This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft File: n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft (raw, json) Hash identifier: KdnxW4oLhYXOBXHzJUGsWN+stO0EDm+rx+uD1sdXW5Y= Subject key identifier: 57:AF:3F:45:31:99:57:BB:76:B9:71:F4:5B:34:2E:7F:B1:FE:5A:D1 Authority key identifier: 9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 Certificate issuer: /CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Certificate serial: 2B97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft Manifest number: 2B4A Signing time: Thu 18 Dec 2025 15:29:54 +0000 Manifest this update: Thu 18 Dec 2025 15:29:54 +0000 Manifest next update: Thu 25 Dec 2025 15:29:54 +0000 Files and hashes: 1: n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl (hash: xapFCvY8YjdsfRAeDwCcn7PobhjUMT2s92w52KBkbZo=) 2: 08074A8A1EB711EF9C248E60C4F9AE02.roa (hash: i7ok5KOsj6nhLRt3px2zv2fWTxSsfow5HHXSl/NaJkA=) 3: F1BA2EAC353311EBB895B082C4F9AE02.roa (hash: JLW0Prm9Fl8iTEviHWr3LwTg8esGoIHQVhl3vbDV8g4=) 4: 8B903A32353211EBB3D0487FC4F9AE02.roa (hash: g7V5MfQocCOi5DNnPKV2LsDx3/nhzxmFo0S20ShJreI=) 5: BB799DA8844011F09054B049C4F9AE02.roa (hash: W+leA70SicgPxg1HjMlJr7Zrh6NlHpRsyqndp8PDjQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 15:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11159 (0x2b97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136EC5, serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Validity Not Before: Dec 18 15:29:54 2025 GMT Not After : Dec 25 15:29:54 2025 GMT Subject: CN=69441df2-f049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d7:ac:a2:bb:3a:be:79:ba:56:2d:22:8c:2e: 35:1c:15:c0:51:c6:9b:d8:1b:bb:db:e7:dc:7a:da: 0c:a8:30:ef:09:cd:b5:08:47:ad:c0:2d:de:03:8f: 36:59:85:47:e3:34:c9:bb:74:44:24:8c:72:f3:4a: 26:9d:4a:ed:5d:9e:aa:5c:4f:3e:3f:d3:43:a8:6c: 1a:c9:dd:22:72:23:6b:51:a1:50:ab:ce:97:26:82: d1:9b:9b:5d:f7:2c:2d:b9:0d:4c:80:2b:e1:5f:82: 75:87:b3:c6:d9:6b:ba:d5:2c:bf:8f:10:86:cb:7b: 6e:f1:06:f3:ed:48:e0:36:a3:d7:33:e7:4d:fb:29: 5d:6c:d7:37:08:5e:9e:b8:0b:bb:41:31:f1:72:09: 60:80:1e:9b:f4:d1:ee:dd:06:53:1a:10:02:70:65: 92:0f:ff:2e:09:64:e4:63:e4:70:a0:9f:6e:31:86: 5a:25:64:0f:b6:b0:58:94:2d:13:7c:9a:95:2c:d9: f9:f6:a6:ba:0e:d3:d8:be:d7:9d:a0:c1:f9:89:0f: 62:04:0a:37:21:d2:56:fe:1c:55:c8:13:28:a3:19: cb:b6:94:5a:ae:92:e7:86:df:4c:b7:74:96:9b:60: 6f:6d:36:3e:23:e9:26:5a:c6:11:5a:77:d9:76:49: c3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:AF:3F:45:31:99:57:BB:76:B9:71:F4:5B:34:2E:7F:B1:FE:5A:D1 