This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft File: gg9wML6sbUnxCbqOwlplvyNprS8.mft (raw, json) Hash identifier: O0UiqEZC9Qah97zOsfVBnmijz3wmrTapaYtIaWpDU+M= Subject key identifier: 1C:43:2D:81:2B:D6:6B:76:61:C9:81:6D:6F:4F:06:BD:01:0F:0F:2A Authority key identifier: 82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F Certificate issuer: /CN=A9146DAA/serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft Manifest number: 020C Signing time: Tue 23 Dec 2025 01:22:06 +0000 Manifest this update: Tue 23 Dec 2025 01:22:06 +0000 Manifest next update: Tue 30 Dec 2025 01:22:06 +0000 Files and hashes: 1: gg9wML6sbUnxCbqOwlplvyNprS8.crl (hash: oMGBx2iknnILYCHFnqTTwI6uN3cFeMadUqG9e2LXTfk=) 2: 08E67270C19611EDBDEEFD0BC4F9AE02.roa (hash: +GbHVgs4RJ2wAESQgEWiA4cM6Z9oouqKwHYBrLXZcc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:22:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146DAA, serialNumber=820F7030BEAC6D49F109BA8EC25A65BF2369AD2F Validity Not Before: Dec 23 01:22:06 2025 GMT Not After : Dec 30 01:22:06 2025 GMT Subject: CN=6949eebe-ee87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:44:ef:29:37:c0:7c:49:bf:56:fd:f2:33:99: 2f:10:d1:91:b2:5a:5d:26:6c:ea:00:f5:d0:1b:c5: 88:f1:e6:10:6d:b5:a7:46:1b:e1:05:03:fb:3c:57: 23:df:90:3a:07:da:44:bf:4d:3b:75:2e:76:d1:09: 55:bf:81:6d:44:88:9c:bf:eb:73:71:7b:86:56:a7: 24:3e:0d:cb:bd:bf:5d:b5:fa:7a:84:78:03:85:3a: a9:dd:a6:aa:77:91:dd:44:cd:4d:15:75:66:3e:0d: 0c:ea:5d:f6:91:ed:51:b9:98:cc:d2:74:aa:3c:83: 67:54:d3:72:85:17:4f:01:97:8a:d9:77:41:65:71: 68:4e:1c:d9:78:c9:6b:3e:d5:5f:59:ba:3d:87:c8: 9a:e1:5c:46:c4:1b:91:79:85:10:c8:96:a9:e5:58: 0a:92:d8:4e:49:f8:a6:fd:a5:a2:d5:ee:f3:9b:75: c3:82:2f:cf:ff:b6:67:18:fa:51:5b:66:bf:06:ac: cc:87:e1:08:c4:77:c5:88:e7:14:d2:80:3f:9e:c5: 12:ce:11:ab:0f:60:f8:87:ab:be:eb:31:6e:97:de: 7c:84:6d:44:53:70:ff:a4:32:f0:0f:54:d1:fb:0d: 37:f7:a2:07:75:0d:a0:b8:75:52:d4:6c:76:fc:c7: 72:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:43:2D:81:2B:D6:6B:76:61:C9:81:6D:6F:4F:06:BD:01:0F:0F:2A X509v3 Authority Key Identifier: keyid:82:0F:70:30:BE:AC:6D:49:F1:09:BA:8E:C2:5A:65:BF:23:69:AD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gg9wML6sbUnxCbqOwlplvyNprS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146DAA/71EB7C5AC19311ED9B866B0BC4F9AE02/gg9wML6sbUnxCbqOwlplvyNprS8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:45:ed:c2:44:82:14:ca:c9:2f:ff:f7:4b:b5:1c:e5:1a:9a: