This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft File: cGWovjQWOF29AyJATk9jTG7-XYI.mft (raw, json) Hash identifier: 0N/kUa+zpeMSpFjdTDMYnv/hQANxObJG450a2dRvJQ8= Subject key identifier: 8E:AC:2A:38:5A:D7:2B:DF:46:B9:7C:A1:0C:EA:5A:A8:55:CC:02:DE Authority key identifier: 70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 Certificate issuer: /CN=A9125AE9/serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Certificate serial: 02FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft Manifest number: 02F2 Signing time: Sun 21 Dec 2025 00:27:21 +0000 Manifest this update: Sun 21 Dec 2025 00:27:20 +0000 Manifest next update: Sun 28 Dec 2025 00:27:20 +0000 Files and hashes: 1: cGWovjQWOF29AyJATk9jTG7-XYI.crl (hash: 0Yylc+Ch0RArpykhBAhJfKfnUAR6eAHVVQS8qAIdgs8=) 2: 6FE0D496064A11EDA0A92068C4F9AE02.roa (hash: JRRHFHRH/uVW0PHutMy6lJB/eW/QXu294EFbaPi8iXI=) 3: 70BB6C14064A11EDA0A92068C4F9AE02.roa (hash: JT4dplBUu4v9YQvNGUvDei5LqVZTJF+BU50zqJrOD2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 762 (0x2fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125AE9, serialNumber=7065A8BE3416385DBD0322404E4F634C6EFE5D82 Validity Not Before: Dec 21 00:27:20 2025 GMT Not After : Dec 28 00:27:20 2025 GMT Subject: CN=69473ee8-3850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:63:22:0b:b0:46:26:4b:17:e8:16:56:95:2c: fc:f0:27:82:9c:d1:76:80:59:23:50:79:d1:0b:36: d1:dd:69:7a:67:bb:8a:99:f9:ba:9f:5a:30:57:d3: 04:b5:94:40:a9:87:58:cd:74:02:62:a4:80:8b:c0: de:c7:ea:e8:78:fd:db:71:5e:61:ba:b7:bf:7c:87: c5:a2:c0:7a:7a:3a:aa:24:e3:1d:bb:ed:32:41:1c: 07:0f:be:34:85:d4:5d:93:3d:69:ba:93:0a:0f:69: ce:ba:76:9b:42:d1:c7:a1:5e:f2:e5:cd:f4:18:3a: 40:0c:36:26:10:bf:19:04:1d:b1:ec:8b:97:12:00: ba:a8:60:57:0b:2f:f1:57:bb:b4:4c:bc:e5:61:c9: 9d:7d:70:07:d9:49:53:0e:91:29:7e:dc:98:78:65: 10:8c:da:59:39:cc:76:f1:dc:ca:f5:bf:bb:15:a6: 19:3f:a8:60:5b:b1:09:38:d1:7d:69:d1:ad:b1:25: 07:ac:ce:e5:50:d7:6d:25:97:63:0b:73:5b:01:cb: ed:d3:70:c8:19:89:2e:4a:9d:dc:fe:e4:dd:24:7d: 79:44:2d:d9:a7:f5:4b:6a:af:eb:9a:43:fb:f0:91: ff:61:62:a7:85:7d:27:1a:15:36:27:7d:ea:2b:4c: 77:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:AC:2A:38:5A:D7:2B:DF:46:B9:7C:A1:0C:EA:5A:A8:55:CC:02:DE X509v3 Authority Key Identifier: keyid:70:65:A8:BE:34:16:38:5D:BD:03:22:40:4E:4F:63:4C:6E:FE:5D:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cGWovjQWOF29AyJATk9jTG7-XYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125AE9/FFEB7F9A064611ED9CB73163C4F9AE02/cGWovjQWOF29AyJATk9jTG7-XYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:64:25:54:69:7c:52:3f:cf:8e:01:fb:62:27:06:1c:53:b1: 