This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: 5+4DaGdfOOa7wKu76tWrHIHsAxXuY6iZzXHM5fk36po= Subject key identifier: 69:F6:3A:D0:18:EE:32:28:44:DB:31:B1:23:E6:1D:AB:7A:9D:AE:2E Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 0246 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 023A Signing time: Tue 23 Dec 2025 01:02:37 +0000 Manifest this update: Tue 23 Dec 2025 01:02:37 +0000 Manifest next update: Tue 30 Dec 2025 01:02:37 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: OjR9zfkmpPwW0G6awZO8yIm9ROZ6ZcKAzGvCdf4hRIQ=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: csl85VTomjs4iPv8bKOFHRUkLivByj84d/cWaa81y8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Dec 23 01:02:37 2025 GMT Not After : Dec 30 01:02:37 2025 GMT Subject: CN=6949ea2d-5d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:93:65:d5:78:00:a0:78:7d:43:3c:1c:97:70: cf:3a:5c:59:65:d7:43:3f:d9:f9:65:f7:cd:e1:f0: 00:28:7c:f5:0d:a9:36:d2:bf:87:5b:e7:42:f9:90: e1:a5:7c:b7:82:3c:7b:01:b9:5e:95:b3:ba:fc:9a: 82:b6:0c:f3:43:d0:07:77:79:1d:ee:e9:7f:ac:14: fe:3e:7d:49:c9:8b:b0:c7:2d:a7:85:11:6c:46:a3: 1e:00:7d:b1:31:7d:af:96:a1:41:c7:43:0a:7c:ba: aa:9c:44:99:54:00:21:11:f6:93:6e:25:1b:cd:6c: 72:9a:ad:19:25:b4:9a:b8:70:1b:7e:7a:aa:25:09: d9:65:53:ca:e8:40:56:c0:a0:5f:ea:5b:65:1f:0c: 78:60:28:16:a6:5d:93:fb:11:87:5a:58:cb:51:c7: 24:7d:7d:2f:63:87:c0:cb:d5:09:b4:aa:51:a9:1b: 79:b9:56:f0:66:a1:a1:e5:63:4e:66:39:b5:be:5e: a1:50:8a:6f:ef:75:e1:0c:26:10:ce:ce:41:06:61: cf:69:b2:26:33:04:b8:29:d9:82:ad:12:94:49:a5: 8d:80:82:71:c0:7b:ac:6f:d9:d5:f9:c2:31:67:63: e6:a8:1e:6f:72:12:2f:ef:ac:49:d1:f1:55:ac:3f: 24:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F6:3A:D0:18:EE:32:28:44:DB:31:B1:23:E6:1D:AB:7A:9D:AE:2E X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:52:a5:01:4d:66:43:b8:c2:97:48:6b:91:2a:33:e6:5c:6c: 9f:bd:ca:ca:18:e6:87:dd:4f:ec:ce:6e:69:67:8e:3d:f1:b7: c3:3d:18:2e:96:f9:b3:21:cb:b0:b6:86:2b:f8:b0:f3:a7:52: b7:03:06:3e:d3:ec:44:fd:9d:cf:a7:64:81:0a:7c:99:e9:07: 99:49:42:ed:a2:4e:7a:37:b7:bc:4e:34:66:84:66:8a:af:49: a9:53:ef:76:6a:cd:c0:92:59:69:8d:3d:1f:1b:f4:00:b8:bf: 2e:ef:5f:ca:fa:ed:34:2b:02:b8:60:8d:c9:73:1f:79:0f:ab: 49:58:0f:7e:9b:90:e0:2d:cc:69:f2:02:c4:d3:d9:5d:70:00: 62:44:f7:36:fb:73:9d:78:14:77:a1:e5:52:44:26:ab:91:6b: d3:14:41:ac:a4:ff:db:de:6a:98:07:b0:6d:e1:ad:98:cf:39: 94:91:a0:30:3a:3b:44:87:7b:47:22:d9:b0:98:e0:f4:8e:10: b6:46:c1:84:90:68:f2:23:b1:99:17:1f:67:fb:ec:65:0a:b4: ec:22:93:99:3c:a9:ea:a8:c4:01:d7:25:e2:25:19:1e:b8:de: bf:91:c5:03:0a:b2:fd:bd:37:0e:bc:53:19:ed:46:46:d1:47: e7:a3:c1:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjUxMjIzMDEwMjM3WhcNMjUxMjMwMDEwMjM3WjAYMRYwFAYD VQQDDA02OTQ5ZWEyZC01ZDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZNl1XgAoHh9Qzwcl3DPOlxZZddDP9n5ZffN4fAAKHz1Dak20r+HW+dC+ZDh pXy3gjx7AblelbO6/JqCtgzzQ9AHd3kd7ul/rBT+Pn1JyYuwxy2nhRFsRqMeAH2x MX2vlqFBx0MKfLqqnESZVAAhEfaTbiUbzWxymq0ZJbSauHAbfnqqJQnZZVPK6EBW wKBf6ltlHwx4YCgWpl2T+xGHWljLUcckfX0vY4fAy9UJtKpRqRt5uVbwZqGh5WNO Zjm1vl6hUIpv73XhDCYQzs5BBmHPabImMwS4KdmCrRKUSaWNgIJxwHusb9nV+cIx Z2PmqB5vchIv76xJ0fFVrD8kkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGn2OtAY 7jIoRNsxsSPmHat6na4uMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhUqUBTWZDuMKXSGuRKjPmXGyfvcrKGOaH3U/szm5pZ4498bfDPRgu lvmzIcuwtoYr+LDzp1K3AwY+0+xE/Z3Pp2SBCnyZ6QeZSULtok56N7e8TjRmhGaK r0mpU+92as3AkllpjT0fG/QAuL8u71/K+u00KwK4YI3Jcx95D6tJWA9+m5DgLcxp 8gLE09ldcABiRPc2+3OdeBR3oeVSRCarkWvTFEGspP/b3mqYB7Bt4a2YzzmUkaAw OjtEh3tHItmwmOD0jhC2RsGEkGjyI7GZFx9n++xlCrTsIpOZPKnqqMQB1yXiJRke uN6/kcUDCrL9vTcOvFMZ7UZG0Ufno8Gx -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:14 2025 by rpki-client