This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft File: wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft (raw, json) Hash identifier: 4oY8/VBI2BAJ/g5c3SG/xr15W8W8xn8Mh6Ktixvk5y8= Subject key identifier: F8:37:BF:FA:67:39:74:21:80:55:21:9F:F2:1B:3F:13:78:35:E9:86 Authority key identifier: C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 Certificate issuer: /CN=A9111D36/serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft Manifest number: 022D Signing time: Tue 23 Dec 2025 01:07:43 +0000 Manifest this update: Tue 23 Dec 2025 01:07:42 +0000 Manifest next update: Tue 30 Dec 2025 01:07:42 +0000 Files and hashes: 1: wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl (hash: MZkXXkC8vgGUhjm/6a9KnExa0t4GRWFmsXAPJVfzBDM=) 2: 949A543291B011EDA9CB747CC4F9AE02.roa (hash: IXWkWs++k8QNiBEV5gRLUUd6hmjdG0gw9M6G9nB2OC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111D36, serialNumber=C0AEF625AF9D504AE847F6923DA891069C9003F4 Validity Not Before: Dec 23 01:07:42 2025 GMT Not After : Dec 30 01:07:42 2025 GMT Subject: CN=6949eb5e-c53b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4f:1c:83:c0:2f:64:08:4b:05:d7:55:f2:4d: 52:24:b2:81:a9:9d:da:cf:98:43:ab:a3:52:36:7c: bb:34:9e:df:97:97:56:ba:2c:17:3a:1f:f1:e9:12: 3e:a6:b4:3e:95:59:b5:1c:1b:fc:d3:b3:d1:14:20: ff:2b:b0:6f:bf:ce:65:82:89:55:55:99:d0:10:ca: 9c:84:5a:f6:0e:4d:42:ec:60:96:87:e1:09:3e:93: dd:1e:2e:bd:ab:11:aa:6d:a8:92:4b:40:e4:ef:8c: 34:b7:50:1b:1d:e3:2d:a4:41:06:e0:84:2e:93:f9: 5b:86:a7:d3:50:fb:ec:70:57:95:fb:a1:a8:b8:b4: 58:66:9b:53:43:84:36:2a:2b:71:3f:bc:cc:8c:9e: 95:d7:00:11:1f:f4:4d:b5:a8:06:5c:65:cc:7b:6d: 3d:ba:d5:e3:4b:8b:e2:06:5b:22:ff:70:e1:ef:81: 49:8b:19:e4:1f:95:eb:a4:ec:05:1b:4a:b1:ba:04: 7a:83:06:58:04:7c:c0:6c:04:5c:0a:d9:26:20:93: dd:71:ed:e2:57:4d:98:8c:de:2d:c5:f9:aa:99:e3: a6:55:2d:bd:9d:29:15:ad:b7:b3:15:f6:36:63:15: 17:16:1c:be:b8:4d:1c:dd:02:36:3b:b2:2c:57:be: d0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:37:BF:FA:67:39:74:21:80:55:21:9F:F2:1B:3F:13:78:35:E9:86 X509v3 Authority Key Identifier: keyid:C0:AE:F6:25:AF:9D:50:4A:E8:47:F6:92:3D:A8:91:06:9C:90:03:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wK72Ja-dUEroR_aSPaiRBpyQA_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111D36/FC13A3E491AA11ED80C17A5EC4F9AE02/wK72Ja-dUEroR_aSPaiRBpyQA_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:48:d1:1e:12:bf:2e:f3:e7:99:83:ca:9f:fc:1e:22:43:f6: