This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft File: G43u2x08SMwcTCF7lpx5hUGkzHc.mft (raw, json) Hash identifier: jco1xK7HtgfccRVaVwBQ0SDvPtlHNxCcdaGlzL6THHk= Subject key identifier: 27:A6:A3:A8:96:08:F3:66:CA:59:6D:56:CD:BB:0E:9B:1F:B7:D3:68 Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 Certificate issuer: /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Certificate serial: 06B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft Manifest number: 06B2 Signing time: Sat 20 Dec 2025 21:36:33 +0000 Manifest this update: Sat 20 Dec 2025 21:36:33 +0000 Manifest next update: Sat 27 Dec 2025 21:36:33 +0000 Files and hashes: 1: G43u2x08SMwcTCF7lpx5hUGkzHc.crl (hash: FjVF4z+U40xk8NIM4lK+j5vS6Xzf1yR8pOgc7zZVbLM=) 2: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (hash: lV/cpNWUCFTUuQ8wWKZTK1Tzrge3tnngMyqR3AbKgb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 21:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124803, serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Validity Not Before: Dec 20 21:36:33 2025 GMT Not After : Dec 27 21:36:33 2025 GMT Subject: CN=694716e1-56f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ff:42:9b:e5:f1:3c:a7:a3:15:e9:28:24:c0: 7a:ac:f0:2d:2d:8d:4a:d4:10:25:87:15:38:81:5f: 56:a3:da:0d:78:80:18:e7:d7:38:72:89:53:cc:4c: e3:4e:7b:33:7e:d2:d4:e1:9e:02:ed:09:bf:c2:89: d6:31:ae:9f:ee:6c:96:cb:7b:93:0b:d6:80:cf:7f: 0b:aa:60:52:69:f4:9a:6e:46:95:32:ea:d8:54:a6: 8d:a8:0f:38:a0:1b:06:2d:23:7b:20:d5:c9:13:b2: 8e:65:7f:cd:c4:26:9e:5d:c4:5a:f7:10:b2:14:67: 7a:78:0d:b6:c2:18:0d:05:61:74:c1:59:08:2f:c8: e6:46:20:65:2c:b3:2b:2a:25:f0:dd:15:f4:f3:dc: 8b:4f:ff:a0:30:c0:c1:81:da:e3:9a:52:18:6c:0b: fd:d1:e5:d9:03:1e:41:2a:c6:b6:88:4f:64:ed:9d: 91:11:eb:af:b4:b3:1c:03:80:d6:f4:80:42:17:d7: 92:7c:6e:55:6d:15:f2:61:0d:c2:e4:2c:3c:f9:85: 84:4c:e5:42:4f:90:a5:63:a7:b6:e2:a6:84:c0:4a: 88:4f:bf:c3:5d:ad:2b:a0:f1:10:12:10:59:7b:af: 91:02:a0:28:cf:58:47:74:f1:0c:18:ad:a7:29:05: 7f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A6:A3:A8:96:08:F3:66:CA:59:6D:56:CD:BB:0E:9B:1F:B7:D3:68 X509v3 Authority Key Identifier: keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:64:32:58:aa:d0:c3:d7:ed:55:47:eb:d8:9e:44:1e:56:9e: da:1b:7f:81:ec:6c:71:cd:ad:6e:9a:4a:48:c8:a3:1e:9a:98: 4a:9b:c5:0c:5f:6e:09:74:98:98:1d:a2:47:fd:28:10:34:13: 44:e4:3b:ac:fb:8c:a4:05:f3:7d:10:97:38:ae:14:39:05:cf: 97:fe:af:5d:48:00:a9:75:51:aa:e9:4e:70:ec:38:62:61:35: bd:4d:0e:55:ae:6c:06:2a:cf:d9:98:b7:1f:30:7e:61:b0:6a: db:74:b2:41:c7:6c:45:a2:15:77:8a:98:f0:3d:9e:8b:89:13: b9:48:3a:47:f1:58:7e:9c:2f:f9:01:59:22:5b:24:85:93:15: 23:41:86:5e:2c:3a:05:9f:ae:ac:9e:62:62:ea:83:b6:8d:0c: fb:35:b6:da:1a:14:b4:20:ac:69:76:8b:af:e6:6f:a2:e1:a0: cd:b5:e9:d1:9e:6f:0c:78:3b:46:74:e7:87:d5:6d:11:79:07: a0:27:c3:ac:34:35:3d:b4:40:84:06:eb:60:ca:3f:68:f8:35: 66:a4:30:e6:33:af:4a:85:8d:fe:41:33:b6:11:f4:a5:ce:7a: 78:3c:d6:d5:8c:dd:59:e2:3e:a3:9b:60:4e:47:f9:f5:98:c0: 5c:08:6e:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4MDMxMTAvBgNVBAUTKDFCOERFRURCMUQzQzQ4Q0MxQzRDMjE3Qjk2OUM3OTg1 NDFBNENDNzcwHhcNMjUxMjIwMjEzNjMzWhcNMjUxMjI3MjEzNjMzWjAYMRYwFAYD VQQDDA02OTQ3MTZlMS01NmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/9Cm+XxPKejFekoJMB6rPAtLY1K1BAlhxU4gV9Wo9oNeIAY59c4colTzEzj TnszftLU4Z4C7Qm/wonWMa6f7myWy3uTC9aAz38LqmBSafSabkaVMurYVKaNqA84 oBsGLSN7INXJE7KOZX/NxCaeXcRa9xCyFGd6eA22whgNBWF0wVkIL8jmRiBlLLMr KiXw3RX089yLT/+gMMDBgdrjmlIYbAv90eXZAx5BKsa2iE9k7Z2REeuvtLMcA4DW 9IBCF9eSfG5VbRXyYQ3C5Cw8+YWETOVCT5ClY6e24qaEwEqIT7/DXa0roPEQEhBZ e6+RAqAoz1hHdPEMGK2nKQV/9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCemo6iW CPNmylltVs27Dpsft9NoMB8GA1UdIwQYMBaAFBuN7tsdPEjMHEwhe5aceYVBpMx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDgwMy85NzdENzM2MDhD NzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNNd2NUQ0Y3bHB4NWhVR2t6 SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0M3UyeDA4U013Y1RDRjdscHg1aFVHa3pIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDgwMy85NzdENzM2MDhDNzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNN d2NUQ0Y3bHB4NWhVR2t6SGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcZDJYqtDD1+1VR+vYnkQeVp7aG3+B7Gxxza1umkpIyKMemphKm8UM X24JdJiYHaJH/SgQNBNE5Dus+4ykBfN9EJc4rhQ5Bc+X/q9dSACpdVGq6U5w7Dhi YTW9TQ5VrmwGKs/ZmLcfMH5hsGrbdLJBx2xFohV3ipjwPZ6LiRO5SDpH8Vh+nC/5 AVkiWySFkxUjQYZeLDoFn66snmJi6oO2jQz7NbbaGhS0IKxpdouv5m+i4aDNtenR nm8MeDtGdOeH1W0ReQegJ8OsNDU9tECEButgyj9o+DVmpDDmM69KhY3+QTO2EfSl znp4PNbVjN1Z4j6jm2BOR/n1mMBcCG4O -----END CERTIFICATE-----Generated at Mon Dec 22 04:23:38 2025 by rpki-client