This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft File: o9--Ea-KeOViz7RXkAzKuQkMK1k.mft (raw, json) Hash identifier: rO77QqWzwC0PtZ6j7CZ+y7WxUTFrp+TaxZZ9q7NiMSw= Subject key identifier: D3:F9:BD:C2:34:A9:FD:29:DC:9A:EC:4F:B3:1D:34:A9:77:30:29:AE Authority key identifier: A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 Certificate issuer: /CN=A9145604/serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Certificate serial: 097F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft Manifest number: 0979 Signing time: Mon 22 Dec 2025 19:27:34 +0000 Manifest this update: Mon 22 Dec 2025 19:27:33 +0000 Manifest next update: Mon 29 Dec 2025 19:27:33 +0000 Files and hashes: 1: o9--Ea-KeOViz7RXkAzKuQkMK1k.crl (hash: FJ9LX369dyMsUgXKD5IJULHy6tP3Pt1zpOfupKR0bbE=) 2: C0A21C70A4A711EA835CCA70C4F9AE02.roa (hash: oh99riu32xDufqLh4s49Z+OfJBlHg4YCfXKo4NVguOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 19:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2431 (0x97f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145604, serialNumber=A3DFBE11AF8A78E562CFB457900CCAB9090C2B59 Validity Not Before: Dec 22 19:27:33 2025 GMT Not After : Dec 29 19:27:33 2025 GMT Subject: CN=69499ba6-7b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c9:c3:f7:8a:9b:77:0b:0a:3b:47:47:fc:57: e3:e4:56:09:f7:ba:7f:f1:a6:62:7d:1f:56:f4:4f: 7a:89:09:c2:7a:eb:1d:a4:15:8a:ba:e8:38:3d:cb: 8a:7c:ca:a0:a5:8b:9a:54:40:75:1d:43:03:12:76: 78:4a:61:2e:a9:1b:2e:ff:e3:34:fd:c7:db:67:a1: 75:90:1f:53:85:ce:a8:f1:50:16:de:ec:f1:36:9f: e4:ee:52:0b:60:d7:8e:9e:00:b7:47:9d:36:68:86: bf:c9:d0:0e:7e:45:60:81:1f:0e:c4:ac:59:94:ce: 73:15:79:b8:b8:63:49:72:90:9c:6e:4c:77:04:6e: f6:b9:10:52:2e:5a:92:50:88:1d:78:96:5b:57:19: 0a:b2:a4:8b:dd:ce:57:9d:2c:11:8c:4c:96:5e:7a: eb:1e:80:3e:77:91:d7:81:92:de:83:56:04:63:98: 43:47:df:b0:a4:94:d6:ea:ad:a2:0e:3c:13:d6:b7: ec:cd:d9:0c:00:6a:99:d3:3c:44:c4:a6:be:47:27: 2f:c8:03:93:50:23:84:4b:f7:7b:82:c7:06:28:0f: 86:de:dd:36:87:7a:69:ac:3b:e0:5f:62:06:1c:14: 64:a9:d8:ea:d1:e0:aa:81:4f:aa:98:80:78:08:a9: b6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:F9:BD:C2:34:A9:FD:29:DC:9A:EC:4F:B3:1D:34:A9:77:30:29:AE X509v3 Authority Key Identifier: keyid:A3:DF:BE:11:AF:8A:78:E5:62:CF:B4:57:90:0C:CA:B9:09:0C:2B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9--Ea-KeOViz7RXkAzKuQkMK1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145604/BCEC6C5EA4A011EA8FBAB45DC4F9AE02/o9--Ea-KeOViz7RXkAzKuQkMK1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:14:02:29:8c:43:9f:34:80:92:ea:73:2c:27:17:f0:d8:21: