A6:A3:DA Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0B9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0B94 Signing time: Mon 22 Dec 2025 18:31:49 +0000 Manifest this update: Mon 22 Dec 2025 18:31:49 +0000 Manifest next update: Mon 29 Dec 2025 18:31:49 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: bNSTeKzAkpd+EP93oz2wAeOGQ9CH84xR76djQ9/KXXM=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: HQ+n/zvxBXsyHktY7VZtlLogGsEgUPieMT07w6OWlaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2974 (0xb9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Dec 22 18:31:49 2025 GMT Not After : Dec 29 18:31:49 2025 GMT Subject: CN=69498e95-3548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9f:b4:c0:36:48:63:e3:69:5b:dc:0f:ff:37: 49:41:a4:91:2b:9e:9a:70:2e:ef:06:ca:ac:9c:b3: a9:e8:03:3e:bf:a6:57:b1:34:8c:44:bd:7e:e9:02: 9b:c1:81:87:58:33:85:1b:64:48:9a:5f:cd:b8:3d: 3d:d8:89:07:2f:ab:9d:d2:57:8e:0e:d6:72:86:ab: 0e:ac:87:c1:ec:8b:84:c5:97:27:fa:cf:3c:39:0c: d3:d7:66:1c:4f:83:a5:1f:af:4d:4d:d2:ee:e2:15: 23:da:25:7b:ea:07:74:90:10:7b:7e:c6:e4:ca:4b: a9:b6:a4:c5:8e:4a:d6:53:72:78:0b:a2:13:bb:6c: 24:5c:43:c6:94:3f:55:e2:d9:4b:01:c7:96:b0:b0: 1a:87:cc:6b:9a:13:ba:41:80:14:19:4f:51:82:a9: 8d:e5:f9:11:36:40:b9:9f:25:2e:f2:35:fe:24:fd: dc:6d:65:aa:1e:7d:79:d2:be:ec:7c:89:ff:5f:82: 70:e2:08:00:c4:59:79:95:b6:de:4f:e0:56:c6:4d: 7f:a1:8a:53:10:99:ff:99:b5:0c:c4:26:e6:8c:17: 55:7b:0c:29:9b:6d:87:e5:07:fa:1d:34:ea:a8:6b: 52:19:0a:b2:37:03:38:23:15:4a:c3:d4:7d:db:75: b5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:33:E2:73:5C:2B:CD:B3:9C:0C:AA:8C:CE:8E:EB:B7:A4:A6:A3:DA X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:6e:99:29:80:b9:f6:6c:39:20:4e:1b:24:ad:8e:91:49:3d: da:ea:1d:bd:23:13:0f:a2:3c:6f:47:3d:25:b8:1d:c6:63:be: e3:4e:97:f0:d3:c4:47:bd:e8:8f:62:c2:2e:45:dd:ac:64:d5: 10:90:79:b2:7d:31:44:b7:c6:4f:af:ba:08:cb:11:06:ea:d6: 49:15:96:6e:a0:f2:24:17:f2:12:84:76:e4:40:ec:48:7d:5d: 06:14:ca:9a:58:48:7b:6e:6f:88:0a:83:4b:a9:1e:34:3f:a1: db:1f:81:cb:65:2b:40:c0:71:dd:e4:57:6d:ad:46:02:bd:96: 04:3a:ed:0d:fb:df:99:da:18:0c:33:3f:ef:2b:40:2a:f8:dc: d8:b6:16:03:04:42:83:8c:84:2a:df:3d:28:c1:b5:e7:ca:18: c8:47:db:11:cb:b3:80:0c:4f:87:eb:d9:93:1c:dd:be:03:1a: 5f:eb:c3:1b:a6:01:81:8c:a0:02:45:24:a8:b8:3e:f5:5a:73: 67:4a:83:b5:46:3a:d1:c6:4b:3e:64:73:25:8d:32:04:44:b7: 77:99:58:09:3b:f5:13:64:98:45:9f:70:07:75:87:b2:09:70: a1:f8:56:9d:f3:c3:c0:38:ae:59:4d:bb:32:26:c7:77:49:97: 8b:ed:f0:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjUxMjIyMTgzMTQ5WhcNMjUxMjI5MTgzMTQ5WjAYMRYwFAYD VQQDDA02OTQ5OGU5NS0zNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp+0wDZIY+NpW9wP/zdJQaSRK56acC7vBsqsnLOp6AM+v6ZXsTSMRL1+6QKb wYGHWDOFG2RIml/NuD092IkHL6ud0leODtZyhqsOrIfB7IuExZcn+s88OQzT12Yc T4OlH69NTdLu4hUj2iV76gd0kBB7fsbkykuptqTFjkrWU3J4C6ITu2wkXEPGlD9V 4tlLAceWsLAah8xrmhO6QYAUGU9RgqmN5fkRNkC5nyUu8jX+JP3cbWWqHn150r7s fIn/X4Jw4ggAxFl5lbbeT+BWxk1/oYpTEJn/mbUMxCbmjBdVewwpm22H5Qf6HTTq qGtSGQqyNwM4IxVKw9R923W1JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsz4nNc K82znAyqjM6O67ekpqPaMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjbpkpgLn2bDkgThskrY6RST3a6h29IxMPojxvRz0luB3GY77jTpfw 08RHveiPYsIuRd2sZNUQkHmyfTFEt8ZPr7oIyxEG6tZJFZZuoPIkF/IShHbkQOxI fV0GFMqaWEh7bm+ICoNLqR40P6HbH4HLZStAwHHd5FdtrUYCvZYEOu0N+9+Z2hgM Mz/vK0Aq+NzYthYDBEKDjIQq3z0owbXnyhjIR9sRy7OADE+H69mTHN2+Axpf68Mb pgGBjKACRSSouD71WnNnSoO1RjrRxks+ZHMljTIERLd3mVgJO/UTZJhFn3AHdYey CXCh+Fad88PAOK5ZTbsyJsd3SZeL7fBZ -----END CERTIFICATE-----Generated at Wed Dec 24 10:49:56 2025 by rpki-client