This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: ggpOJMI+r89REiXN0gpAJPTlIifi5kcftHYBQ+JyRV4= Subject key identifier: 79:06:4B:51:14:54:DB:07:19:A1:FF:F7:F6:3C:75:4A:B2:EC:7C:8F Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1C0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BFC Signing time: Mon 22 Dec 2025 16:01:11 +0000 Manifest this update: Mon 22 Dec 2025 16:01:11 +0000 Manifest next update: Mon 29 Dec 2025 16:01:11 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: zZyqTB3JvmETiG3b7mLB+X3gVdPoY5AdNduVJ/Hfyq4=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 16:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7182 (0x1c0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Dec 22 16:01:11 2025 GMT Not After : Dec 29 16:01:11 2025 GMT Subject: CN=69496b47-1aa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:57:35:b6:4f:03:c1:67:78:f6:d8:f7:4c:79: b7:e6:58:02:12:d3:b8:5e:3b:d5:da:00:b3:d5:ff: 08:aa:15:b4:5c:25:a6:7a:ae:58:01:f4:e6:51:c1: 43:7e:8f:43:1c:d9:f4:92:c0:e3:7b:90:a4:53:12: 3a:fb:cc:24:72:af:cf:6c:8b:a6:b6:c4:98:70:d5: 3c:1f:f2:17:61:d5:dc:1f:3a:87:10:f5:ab:f6:60: a5:4b:3f:4b:5b:d9:b5:2f:11:a0:b5:bd:47:26:ac: 1f:d0:a0:c3:aa:18:ff:17:d8:a5:90:e8:94:49:bd: f9:7a:a3:6d:95:c2:d2:b6:a9:32:9c:c0:94:50:b7: 0f:a6:a7:7f:2b:a8:fd:74:a2:24:ca:65:4b:ca:f1: ae:83:aa:41:c0:5d:a7:4a:2b:9d:fe:9c:75:82:e3: 81:94:57:7d:d8:85:e5:b7:38:e1:95:69:13:14:1e: a6:42:57:18:ba:a0:fe:28:f0:2d:b0:ef:ad:fa:30: ea:ec:2f:6d:72:66:29:18:20:7e:d2:cd:a1:52:9e: d6:a3:7f:19:5f:19:3b:ab:59:ba:bb:a6:1b:2f:a1: 56:fb:3e:49:0e:f1:2c:1b:b0:09:6d:54:2d:41:aa: cd:b3:2e:85:62:ce:d7:cf:0d:2f:01:83:4a:71:d8: 19:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:06:4B:51:14:54:DB:07:19:A1:FF:F7:F6:3C:75:4A:B2:EC:7C:8F X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:b7:92:70:87:9a:00:e0:8e:cf:f8:b3:ed:bc:c8:46:bd:c1: 28:a3:36:99:bd:5e:28:53:15:56:6d:52:1f:6b:d1:6f:21:a2: 69:84:2d:2e:11:f6:d5:7d:0d:18:e9:12:91:ff:0c:e6:89:e2: e6:d9:61:a3:cc:2d:e6:ff:9c:38:80:07:30:b6:0f:b7:ae:08: d1:59:e5:96:13:f1:ea:5c:b8:bd:37:1e:fc:e2:39:d8:c5:8e: 4a:e8:88:5d:40:0b:76:e4:6d:68:7a:13:d5:57:ee:92:fc:9e: c4:e6:67:66:e9:d9:8e:f2:1a:90:d7:5c:92:06:9b:62:1b:82: 4d:a7:64:7e:e9:5a:b6:7a:f0:77:f1:ff:e1:d5:6f:8e:9a:34: 33:e3:d0:f4:10:f1:5d:34:da:a8:51:51:6e:84:ef:ac:61:8f: 92:7e:26:46:69:c7:29:00:55:9d:21:db:48:a0:ff:7a:44:2d: 72:ff:2f:2c:86:72:6c:d1:fb:0a:83:9e:08:ca:cd:e3:f1:dc: a5:00:67:2c:0e:d8:e6:a6:3a:a0:ab:15:b0:6f:04:09:b9:bd: d0:8d:f2:b0:55:86:28:01:b2:33:44:56:f4:92:ea:de:8b:65: e0:0c:5b:bd:8e:1e:3e:f4:40:2b:95:e9:21:25:65:b8:b0:f2: 70:1d:2a:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUxMjIyMTYwMTExWhcNMjUxMjI5MTYwMTExWjAYMRYwFAYD VQQDDA02OTQ5NmI0Ny0xYWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlc1tk8DwWd49tj3THm35lgCEtO4XjvV2gCz1f8IqhW0XCWmeq5YAfTmUcFD fo9DHNn0ksDje5CkUxI6+8wkcq/PbIumtsSYcNU8H/IXYdXcHzqHEPWr9mClSz9L W9m1LxGgtb1HJqwf0KDDqhj/F9ilkOiUSb35eqNtlcLStqkynMCUULcPpqd/K6j9 dKIkymVLyvGug6pBwF2nSiud/px1guOBlFd92IXltzjhlWkTFB6mQlcYuqD+KPAt sO+t+jDq7C9tcmYpGCB+0s2hUp7Wo38ZXxk7q1m6u6YbL6FW+z5JDvEsG7AJbVQt QarNsy6FYs7Xzw0vAYNKcdgZjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkGS1EU VNsHGaH/9/Y8dUqy7HyPMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABt5Jwh5oA4I7P+LPtvMhGvcEoozaZvV4oUxVWbVIfa9FvIaJphC0u EfbVfQ0Y6RKR/wzmieLm2WGjzC3m/5w4gAcwtg+3rgjRWeWWE/HqXLi9Nx784jnY xY5K6IhdQAt25G1oehPVV+6S/J7E5mdm6dmO8hqQ11ySBptiG4JNp2R+6Vq2evB3 8f/h1W+OmjQz49D0EPFdNNqoUVFuhO+sYY+SfiZGaccpAFWdIdtIoP96RC1y/y8s hnJs0fsKg54Iys3j8dylAGcsDtjmpjqgqxWwbwQJub3QjfKwVYYoAbIzRFb0kure i2XgDFu9jh4+9EArlekhJWW4sPJwHSo+ -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:39 2025 by rpki-client