This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: IMHWc2n7okUXlVT45fQ/CFpqNy+zbMTRBe8JDT1kiVA= Subject key identifier: CD:C2:45:2F:C1:7B:F4:FD:78:AC:8A:5C:FA:B9:56:BB:F5:12:BB:74 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 0183 Signing time: Tue 23 Dec 2025 02:46:39 +0000 Manifest this update: Tue 23 Dec 2025 02:46:39 +0000 Manifest next update: Tue 30 Dec 2025 02:46:39 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: bFBfqKFnAL2VRLNNJ851+9giWOXBN6/gOlXEjZ82qxk=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: YgNQfKH2j9vPQAWdAUFYDmXhZo5ythnv/oTPT+Ay1+4=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: fOjJ/Gc3Xo61GkkgaAWGTG7vIfdk8OnS5/7uboXrlc8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 02:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Dec 23 02:46:39 2025 GMT Not After : Dec 30 02:46:39 2025 GMT Subject: CN=694a028f-821a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c6:e3:e8:30:43:0b:44:58:1d:81:1d:f3:a0: 89:91:b0:78:26:5b:36:c7:28:9a:bc:b8:66:4b:a9: 15:59:60:e3:a7:2d:28:99:9f:22:27:78:e0:15:ab: 46:92:7c:87:a5:5c:3b:d2:94:48:1b:78:de:6c:fb: e8:3b:07:88:ce:1d:22:b4:da:87:a1:12:4c:ba:6e: 3d:d2:cd:a8:d9:48:c7:de:0d:ea:cb:96:13:1c:61: 08:5e:41:64:67:c0:2a:82:d8:0b:2b:12:8b:88:50: f8:6f:02:11:47:5e:df:27:16:df:94:f3:00:37:b7: 5d:9f:19:36:d5:4e:52:e1:81:78:f3:87:24:02:f1: da:4f:cf:1f:37:3a:3a:12:ff:d1:04:a5:24:c2:de: b7:a2:40:2a:cf:45:f2:29:cc:b3:f8:96:36:5a:7a: 3b:87:cd:4d:4c:48:40:a4:22:04:7d:d8:e0:cf:3c: 58:dc:88:5e:e9:3e:f8:71:f3:10:7b:88:0a:03:6f: 97:57:e5:4b:81:91:ad:e4:09:5b:02:75:fe:75:d6: 3b:d7:05:0a:b9:96:ec:a8:38:c8:eb:e8:42:36:e5: 70:df:90:74:7a:c4:f0:fc:78:e8:b9:cd:0d:ff:db: 4d:da:ab:d1:f8:5c:74:02:4c:b0:d0:f8:02:7e:aa: 00:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C2:45:2F:C1:7B:F4:FD:78:AC:8A:5C:FA:B9:56:BB:F5:12:BB:74 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:79:31:b4:c3:a9:e0:40:85:2d:11:6d:50:d2:8e:62:b8:f7: b6:68:e3:c7:20:72:5c:5f:a1:ff:41:a2:90:db:ea:dd:08:82: e1:67:f7:0e:68:e7:45:b2:c1:49:e5:f1:53:00:0f:20:9b:b9: 54:08:78:31:dc:f3:3d:e7:57:15:03:af:2f:b6:ae:c1:a9:bf: 9a:28:be:63:84:69:c5:10:76:50:a0:40:6a:54:27:69:61:08: 2a:45:3b:08:ee:81:7b:65:d4:8d:59:fb:4f:84:b1:a6:98:41: 94:65:90:39:86:57:2b:29:92:80:31:2e:da:18:a8:15:76:c7: 79:c3:0b:a1:d0:38:1f:4a:b8:59:72:f9:33:a0:55:06:d6:08: 81:e8:d1:2e:65:58:5f:d9:b0:fe:d4:b1:b5:3b:80:56:33:f0: 43:5e:1d:99:30:6c:60:32:9f:15:55:96:81:ae:91:1c:38:b3: f0:97:94:38:cf:05:3d:26:11:a7:f0:4a:1d:28:e9:f7:e2:b0: bf:b3:df:f6:d6:c0:4e:f3:40:50:a7:74:54:e3:ee:7d:53:5d: 5b:91:4d:3c:8f:12:93:f6:90:ed:b5:43:91:f0:66:0c:f7:47: 28:1b:41:e7:b7:ef:37:5a:3b:5c:0f:30:56:a5:30:2d:a8:c6: 3a:c7:60:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUxMjIzMDI0NjM5WhcNMjUxMjMwMDI0NjM5WjAYMRYwFAYD VQQDDA02OTRhMDI4Zi04MjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcbj6DBDC0RYHYEd86CJkbB4Jls2xyiavLhmS6kVWWDjpy0omZ8iJ3jgFatG knyHpVw70pRIG3jebPvoOweIzh0itNqHoRJMum490s2o2UjH3g3qy5YTHGEIXkFk Z8AqgtgLKxKLiFD4bwIRR17fJxbflPMAN7ddnxk21U5S4YF484ckAvHaT88fNzo6 Ev/RBKUkwt63okAqz0XyKcyz+JY2Wno7h81NTEhApCIEfdjgzzxY3Ihe6T74cfMQ e4gKA2+XV+VLgZGt5AlbAnX+ddY71wUKuZbsqDjI6+hCNuVw35B0esTw/Hjouc0N /9tN2qvR+Fx0Akyw0PgCfqoAIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3CRS/B e/T9eKyKXPq5Vrv1Ert0MB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIeTG0w6ngQIUtEW1Q0o5iuPe2aOPHIHJcX6H/QaKQ2+rdCILhZ/cO aOdFssFJ5fFTAA8gm7lUCHgx3PM951cVA68vtq7Bqb+aKL5jhGnFEHZQoEBqVCdp YQgqRTsI7oF7ZdSNWftPhLGmmEGUZZA5hlcrKZKAMS7aGKgVdsd5wwuh0DgfSrhZ cvkzoFUG1giB6NEuZVhf2bD+1LG1O4BWM/BDXh2ZMGxgMp8VVZaBrpEcOLPwl5Q4 zwU9JhGn8EodKOn34rC/s9/21sBO80BQp3RU4+59U11bkU08jxKT9pDttUOR8GYM 90coG0Hnt+83WjtcDzBWpTAtqMY6x2B/ -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:21 2025 by rpki-client