This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft File: mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft (raw, json) Hash identifier: ejmIwrDkVBmCGfe0kKNu1efGIaJiaGDFTL690SRBQrs= Subject key identifier: 83:3C:45:85:D2:9B:2B:C5:1C:21:5B:20:69:18:BB:34:EA:E3:A3:7D Authority key identifier: 99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 Certificate issuer: /CN=A9130F4B/serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Certificate serial: 10B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft Manifest number: 1076 Signing time: Mon 22 Dec 2025 17:06:35 +0000 Manifest this update: Mon 22 Dec 2025 17:06:35 +0000 Manifest next update: Mon 29 Dec 2025 17:06:35 +0000 Files and hashes: 1: mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl (hash: q74VmO+V7RNJCeJhxVi/SVyFaQe6yc/jE8qrqvpKGCc=) 2: 2E680D2AC99911F0BDA2F55CC4F9AE02.roa (hash: EiMOxmgDdeQS71DiadCvwBaFB8K5LkJbRgnGcwVdsHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4279 (0x10b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F4B, serialNumber=9930D0FFEB870701B4E8EB4DB3C0866233FC5B50 Validity Not Before: Dec 22 17:06:35 2025 GMT Not After : Dec 29 17:06:35 2025 GMT Subject: CN=69497a9b-7ea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:78:b0:f0:b5:ca:e3:82:de:4a:c4:e3:ce:b4: 2f:a9:c2:ef:fc:b7:0c:8f:74:a3:4b:de:2c:f8:72: f7:65:3c:bf:8d:32:e1:e2:87:b8:54:2b:ff:1d:a7: ed:12:8d:b2:25:17:35:33:7e:44:01:ab:c9:57:21: f7:b8:55:55:ad:9b:98:34:5a:d8:ed:04:21:da:10: ff:5a:d1:f8:3a:4e:17:be:3a:5f:84:03:c7:ec:fd: 7f:2c:fa:e0:b6:c0:06:2f:69:79:49:10:23:af:9f: fa:a2:f6:57:37:88:6c:7e:28:a2:a3:27:fe:6d:38: ec:65:d9:74:58:7c:c0:0d:80:90:df:de:64:05:27: 6b:f4:1b:9e:50:71:45:a5:ca:64:fc:78:ef:e6:d5: 11:7e:a8:ae:ea:75:f0:8e:52:a8:3d:c0:59:54:15: 58:21:da:2b:4d:7d:69:55:ed:77:75:8e:68:38:5a: 4c:18:82:dc:9c:48:c0:09:55:64:f2:67:9c:05:9c: 9b:9e:69:42:03:ae:d5:9b:ff:ce:db:1d:59:30:25: 84:11:12:dc:38:44:b9:7f:08:49:e7:5f:4f:53:20: 58:7d:05:b3:0f:ca:25:ff:01:bb:08:c3:20:82:18: a7:eb:c9:34:63:31:ca:98:d4:5c:5a:22:49:a2:a8: ed:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3C:45:85:D2:9B:2B:C5:1C:21:5B:20:69:18:BB:34:EA:E3:A3:7D X509v3 Authority Key Identifier: keyid:99:30:D0:FF:EB:87:07:01:B4:E8:EB:4D:B3:C0:86:62:33:FC:5B:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mTDQ_-uHBwG06OtNs8CGYjP8W1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F4B/5772AA3054E411E98536F659C4F9AE02/mTDQ_-uHBwG06OtNs8CGYjP8W1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ec:61:d9:64:2d:ea:83:12:dc:f7:92:32:94:b3:15:50:76: