This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: bZ/s8XWmmIAGMzlMJe/8gaCDy3HnEX9wL/uEmzLVRZA= Subject key identifier: B5:3B:C8:B6:D6:5B:60:F5:95:A8:C7:41:48:CF:A7:33:DE:04:F5:58 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 02C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 02C5 Signing time: Tue 23 Dec 2025 00:25:13 +0000 Manifest this update: Tue 23 Dec 2025 00:25:13 +0000 Manifest next update: Tue 30 Dec 2025 00:25:13 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: tBdYQDhQETYDQ7FW7e1X+DVzz/H2fYLG54TvFouTf4o=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 713 (0x2c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Dec 23 00:25:13 2025 GMT Not After : Dec 30 00:25:13 2025 GMT Subject: CN=6949e169-45d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a6:30:25:1f:55:bd:5c:47:17:f2:74:69:6a: 77:a6:2c:d1:55:30:c2:2f:0f:32:0f:a8:18:42:ea: fe:2e:56:ea:42:23:65:57:56:6f:8f:40:e5:22:99: 88:a2:c2:36:0c:15:90:c2:b0:64:21:62:14:9c:0b: 0d:ee:d5:7b:09:61:b0:3e:b0:55:4c:18:73:7b:2c: 48:9d:2e:82:60:96:aa:cd:9d:3b:94:57:6b:76:0c: 00:96:6a:9c:cd:79:2a:30:e7:bf:56:02:4a:c2:ae: 11:b8:89:45:14:1f:00:b1:bd:f0:be:0e:76:c1:13: c9:f4:73:32:0b:60:88:f0:18:65:dd:a0:3d:a1:bd: 19:f6:cd:b4:16:67:39:3f:9e:65:f2:a4:ba:35:d7: 16:f0:aa:10:b8:53:f2:9e:03:0e:0e:f6:63:36:ca: a2:92:b8:c2:90:df:d7:ab:d2:82:55:1f:cf:f5:2e: cb:3f:f5:43:59:3b:81:c3:e5:06:85:c1:0b:5c:68: a5:7f:23:fe:49:17:69:16:b8:40:f9:b1:f8:81:ef: f3:6e:3a:7f:ed:a3:d1:a1:f5:e5:17:80:56:93:ba: 2b:79:86:be:cf:a4:21:03:7c:23:e9:3b:e6:13:5b: 2a:49:2a:2a:44:cc:4e:d3:91:73:21:c4:26:ef:a6: 0d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3B:C8:B6:D6:5B:60:F5:95:A8:C7:41:48:CF:A7:33:DE:04:F5:58 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e5:55:72:b0:b8:f6:c7:4d:8a:c5:05:2a:a0:46:0d:75:24:54: 68:d7:5f:99:ca:a2:5c:99:e4:c5:18:95:67:aa:86:e8:e8:f5: ea:97:dc:a2:b8:67:5f:b8:6b:c8:7b:99:87:8f:7d:7b:d4:7b: 79:1a:46:66:9b:26:ba:0c:78:eb:23:91:a7:ba:78:f0:2c:e2: 45:d3:4c:9f:49:59:4a:18:0c:09:91:3f:e1:a8:a2:63:50:79: 7b:d3:89:06:c0:60:bf:05:18:a0:5a:b5:53:45:00:8f:0d:8a: 89:f4:85:94:71:b3:ef:63:89:69:db:b6:b2:f5:ef:2e:1e:76: d1:e6:61:d5:d3:33:cb:43:1d:b7:ef:26:f5:e2:de:b6:c1:69: 46:42:a6:d1:b6:d2:fc:c8:89:56:38:c9:23:29:d0:2f:cf:44: 61:09:05:c6:79:a4:12:9b:2f:22:ab:b6:3e:cb:4b:9e:02:d8: ad:12:63:91:50:bc:09:44:c4:72:97:ec:d3:42:9f:43:c8:fb: f6:0d:14:87:95:18:1e:a5:66:e8:91:83:0f:84:f0:56:99:f5: 13:16:ad:85:27:56:bd:e2:37:85:08:3a:3b:88:b9:b3:f3:8b: 92:67:4b:f6:4f:61:99:98:4d:d6:23:c9:74:6f:e5:8e:ca:13: 31:31:e5:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUxMjIzMDAyNTEzWhcNMjUxMjMwMDAyNTEzWjAYMRYwFAYD VQQDDA02OTQ5ZTE2OS00NWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKYwJR9VvVxHF/J0aWp3pizRVTDCLw8yD6gYQur+LlbqQiNlV1Zvj0DlIpmI osI2DBWQwrBkIWIUnAsN7tV7CWGwPrBVTBhzeyxInS6CYJaqzZ07lFdrdgwAlmqc zXkqMOe/VgJKwq4RuIlFFB8Asb3wvg52wRPJ9HMyC2CI8Bhl3aA9ob0Z9s20Fmc5 P55l8qS6NdcW8KoQuFPyngMODvZjNsqikrjCkN/Xq9KCVR/P9S7LP/VDWTuBw+UG hcELXGilfyP+SRdpFrhA+bH4ge/zbjp/7aPRofXlF4BWk7oreYa+z6QhA3wj6Tvm E1sqSSoqRMxO05FzIcQm76YNsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLU7yLbW W2D1lajHQUjPpzPeBPVYMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDlVXKwuPbHTYrFBSqgRg11JFRo11+ZyqJcmeTFGJVnqobo6PXql9yi uGdfuGvIe5mHj3171Ht5GkZmmya6DHjrI5GnunjwLOJF00yfSVlKGAwJkT/hqKJj UHl704kGwGC/BRigWrVTRQCPDYqJ9IWUcbPvY4lp27ay9e8uHnbR5mHV0zPLQx23 7yb14t62wWlGQqbRttL8yIlWOMkjKdAvz0RhCQXGeaQSmy8iq7Y+y0ueAtitEmOR ULwJRMRyl+zTQp9DyPv2DRSHlRgepWbokYMPhPBWmfUTFq2FJ1a94jeFCDo7iLmz 84uSZ0v2T2GZmE3WI8l0b+WOyhMxMeX4 -----END CERTIFICATE-----Generated at Wed Dec 24 21:21:22 2025 by rpki-client