This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: miQkCHqhtfCC/ip70zWdsQ0TQkYBKe9E5N2IfkpTiGQ= Subject key identifier: 79:AC:3C:7A:B7:E6:A7:EF:44:D4:2E:EC:90:EE:CF:A9:97:22:45:DE Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 06CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 06BF Signing time: Mon 22 Dec 2025 21:27:38 +0000 Manifest this update: Mon 22 Dec 2025 21:27:37 +0000 Manifest next update: Mon 29 Dec 2025 21:27:37 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: 70vRsbEXrztXaAeQB8KaOYJx52sHEwwzyN3vvtc8OFk=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:27:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Dec 22 21:27:37 2025 GMT Not After : Dec 29 21:27:37 2025 GMT Subject: CN=6949b7ca-f27f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4d:b8:4a:fd:49:d9:e3:6a:6e:2b:cd:44:01: a5:85:29:47:8f:ea:ae:a4:eb:5a:5f:30:4d:d6:9c: 1f:75:97:57:8e:3d:ca:72:8a:22:e3:77:c8:91:25: 36:38:3a:7c:60:63:46:8d:ea:30:c6:92:66:0c:4f: 05:ca:b8:9a:d1:45:67:28:01:6c:98:bc:6d:75:ca: 12:e6:a2:4e:10:a8:f0:ff:b6:17:43:86:ab:e8:86: 01:65:87:e2:5a:e4:cb:45:9f:37:88:26:84:3d:a7: 4f:3a:03:8b:03:e9:f3:64:ab:75:22:27:51:81:95: d1:35:d8:dd:4e:af:8a:85:ae:aa:f9:f1:7b:0d:60: de:c5:37:8b:a6:c8:53:03:e7:1e:10:3b:7a:ee:73: ac:27:7d:c0:fe:50:bd:34:f3:a6:25:ac:ab:49:1f: 3d:ec:89:38:6f:d6:9f:1a:de:14:06:7c:48:90:41: 7b:26:b5:c2:44:e4:f1:42:56:42:f5:bc:6f:a3:8f: 7a:09:c3:d1:dc:f7:b3:54:21:62:fe:22:8a:90:fb: f1:fd:5a:a9:99:34:7e:63:ef:94:ed:ef:3e:b5:3d: 11:0b:70:a2:16:30:e8:79:55:f9:27:e8:6a:27:c7: 68:cf:cd:2b:07:45:ff:aa:e1:f3:37:9d:9e:59:41: 47:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:AC:3C:7A:B7:E6:A7:EF:44:D4:2E:EC:90:EE:CF:A9:97:22:45:DE X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:fd:21:6c:4e:ff:0c:ca:f3:8f:2e:e6:e3:8f:e9:22:e3:7b: 97:09:f2:39:7f:32:08:28:9a:42:cd:50:b2:6d:98:c0:fb:fd: 4f:d4:a4:9c:45:a9:c6:64:ad:d3:37:6f:8f:72:78:d9:b3:71: 8c:23:ef:fd:43:8f:8e:d3:2f:2b:bb:05:b0:59:5e:f4:90:7c: 73:12:f3:92:a5:cb:9f:b5:a3:e7:f7:36:c5:43:29:a1:a8:44: 03:05:b1:d4:8e:ad:e9:49:ac:12:2f:c8:9a:b0:bd:71:e0:78: 61:15:be:db:06:e4:85:03:03:b0:b9:e8:cc:a9:ea:15:dd:88: c8:bc:79:ac:70:54:42:1c:4f:df:d2:58:59:44:95:75:c0:d0: c6:bc:1f:1b:c6:52:c2:e7:09:66:da:ea:a0:4b:53:01:ee:ae: d9:0f:a5:d5:0e:05:c6:e6:c6:93:9c:3d:45:b5:78:7f:a2:8c: b7:6d:49:e1:ed:d8:6e:03:26:cc:24:59:71:d1:b5:02:10:d9: 1f:2b:b8:47:3b:21:14:f1:3b:96:00:54:43:9d:4e:f0:b2:42: 85:10:a7:d5:bf:f9:dd:5a:ce:3a:c6:00:9c:e1:bf:f5:a1:de: 29:82:e7:4f:d2:6c:21:69:cb:ff:e5:a4:8f:9f:86:91:2c:7b: 00:92:99:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUxMjIyMjEyNzM3WhcNMjUxMjI5MjEyNzM3WjAYMRYwFAYD VQQDDA02OTQ5YjdjYS1mMjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp024Sv1J2eNqbivNRAGlhSlHj+qupOtaXzBN1pwfdZdXjj3Kcooi43fIkSU2 ODp8YGNGjeowxpJmDE8Fyria0UVnKAFsmLxtdcoS5qJOEKjw/7YXQ4ar6IYBZYfi WuTLRZ83iCaEPadPOgOLA+nzZKt1IidRgZXRNdjdTq+Kha6q+fF7DWDexTeLpshT A+ceEDt67nOsJ33A/lC9NPOmJayrSR897Ik4b9afGt4UBnxIkEF7JrXCROTxQlZC 9bxvo496CcPR3PezVCFi/iKKkPvx/VqpmTR+Y++U7e8+tT0RC3CiFjDoeVX5J+hq J8doz80rB0X/quHzN52eWUFHjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmsPHq3 5qfvRNQu7JDuz6mXIkXeMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA/SFsTv8MyvOPLubjj+ki43uXCfI5fzIIKJpCzVCybZjA+/1P1KSc RanGZK3TN2+PcnjZs3GMI+/9Q4+O0y8ruwWwWV70kHxzEvOSpcuftaPn9zbFQymh qEQDBbHUjq3pSawSL8iasL1x4HhhFb7bBuSFAwOwuejMqeoV3YjIvHmscFRCHE/f 0lhZRJV1wNDGvB8bxlLC5wlm2uqgS1MB7q7ZD6XVDgXG5saTnD1FtXh/ooy3bUnh 7dhuAybMJFlx0bUCENkfK7hHOyEU8TuWAFRDnU7wskKFEKfVv/ndWs46xgCc4b/1 od4pgudP0mwhacv/5aSPn4aRLHsAkpm3 -----END CERTIFICATE-----Generated at Wed Dec 24 15:43:02 2025 by rpki-client