ef:ce:d3:ce:31:ca:87:79:bf:2c:af:a2:05:98:64:00:77:2d: db:6c:44:57:9d:19:52:7f:16:b8:91:9c:0e:fb:4d:cb:7b:0b: 32:b5:cd:69:b8:3a:cb:85:e4:46:9e:e6:2a:23:6b:14:14:dc: d6:7d:b9:2b:6c:03:ff:f2:17:3b:19:00:63:39:c9:28:03:dc: 33:e6:5a:86:0b:32:38:59:61:f3:99:f1:4d:3b:8a:9c:89:40: 6f:7c:5a:cc:e2:36:37:3a:ef:7f:23:48:d9:96:41:58:29:96: eb:12:a5:db:19:3b:4e:79:da:73:b0:03:b9:84:4b:ab:bc:17: 41:42:4d:2c:d9:0e:83:92:d4:48:e0:fd:2c:5e:ac:36:64:1c: 4d:74:8c:69:53:48:5c:5a:ab:fa:43:60:1c:c5:fd:63:4f:cc: 3c:17:13:2b:60:3a:35:87:aa:34:0c:63:4d:3b:85:24:8c:8f: dd:0b:b7:f1:6c:43:7d:56:d7:e7:e4:77:44:65:fa:62:a5:69: c7:08:75:8c:8c:b9:83:ef:d8:09:02:47:16:d0:bb:78:df:2a: 5b:30:1b:54:c2:00:4f:c2:9b:54:d9:1f:ae:32:b2:71:cb:60: 5b:d0:5a:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFEMzYxMTAvBgNVBAUTKEMwQUVGNjI1QUY5RDUwNEFFODQ3RjY5MjNEQTg5MTA2 OUM5MDAzRjQwHhcNMjUxMjIzMDEwNzQyWhcNMjUxMjMwMDEwNzQyWjAYMRYwFAYD VQQDDA02OTQ5ZWI1ZS1jNTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk8cg8AvZAhLBddV8k1SJLKBqZ3az5hDq6NSNny7NJ7fl5dWuiwXOh/x6RI+ prQ+lVm1HBv807PRFCD/K7Bvv85lgolVVZnQEMqchFr2Dk1C7GCWh+EJPpPdHi69 qxGqbaiSS0Dk74w0t1AbHeMtpEEG4IQuk/lbhqfTUPvscFeV+6GouLRYZptTQ4Q2 KitxP7zMjJ6V1wARH/RNtagGXGXMe209utXjS4viBlsi/3Dh74FJixnkH5XrpOwF G0qxugR6gwZYBHzAbARcCtkmIJPdce3iV02YjN4txfmqmeOmVS29nSkVrbezFfY2 YxUXFhy+uE0c3QI2O7IsV77QvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPg3v/pn OXQhgFUhn/IbPxN4NemGMB8GA1UdIwQYMBaAFMCu9iWvnVBK6Ef2kj2okQackAP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUQzNi9GQzEzQTNFNDkx QUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVFcm9SX2FTUGFpUkJweVFB X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dLNzJKYS1kVUVyb1JfYVNQYWlSQnB5UUFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUQzNi9GQzEzQTNFNDkxQUExMUVEODBDMTdBNUVDNEY5QUUwMi93SzcySmEtZFVF cm9SX2FTUGFpUkJweVFBX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADSNEeEr8u8+eZg8qf/B4iQ/bvztPOMcqHeb8sr6IFmGQAdy3bbERX nRlSfxa4kZwO+03Lewsytc1puDrLheRGnuYqI2sUFNzWfbkrbAP/8hc7GQBjOcko A9wz5lqGCzI4WWHzmfFNO4qciUBvfFrM4jY3Ou9/I0jZlkFYKZbrEqXbGTtOedpz sAO5hEurvBdBQk0s2Q6DktRI4P0sXqw2ZBxNdIxpU0hcWqv6Q2Acxf1jT8w8FxMr YDo1h6o0DGNNO4UkjI/dC7fxbEN9Vtfn5HdEZfpipWnHCHWMjLmD79gJAkcW0Lt4 3ypbMBtUwgBPwptU2R+uMrJxy2Bb0FpX -----END CERTIFICATE-----Generated at Tue Dec 23 17:42:02 2025 by rpki-client