This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft File: FrgD2zk43LFdxZooyXcZ2h_yClM.mft (raw, json) Hash identifier: xITJmvOF1gdOP4rY6CJtN9h1zuoi2zoct2/u/pg1JDA= Subject key identifier: 1E:B0:83:39:AC:8C:8B:08:4E:DA:13:B2:0A:24:3C:12:60:04:0F:86 Authority key identifier: 16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 Certificate issuer: /CN=A9149E0D/serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Certificate serial: 0BB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft Manifest number: 0BA6 Signing time: Mon 22 Dec 2025 18:30:39 +0000 Manifest this update: Mon 22 Dec 2025 18:30:39 +0000 Manifest next update: Mon 29 Dec 2025 18:30:39 +0000 Files and hashes: 1: FrgD2zk43LFdxZooyXcZ2h_yClM.crl (hash: Odn+CKO320le0LTQCt8AG4StV2IHavfujRuv183iNvk=) 2: C8FB48F808AF11EBAB78DF6BC4F9AE02.roa (hash: QwMnRtpt+1eT07NMpTybXiiH3v3R91ylnqw2cVEHLL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2993 (0xbb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149E0D, serialNumber=16B803DB3938DCB15DC59A28C97719DA1FF20A53 Validity Not Before: Dec 22 18:30:39 2025 GMT Not After : Dec 29 18:30:39 2025 GMT Subject: CN=69498e4f-978b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:68:1f:f6:8c:3b:ed:7e:e0:55:31:9c:23:e5: dc:32:d1:07:7a:2c:d1:6d:e6:b4:ea:ff:9c:5b:67: 7d:46:88:58:ce:55:b2:1a:05:7f:1a:22:4b:37:06: 9f:5d:71:c1:1f:41:ad:93:d1:2f:aa:6f:da:61:ae: 75:d1:c1:ed:58:59:49:a4:7e:3e:6a:e8:57:5a:ec: fc:32:69:c0:d0:a5:45:bb:b6:1b:75:d5:b9:e9:42: 9f:e8:1d:bd:6c:ad:37:ee:8b:e9:88:ba:60:13:ff: 31:26:f8:c6:d7:34:d1:05:c1:4a:be:a7:67:a4:55: e4:82:27:c8:f6:ae:15:1d:59:23:97:80:fe:4c:c2: 36:55:14:01:f2:e5:84:a1:55:9f:6a:93:c1:5a:90: d9:85:28:c1:6d:b3:f5:9e:39:6d:ac:cc:1d:03:9a: f2:4e:c6:d8:24:7e:86:3d:cb:a4:27:9e:0f:16:fc: 70:ef:39:cb:76:6f:c2:c5:07:ae:7b:ad:9f:05:7b: 07:bc:dd:0c:9d:38:90:b1:c2:1f:c6:92:65:9d:c8: 7f:f8:43:ef:09:8c:eb:f6:78:73:1e:3d:a4:43:1f: db:d9:8e:4c:79:b1:22:61:3f:d6:6f:68:5a:e2:4e: 12:9f:5a:43:cd:59:f3:5f:ce:20:09:e8:d3:6a:41: dc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B0:83:39:AC:8C:8B:08:4E:DA:13:B2:0A:24:3C:12:60:04:0F:86 X509v3 Authority Key Identifier: keyid:16:B8:03:DB:39:38:DC:B1:5D:C5:9A:28:C9:77:19:DA:1F:F2:0A:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrgD2zk43LFdxZooyXcZ2h_yClM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149E0D/904E747E390911EAB0DE3F49C4F9AE02/FrgD2zk43LFdxZooyXcZ2h_yClM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:e8:70:a5:e7:15:9b:1b:f3:bf:ee:de:01:25:2a:21:4d:ec: 