This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft File: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft (raw, json) Hash identifier: oMit/R3nknF8AH9U05Ujjl7t1ptFy4gIOK1QF3l8EME= Subject key identifier: 14:DE:9E:BF:BE:30:60:34:46:97:D5:D3:3A:09:93:4A:0B:A9:83:53 Authority key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A Certificate issuer: /CN=A9144F34/serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft Manifest number: BB Signing time: Fri 19 Dec 2025 05:05:23 +0000 Manifest this update: Fri 19 Dec 2025 05:05:22 +0000 Manifest next update: Fri 26 Dec 2025 05:05:22 +0000 Files and hashes: 1: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl (hash: CkgRZAT6ZyNc0cv0K7rc8+SsVEBuOZIP+n/nrNjpgzk=) 2: 4965C7C02E4411F0B187B122C4F9AE02.roa (hash: vT0qzVdoUmxJ/TJ/AidkSPg3ugEyyFgQIDSZRoXd/0g=) 3: AA14EED2BDE911EFB07EE682C4F9AE02.roa (hash: 8Lz3SihiRlFf9NOxeybLJutdQF61khJ8l8jmKMF421Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F34, serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Validity Not Before: Dec 19 05:05:22 2025 GMT Not After : Dec 26 05:05:22 2025 GMT Subject: CN=6944dd13-e8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:67:68:d3:01:b9:28:2f:49:b9:0a:21:5f:9f: 54:26:6e:c1:ac:04:be:68:95:33:e9:6f:b9:6d:14: 58:4e:a7:f0:3f:58:cc:db:93:6e:80:e7:b9:e5:3e: 94:df:84:5e:98:8c:cf:f7:ad:af:48:30:e3:13:4e: 63:f5:a1:ee:f9:68:58:11:03:aa:7c:db:30:a2:ff: c0:93:27:2d:fa:06:b0:39:bc:0e:b2:70:42:bc:c0: b3:59:e9:64:15:f2:c1:52:9e:af:9e:a4:e4:a3:4d: 71:95:af:eb:db:02:2e:a8:66:e2:8f:5f:7b:9a:0f: d4:04:d5:8e:ab:13:e9:ae:ab:cf:2e:c0:ae:49:b5: ae:b9:53:d0:04:35:50:a8:66:94:ac:57:3b:a5:21: 32:cc:70:25:51:bf:12:99:2f:b8:18:4f:84:2f:5a: a6:d3:d2:9c:89:cc:15:21:b8:d2:53:b7:7a:1b:1b: 54:c5:90:c6:63:6b:69:23:18:b4:3f:22:57:2f:00: 2b:bc:d9:7b:f2:96:aa:39:a6:0d:eb:96:ac:3c:fd: 5e:c8:44:ec:f0:17:29:c1:e9:17:0b:9e:98:28:f4: cc:b9:a0:99:5b:cc:83:26:ce:c1:67:89:c9:08:57: e8:ae:f9:c1:67:8c:82:8c:63:a4:d2:32:6e:67:a6: b9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:DE:9E:BF:BE:30:60:34:46:97:D5:D3:3A:09:93:4A:0B:A9:83:53 X509v3 Authority Key Identifier: keyid:4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:4d:2a:b0:2d:a9:a5:b0:c0:e7:b6:73:3e:d5:2e:4f:f9:fc: 40:8b:cd:f3:e8:3b:e2:83:48:e5:d8:f1:89:a0:21:01:3a:27: 5d:05:82:1d:28:13:c8:8e:78:f1:6d:dd:28:02:66:02:4e:a1: 44:02:bf:df:26:1b:84:37:19:96:75:9f:0d:c6:3d:92:b7:e4: ff:67:80:86:64:07:e1:dc:79:20:04:a1:3e:bc:de:9e:02:d6: e5:e7:e7:3b:af:49:0c:e6:f1:6e:fd:4e:d9:b9:be:36:91:30: a9:12:8b:5c:00:24:8f:c3:8a:15:a9:00:14:5e:fe:5f:3a:82: 0b:75:71:ec:cc:58:3f:66:e7:72:1b:d2:c7:92:c3:89:ab:71: cb:f2:24:a9:64:aa:d7:31:78:21:2d:0c:fb:d9:47:1a:ff:d6: 8c:2e:a4:36:91:39:90:5d:b6:5c:40:6a:6c:35:fa:7b:f5:fd: dc:2f:24:08:fa:63:7b:f9:b7:89:ec:f7:16:7f:30:54:b7:ac: df:d5:49:cf:a8:e3:f8:42:04:fd:7a:a4:ba:e5:bd:2f:ca:b1: b0:d6:ef:4e:f0:81:93:67:51:6c:87:a4:2c:fa:e2:4d:7d:bb: 51:7e:c9:04:ce:6b:a2:53:b8:4c:40:d2:10:0b:33:a7:dc:49: b5:0b:a9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGMzQxMTAvBgNVBAUTKDRCMzEwOEJDNTc1ODg0M0Q2M0RGRjZGQzY0MDk3RjJC MTY0NENCOEEwHhcNMjUxMjE5MDUwNTIyWhcNMjUxMjI2MDUwNTIyWjAYMRYwFAYD VQQDDA02OTQ0ZGQxMy1lOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmmdo0wG5KC9JuQohX59UJm7BrAS+aJUz6W+5bRRYTqfwP1jM25NugOe55T6U 34RemIzP962vSDDjE05j9aHu+WhYEQOqfNswov/Akyct+gawObwOsnBCvMCzWelk FfLBUp6vnqTko01xla/r2wIuqGbij197mg/UBNWOqxPprqvPLsCuSbWuuVPQBDVQ qGaUrFc7pSEyzHAlUb8SmS+4GE+EL1qm09KcicwVIbjSU7d6GxtUxZDGY2tpIxi0 PyJXLwArvNl78paqOaYN65asPP1eyETs8BcpwekXC56YKPTMuaCZW8yDJs7BZ4nJ CFforvnBZ4yCjGOk0jJuZ6a51QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTenr++ MGA0RpfV0zoJk0oLqYNTMB8GA1UdIwQYMBaAFEsxCLxXWIQ9Y9/2/GQJfysWRMuK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEYzNC80RDIyRUVFMEJE RTkxMUVGQkZENTM4ODJDNEY5QUUwMi9TekVJdkZkWWhEMWozX2I4WkFsX0t4WkV5 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6RUl2RmRZaEQxajNfYjhaQWxfS3haRXk0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEYzNC80RDIyRUVFMEJERTkxMUVGQkZENTM4ODJDNEY5QUUwMi9TekVJdkZkWWhE MWozX2I4WkFsX0t4WkV5NG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1TSqwLamlsMDntnM+1S5P+fxAi83z6Dvig0jl2PGJoCEBOiddBYId KBPIjnjxbd0oAmYCTqFEAr/fJhuENxmWdZ8Nxj2St+T/Z4CGZAfh3HkgBKE+vN6e Atbl5+c7r0kM5vFu/U7Zub42kTCpEotcACSPw4oVqQAUXv5fOoILdXHszFg/Zudy G9LHksOJq3HL8iSpZKrXMXghLQz72Uca/9aMLqQ2kTmQXbZcQGpsNfp79f3cLyQI +mN7+beJ7PcWfzBUt6zf1UnPqOP4QgT9eqS65b0vyrGw1u9O8IGTZ1Fsh6Qs+uJN fbtRfskEzmuiU7hMQNIQCzOn3Em1C6my -----END CERTIFICATE-----Generated at Fri Dec 19 15:26:51 2025 by rpki-client