This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: kvAacB6uotcf4SLDYWwP4/hv4XynWXfvRDj9zUHmFhs= Subject key identifier: 94:FA:73:E5:AA:D3:5D:8F:50:54:83:A0:2E:A4:EF:5A:3D:DE:44:BE Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 0238 Signing time: Tue 23 Dec 2025 00:58:24 +0000 Manifest this update: Tue 23 Dec 2025 00:58:23 +0000 Manifest next update: Tue 30 Dec 2025 00:58:23 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: BK8Pr60Ev0zgwi6o36c1eJKGXn978scNBReKywhXpu8=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: VJsQOiSsJa0amQwIRBGtrMFlrR2aAJJ6yMzF4uWszlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Dec 23 00:58:23 2025 GMT Not After : Dec 30 00:58:23 2025 GMT Subject: CN=6949e930-278e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:42:fd:ec:ca:a3:55:75:60:be:69:db:90:2c: 58:9b:ca:4f:f5:4b:d4:a5:de:49:76:48:ec:6f:67: c0:ab:5d:56:cd:e1:c0:3c:62:f0:7e:9f:d0:b6:13: 01:14:67:20:5b:d2:64:0d:24:1d:c7:d1:24:99:39: 15:68:f2:f1:20:be:ac:0f:23:24:ba:72:59:ff:da: c4:6a:fd:e2:9c:80:7e:c6:98:fa:19:0e:66:e2:d2: 6c:bd:01:c2:2b:46:0a:63:99:40:7f:6a:53:95:9d: 64:f8:59:04:26:91:2e:dd:71:28:3c:30:02:b2:49: c9:62:db:90:f4:b2:b3:a9:fd:30:3c:1f:02:7b:95: 75:18:65:bc:6f:e1:ef:01:ef:65:43:ef:32:7e:e6: 0c:2d:51:17:db:f0:ad:a9:b1:01:c6:04:84:c5:11: be:15:68:43:a4:44:64:80:37:7d:30:2c:7a:f5:85: 4f:3e:cb:d3:fa:97:d4:45:cc:4f:17:25:e3:79:b0: 89:04:94:e8:ee:8f:b5:37:50:f3:20:52:e0:a9:fb: b9:1d:a7:26:27:11:7e:16:fc:53:09:71:cb:66:94: c0:96:b9:d0:c3:4d:d9:4d:b3:49:0c:17:af:98:32: 19:2a:4c:31:1e:3e:c5:3d:5e:4f:25:97:e1:29:fd: 5a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:FA:73:E5:AA:D3:5D:8F:50:54:83:A0:2E:A4:EF:5A:3D:DE:44:BE X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:cc:0d:f0:d8:4c:f1:93:b7:4d:bb:05:7d:2c:26:29:08:fe: 4b:a4:0d:54:a6:a8:bd:ef:fd:16:28:4e:3c:80:62:5a:a6:4a: 31:7a:04:2b:e2:a0:11:ae:a2:0e:8e:ac:4f:55:58:1c:0f:4b: 17:9f:86:36:5a:60:9f:69:cc:2c:7a:be:f6:bf:17:76:6d:6a: e0:7e:de:5f:15:65:29:e9:9a:80:53:90:3d:85:75:6a:04:af: c3:8e:b0:45:13:cf:2f:54:fb:c1:c9:23:2b:12:19:67:4f:97: 66:f9:1f:ac:57:53:6e:97:bd:ba:61:d2:8e:e0:a0:9e:ec:3f: 9b:f4:a0:00:06:75:62:1d:5a:21:d4:62:36:20:fc:8f:c3:e8: ff:62:3f:96:72:80:3a:bc:b1:31:4b:b3:17:65:26:70:4e:f3: f3:69:96:7b:d6:62:b2:81:a2:a8:ee:10:f4:ad:44:c1:3c:11: e8:aa:3d:7e:05:24:07:94:53:91:34:42:31:4b:7e:dc:1f:82: 3c:c7:e0:5b:32:ef:7c:46:72:71:87:09:af:44:a1:85:33:a3: e1:0e:a3:c3:25:26:e2:20:be:ff:fa:8a:39:ab:61:c7:4c:39: b3:08:2c:d0:9d:b9:26:dd:0e:2d:8a:7c:56:95:66:03:74:16: a9:23:75:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUxMjIzMDA1ODIzWhcNMjUxMjMwMDA1ODIzWjAYMRYwFAYD VQQDDA02OTQ5ZTkzMC0yNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40L97MqjVXVgvmnbkCxYm8pP9UvUpd5Jdkjsb2fAq11WzeHAPGLwfp/QthMB FGcgW9JkDSQdx9EkmTkVaPLxIL6sDyMkunJZ/9rEav3inIB+xpj6GQ5m4tJsvQHC K0YKY5lAf2pTlZ1k+FkEJpEu3XEoPDACsknJYtuQ9LKzqf0wPB8Ce5V1GGW8b+Hv Ae9lQ+8yfuYMLVEX2/CtqbEBxgSExRG+FWhDpERkgDd9MCx69YVPPsvT+pfURcxP FyXjebCJBJTo7o+1N1DzIFLgqfu5HacmJxF+FvxTCXHLZpTAlrnQw03ZTbNJDBev mDIZKkwxHj7FPV5PJZfhKf1avQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJT6c+Wq 012PUFSDoC6k71o93kS+MB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqzA3w2Ezxk7dNuwV9LCYpCP5LpA1Upqi97/0WKE48gGJapkoxegQr 4qARrqIOjqxPVVgcD0sXn4Y2WmCfacwser72vxd2bWrgft5fFWUp6ZqAU5A9hXVq BK/DjrBFE88vVPvBySMrEhlnT5dm+R+sV1Nul726YdKO4KCe7D+b9KAABnViHVoh 1GI2IPyPw+j/Yj+WcoA6vLExS7MXZSZwTvPzaZZ71mKygaKo7hD0rUTBPBHoqj1+ BSQHlFORNEIxS37cH4I8x+BbMu98RnJxhwmvRKGFM6PhDqPDJSbiIL7/+oo5q2HH TDmzCCzQnbkm3Q4tinxWlWYDdBapI3Ve -----END CERTIFICATE-----Generated at Wed Dec 24 17:34:55 2025 by rpki-client