This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: uAkbi4qRrXP1fm36cfvUHIiBPevwVcLhu0mBFPGO7/4= Subject key identifier: AD:6A:27:2E:87:F4:6E:DF:58:75:6F:43:BC:C3:9A:48:34:78:5F:AF Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 025C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 024E Signing time: Tue 23 Dec 2025 00:47:49 +0000 Manifest this update: Tue 23 Dec 2025 00:47:48 +0000 Manifest next update: Tue 30 Dec 2025 00:47:48 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: 61xh5qjZJ23ejIdZ37qh9fOAMWfXdzEs35jTbb/o1Mo=) 2: 35ADE898B90A11EF97D24653C4F9AE02.roa (hash: HL9ak8W9+trC9MiHY74LwXsBVM1StTTPf6Gtlitiu6E=) 3: 349D4A7AB90A11EF97D24653C4F9AE02.roa (hash: sJy5pshkDUnbouI1mvCets72eh7H/oS/xnD04CW6At4=) 4: 34386BAAB90A11EF97D24653C4F9AE02.roa (hash: EFu9fWzB4CHYh3zr3NOY2aOQ9lFVqr9qWCqhREefbqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61, serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: Dec 23 00:47:48 2025 GMT Not After : Dec 30 00:47:48 2025 GMT Subject: CN=6949e6b5-da35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:09:04:67:ab:64:13:d6:e8:e5:29:d8:28:e6: 4a:18:29:c5:93:40:70:49:45:93:33:f2:e0:54:e6: 44:f7:4e:c6:4f:93:da:83:10:60:1f:c7:7a:bf:b0: a9:ee:2f:a0:0e:82:24:13:0c:11:7d:37:b0:f7:f7: 9e:bc:04:e1:45:54:55:a5:05:00:37:5c:37:ff:12: 3a:44:4e:e8:71:f5:f9:75:c8:7e:59:4b:c0:19:93: f7:51:53:1e:db:0d:b4:e7:64:29:7e:a9:59:7a:26: cd:51:f6:44:4d:dd:0f:ed:a0:01:98:1a:3f:8b:ad: 3f:e3:86:c0:f6:ad:8e:0a:b6:0a:d5:e2:4a:2c:21: 35:d3:06:25:a7:8f:a4:52:0f:c5:63:00:cc:ba:75: 4c:9f:78:ca:a2:3a:63:e2:e4:79:bb:70:45:db:56: 43:19:5b:20:5a:bd:e6:38:c6:c0:5a:1c:80:3f:97: 16:f8:8f:29:56:32:07:a9:c2:eb:73:d6:2b:08:87: f2:0a:fe:da:36:1a:88:01:ed:bf:1d:9c:2e:ea:45: 42:98:23:cf:d6:f5:66:02:2e:96:8a:75:b7:17:e4: 5c:10:26:16:42:ef:6e:bd:ff:54:f0:11:6b:12:31: f9:cb:ab:32:65:0e:2a:21:9a:47:5d:80:7c:c6:c1: 08:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:6A:27:2E:87:F4:6E:DF:58:75:6F:43:BC:C3:9A:48:34:78:5F:AF X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:e2:57:db:b0:aa:37:7c:ae:8c:06:88:d3:0d:a6:ca:d9:0c: 66:91:ef:e4:ed:38:93:ad:35:32:bf:c6:29:fe:b7:c8:99:d7: cc:78:d6:95:95:c2:6f:ed:81:72:4d:e1:11:c7:73:c9:ea:f7: aa:e2:d5:06:f4:15:93:b1:42:62:f8:22:58:01:c8:12:a0:04: 63:d0:52:29:fd:87:bc:bd:06:a1:73:a4:ed:f7:49:5c:40:f1: eb:04:bf:88:0b:62:e8:25:6a:a1:5c:4b:8a:4d:d6:55:ea:e2: 7f:56:cc:18:e5:4b:59:3b:9a:2e:12:f8:8e:8e:90:22:f0:46: 08:53:36:e7:32:b4:ab:37:c7:af:e3:65:61:a7:e7:9b:e4:10: d0:54:c1:06:6b:22:20:55:3d:59:dc:db:6f:22:cd:c9:e0:c1: b2:16:82:e3:77:f5:94:d6:ae:98:c9:ff:34:2d:6c:c7:30:43: b0:9e:39:09:a5:0b:43:bd:e5:6d:53:6f:34:ca:aa:b6:15:f9: df:d4:0d:f7:fb:1d:d8:5d:44:34:f4:c6:0e:8b:6b:2f:84:fe: 88:b4:b3:ca:dd:b2:ee:1e:ea:61:11:b1:53:e5:bb:09:78:a0: 0f:a7:2b:19:ee:8a:cc:8a:c8:e7:b5:b3:00:d8:49:73:61:1d: ee:3c:cd:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjUxMjIzMDA0NzQ4WhcNMjUxMjMwMDA0NzQ4WjAYMRYwFAYD VQQDDA02OTQ5ZTZiNS1kYTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7AkEZ6tkE9bo5SnYKOZKGCnFk0BwSUWTM/LgVOZE907GT5PagxBgH8d6v7Cp 7i+gDoIkEwwRfTew9/eevAThRVRVpQUAN1w3/xI6RE7ocfX5dch+WUvAGZP3UVMe 2w2052QpfqlZeibNUfZETd0P7aABmBo/i60/44bA9q2OCrYK1eJKLCE10wYlp4+k Ug/FYwDMunVMn3jKojpj4uR5u3BF21ZDGVsgWr3mOMbAWhyAP5cW+I8pVjIHqcLr c9YrCIfyCv7aNhqIAe2/HZwu6kVCmCPP1vVmAi6WinW3F+RcECYWQu9uvf9U8BFr EjH5y6syZQ4qIZpHXYB8xsEIOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1qJy6H 9G7fWHVvQ7zDmkg0eF+vMB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK4lfbsKo3fK6MBojTDabK2Qxmke/k7TiTrTUyv8Yp/rfImdfMeNaV lcJv7YFyTeERx3PJ6veq4tUG9BWTsUJi+CJYAcgSoARj0FIp/Ye8vQahc6Tt90lc QPHrBL+IC2LoJWqhXEuKTdZV6uJ/VswY5UtZO5ouEviOjpAi8EYIUzbnMrSrN8ev 42Vhp+eb5BDQVMEGayIgVT1Z3NtvIs3J4MGyFoLjd/WU1q6Yyf80LWzHMEOwnjkJ pQtDveVtU280yqq2Ffnf1A33+x3YXUQ09MYOi2svhP6ItLPK3bLuHuphEbFT5bsJ eKAPpysZ7orMisjntbMA2ElzYR3uPM2x -----END CERTIFICATE-----Generated at Tue Dec 23 05:36:33 2025 by rpki-client