64:03:75:72:66:4c:22:9f:e0:9d:d4:8c:09:70:52:ca:ca:fe: a1:61:24:b7:36:82:8a:68:f3:63:b8:37:5c:cb:7c:bb:d5:35: b5:ad:47:e6:72:3d:9d:f0:fc:f3:8c:cc:41:0d:6f:81:b4:70: 42:43:2c:4d:38:41:ee:fc:03:61:30:f9:cd:cf:f1:30:fa:19: 15:37:2f:53:17:d6:b7:0c:a8:a2:93:94:77:9f:e9:ba:44:b6: 5c:4b:e9:0e:f8:78:14:3f:4e:46:3c:77:02:48:cb:dc:09:8a: 72:36:02:3d:b2:a8:d7:c4:ba:32:0f:35:5f:af:0c:ba:3b:c2: d1:e3:29:78:5b:3f:29:bc:6b:b5:8d:0e:a5:ab:82:d7:7d:a8: ef:31:a8:45:db:e8:24:cb:97:7c:65:dd:9a:e8:ce:6c:cb:34: fb:29:21:4c:a9:73:a2:14:b3:5d:3b:e8:1b:85:38:80:5e:86: ab:ee:50:dc:19:c5:07:56:ae:87:3d:9d:62:01:da:7c:ab:1c: 67:27:38:32:9f:3c:4c:26:70:1c:44:8f:b7:3c:77:a4:29:54: 97:30:7f:bf:b6:ec:a3:79:96:9e:2d:63:e5:7c:44:c4:3a:88: b4:94:c1:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlFMEQxMTAvBgNVBAUTKDE2QjgwM0RCMzkzOERDQjE1REM1OUEyOEM5NzcxOURB MUZGMjBBNTMwHhcNMjUxMjIyMTgzMDM5WhcNMjUxMjI5MTgzMDM5WjAYMRYwFAYD VQQDDA02OTQ5OGU0Zi05NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Wgf9ow77X7gVTGcI+XcMtEHeizRbea06v+cW2d9RohYzlWyGgV/GiJLNwaf XXHBH0Gtk9Evqm/aYa510cHtWFlJpH4+auhXWuz8MmnA0KVFu7YbddW56UKf6B29 bK037ovpiLpgE/8xJvjG1zTRBcFKvqdnpFXkgifI9q4VHVkjl4D+TMI2VRQB8uWE oVWfapPBWpDZhSjBbbP1njltrMwdA5ryTsbYJH6GPcukJ54PFvxw7znLdm/CxQeu e62fBXsHvN0MnTiQscIfxpJlnch/+EPvCYzr9nhzHj2kQx/b2Y5MebEiYT/Wb2ha 4k4Sn1pDzVnzX84gCejTakHcBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6wgzms jIsITtoTsgokPBJgBA+GMB8GA1UdIwQYMBaAFBa4A9s5ONyxXcWaKMl3Gdof8gpT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUUwRC85MDRFNzQ3RTM5 MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNMRmR4Wm9veVhjWjJoX3lD bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyZ0Qyems0M0xGZHhab295WGNaMmhfeUNsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUUwRC85MDRFNzQ3RTM5MDkxMUVBQjBERTNGNDlDNEY5QUUwMi9GcmdEMnprNDNM RmR4Wm9veVhjWjJoX3lDbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI6HCl5xWbG/O/7t4BJSohTexkA3VyZkwin+Cd1IwJcFLKyv6hYSS3 NoKKaPNjuDdcy3y71TW1rUfmcj2d8PzzjMxBDW+BtHBCQyxNOEHu/ANhMPnNz/Ew +hkVNy9TF9a3DKiik5R3n+m6RLZcS+kO+HgUP05GPHcCSMvcCYpyNgI9sqjXxLoy DzVfrwy6O8LR4yl4Wz8pvGu1jQ6lq4LXfajvMahF2+gky5d8Zd2a6M5syzT7KSFM qXOiFLNdO+gbhTiAXoar7lDcGcUHVq6HPZ1iAdp8qxxnJzgynzxMJnAcRI+3PHek KVSXMH+/tuyjeZaeLWPlfETEOoi0lMGN -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:39 2025 by rpki-client