This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: gHQlqrsl5sDKSU8MwIWGSHXrm42LMaRsE5pJYZAQUYI= Subject key identifier: A7:F4:89:48:E3:25:0D:FE:6E:3A:B9:07:F9:D4:30:C6:A6:21:26:99 Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 022F Signing time: Tue 23 Dec 2025 01:14:14 +0000 Manifest this update: Tue 23 Dec 2025 01:14:13 +0000 Manifest next update: Tue 30 Dec 2025 01:14:13 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: AsYtjmk9xC0+PKKVORarn4N1bGXQWEP7NpcOp0TYMRo=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: gio3U9WsxU2OTvZplKV8K5tuXOfWf9W0TdHSTYl7CRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Dec 23 01:14:13 2025 GMT Not After : Dec 30 01:14:13 2025 GMT Subject: CN=6949ece6-b1a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a5:9c:ff:f0:c5:e9:69:40:eb:21:49:80:35: 81:34:96:a1:9c:e1:3e:9d:a4:fc:0d:ed:b4:9e:19: 45:ae:73:82:12:e1:db:74:d5:59:6a:97:07:50:04: b2:1e:91:89:0a:79:46:97:43:b4:d6:8b:8b:f1:c2: 51:57:ec:45:c7:da:bc:86:ea:7e:d6:2f:05:fc:55: 42:fa:6f:7a:2a:39:bc:6e:c8:5f:e6:92:8b:4e:b1: 82:10:dd:cf:48:a4:7a:db:d2:33:e3:a7:86:3e:8c: 67:6e:8a:a2:e4:d2:7f:79:c8:cc:c2:fa:aa:c7:5c: 00:89:d2:26:29:ed:7e:c5:c6:8f:dc:b4:55:a0:f0: 96:26:da:4e:aa:a1:62:31:dd:e2:68:bc:1f:00:ec: c1:81:8f:85:1c:04:bc:e8:6b:37:76:32:70:e5:dd: ce:0b:d7:55:7a:85:99:50:69:ca:b0:71:aa:54:e0: 47:55:88:6b:44:a4:3c:9d:e0:b8:56:bc:d3:09:a8: 77:2e:2b:63:1c:68:8c:2e:be:55:d8:fd:08:9c:81: f9:13:5f:25:b7:f1:32:bf:36:79:68:d8:aa:84:b1: 5e:18:7c:d7:9d:0c:3b:9d:1d:25:72:13:f5:60:8f: 52:b6:9a:3a:24:a5:4c:8e:e3:93:a7:45:ca:84:e4: 7a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F4:89:48:E3:25:0D:FE:6E:3A:B9:07:F9:D4:30:C6:A6:21:26:99 X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:eb:93:78:43:62:e5:0a:78:47:f7:57:92:48:bc:f4:7e:2d: 32:ce:57:18:03:7e:45:1b:86:1a:94:19:49:fb:03:0b:a9:a9: 3b:78:96:11:6b:f9:1a:e0:7a:88:48:2e:4d:d0:70:84:3f:9a: 43:04:1f:45:89:75:bd:55:c3:39:5b:63:9a:98:ef:17:d5:8e: de:4f:9d:2d:8e:db:86:7c:63:4a:97:04:a5:41:f4:bd:77:85: 28:f2:b3:49:cd:b3:a1:2a:a4:b8:2c:21:d9:62:e8:f9:ea:93: 18:d5:43:c9:34:db:bb:62:67:08:a6:f6:90:7c:37:34:8a:af: c3:c5:9a:f3:d3:69:e2:74:91:17:84:8c:8f:0c:43:b4:8d:12: 0c:13:ad:47:9e:bc:33:d7:c7:c9:42:a3:14:ae:d1:43:b4:d1: c2:b6:17:91:10:f4:c2:ba:c2:e1:49:cd:66:09:0a:1b:97:15: 58:d0:30:6d:ba:9b:3b:9f:fe:3b:5f:22:df:44:99:2a:24:cf: f4:91:99:3c:b6:de:ec:69:39:15:61:82:52:a0:d3:74:b8:50: c0:f8:f2:94:4f:bc:dc:09:a0:be:a3:52:8c:02:58:0e:12:55: 46:31:b0:19:de:a2:cf:36:3f:23:5b:44:41:5b:46:2c:ae:b1: 42:71:f4:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUxMjIzMDExNDEzWhcNMjUxMjMwMDExNDEzWjAYMRYwFAYD VQQDDA02OTQ5ZWNlNi1iMWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qWc//DF6WlA6yFJgDWBNJahnOE+naT8De20nhlFrnOCEuHbdNVZapcHUASy HpGJCnlGl0O01ouL8cJRV+xFx9q8hup+1i8F/FVC+m96Kjm8bshf5pKLTrGCEN3P SKR629Iz46eGPoxnboqi5NJ/ecjMwvqqx1wAidImKe1+xcaP3LRVoPCWJtpOqqFi Md3iaLwfAOzBgY+FHAS86Gs3djJw5d3OC9dVeoWZUGnKsHGqVOBHVYhrRKQ8neC4 VrzTCah3LitjHGiMLr5V2P0InIH5E18lt/EyvzZ5aNiqhLFeGHzXnQw7nR0lchP1 YI9Stpo6JKVMjuOTp0XKhOR6JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKf0iUjj JQ3+bjq5B/nUMMamISaZMB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB665N4Q2LlCnhH91eSSLz0fi0yzlcYA35FG4YalBlJ+wMLqak7eJYR a/ka4HqISC5N0HCEP5pDBB9FiXW9VcM5W2OamO8X1Y7eT50tjtuGfGNKlwSlQfS9 d4Uo8rNJzbOhKqS4LCHZYuj56pMY1UPJNNu7YmcIpvaQfDc0iq/DxZrz02nidJEX hIyPDEO0jRIME61Hnrwz18fJQqMUrtFDtNHCtheREPTCusLhSc1mCQoblxVY0DBt ups7n/47XyLfRJkqJM/0kZk8tt7saTkVYYJSoNN0uFDA+PKUT7zcCaC+o1KMAlgO ElVGMbAZ3qLPNj8jW0RBW0YsrrFCcfTx -----END CERTIFICATE-----Generated at Wed Dec 24 17:35:00 2025 by rpki-client