92:21:f9:02:da:2d:49:93:d6:df:b3:85:4e:96:0d:cc:6b:41: 91:a3:9a:4a:b5:e9:fa:72:aa:3c:67:3d:62:22:ac:8d:f5:09: 3c:2f:c8:6e:15:e6:21:7f:65:d6:e6:58:5b:f7:3d:2b:9f:84: f3:d2:0c:80:a6:62:cc:f3:73:5c:09:16:d0:ad:0a:b2:6d:75: 50:0e:97:cb:dd:a3:ee:c5:78:82:5a:6f:67:76:9a:5d:62:c9: 76:47:97:dd:05:66:0e:b9:35:36:01:1c:f6:5f:b8:fe:96:59: a6:56:9e:d2:46:9a:63:4e:48:cf:55:c0:39:b2:6c:f5:cb:f3: 3c:1d:bd:25:51:2e:0b:c2:9d:5f:b5:19:0d:04:d0:08:82:f2: 36:95:9e:03:40:b1:83:8f:12:04:03:4a:d7:25:35:44:a6:03: 39:a1:3b:9c:01:06:d7:29:43:c0:a5:dc:07:e3:89:00:32:ae: 87:73:04:55:68:5a:6e:4f:02:17:4b:ec:59:04:0b:0a:af:3a: f0:52:f7:1b:5f:a4:c7:0a:2b:d9:bb:a1:ae:73:37:09:10:6d: ab:4e:03:9a:3f:ee:e2:02:e0:33:5a:be:f8:ad:35:a9:17:41: a9:83:29:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBRTkxMTAvBgNVBAUTKDcwNjVBOEJFMzQxNjM4NURCRDAzMjI0MDRFNEY2MzRD NkVGRTVEODIwHhcNMjUxMjIxMDAyNzIwWhcNMjUxMjI4MDAyNzIwWjAYMRYwFAYD VQQDDA02OTQ3M2VlOC0zODUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2MiC7BGJksX6BZWlSz88CeCnNF2gFkjUHnRCzbR3Wl6Z7uKmfm6n1owV9ME tZRAqYdYzXQCYqSAi8Dex+roeP3bcV5hure/fIfFosB6ejqqJOMdu+0yQRwHD740 hdRdkz1pupMKD2nOunabQtHHoV7y5c30GDpADDYmEL8ZBB2x7IuXEgC6qGBXCy/x V7u0TLzlYcmdfXAH2UlTDpEpftyYeGUQjNpZOcx28dzK9b+7FaYZP6hgW7EJONF9 adGtsSUHrM7lUNdtJZdjC3NbAcvt03DIGYkuSp3c/uTdJH15RC3Zp/VLaq/rmkP7 8JH/YWKnhX0nGhU2J33qK0x3PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6sKjha 1yvfRrl8oQzqWqhVzALeMB8GA1UdIwQYMBaAFHBlqL40FjhdvQMiQE5PY0xu/l2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUFFOS9GRkVCN0Y5QTA2 NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09GMjlBeUpBVGs5alRHNy1Y WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NHV292alFXT0YyOUF5SkFUazlqVEc3LVhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUFFOS9GRkVCN0Y5QTA2NDYxMUVEOUNCNzMxNjNDNEY5QUUwMi9jR1dvdmpRV09G MjlBeUpBVGs5alRHNy1YWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZZCVUaXxSP8+OAftiJwYcU7GSIfkC2i1Jk9bfs4VOlg3Ma0GRo5pK ten6cqo8Zz1iIqyN9Qk8L8huFeYhf2XW5lhb9z0rn4Tz0gyApmLM83NcCRbQrQqy bXVQDpfL3aPuxXiCWm9ndppdYsl2R5fdBWYOuTU2ARz2X7j+llmmVp7SRppjTkjP VcA5smz1y/M8Hb0lUS4Lwp1ftRkNBNAIgvI2lZ4DQLGDjxIEA0rXJTVEpgM5oTuc AQbXKUPApdwH44kAMq6HcwRVaFpuTwIXS+xZBAsKrzrwUvcbX6THCivZu6GuczcJ EG2rTgOaP+7iAuAzWr74rTWpF0Gpgymu -----END CERTIFICATE-----Generated at Sun Dec 21 19:49:13 2025 by rpki-client