This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: XigRNfKsr2vYaM84ot8GmDTXHKI5/GjtZd4k0DglzlQ= Subject key identifier: 4B:A1:F4:DF:26:0E:82:37:01:9B:30:1B:69:3B:1C:EF:C3:4E:90:B9 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 0209 Signing time: Tue 23 Dec 2025 01:22:58 +0000 Manifest this update: Tue 23 Dec 2025 01:22:58 +0000 Manifest next update: Tue 30 Dec 2025 01:22:58 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: Cl2okR/PQsBm5B6cOR2sFS+gktP8z152uRe+fEJ9kt0=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Dec 23 01:22:58 2025 GMT Not After : Dec 30 01:22:58 2025 GMT Subject: CN=6949eef2-09b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1d:b9:2d:74:0a:0c:e1:d9:80:87:a2:63:d3: d8:2a:08:3e:ab:19:dc:90:0d:7c:6b:4d:63:f5:35: 8b:6b:7a:46:b1:8f:62:38:af:ca:33:d8:52:9b:d9: c2:15:0c:e1:8e:99:71:16:1e:89:7a:e8:6a:2b:98: a3:f0:6c:c1:0d:0b:16:58:03:b1:73:ec:1a:be:4e: c0:ec:8a:35:3f:db:aa:bf:b8:54:fc:59:80:58:7d: 49:cf:c1:c1:8a:3f:98:c2:34:be:8f:21:18:6a:6f: 0f:70:88:e6:3b:1c:85:8b:cf:ad:cf:86:e8:8d:a5: 63:0b:ea:6e:e7:7d:d0:18:de:e0:0d:bb:b9:d9:d7: 4a:bd:39:c2:79:26:2e:bc:18:28:26:f2:50:93:e4: b7:5f:5d:82:ce:a5:c1:c2:69:38:b6:a5:a3:e3:73: 7b:ff:49:33:a4:eb:38:62:1a:a5:98:7b:d2:a9:b8: fe:01:81:59:c5:a7:17:31:73:7e:69:93:b6:6e:9e: 7b:b0:a0:a9:83:c8:b2:67:54:c8:d7:d8:3b:9f:73: 95:7c:ca:e8:69:94:a7:d4:5b:d3:d0:8f:21:aa:91: 31:74:d0:0f:b7:4a:96:9c:cb:f1:ff:0b:a0:87:cb: c7:11:2f:41:85:5c:db:11:5b:f8:fd:32:9e:86:67: 9c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A1:F4:DF:26:0E:82:37:01:9B:30:1B:69:3B:1C:EF:C3:4E:90:B9 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:14:4b:c5:a7:fa:a8:2b:dc:6a:43:d8:ef:64:8a:57:83:07: ab:e9:fc:37:56:e6:64:50:59:37:fb:aa:fb:df:70:2e:7d:b1: a4:77:58:75:68:f8:c2:b5:e0:24:0a:e7:b4:04:72:b2:10:b0: 57:ef:b7:fa:30:51:bf:f8:b2:8b:cb:9d:f5:54:fe:45:48:c4: e9:ee:eb:7c:a4:94:37:d2:60:5e:27:0a:a0:7d:d7:51:98:0c: 3f:df:63:17:f4:30:bb:d3:94:59:ab:d5:7a:8d:9c:09:98:f1: bd:1a:a2:50:85:a9:1c:3b:fd:76:90:31:61:d1:4e:d0:b5:6c: 14:d6:4b:6e:f0:c5:81:66:1b:9e:86:e3:65:8f:5a:fe:4d:0d: 96:3a:b6:cf:ef:57:6d:7b:62:c5:06:8e:6b:e6:00:58:9b:cd: 12:21:d1:f8:dd:31:71:9f:f1:26:31:33:c2:24:be:2d:56:25: c3:c9:24:cf:f5:c3:56:54:27:7f:20:00:90:5c:49:09:82:84: 92:05:e2:dd:70:6c:84:c0:be:b7:e5:cb:2d:f8:53:bc:b6:0c: 8b:bd:9e:7e:3f:01:60:40:75:d8:bc:84:6a:8b:94:f1:51:c2: 88:f2:da:bb:0d:33:87:80:72:96:be:17:91:6d:b0:5e:4a:f5: 80:8f:c3:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUxMjIzMDEyMjU4WhcNMjUxMjMwMDEyMjU4WjAYMRYwFAYD VQQDDA02OTQ5ZWVmMi0wOWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArx25LXQKDOHZgIeiY9PYKgg+qxnckA18a01j9TWLa3pGsY9iOK/KM9hSm9nC FQzhjplxFh6JeuhqK5ij8GzBDQsWWAOxc+wavk7A7Io1P9uqv7hU/FmAWH1Jz8HB ij+YwjS+jyEYam8PcIjmOxyFi8+tz4bojaVjC+pu533QGN7gDbu52ddKvTnCeSYu vBgoJvJQk+S3X12CzqXBwmk4tqWj43N7/0kzpOs4YhqlmHvSqbj+AYFZxacXMXN+ aZO2bp57sKCpg8iyZ1TI19g7n3OVfMroaZSn1FvT0I8hqpExdNAPt0qWnMvx/wug h8vHES9BhVzbEVv4/TKehmec0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuh9N8m DoI3AZswG2k7HO/DTpC5MB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCFEvFp/qoK9xqQ9jvZIpXgwer6fw3VuZkUFk3+6r733AufbGkd1h1 aPjCteAkCue0BHKyELBX77f6MFG/+LKLy531VP5FSMTp7ut8pJQ30mBeJwqgfddR mAw/32MX9DC705RZq9V6jZwJmPG9GqJQhakcO/12kDFh0U7QtWwU1ktu8MWBZhue huNlj1r+TQ2WOrbP71dte2LFBo5r5gBYm80SIdH43TFxn/EmMTPCJL4tViXDySTP 9cNWVCd/IACQXEkJgoSSBeLdcGyEwL635cst+FO8tgyLvZ5+PwFgQHXYvIRqi5Tx UcKI8tq7DTOHgHKWvheRbbBeSvWAj8Ot -----END CERTIFICATE-----Generated at Tue Dec 23 03:14:33 2025 by rpki-client