This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: 4/3GvyQI2e93GMO9F+xbQc2mqlFcmtVCPh5HD8NCkX4= Subject key identifier: C3:55:E0:8A:4A:48:1B:EE:1D:5F:20:F4:49:61:AE:AD:0B:99:60:8E Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 8C Signing time: Sun 21 Dec 2025 05:39:48 +0000 Manifest this update: Sun 21 Dec 2025 05:39:47 +0000 Manifest next update: Sun 28 Dec 2025 05:39:47 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: ebD7wmQ5P/fbqONCfj4V/6mYrF4/PRbwLtxYLeZNqsA=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: lfdyi++bWKTqNq0AntGKkt45cnrhAjp+IKIVrz1KfzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 05:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Dec 21 05:39:47 2025 GMT Not After : Dec 28 05:39:47 2025 GMT Subject: CN=69478824-1ce5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:05:6e:0e:1d:94:fc:55:be:b0:ac:92:b1:0c: 28:d8:f7:06:9d:8a:8b:53:93:8b:a9:f9:6f:0e:15: 40:43:83:4b:dc:af:cc:c4:f7:94:7d:9d:1d:ad:6c: 77:cb:e0:bb:b0:65:c5:aa:4b:43:7a:98:5c:01:35: a3:43:2d:5c:27:8b:4a:07:a3:f4:97:94:2a:98:1a: cf:32:41:10:bc:bb:29:90:42:2d:86:14:da:82:34: 09:28:82:ab:fa:78:5a:36:b1:dc:b5:b5:c4:ad:cd: 70:4c:24:7d:86:73:15:c9:63:a0:22:c3:1f:5a:80: 09:76:f8:cf:f8:fa:6f:af:d6:95:59:92:f7:3a:09: 98:cf:1f:60:57:7a:a1:46:7c:13:2b:dd:2b:39:df: 6a:73:3c:15:68:26:e8:e6:b4:7d:42:6b:47:89:70: 8f:73:0d:0a:eb:27:61:92:44:fe:36:47:e0:f0:ca: 1a:22:d2:28:75:9c:fb:80:79:e7:a4:08:d8:5d:c9: cf:a6:f9:b7:3f:91:10:2a:70:3e:5a:b8:de:34:8d: e6:34:fb:e3:08:17:72:6f:65:5f:e9:c7:08:9c:83: f2:49:b1:57:39:d0:4f:ab:5c:f6:72:29:9f:3e:8a: b9:34:f7:1b:54:d9:cc:9f:aa:29:a6:8a:61:1a:3f: 18:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:55:E0:8A:4A:48:1B:EE:1D:5F:20:F4:49:61:AE:AD:0B:99:60:8E X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:39:ba:9c:30:fc:75:46:16:29:b0:20:29:53:c0:92:c1:b0: 48:f5:af:47:62:c4:ab:49:ee:96:c7:bd:9d:2c:98:c1:02:c2: c4:3e:54:66:31:82:0f:c1:53:d2:aa:3a:80:f4:e1:90:ae:29: 57:2d:58:73:51:93:04:25:cd:cc:35:18:ac:b3:a8:17:1c:f8: 7d:ab:55:c9:81:e2:ff:b1:aa:9e:c2:7a:d4:bb:30:45:06:c7: ec:df:1c:9c:d1:3b:3d:95:fd:f8:70:7b:cf:44:f4:a0:97:1b: a8:d6:88:5e:50:0d:48:7f:84:8a:d8:1d:bc:55:52:8d:be:04: 9c:ec:bf:f5:db:64:33:35:09:cd:cf:88:da:c3:75:db:88:c7: b3:dc:2b:6b:e1:2e:60:d6:9e:58:46:f3:a6:a8:ac:15:14:38: 74:c4:b0:fe:82:5e:9f:60:26:5d:7f:6b:b5:0d:85:b4:63:ca: b1:2d:be:30:5d:17:8d:c9:63:c4:59:b5:39:e0:0b:e2:94:75: 54:4f:86:43:b1:72:12:be:1e:4c:70:75:3b:a8:2c:4c:3c:c1: 76:01:6c:4f:bf:b3:f1:8f:c3:ad:1d:e9:64:8a:9e:6d:d3:e8: ba:b5:96:9b:dc:37:47:9f:b8:cf:28:64:1f:27:e8:65:83:a9: 71:b9:5b:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVFMDkxMTAvBgNVBAUTKDA4QTM5MUM2QjM4OUM4MTBFOTVCQzYxMzlDRUNCMjlE NUQzOTU4QzQwHhcNMjUxMjIxMDUzOTQ3WhcNMjUxMjI4MDUzOTQ3WjAYMRYwFAYD VQQDDA02OTQ3ODgyNC0xY2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gVuDh2U/FW+sKySsQwo2PcGnYqLU5OLqflvDhVAQ4NL3K/MxPeUfZ0drWx3 y+C7sGXFqktDephcATWjQy1cJ4tKB6P0l5QqmBrPMkEQvLspkEIthhTagjQJKIKr +nhaNrHctbXErc1wTCR9hnMVyWOgIsMfWoAJdvjP+Ppvr9aVWZL3OgmYzx9gV3qh RnwTK90rOd9qczwVaCbo5rR9QmtHiXCPcw0K6ydhkkT+Nkfg8MoaItIodZz7gHnn pAjYXcnPpvm3P5EQKnA+WrjeNI3mNPvjCBdyb2Vf6ccInIPySbFXOdBPq1z2cimf Poq5NPcbVNnMn6oppophGj8YlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNV4IpK SBvuHV8g9Elhrq0LmWCOMB8GA1UdIwQYMBaAFAijkcazicgQ6VvGE5zssp1dOVjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUUwOS84NzA1NUIzMjA4 QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlCRHBXOFlUbk95eW5WMDVX TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUUwOS84NzA1NUIzMjA4QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlC RHBXOFlUbk95eW5WMDVXTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKObqcMPx1RhYpsCApU8CSwbBI9a9HYsSrSe6Wx72dLJjBAsLEPlRm MYIPwVPSqjqA9OGQrilXLVhzUZMEJc3MNRiss6gXHPh9q1XJgeL/saqewnrUuzBF Bsfs3xyc0Ts9lf34cHvPRPSglxuo1oheUA1If4SK2B28VVKNvgSc7L/122QzNQnN z4jaw3XbiMez3Ctr4S5g1p5YRvOmqKwVFDh0xLD+gl6fYCZdf2u1DYW0Y8qxLb4w XReNyWPEWbU54AvilHVUT4ZDsXISvh5McHU7qCxMPMF2AWxPv7Pxj8OtHelkip5t 0+i6tZab3DdHn7jPKGQfJ+hlg6lxuVvo -----END CERTIFICATE-----Generated at Mon Dec 22 20:48:13 2025 by rpki-client