This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: ZukwMJIySkTHZ/4QxE20eNY2rGA28Fk9oUgl4jI8FYo= Subject key identifier: 17:97:B6:21:93:AD:67:D5:43:4E:BD:7A:A8:9F:9D:5C:17:BA:F6:B6 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D76 Signing time: Thu 18 Dec 2025 17:45:34 +0000 Manifest this update: Thu 18 Dec 2025 17:45:33 +0000 Manifest next update: Thu 25 Dec 2025 17:45:33 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: 43BvERQJlRQmW4Grds1hXmBaxLp5aLG9pYjs+P8Eewo=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: /Vmvob4Ba5JT6xBzlUxuOFxxM0jXE2HEf4/pjk43Tpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:45:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Dec 18 17:45:33 2025 GMT Not After : Dec 25 17:45:33 2025 GMT Subject: CN=69443dbe-9ee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9d:6c:ac:7b:73:f8:50:5b:e7:a1:dd:1e:ec: 57:26:10:7d:fa:8e:b3:ee:54:44:cd:9e:9a:0c:a6: 1e:b0:7a:6e:18:44:93:d8:19:ae:9f:d1:2f:13:1d: 07:19:2c:85:eb:ff:f8:29:d6:be:4a:37:93:ff:d0: fd:e2:79:44:29:06:46:ef:e2:86:bb:6b:36:8b:76: e9:45:9b:b1:39:a8:5e:67:e7:77:ae:63:29:36:16: 7b:e8:d0:f2:dc:57:ba:c9:32:f4:22:d0:99:ff:63: 68:9c:61:6e:60:3b:7a:21:8d:9b:2a:39:d9:b6:3b: b9:16:77:e9:27:4d:d8:87:00:f4:e5:af:6b:6a:0c: 7f:11:6d:8f:06:e3:e9:81:1e:87:36:e9:5d:2d:4c: f6:f3:39:cd:bd:b7:52:e2:50:a2:65:b0:fa:74:d0: c4:31:90:38:87:00:c7:d6:b5:3d:4b:e6:b5:2a:61: 49:60:d0:fb:2d:89:ea:9b:97:c6:ea:8d:9d:fc:1a: f3:41:1e:06:b5:b8:67:92:4b:0c:62:3b:6d:54:1e: 63:bd:bb:31:2e:f6:fe:88:12:83:ef:60:7a:d2:60: e2:e8:7e:bd:6d:7d:53:77:0b:6a:60:ac:8b:11:54: 9f:e2:c0:46:75:74:87:b7:20:a5:81:b6:04:8d:17: 64:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:97:B6:21:93:AD:67:D5:43:4E:BD:7A:A8:9F:9D:5C:17:BA:F6:B6 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:5d:c1:a1:f2:c1:da:ec:ca:7c:66:b2:0a:b6:e4:70:58:92: 4b:1a:bc:cc:70:a5:68:75:54:c3:98:a4:d4:ae:cc:e1:52:40: 83:00:53:07:43:ca:b0:73:14:23:7a:53:0a:d2:71:24:22:8f: 48:97:23:e1:2d:de:7a:7e:66:5c:f2:f8:a7:a6:66:5a:9e:05: 3c:6b:96:bb:1f:4c:91:7d:e8:6f:c1:ee:6a:88:59:c8:d0:fb: 86:4b:3c:74:3b:e6:a7:27:eb:cb:04:48:31:39:62:f3:ca:bc: 17:23:bd:d8:bc:73:6c:43:45:8d:3a:8f:02:6f:9a:5b:bb:9c: 0a:a5:0a:b3:1f:7b:b3:31:3c:e9:c4:d8:56:91:ba:f3:7f:e8: 97:27:ce:70:cf:5f:ab:88:4f:75:37:a9:89:e6:c6:9e:c5:76: 19:2c:d9:1f:14:0d:42:c3:bc:a3:a4:a4:88:9b:7c:ee:a4:15: 3d:9b:09:73:64:b3:71:98:40:a3:df:64:a6:ca:66:bf:8d:d8: 62:4b:85:eb:df:f9:4e:15:3d:ec:d3:7e:a1:f6:77:fc:a0:79: 08:6d:7f:7f:83:bd:a6:eb:62:8d:fe:0c:b1:1c:7f:bb:2d:c7: d5:c3:fd:f2:4b:fe:7b:9d:9b:3a:d2:0b:6f:d4:6d:99:47:f2: 4d:24:bd:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUxMjE4MTc0NTMzWhcNMjUxMjI1MTc0NTMzWjAYMRYwFAYD VQQDDA02OTQ0M2RiZS05ZWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJ1srHtz+FBb56HdHuxXJhB9+o6z7lREzZ6aDKYesHpuGEST2Bmun9EvEx0H GSyF6//4Kda+SjeT/9D94nlEKQZG7+KGu2s2i3bpRZuxOaheZ+d3rmMpNhZ76NDy 3Fe6yTL0ItCZ/2NonGFuYDt6IY2bKjnZtju5FnfpJ03YhwD05a9ragx/EW2PBuPp gR6HNuldLUz28znNvbdS4lCiZbD6dNDEMZA4hwDH1rU9S+a1KmFJYND7LYnqm5fG 6o2d/BrzQR4GtbhnkksMYjttVB5jvbsxLvb+iBKD72B60mDi6H69bX1TdwtqYKyL EVSf4sBGdXSHtyClgbYEjRdk5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeXtiGT rWfVQ069eqifnVwXuva2MB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqXcGh8sHa7Mp8ZrIKtuRwWJJLGrzMcKVodVTDmKTUrszhUkCDAFMH Q8qwcxQjelMK0nEkIo9IlyPhLd56fmZc8vinpmZangU8a5a7H0yRfehvwe5qiFnI 0PuGSzx0O+anJ+vLBEgxOWLzyrwXI73YvHNsQ0WNOo8Cb5pbu5wKpQqzH3uzMTzp xNhWkbrzf+iXJ85wz1+riE91N6mJ5saexXYZLNkfFA1Cw7yjpKSIm3zupBU9mwlz ZLNxmECj32Smyma/jdhiS4Xr3/lOFT3s036h9nf8oHkIbX9/g72m62KN/gyxHH+7 LcfVw/3yS/57nZs60gtv1G2ZR/JNJL0t -----END CERTIFICATE-----Generated at Fri Dec 19 11:22:06 2025 by rpki-client