This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: vOWNxxww2ZwsDz/qQNEshFXq3ueFo1L5+Zmi3GjJo7g= Subject key identifier: 01:37:52:97:9A:E4:49:BE:76:9B:DE:F5:AC:20:4D:E0:17:A1:C4:9D Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2DFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D90 Signing time: Sat 20 Dec 2025 15:23:49 +0000 Manifest this update: Sat 20 Dec 2025 15:23:48 +0000 Manifest next update: Sat 27 Dec 2025 15:23:48 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: HDctN+6JMmRn10GMKzZjpIN5H9tYK97T8UKQok7qnxw=) 2: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 8CIfN72IDb9QxqbZGw5mhDPDgEolkLewfEE5DniHC6c=) 3: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: vGH9FoQK798TOx1m3nPPegc/vxwpIz43n4HqwUNJNHw=) 4: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: /S75Y8k69kY9b8PDmn95n9pd61Cq/ljCcnbjIoICG0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11774 (0x2dfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Dec 20 15:23:48 2025 GMT Not After : Dec 27 15:23:48 2025 GMT Subject: CN=6946bf85-2621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:94:4b:62:b3:78:1d:de:44:64:43:19:48:8e: 45:d5:b3:d6:73:9b:31:1e:da:2a:e0:a5:0e:42:e4: 9a:51:08:03:c2:8b:a1:cf:4f:e1:e4:44:f6:18:87: 01:24:81:2e:9c:6c:01:7c:2e:9f:04:7b:bc:e3:16: a9:1f:73:16:98:8a:fe:41:b3:ee:e1:bf:ba:81:1b: 93:35:4c:d2:83:38:63:8e:cc:71:c1:e5:67:e6:6b: 7a:a4:77:32:5f:48:86:bd:b1:ee:9b:a5:d8:6d:68: 49:be:e4:a2:d9:7f:12:87:f1:92:be:bb:30:34:c4: f9:84:f4:eb:a2:49:2f:6c:50:b6:5a:7e:e7:80:b5: 85:70:3b:5d:de:f3:a7:bc:71:cc:43:6b:17:2a:40: 51:1e:06:61:0c:1d:4e:a3:98:bc:09:0e:32:8a:60: 3b:9b:e3:bc:03:62:6d:17:52:8a:ee:51:29:de:49: 74:d1:eb:62:93:65:35:df:46:24:44:19:75:de:69: 68:12:2f:cf:82:5a:f7:fe:3b:e3:6c:04:b0:dc:91: ab:30:d1:fc:bb:70:66:de:b7:13:6c:93:e0:08:ef: a8:12:2a:ef:4d:b7:50:f2:a6:7f:5f:5e:23:dd:d8: b7:61:4c:b2:c1:50:17:b6:2b:d4:1b:d7:46:f0:41: 47:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:37:52:97:9A:E4:49:BE:76:9B:DE:F5:AC:20:4D:E0:17:A1:C4:9D X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:fa:53:12:51:e6:7c:22:cb:c2:15:ef:5c:2c:08:1f:ec:dd: 6d:a6:87:97:68:06:78:df:c7:3c:77:b5:b3:ef:2e:ef:fb:4b: 9f:b1:33:0c:4f:06:08:65:c0:d9:a2:d1:a9:b4:5e:31:2d:7d: 0a:e0:cf:9d:80:8b:61:d0:40:1c:a4:15:4c:6f:07:40:e9:58: 93:ce:ce:da:6d:ab:67:f8:3f:02:69:3a:74:c7:38:27:ee:e9: 8f:24:e0:c7:11:56:e0:6f:8a:2e:9a:4f:af:8a:00:4b:9f:01: 1a:c2:ac:b4:ce:63:b3:98:24:60:af:4d:a0:e4:d2:75:13:69: 1e:6b:84:cb:ac:f9:24:27:ef:2d:b0:86:d4:c2:33:24:f0:5a: 97:83:7a:26:65:fb:2f:3a:f9:1e:07:6d:bd:64:89:e7:42:1a: 59:74:d4:4b:e4:1c:9f:94:dc:39:99:2e:29:4d:26:24:2d:52: ce:98:f9:77:82:d2:ec:f1:29:c2:54:0d:82:18:cb:84:d8:2e: d4:76:8a:04:a3:03:68:94:93:2b:19:a6:05:91:76:80:5b:ba: b1:43:39:4f:ab:fa:11:ec:47:7f:23:d3:79:0b:21:23:36:e5: be:97:8e:52:a8:8c:bc:9d:58:92:02:fa:e7:b4:6e:8f:fa:e6: 02:4e:ad:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUxMjIwMTUyMzQ4WhcNMjUxMjI3MTUyMzQ4WjAYMRYwFAYD VQQDDA02OTQ2YmY4NS0yNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjZRLYrN4Hd5EZEMZSI5F1bPWc5sxHtoq4KUOQuSaUQgDwouhz0/h5ET2GIcB JIEunGwBfC6fBHu84xapH3MWmIr+QbPu4b+6gRuTNUzSgzhjjsxxweVn5mt6pHcy X0iGvbHum6XYbWhJvuSi2X8Sh/GSvrswNMT5hPTrokkvbFC2Wn7ngLWFcDtd3vOn vHHMQ2sXKkBRHgZhDB1Oo5i8CQ4yimA7m+O8A2JtF1KK7lEp3kl00etik2U130Yk RBl13mloEi/Pglr3/jvjbASw3JGrMNH8u3Bm3rcTbJPgCO+oEirvTbdQ8qZ/X14j 3di3YUyywVAXtivUG9dG8EFHDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE3Upea 5Em+dpve9awgTeAXocSdMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ+lMSUeZ8IsvCFe9cLAgf7N1tpoeXaAZ438c8d7Wz7y7v+0ufsTMM TwYIZcDZotGptF4xLX0K4M+dgIth0EAcpBVMbwdA6ViTzs7abatn+D8CaTp0xzgn 7umPJODHEVbgb4oumk+vigBLnwEawqy0zmOzmCRgr02g5NJ1E2kea4TLrPkkJ+8t sIbUwjMk8FqXg3omZfsvOvkeB229ZInnQhpZdNRL5ByflNw5mS4pTSYkLVLOmPl3 gtLs8SnCVA2CGMuE2C7UdooEowNolJMrGaYFkXaAW7qxQzlPq/oR7Ed/I9N5CyEj NuW+l45SqIy8nViSAvrntG6P+uYCTq2x -----END CERTIFICATE-----Generated at Sat Dec 20 20:13:57 2025 by rpki-client