This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: ox/ejchy1Ra2kqAO1fiRU8z+TsOFXRJ7z+GPWyn8EeA= Subject key identifier: 42:18:31:18:BC:66:9D:0D:95:82:81:2D:57:D5:1A:F9:E9:EC:23:34 Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 8C Signing time: Tue 23 Dec 2025 05:29:51 +0000 Manifest this update: Tue 23 Dec 2025 05:29:51 +0000 Manifest next update: Tue 30 Dec 2025 05:29:51 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: 5wYfsk7NqWDPHvGFxpJIEo6Mxtcdums+f+5Qx33daIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Validity Not Before: Dec 23 05:29:51 2025 GMT Not After : Dec 30 05:29:51 2025 GMT Subject: CN=694a28cf-3fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:97:e6:fc:2d:e2:e6:a9:16:fa:14:3d:a1:56: 14:72:b6:d7:a9:76:f9:27:95:c8:cd:76:53:ed:7b: b0:36:f9:10:7b:4e:30:d1:70:2d:05:72:09:4e:b1: 2c:6d:6c:0f:aa:90:a8:c4:b7:d0:ab:2d:39:9f:b0: 3e:a4:e1:99:69:da:2c:bb:53:7d:09:dc:4d:6d:b7: 98:31:f3:c8:72:33:f8:93:40:5c:b4:a1:21:ad:1b: 27:88:94:9d:86:dd:b4:ca:25:db:7f:ed:3c:87:90: e0:bb:1e:1b:f4:e3:bf:77:44:f7:25:48:5f:2a:dd: d8:78:4e:25:6f:1a:0a:34:1a:4c:42:75:c3:21:09: 6d:61:6b:e3:b2:9a:b4:21:b8:62:a5:96:45:17:24: 28:38:36:34:ea:62:ee:d3:d7:69:82:fa:7e:98:37: db:02:bb:d4:08:4f:5c:a8:ae:53:6c:85:2b:dc:a6: 58:d6:aa:81:80:20:69:22:c4:83:dd:f2:d3:48:f1: fa:42:e8:4c:cf:84:71:66:2b:9c:74:58:2b:57:e5: 68:0e:ca:ee:88:05:8f:a7:8f:32:04:43:a3:5c:12: 54:76:10:14:d1:96:d8:a5:c3:4b:e9:0b:59:00:6a: 25:ac:0f:92:07:60:44:54:db:ac:47:d2:f1:4a:2d: 3a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:18:31:18:BC:66:9D:0D:95:82:81:2D:57:D5:1A:F9:E9:EC:23:34 X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:44:a4:3c:95:01:77:fd:68:98:7a:94:6b:2c:c9:49:fc:a1: 5e:95:47:80:88:78:b0:6b:ae:a8:63:b3:81:a1:97:6e:3e:c4: 7b:b9:8a:72:de:75:46:06:62:bf:6e:9e:6b:64:34:e9:ff:e1: f1:08:fd:6f:bd:79:01:95:8a:d3:43:86:e2:bf:27:3a:ca:68: e1:16:4c:f7:97:86:35:16:76:d3:cc:75:69:be:58:1f:23:c0: 51:30:25:cb:6d:b4:f8:35:9e:7e:a5:61:c4:a7:c8:81:82:87: 4e:5e:9b:38:a7:67:81:ba:12:aa:64:0d:6e:e5:26:cb:50:72: 7e:7b:f2:80:e2:46:88:b1:c9:d5:60:a4:fe:fb:43:74:86:a0: fc:63:4f:1c:36:ca:d4:ce:8c:a7:a6:6c:c2:d9:49:dc:12:da: 0f:be:70:c0:a8:2d:e7:b6:f6:c6:61:a5:0f:cb:25:84:3a:f4: f7:cd:37:3a:4d:da:62:86:22:b9:e9:22:c3:e8:7e:80:ae:8c: 60:38:a4:f6:87:4c:86:17:0d:47:a7:9e:8d:e6:04:ff:97:65: 49:08:a3:eb:dd:70:fc:c0:e5:69:ce:61:68:81:29:3c:85:f0: bb:7c:ec:21:25:c5:71:bc:1a:b6:2b:dc:87:9a:af:09:5a:49: 6a:17:49:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVFMDkxMTAvBgNVBAUTKDE3M0VBOTNEQTZFNUVGNTI4RkE3MzMwOTczODg0ODgz RERBNTI3RUUwHhcNMjUxMjIzMDUyOTUxWhcNMjUxMjMwMDUyOTUxWjAYMRYwFAYD VQQDDA02OTRhMjhjZi0zZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJfm/C3i5qkW+hQ9oVYUcrbXqXb5J5XIzXZT7XuwNvkQe04w0XAtBXIJTrEs bWwPqpCoxLfQqy05n7A+pOGZadosu1N9CdxNbbeYMfPIcjP4k0BctKEhrRsniJSd ht20yiXbf+08h5Dgux4b9OO/d0T3JUhfKt3YeE4lbxoKNBpMQnXDIQltYWvjspq0 IbhipZZFFyQoODY06mLu09dpgvp+mDfbArvUCE9cqK5TbIUr3KZY1qqBgCBpIsSD 3fLTSPH6QuhMz4RxZiucdFgrV+VoDsruiAWPp48yBEOjXBJUdhAU0ZbYpcNL6QtZ AGolrA+SB2BEVNusR9LxSi06ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIYMRi8 Zp0NlYKBLVfVGvnp7CM0MB8GA1UdIwQYMBaAFBc+qT2m5e9Sj6czCXOISIPdpSfu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUUwOS84RjYyNUM0RTA4 QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9GejZwUGFibDcxS1Bwek1KYzRoSWc5MmxK LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEotNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUUwOS84RjYyNUM0RTA4QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9GejZwUGFibDcx S1Bwek1KYzRoSWc5MmxKLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6RKQ8lQF3/WiYepRrLMlJ/KFelUeAiHiwa66oY7OBoZduPsR7uYpy 3nVGBmK/bp5rZDTp/+HxCP1vvXkBlYrTQ4bivyc6ymjhFkz3l4Y1FnbTzHVpvlgf I8BRMCXLbbT4NZ5+pWHEp8iBgodOXps4p2eBuhKqZA1u5SbLUHJ+e/KA4kaIscnV YKT++0N0hqD8Y08cNsrUzoynpmzC2UncEtoPvnDAqC3ntvbGYaUPyyWEOvT3zTc6 TdpihiK56SLD6H6AroxgOKT2h0yGFw1Hp56N5gT/l2VJCKPr3XD8wOVpzmFogSk8 hfC7fOwhJcVxvBq2K9yHmq8JWklqF0mQ -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:40 2025 by rpki-client