This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft File: cL0aXZUSv23gumklPbvwEQPlOkM.mft (raw, json) Hash identifier: MwwlcO5XWbur0Ak2BapI5lj2UBofeFHaDltAjDtnxJw= Subject key identifier: 1C:36:40:D4:51:55:97:50:6A:5C:DF:3C:1F:BC:7F:03:FF:25:15:84 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 117D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft Manifest number: 1160 Signing time: Sat 20 Dec 2025 16:58:30 +0000 Manifest this update: Sat 20 Dec 2025 16:58:29 +0000 Manifest next update: Sat 27 Dec 2025 16:58:29 +0000 Files and hashes: 1: cL0aXZUSv23gumklPbvwEQPlOkM.crl (hash: eEWW0vdke9K6ERSsJMycYhOZagvXix4PaPqKkfPOoo4=) 2: 6B5A80B80B8211EAAD5B6B4AC4F9AE02.roa (hash: ShmWGPi16fistc8ldhgNj0wn72/E+SCOVnORBpUTPkI=) 3: 595310E440C911EE9F1D5F41C4F9AE02.roa (hash: Z7+3DvwJtElz8GyUhaEbEO58MPBIQdKLUzyM58gm72k=) 4: 8818EDF88F2C11EDA558DE4DC4F9AE02.roa (hash: b6hr7IhNuFUDMwuO8Nb6ge3GDbb3DEInCX/HHEiFoVM=) 5: E0A2D2B040C811EE90859140C4F9AE02.roa (hash: skRP+9UcVz6p99ItfpkcWdsCVMpTNN+fUT0lptapL6Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4477 (0x117d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797, serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: Dec 20 16:58:29 2025 GMT Not After : Dec 27 16:58:29 2025 GMT Subject: CN=6946d5b6-427d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a8:5a:3f:eb:37:6e:a5:4a:ca:4f:e8:a6:be: d8:81:dc:20:80:31:d1:5c:b6:62:db:04:76:cb:a6: b0:8a:0e:9b:75:48:e5:9f:b7:10:bf:0a:19:8e:5a: 85:ad:cf:f4:77:95:a1:05:39:98:3a:46:67:b4:63: cf:4d:1a:d4:53:6b:78:6b:83:2b:6b:65:fd:b4:c9: a1:83:37:0d:c5:db:a5:ed:81:99:99:42:1e:4f:c6: 72:b4:5c:1a:46:91:8d:d5:4a:33:0a:d3:d9:ed:ca: 7e:92:44:0e:6b:6d:cb:2c:00:44:02:42:76:48:29: db:1d:ef:43:61:53:4f:dd:33:1c:6b:4c:87:be:49: 32:d0:44:5b:37:a7:69:77:00:4b:c4:af:b3:26:fa: 53:58:6c:ba:e2:4a:4d:eb:39:a8:91:a5:15:48:4f: d5:0a:e2:64:8b:fe:ca:7b:eb:3a:ac:1c:47:8e:36: c5:4d:71:e5:b6:56:00:ca:88:60:6e:9c:f6:d6:4f: 61:63:4b:88:cf:f3:e1:93:5f:c0:72:86:5c:4d:2f: e9:7b:b5:85:31:ac:c6:71:a7:f8:a6:3f:a2:3e:19: c8:ea:af:d7:a0:74:95:02:e2:46:cf:e1:cf:43:e0: 0f:94:a7:8e:dc:30:aa:57:46:36:ec:65:6f:e9:e4: ae:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:36:40:D4:51:55:97:50:6A:5C:DF:3C:1F:BC:7F:03:FF:25:15:84 X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:d5:c8:e1:62:fd:2e:ff:2a:1f:1d:23:36:a6:70:08:04:cf: 22:70:f6:de:73:48:21:50:94:01:94:d3:45:d3:bc:91:7a:3e: c1:df:56:5a:84:7d:43:ae:58:9e:4e:67:b1:06:e3:13:62:98: 5c:f5:34:7f:35:f9:f3:f6:8a:1d:e8:98:13:ae:b1:6d:e1:64: b6:25:56:3c:1c:31:2e:5f:2a:46:86:5c:c4:1f:90:de:dd:ad: 5f:1d:e4:16:f3:de:54:f0:28:54:a6:13:77:c3:22:c7:8c:8b: f3:74:67:c6:0e:e6:68:a3:54:13:de:d7:13:40:05:91:ea:7a: 98:f3:32:83:1f:70:e2:64:b0:32:79:69:63:b9:cf:c4:8b:82: ee:07:33:a9:86:46:36:76:f0:29:aa:d0:a0:cd:df:6d:5d:06: d2:d2:c7:d3:20:87:96:1e:93:d4:7f:08:26:69:9b:0b:c0:13: 3a:f4:25:7a:00:9f:f9:3f:ea:05:8b:c2:3b:85:75:3b:d4:74: 25:04:04:0b:a4:fd:19:31:f9:c0:da:55:a6:f1:a2:7c:0f:cb: a7:1a:77:c6:2e:32:f7:0e:54:6f:e7:b7:53:85:0e:59:1d:2c: 2e:3c:c5:07:de:4d:ae:03:ba:07:4f:2c:a6:c9:08:1a:f6:e8: 9a:df:99:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjUxMjIwMTY1ODI5WhcNMjUxMjI3MTY1ODI5WjAYMRYwFAYD VQQDDA02OTQ2ZDViNi00MjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqhaP+s3bqVKyk/opr7YgdwggDHRXLZi2wR2y6awig6bdUjln7cQvwoZjlqF rc/0d5WhBTmYOkZntGPPTRrUU2t4a4Mra2X9tMmhgzcNxdul7YGZmUIeT8ZytFwa RpGN1UozCtPZ7cp+kkQOa23LLABEAkJ2SCnbHe9DYVNP3TMca0yHvkky0ERbN6dp dwBLxK+zJvpTWGy64kpN6zmokaUVSE/VCuJki/7Ke+s6rBxHjjbFTXHltlYAyohg bpz21k9hY0uIz/Phk1/AcoZcTS/pe7WFMazGcaf4pj+iPhnI6q/XoHSVAuJGz+HP Q+APlKeO3DCqV0Y27GVv6eSuYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBw2QNRR VZdQalzfPB+8fwP/JRWEMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc5Ny8wOUYyRDk5NDFBMjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3Yy M2d1bWtsUGJ2d0VRUGxPa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBm1cjhYv0u/yofHSM2pnAIBM8icPbec0ghUJQBlNNF07yRej7B31Za hH1DrlieTmexBuMTYphc9TR/Nfnz9ood6JgTrrFt4WS2JVY8HDEuXypGhlzEH5De 3a1fHeQW895U8ChUphN3wyLHjIvzdGfGDuZoo1QT3tcTQAWR6nqY8zKDH3DiZLAy eWljuc/Ei4LuBzOphkY2dvApqtCgzd9tXQbS0sfTIIeWHpPUfwgmaZsLwBM69CV6 AJ/5P+oFi8I7hXU71HQlBAQLpP0ZMfnA2lWm8aJ8D8unGnfGLjL3DlRv57dThQ5Z HSwuPMUH3k2uA7oHTyymyQga9uia35ks -----END CERTIFICATE-----Generated at Sun Dec 21 01:34:48 2025 by rpki-client