This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: VltpQEqX5Krmj2k/sImk6Xl5ACWbBOIQZhA+JfR1Z60= Subject key identifier: 38:8E:82:97:FD:D2:D9:A0:D2:25:9C:EA:0C:9A:C2:EF:E2:19:92:59 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: 0120 Signing time: Tue 23 Dec 2025 03:44:37 +0000 Manifest this update: Tue 23 Dec 2025 03:44:36 +0000 Manifest next update: Tue 30 Dec 2025 03:44:36 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: PJj/PGCGflpZTGvlheaiy+0yegVGr0ZfRUPL0G6lzEQ=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: b6ERigxsXjUyaKMbJy8+YRLovoMIY+E6IWTJv3Q8jfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722, serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Dec 23 03:44:36 2025 GMT Not After : Dec 30 03:44:36 2025 GMT Subject: CN=694a1024-25c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:75:a7:d1:8c:74:27:46:fe:2c:66:2c:52:a4: e8:58:35:e8:67:ae:6c:66:74:5c:a4:5b:4c:ad:d4: c7:b0:bd:91:f8:a8:b1:4e:f4:b6:4f:c7:4d:cd:f3: 6d:19:59:41:eb:fa:36:6f:0e:67:e8:06:c1:7a:f7: 36:ad:b4:d5:f2:93:60:72:64:4e:8f:5a:09:9d:ab: a8:c2:c0:84:b4:3d:b4:ee:7a:bd:48:6b:7c:32:b7: ad:fe:b7:6c:46:80:47:b5:96:4e:cd:2c:2e:ad:fb: 5f:85:90:15:63:18:a4:3e:5a:80:17:f0:5b:26:83: bc:a5:ff:0c:6e:37:a1:e4:1c:96:fd:8e:6e:04:c0: 04:71:1c:52:41:e4:76:aa:f2:4d:f3:b1:bf:c1:d3: 27:16:68:33:e9:be:70:8c:a8:f1:5b:36:e5:30:c2: 9b:c6:1b:c0:4a:d3:6e:20:93:8b:a6:9d:42:24:a6: e3:77:7c:1d:53:f0:58:79:2e:36:ac:9f:9f:a2:69: 7a:56:5b:27:32:78:79:3f:10:06:2c:7f:1d:24:19: 4b:7c:61:1c:cb:71:6f:dc:5d:9a:4d:7a:3d:04:e1: 0c:fc:f6:35:b1:6e:a5:7a:d5:d2:ac:07:cc:f8:d7: 32:fd:e1:a9:fb:f2:7a:f0:f6:52:b0:c9:e3:53:3b: ea:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:8E:82:97:FD:D2:D9:A0:D2:25:9C:EA:0C:9A:C2:EF:E2:19:92:59 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:24:e3:e6:06:7e:52:9d:d8:44:54:97:3b:80:3c:74:3c:b0: d4:49:5b:3c:ba:97:2b:0b:ad:37:9e:b7:cc:09:0c:05:a8:46: b1:59:f1:2b:75:d7:df:36:12:db:80:3e:25:31:42:77:9b:6e: 00:9d:50:d5:c2:ae:c7:10:65:45:89:1d:dd:34:41:0e:6f:11: 8e:84:60:23:9d:50:05:2f:bb:10:d4:40:2c:e3:27:da:d4:66: 10:d7:15:d0:f6:c4:d9:87:d1:91:e4:d1:14:3d:27:77:45:0a: 32:41:5a:2f:fd:62:ed:a3:39:56:7f:45:15:1e:91:a0:10:2b: c8:13:1f:36:98:58:1a:55:13:92:f4:e8:17:a9:ae:9a:f4:13: f2:53:3e:88:b7:16:2f:e2:b7:df:c7:b9:9a:72:a8:9d:08:b4: c6:4f:62:49:2c:f1:39:21:bd:fa:bc:a4:59:bb:2b:e7:5e:b9: 93:03:09:44:eb:4d:11:3b:9f:ee:48:f8:8f:6c:35:0d:01:f1: 23:b5:36:94:2a:16:72:63:87:fe:7c:2b:d9:1d:7d:31:b5:c3: 85:31:0f:66:45:46:0f:be:6a:52:9e:45:8a:16:17:ec:1c:98: ac:5d:4a:09:66:96:76:87:c3:ea:f8:04:17:54:44:91:88:8c: 95:ef:6a:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc3MjIxMTAvBgNVBAUTKEQ1Mjg5RThCN0RGNUQ5MjAxNkVDNzk4RUVFRkYwNUJD NzNFODU1ODAwHhcNMjUxMjIzMDM0NDM2WhcNMjUxMjMwMDM0NDM2WjAYMRYwFAYD VQQDDA02OTRhMTAyNC0yNWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnWn0Yx0J0b+LGYsUqToWDXoZ65sZnRcpFtMrdTHsL2R+KixTvS2T8dNzfNt GVlB6/o2bw5n6AbBevc2rbTV8pNgcmROj1oJnauowsCEtD207nq9SGt8Mret/rds RoBHtZZOzSwurftfhZAVYxikPlqAF/BbJoO8pf8Mbjeh5ByW/Y5uBMAEcRxSQeR2 qvJN87G/wdMnFmgz6b5wjKjxWzblMMKbxhvAStNuIJOLpp1CJKbjd3wdU/BYeS42 rJ+foml6VlsnMnh5PxAGLH8dJBlLfGEcy3Fv3F2aTXo9BOEM/PY1sW6letXSrAfM +Ncy/eGp+/J68PZSsMnjUzvqmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiOgpf9 0tmg0iWc6gyawu/iGZJZMB8GA1UdIwQYMBaAFNUonot99dkgFux5ju7/Bbxz6FWA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzcyMi80NkJEREMwMDI4 OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJTQVc3SG1PN3Y4RnZIUG9W WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi8xU2llaTMzMTJT QVc3SG1PN3Y4RnZIUG9WWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmJOPmBn5SndhEVJc7gDx0PLDUSVs8upcrC603nrfMCQwFqEaxWfEr ddffNhLbgD4lMUJ3m24AnVDVwq7HEGVFiR3dNEEObxGOhGAjnVAFL7sQ1EAs4yfa 1GYQ1xXQ9sTZh9GR5NEUPSd3RQoyQVov/WLtozlWf0UVHpGgECvIEx82mFgaVROS 9OgXqa6a9BPyUz6ItxYv4rffx7macqidCLTGT2JJLPE5Ib36vKRZuyvnXrmTAwlE 600RO5/uSPiPbDUNAfEjtTaUKhZyY4f+fCvZHX0xtcOFMQ9mRUYPvmpSnkWKFhfs HJisXUoJZpZ2h8Pq+AQXVESRiIyV72rN -----END CERTIFICATE-----Generated at Tue Dec 23 16:18:42 2025 by rpki-client