X509v3 Authority Key Identifier: keyid:9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:65:93:60:50:b9:d5:74:17:19:8b:71:46:36:a6:65:73:5c: b3:b3:ab:37:72:11:53:47:bf:dc:9e:25:cf:76:ac:88:44:68: e5:f0:c5:d7:00:33:09:3e:51:a1:34:a1:db:a4:64:a0:8b:5d: f8:2d:58:21:0c:b6:f1:bb:db:01:4b:4e:c5:81:55:0f:1b:74: 01:18:b1:48:9e:13:19:37:cf:66:dd:00:90:bc:42:e2:12:47: 31:53:d9:11:1d:01:98:04:13:3f:21:4d:64:f4:d2:69:58:3e: 5e:53:69:12:e3:df:ee:28:99:33:39:cb:b0:a3:c1:08:0b:75: 29:40:1a:0a:8f:6e:d7:9d:f9:50:ad:2f:75:aa:ea:30:d9:ff: d2:57:36:b7:2a:3e:16:1e:05:03:6b:c4:32:7d:72:18:41:33: 87:95:40:55:23:52:be:81:3f:b4:0a:74:bd:d0:ea:d3:d4:31: 21:2b:9b:94:b9:6f:a8:4c:44:03:cc:77:4d:87:e6:5c:9c:a2: de:2f:21:5e:32:85:ef:64:4e:b9:65:90:90:e6:1e:d7:82:93: 34:dd:c1:18:1d:1c:b3:0b:f8:76:35:66:a1:24:39:18:f5:6e: 1d:8a:aa:28:b4:c3:44:42:12:15:13:b3:87:40:12:0d:dd:2f: 9c:d2:88:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZFQzUxMTAvBgNVBAUTKDlGQ0UyODkxNEM1MERDOTk3NTVGMTA4QUI0MzM0Rjc3 MkNCRUEwRTIwHhcNMjUxMjE4MTUyOTU0WhcNMjUxMjI1MTUyOTU0WjAYMRYwFAYD VQQDDA02OTQ0MWRmMi1mMDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytesors6vnm6Vi0ijC41HBXAUcab2Bu72+fcetoMqDDvCc21CEetwC3eA482 WYVH4zTJu3REJIxy80omnUrtXZ6qXE8+P9NDqGwayd0iciNrUaFQq86XJoLRm5td 9ywtuQ1MgCvhX4J1h7PG2Wu61Sy/jxCGy3tu8Qbz7UjgNqPXM+dN+yldbNc3CF6e uAu7QTHxcglggB6b9NHu3QZTGhACcGWSD/8uCWTkY+RwoJ9uMYZaJWQPtrBYlC0T fJqVLNn59qa6DtPYvtedoMH5iQ9iBAo3IdJW/hxVyBMooxnLtpRarpLnht9Mt3SW m2BvbTY+I+kmWsYRWnfZdknD/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFevP0Ux mVe7drlx9Fs0Ln+x/lrRMB8GA1UdIwQYMBaAFJ/OKJFMUNyZdV8QirQzT3csvqDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkVDNS8yREVDQUU1NjBF NTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNKbDFYeENLdEROUGR5eS1v T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL244NG9rVXhRM0psMVh4Q0t0RE5QZHl5LW9PSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkVDNS8yREVDQUU1NjBFNTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNK bDFYeENLdEROUGR5eS1vT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3ZZNgULnVdBcZi3FGNqZlc1yzs6s3chFTR7/cniXPdqyIRGjl8MXX ADMJPlGhNKHbpGSgi134LVghDLbxu9sBS07FgVUPG3QBGLFInhMZN89m3QCQvELi EkcxU9kRHQGYBBM/IU1k9NJpWD5eU2kS49/uKJkzOcuwo8EIC3UpQBoKj27XnflQ rS91quow2f/SVza3Kj4WHgUDa8QyfXIYQTOHlUBVI1K+gT+0CnS90OrT1DEhK5uU uW+oTEQDzHdNh+ZcnKLeLyFeMoXvZE65ZZCQ5h7XgpM03cEYHRyzC/h2NWahJDkY 9W4diqootMNEQhIVE7OHQBIN3S+c0ojt -----END CERTIFICATE-----Generated at Sat Dec 20 12:26:07 2025 by rpki-client