This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: tz7fEXGELOta3NIQmF5JVu3ZlP2Du7mkOZ+2PLE3mUU= Subject key identifier: 0F:CC:03:A6:FC:C6:76:BE:9C:87:10:E8:0C:59:BA:57:D4:D7:73:5C Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: 0159 Signing time: Fri 19 Dec 2025 03:16:45 +0000 Manifest this update: Fri 19 Dec 2025 03:16:44 +0000 Manifest next update: Fri 26 Dec 2025 03:16:44 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: 7pDRyRLBRUYhwoIvnj7HXj+aH8ocOwxwZo+jiIzdlmU=) 2: 1D63B4248BB011F0A730E413C4F9AE02.roa (hash: OyE30n/5T2aP2dUzdX/x+6s1iB5G8Z+cghgCmYn5BRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Dec 19 03:16:44 2025 GMT Not After : Dec 26 03:16:44 2025 GMT Subject: CN=6944c39d-c851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f5:a9:01:f9:e4:23:ec:c4:ee:46:74:a7:63: 37:41:0f:8c:07:0a:dd:28:bc:66:4b:68:aa:0f:bb: 31:f3:c5:ae:2f:90:b0:db:6a:25:89:63:8f:88:0d: d6:3c:92:3d:de:4b:39:2d:73:23:f2:ab:a8:d2:cc: 07:95:41:ae:96:01:88:95:9d:93:82:18:10:f5:df: 12:fb:ef:1d:fa:1a:bb:38:86:22:f1:12:cc:b8:b0: fc:e8:6b:61:0f:39:74:0e:eb:0e:a4:c1:01:5d:b3: b9:e5:58:41:03:e9:56:60:47:b0:14:d8:da:33:47: 52:10:aa:d8:72:0d:18:13:50:bd:64:ff:13:ad:cb: 46:0a:4d:5d:8c:6b:dc:45:6d:e0:ce:30:c8:0c:be: 1f:36:a8:11:8c:6b:67:8b:1b:82:9f:e8:e3:97:2b: f4:34:35:86:c1:b4:ae:e5:51:92:2f:3e:db:5e:c2: e3:7b:96:b9:f8:78:a5:9c:2f:ec:12:a7:71:25:bb: 86:1b:f1:72:80:01:54:d0:b2:43:f7:df:c9:9c:d0: cf:32:10:f3:19:d3:33:51:7b:5b:1d:3d:f1:f8:bd: 55:41:08:73:6c:b8:92:1b:01:b4:2b:fe:19:37:15: 8e:55:13:eb:3c:34:5c:97:c6:bc:f0:eb:ce:bd:23: 5f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:CC:03:A6:FC:C6:76:BE:9C:87:10:E8:0C:59:BA:57:D4:D7:73:5C X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:51:b1:de:5c:b7:89:1c:1c:6e:ad:fb:de:53:d0:7f:b0:06: 90:4c:42:6d:28:35:c9:4a:bd:fa:b4:43:9b:82:21:16:dd:c7: 5d:c1:30:f2:fe:0d:72:5c:b6:00:6f:dd:63:ff:97:55:5b:21: 6d:21:e0:1a:08:ff:f4:8d:e8:d3:ab:32:3e:03:d6:2d:03:01: 8b:d8:8d:e9:24:b1:f8:a6:0c:6d:a2:a8:5c:5e:ce:8f:18:9b: 81:6a:ff:48:08:61:3c:c2:64:38:c7:7b:69:f9:d9:d9:60:5c: 61:55:b2:71:ee:26:f6:14:9a:1d:d5:a2:b2:fc:06:15:3f:28: 9e:a4:d1:4c:66:95:67:59:f3:71:48:2b:00:c3:0d:c8:59:a5: 19:11:f4:52:d9:cd:64:5b:93:6b:28:95:26:a9:44:8a:f5:f9: 95:7d:2c:be:ae:d5:e5:58:a7:f8:cf:72:d6:29:78:78:df:ba: 48:03:06:06:2d:f4:99:89:db:d6:99:68:8b:0b:a2:07:44:e4: 91:7c:4b:d7:c4:84:ec:bb:33:7b:16:29:6f:98:46:46:9a:bf: 51:10:ca:2b:c0:14:c9:b6:d2:7c:70:b1:7a:87:1b:f0:3b:90: c5:24:cb:13:b7:09:74:70:93:07:18:2f:1d:f4:71:84:f4:69: 28:3f:8c:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjUxMjE5MDMxNjQ0WhcNMjUxMjI2MDMxNjQ0WjAYMRYwFAYD VQQDDA02OTQ0YzM5ZC1jODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPWpAfnkI+zE7kZ0p2M3QQ+MBwrdKLxmS2iqD7sx88WuL5Cw22oliWOPiA3W PJI93ks5LXMj8quo0swHlUGulgGIlZ2TghgQ9d8S++8d+hq7OIYi8RLMuLD86Gth Dzl0DusOpMEBXbO55VhBA+lWYEewFNjaM0dSEKrYcg0YE1C9ZP8TrctGCk1djGvc RW3gzjDIDL4fNqgRjGtnixuCn+jjlyv0NDWGwbSu5VGSLz7bXsLje5a5+HilnC/s EqdxJbuGG/FygAFU0LJD99/JnNDPMhDzGdMzUXtbHT3x+L1VQQhzbLiSGwG0K/4Z NxWOVRPrPDRcl8a88OvOvSNfzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/MA6b8 xna+nIcQ6AxZulfU13NcMB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoUbHeXLeJHBxurfveU9B/sAaQTEJtKDXJSr36tEObgiEW3cddwTDy /g1yXLYAb91j/5dVWyFtIeAaCP/0jejTqzI+A9YtAwGL2I3pJLH4pgxtoqhcXs6P GJuBav9ICGE8wmQ4x3tp+dnZYFxhVbJx7ib2FJod1aKy/AYVPyiepNFMZpVnWfNx SCsAww3IWaUZEfRS2c1kW5NrKJUmqUSK9fmVfSy+rtXlWKf4z3LWKXh437pIAwYG LfSZidvWmWiLC6IHROSRfEvXxITsuzN7FilvmEZGmr9REMorwBTJttJ8cLF6hxvw O5DFJMsTtwl0cJMHGC8d9HGE9GkoP4z1 -----END CERTIFICATE-----Generated at Fri Dec 19 13:54:10 2025 by rpki-client