aa:0c:f4:ab:ec:9e:14:f4:81:f1:39:8f:30:26:61:9c:cc:cc: e6:f5:20:cf:d0:8c:1a:b4:f9:a6:48:1f:43:ef:a1:29:28:00: c8:97:b7:20:28:cf:3a:04:9b:6f:1b:4b:1a:35:29:9a:d5:ec: 35:e1:5c:2c:78:df:b2:14:bd:d2:1d:2e:fc:d4:ac:ab:9b:3c: be:23:83:8c:88:20:85:36:c6:95:6f:dc:87:db:f4:b6:5d:eb: 7f:10:ef:98:3d:9a:75:87:55:8b:da:26:83:41:ab:d0:df:14: d3:a6:e6:4e:f3:7d:74:5e:a2:2a:5a:54:9b:6a:39:13:06:59: 0a:bd:3c:6d:4e:a2:9a:3c:40:5e:73:6a:5f:cc:7b:60:e4:08: fa:f3:44:cb:9f:2e:e4:1a:4e:f8:38:15:56:95:94:10:29:88: a6:00:ff:97:53:b6:f8:32:f5:48:d7:cf:e6:ff:c3:b8:e3:ab: c1:ef:ee:a2:e8:f1:58:50:97:f6:c6:09:62:65:25:c0:33:af: ab:f0:54:9b:2c:42:f9:22:49:96:5d:02:d7:7f:6b:fe:ee:a9: f7:df:a2:48:b9:ed:8f:a8:e4:0a:f6:0a:5d:66:46:51:d4:8f: d2:a5:97:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZEQUExMTAvBgNVBAUTKDgyMEY3MDMwQkVBQzZENDlGMTA5QkE4RUMyNUE2NUJG MjM2OUFEMkYwHhcNMjUxMjIzMDEyMjA2WhcNMjUxMjMwMDEyMjA2WjAYMRYwFAYD VQQDDA02OTQ5ZWViZS1lZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqETvKTfAfEm/Vv3yM5kvENGRslpdJmzqAPXQG8WI8eYQbbWnRhvhBQP7PFcj 35A6B9pEv007dS520QlVv4FtRIicv+tzcXuGVqckPg3Lvb9dtfp6hHgDhTqp3aaq d5HdRM1NFXVmPg0M6l32ke1RuZjM0nSqPINnVNNyhRdPAZeK2XdBZXFoThzZeMlr PtVfWbo9h8ia4VxGxBuReYUQyJap5VgKkthOSfim/aWi1e7zm3XDgi/P/7ZnGPpR W2a/BqzMh+EIxHfFiOcU0oA/nsUSzhGrD2D4h6u+6zFul958hG1EU3D/pDLwD1TR +w0396IHdQ2guHVS1Gx2/Mdy+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxDLYEr 1mt2YcmBbW9PBr0BDw8qMB8GA1UdIwQYMBaAFIIPcDC+rG1J8Qm6jsJaZb8jaa0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkRBQS83MUVCN0M1QUMx OTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JVbnhDYnFPd2xwbHZ5TnBy UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnOXdNTDZzYlVueENicU93bHBsdnlOcHJTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkRBQS83MUVCN0M1QUMxOTMxMUVEOUI4NjZCMEJDNEY5QUUwMi9nZzl3TUw2c2JV bnhDYnFPd2xwbHZ5TnByUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGRe3CRIIUyskv//dLtRzlGpqqDPSr7J4U9IHxOY8wJmGczMzm9SDP 0IwatPmmSB9D76EpKADIl7cgKM86BJtvG0saNSma1ew14VwseN+yFL3SHS781Kyr mzy+I4OMiCCFNsaVb9yH2/S2Xet/EO+YPZp1h1WL2iaDQavQ3xTTpuZO8310XqIq WlSbajkTBlkKvTxtTqKaPEBec2pfzHtg5Aj680TLny7kGk74OBVWlZQQKYimAP+X U7b4MvVI18/m/8O446vB7+6i6PFYUJf2xgliZSXAM6+r8FSbLEL5IkmWXQLXf2v+ 7qn336JIue2PqOQK9gpdZkZR1I/SpZdK -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:23 2025 by rpki-client