e9:b0:22:f3:5f:3c:e6:c1:02:8d:7d:3b:6c:f0:c7:a0:2d:e4: 4f:00:25:70:77:94:71:59:29:dc:fd:63:33:46:78:8b:31:a5: 7c:27:07:85:10:6e:01:cd:b9:43:fe:a1:07:17:b9:6d:77:c4: ef:26:71:d5:db:5b:fe:b1:82:9b:34:9d:4a:fe:51:a5:ab:28: 4f:70:53:9d:24:76:14:48:3c:1f:82:68:53:a8:48:eb:bc:1d: 47:5a:bb:a8:f4:6c:a0:2c:91:81:a7:0c:6e:8a:d2:a2:39:34: d9:6b:57:ee:7f:29:12:75:16:b8:e1:2f:02:49:87:e0:61:9a: d4:27:50:e8:90:1e:c4:48:65:57:8d:1a:a8:f0:01:0d:74:11: ee:2a:0a:a6:5d:a2:18:a0:f0:17:73:34:c0:c5:e8:81:f2:14: 7e:d1:8b:5f:59:f4:51:3c:5d:79:df:36:1b:5b:68:ea:23:32: 1c:67:02:74:b0:d5:7a:ad:91:95:79:32:68:54:06:41:d2:90: 73:bc:6c:ba:35:8f:1b:64:59:dc:27:03:d5:96:4f:9a:3c:a1: b9:28:d9:a0:9c:c5:0d:71:98:a3:97:c4:88:de:56:c2:fe:f1: a3:95:ed:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICELcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGNEIxMTAvBgNVBAUTKDk5MzBEMEZGRUI4NzA3MDFCNEU4RUI0REIzQzA4NjYy MzNGQzVCNTAwHhcNMjUxMjIyMTcwNjM1WhcNMjUxMjI5MTcwNjM1WjAYMRYwFAYD VQQDDA02OTQ5N2E5Yi03ZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHiw8LXK44LeSsTjzrQvqcLv/LcMj3SjS94s+HL3ZTy/jTLh4oe4VCv/Haft Eo2yJRc1M35EAavJVyH3uFVVrZuYNFrY7QQh2hD/WtH4Ok4XvjpfhAPH7P1/LPrg tsAGL2l5SRAjr5/6ovZXN4hsfiiioyf+bTjsZdl0WHzADYCQ395kBSdr9BueUHFF pcpk/Hjv5tURfqiu6nXwjlKoPcBZVBVYIdorTX1pVe13dY5oOFpMGILcnEjACVVk 8mecBZybnmlCA67Vm//O2x1ZMCWEERLcOES5fwhJ519PUyBYfQWzD8ol/wG7CMMg ghin68k0YzHKmNRcWiJJoqjtkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM8RYXS myvFHCFbIGkYuzTq46N9MB8GA1UdIwQYMBaAFJkw0P/rhwcBtOjrTbPAhmIz/FtQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY0Qi81NzcyQUEzMDU0 RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3RzA2T3ROczhDR1lqUDhX MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21URFFfLXVIQndHMDZPdE5zOENHWWpQOFcxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEY0Qi81NzcyQUEzMDU0RTQxMUU5ODUzNkY2NTlDNEY5QUUwMi9tVERRXy11SEJ3 RzA2T3ROczhDR1lqUDhXMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz7GHZZC3qgxLc95IylLMVUHbpsCLzXzzmwQKNfTts8MegLeRPACVw d5RxWSnc/WMzRniLMaV8JweFEG4BzblD/qEHF7ltd8TvJnHV21v+sYKbNJ1K/lGl qyhPcFOdJHYUSDwfgmhTqEjrvB1HWruo9GygLJGBpwxuitKiOTTZa1fufykSdRa4 4S8CSYfgYZrUJ1DokB7ESGVXjRqo8AENdBHuKgqmXaIYoPAXczTAxeiB8hR+0Ytf WfRRPF153zYbW2jqIzIcZwJ0sNV6rZGVeTJoVAZB0pBzvGy6NY8bZFncJwPVlk+a PKG5KNmgnMUNcZijl8SI3lbC/vGjle3p -----END CERTIFICATE-----Generated at Mon Dec 22 22:21:29 2025 by rpki-client