This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft File: 89pR_oC82pcIdSXiBGIeqfVXQZk.mft (raw, json) Hash identifier: cME7z6PsZuCmhiaK6wLxUtuuBsvRtF/WPOCgJVEaPXA= Subject key identifier: F0:6B:62:3B:AB:05:94:DE:94:41:1D:86:CE:12:3D:B4:38:ED:A8:80 Authority key identifier: F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 Certificate issuer: /CN=A9147CDA/serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft Manifest number: 020A Signing time: Tue 23 Dec 2025 01:45:00 +0000 Manifest this update: Tue 23 Dec 2025 01:44:59 +0000 Manifest next update: Tue 30 Dec 2025 01:44:59 +0000 Files and hashes: 1: 89pR_oC82pcIdSXiBGIeqfVXQZk.crl (hash: lGHLXSuOf0Q+8adkIvWOyOoQF0ddAHOjqVOKm8VoVq8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CDA, serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Validity Not Before: Dec 23 01:44:59 2025 GMT Not After : Dec 30 01:44:59 2025 GMT Subject: CN=6949f41c-2848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4e:97:6d:e0:19:11:c3:e6:ac:a9:cf:0e:bc: d6:c8:d5:8d:9f:5d:ae:46:5f:e4:fd:08:dd:79:79: d1:cb:93:11:09:54:83:6c:e4:b0:c9:6f:ac:1c:b5: 00:a8:eb:09:4f:cd:ab:88:9b:dd:79:ba:13:a7:32: c8:48:b4:76:b1:8a:64:59:34:0c:25:93:50:cf:55: d8:3e:c5:01:ac:89:b4:92:23:39:16:0d:ad:c3:7c: 63:57:87:14:79:0c:6d:00:08:f0:a4:fb:15:16:ab: 46:ab:a6:e9:6e:a3:cd:0c:45:f1:dc:15:34:ea:e1: f7:6f:d6:f8:2d:d2:92:db:1b:e7:92:ee:bf:8c:79: fb:20:01:74:11:8d:c6:e5:ea:cc:1e:9e:c6:cc:68: bc:27:0d:68:f3:34:01:4c:bc:a2:08:56:2f:c6:0f: 05:c7:01:8c:71:b4:de:d2:59:db:a4:da:46:0c:bd: 26:4f:9f:5d:1a:a0:9f:5f:c8:a3:c1:96:49:00:23: eb:98:eb:a0:00:b3:23:a2:28:b7:a9:c9:ba:9d:b4: 06:a9:4e:a3:4b:22:1b:b5:24:d1:c8:e4:2b:aa:45: 1d:88:2a:00:05:6d:f1:ad:c4:b2:27:e6:af:92:a1: 8e:12:bf:40:ec:7c:a8:68:37:21:8a:ef:d9:5f:63: 7a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:6B:62:3B:AB:05:94:DE:94:41:1D:86:CE:12:3D:B4:38:ED:A8:80 X509v3 Authority Key Identifier: keyid:F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:98:79:2a:bc:ba:ba:60:fe:5f:22:15:49:84:00:7e:45:2b: e8:43:00:1c:9b:c0:21:6d:0c:67:77:c5:29:9c:24:57:14:96: b3:6d:5d:f1:0d:12:30:0b:33:56:c5:3b:1d:a6:ed:b0:25:24: a9:96:3a:f9:10:9e:d0:7c:05:5c:cc:d3:93:cc:96:23:eb:af: 0f:55:98:d9:26:1f:7e:6f:59:00:8e:6e:ea:9f:e7:bf:62:30: 99:2f:d7:15:b9:5f:61:fa:a3:ac:5a:07:0a:c1:59:7b:0e:54: fa:29:e7:b3:91:9f:43:3d:0e:28:dd:2e:db:34:91:29:46:63: 06:21:37:6d:af:b4:11:f1:78:c4:fc:95:a4:c4:75:ac:f1:03: 39:71:26:a0:22:70:06:3a:16:ae:db:cf:36:a0:83:42:b7:4b: 36:7e:ef:17:bd:11:62:9c:83:f0:ab:8e:7e:78:17:96:08:9d: 99:32:dc:7a:bd:14:38:bb:e1:e7:0b:d2:a6:a7:a0:ff:5e:4e: 7c:e8:4a:0c:a3:8d:96:45:51:02:d6:88:e8:95:c5:f3:a3:0c: 2d:ab:6b:37:e3:da:24:3a:76:45:ae:22:78:43:14:c0:a0:51: 9b:79:cd:13:62:25:dc:37:42:7d:3f:29:e4:48:a2:de:e2:d1: af:d6:9a:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDREExMTAvBgNVBAUTKEYzREE1MUZFODBCQ0RBOTcwODc1MjVFMjA0NjIxRUE5 RjU1NzQxOTkwHhcNMjUxMjIzMDE0NDU5WhcNMjUxMjMwMDE0NDU5WjAYMRYwFAYD VQQDDA02OTQ5ZjQxYy0yODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE6XbeAZEcPmrKnPDrzWyNWNn12uRl/k/QjdeXnRy5MRCVSDbOSwyW+sHLUA qOsJT82riJvdeboTpzLISLR2sYpkWTQMJZNQz1XYPsUBrIm0kiM5Fg2tw3xjV4cU eQxtAAjwpPsVFqtGq6bpbqPNDEXx3BU06uH3b9b4LdKS2xvnku6/jHn7IAF0EY3G 5erMHp7GzGi8Jw1o8zQBTLyiCFYvxg8FxwGMcbTe0lnbpNpGDL0mT59dGqCfX8ij wZZJACPrmOugALMjoii3qcm6nbQGqU6jSyIbtSTRyOQrqkUdiCoABW3xrcSyJ+av kqGOEr9A7HyoaDchiu/ZX2N6dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBrYjur BZTelEEdhs4SPbQ47aiAMB8GA1UdIwQYMBaAFPPaUf6AvNqXCHUl4gRiHqn1V0GZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NEQS80OUIyN0Q4QTA1 NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJwY0lkU1hpQkdJZXFmVlhR WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5cFJfb0M4MnBjSWRTWGlCR0llcWZWWFFaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NEQS80OUIyN0Q4QTA1NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJw Y0lkU1hpQkdJZXFmVlhRWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXmHkqvLq6YP5fIhVJhAB+RSvoQwAcm8AhbQxnd8UpnCRXFJazbV3x DRIwCzNWxTsdpu2wJSSpljr5EJ7QfAVczNOTzJYj668PVZjZJh9+b1kAjm7qn+e/ YjCZL9cVuV9h+qOsWgcKwVl7DlT6KeezkZ9DPQ4o3S7bNJEpRmMGITdtr7QR8XjE /JWkxHWs8QM5cSagInAGOhau2882oINCt0s2fu8XvRFinIPwq45+eBeWCJ2ZMtx6 vRQ4u+HnC9Kmp6D/Xk586EoMo42WRVEC1ojolcXzowwtq2s349okOnZFriJ4QxTA oFGbec0TYiXcN0J9PynkSKLe4tGv1poV -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:30 2025 by rpki-client