This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft File: ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json) Hash identifier: fLjWBEo3yA8J4wExSNlX5dcFk385cXnPzg+FZhuDcSM= Subject key identifier: BB:24:F9:11:86:7E:FB:6D:AC:CA:DA:4D:26:4E:98:91:61:C7:58:1C Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 085F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft Manifest number: 0858 Signing time: Mon 22 Dec 2025 20:03:34 +0000 Manifest this update: Mon 22 Dec 2025 20:03:33 +0000 Manifest next update: Mon 29 Dec 2025 20:03:33 +0000 Files and hashes: 1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: VXCiXL6eVSZgWPZ8EebNMCG2Kgw0yi319z0pwMpLFbs=) 2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: fA68vPB23i/OAo2Tlmrq8T3cX2gqQgOTyj+Ul9pJg/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812, serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: Dec 22 20:03:33 2025 GMT Not After : Dec 29 20:03:33 2025 GMT Subject: CN=6949a415-b451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:10:12:de:76:63:38:ee:67:ce:dc:9e:45:99: 81:c4:10:27:09:a1:f8:45:ad:4b:7c:65:87:b8:1d: a1:07:f4:d7:8a:7b:a0:6d:c6:f8:ca:d5:92:15:dc: e4:68:5e:1a:7c:87:f0:47:11:59:98:4e:38:52:18: 34:e5:30:ba:ab:44:a7:63:0c:7a:50:c6:5b:3b:59: b7:59:d1:e7:8c:ba:2f:9e:4a:4e:21:04:92:8c:62: 28:db:5c:47:7c:72:b3:e6:1a:13:9c:8f:f3:13:af: 73:d6:12:e3:b7:0a:4e:cb:f5:36:92:37:ed:13:9b: e3:7a:45:be:a8:3c:e1:81:0f:f5:4c:f3:87:dc:ed: ea:b1:b7:f4:cf:fa:a3:0a:b3:75:b4:4b:91:e7:57: 48:c0:78:98:33:39:30:7e:93:17:49:e7:8a:32:a4: 02:09:a6:e9:59:ef:28:1d:b5:58:e1:4e:ba:05:f9: 8d:2d:02:d5:c0:c7:ed:98:14:ea:1f:9a:d3:b1:65: 42:6f:e9:18:79:b0:76:1e:f9:b5:54:85:af:7c:bd: a1:0d:23:23:2d:b8:fe:13:52:ba:15:48:37:7d:a4: fe:e1:18:c9:bd:48:1d:25:be:9e:18:5f:1c:a7:d4: f4:0b:d8:fc:52:49:33:36:b2:1e:e8:07:8b:9a:0e: fb:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:24:F9:11:86:7E:FB:6D:AC:CA:DA:4D:26:4E:98:91:61:C7:58:1C X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:50:3f:8d:d0:95:2d:e3:c1:78:9f:68:c7:93:07:d5:67:13: 42:a0:1d:71:95:15:8c:1a:94:2a:b6:83:b2:7b:a2:8c:6b:ef: b4:b0:c8:1f:53:bd:7a:db:26:dc:51:4d:eb:6d:c0:17:9c:90: 11:3f:c9:2e:4a:76:bb:7a:86:89:5e:97:52:c6:11:da:c2:df: 00:c2:35:46:15:7a:96:d1:b3:05:ec:90:23:ba:61:2a:16:8d: 1b:e2:2d:1c:12:e4:18:1e:94:30:fb:10:63:23:58:5d:a9:cb: 55:e5:e6:35:af:00:55:e9:36:94:98:cf:df:b4:b3:94:08:be: 21:9f:53:d3:e0:89:bd:1a:90:ac:0b:50:c8:cc:a2:74:c8:64: 7c:7e:38:8b:20:34:69:04:8d:1f:4a:57:a5:8b:f1:10:fa:0e: 27:37:e5:da:e9:43:d3:79:ee:6c:05:9c:5b:c0:12:3a:df:05: a6:57:11:02:32:66:90:f5:f5:48:8c:b2:7f:56:e3:d8:55:34: 50:cb:ab:59:5f:61:45:00:16:dc:17:11:7b:59:bd:d7:b6:30: f0:e0:b4:9d:8f:21:f2:da:4c:34:92:04:b4:23:81:f7:bc:a7: 36:0b:a9:90:1a:01:c9:33:73:95:5a:ba:12:69:cd:fd:3b:4a: db:e4:ab:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjUxMjIyMjAwMzMzWhcNMjUxMjI5MjAwMzMzWjAYMRYwFAYD VQQDDA02OTQ5YTQxNS1iNDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBAS3nZjOO5nztyeRZmBxBAnCaH4Ra1LfGWHuB2hB/TXinugbcb4ytWSFdzk aF4afIfwRxFZmE44Uhg05TC6q0SnYwx6UMZbO1m3WdHnjLovnkpOIQSSjGIo21xH fHKz5hoTnI/zE69z1hLjtwpOy/U2kjftE5vjekW+qDzhgQ/1TPOH3O3qsbf0z/qj CrN1tEuR51dIwHiYMzkwfpMXSeeKMqQCCabpWe8oHbVY4U66BfmNLQLVwMftmBTq H5rTsWVCb+kYebB2Hvm1VIWvfL2hDSMjLbj+E1K6FUg3faT+4RjJvUgdJb6eGF8c p9T0C9j8UkkzNrIe6AeLmg77aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsk+RGG fvttrMraTSZOmJFhx1gcMB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi9CMjVFRjk5MEU5MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQt OGJYQVVyNDI3WW10SVNjTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3UD+N0JUt48F4n2jHkwfVZxNCoB1xlRWMGpQqtoOye6KMa++0sMgf U7162ybcUU3rbcAXnJARP8kuSna7eoaJXpdSxhHawt8AwjVGFXqW0bMF7JAjumEq Fo0b4i0cEuQYHpQw+xBjI1hdqctV5eY1rwBV6TaUmM/ftLOUCL4hn1PT4Im9GpCs C1DIzKJ0yGR8fjiLIDRpBI0fSleli/EQ+g4nN+Xa6UPTee5sBZxbwBI63wWmVxEC MmaQ9fVIjLJ/VuPYVTRQy6tZX2FFABbcFxF7Wb3XtjDw4LSdjyHy2kw0kgS0I4H3 vKc2C6mQGgHJM3OVWroSac39O0rb5Kuk -----END CERTIFICATE-----Generated at Tue Dec 23 11:07:27 2025 by rpki-client