d2:58:05:23:ab:de:cc:de:86:62:f2:14:1a:e8:16:2c:0d:99: e4:3c:97:95:e5:16:98:4d:0e:39:db:9d:de:c9:a4:08:03:32: b5:1a:7f:0a:67:76:22:96:96:c3:02:60:30:b8:20:ec:37:63: a6:37:ee:bc:88:10:9e:5e:17:20:85:30:8d:fc:d4:d2:e7:43: f7:2a:fd:fe:cb:fd:90:26:94:ef:8a:4a:38:f1:37:33:bc:11: b8:a7:26:25:45:31:35:4e:dc:32:ef:e8:0a:27:3d:1a:e9:63: cf:97:fd:6b:ca:fa:8e:48:91:a9:70:2d:46:a8:fd:fe:90:9a: db:81:61:4e:3c:89:35:db:7f:4a:32:3f:dd:0a:3d:11:b4:e6: ae:5a:c1:64:39:0d:7a:b5:53:7a:63:30:75:fa:28:d1:ae:08: 3a:45:a8:7e:18:0f:2e:fa:59:3c:73:d4:c8:58:2e:8a:a6:a3: 87:19:a1:09:a3:67:bc:96:b0:73:c0:74:13:6a:06:3c:dc:95: 5d:83:c4:c0:6e:3b:fb:8e:9a:12:e1:65:fc:97:56:fa:35:ae: bf:86:65:ae:65:a7:08:0b:fd:51:59:38:ea:49:9b:df:22:9a: 91:fe:cd:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2MDQxMTAvBgNVBAUTKEEzREZCRTExQUY4QTc4RTU2MkNGQjQ1NzkwMENDQUI5 MDkwQzJCNTkwHhcNMjUxMjIyMTkyNzMzWhcNMjUxMjI5MTkyNzMzWjAYMRYwFAYD VQQDDA02OTQ5OWJhNi03YjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsnD94qbdwsKO0dH/Ffj5FYJ97p/8aZifR9W9E96iQnCeusdpBWKuug4PcuK fMqgpYuaVEB1HUMDEnZ4SmEuqRsu/+M0/cfbZ6F1kB9Thc6o8VAW3uzxNp/k7lIL YNeOngC3R502aIa/ydAOfkVggR8OxKxZlM5zFXm4uGNJcpCcbkx3BG72uRBSLlqS UIgdeJZbVxkKsqSL3c5XnSwRjEyWXnrrHoA+d5HXgZLeg1YEY5hDR9+wpJTW6q2i DjwT1rfszdkMAGqZ0zxExKa+RycvyAOTUCOES/d7gscGKA+G3t02h3pprDvgX2IG HBRkqdjq0eCqgU+qmIB4CKm2tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNP5vcI0 qf0p3JrsT7MdNKl3MCmuMB8GA1UdIwQYMBaAFKPfvhGvinjlYs+0V5AMyrkJDCtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTYwNC9CQ0VDNkM1RUE0 QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VPVml6N1JYa0F6S3VRa01L MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285LS1FYS1LZU9WaXo3UlhrQXpLdVFrTUsxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTYwNC9CQ0VDNkM1RUE0QTAxMUVBOEZCQUI0NURDNEY5QUUwMi9vOS0tRWEtS2VP Vml6N1JYa0F6S3VRa01LMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqFAIpjEOfNICS6nMsJxfw2CHSWAUjq97M3oZi8hQa6BYsDZnkPJeV 5RaYTQ45253eyaQIAzK1Gn8KZ3YilpbDAmAwuCDsN2OmN+68iBCeXhcghTCN/NTS 50P3Kv3+y/2QJpTviko48TczvBG4pyYlRTE1Ttwy7+gKJz0a6WPPl/1ryvqOSJGp cC1GqP3+kJrbgWFOPIk1239KMj/dCj0RtOauWsFkOQ16tVN6YzB1+ijRrgg6Rah+ GA8u+lk8c9TIWC6KpqOHGaEJo2e8lrBzwHQTagY83JVdg8TAbjv7jpoS4WX8l1b6 Na6/hmWuZacIC/1RWTjqSZvfIpqR/s3I -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:35 2025 by rpki-client