This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft File: o9XPQ95bPYucND7UScFpDr40Fw4.mft (raw, json) Hash identifier: VBJMOryx/Ya/UUVhPKB2J1kzmEEfAz5Vqt/wXLjbcaY= Subject key identifier: 26:5C:FF:D1:FC:1D:42:BF:D2:D8:99:17:24:00:2D:97:AC:B5:2A:DB Authority key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E Certificate issuer: /CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Certificate serial: 0666 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft Manifest number: 063F Signing time: Mon 22 Dec 2025 22:01:55 +0000 Manifest this update: Mon 22 Dec 2025 22:01:54 +0000 Manifest next update: Mon 29 Dec 2025 22:01:54 +0000 Files and hashes: 1: o9XPQ95bPYucND7UScFpDr40Fw4.crl (hash: Q6PVUMKoYtEOia4/L1fopTVTB5UyRamVKAWkyYSTQTU=) 2: 96E3EB58B2B711EEAE882255C4F9AE02.roa (hash: S2W7v0bn+KzEsrg9+xUhdsA4Af0rmjBxd69De9ontzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCD1, serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E Validity Not Before: Dec 22 22:01:54 2025 GMT Not After : Dec 29 22:01:54 2025 GMT Subject: CN=6949bfd2-85a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4a:4a:bd:c7:d3:47:fe:b9:21:4c:9a:ea:06: 40:6e:a0:2f:4a:92:08:c1:47:24:68:35:ac:10:ff: 0c:db:44:c2:8d:46:8a:43:bc:b8:40:8b:8f:65:fe: db:cf:4c:df:1a:c0:ae:43:6f:f4:27:d5:37:b9:b8: a3:7c:1f:d9:c1:42:55:0d:99:f7:9d:cd:f5:23:f7: 33:51:e2:dd:12:bb:97:54:0a:5f:99:aa:2a:3b:e2: 1a:64:c9:b1:0f:44:c5:9b:e1:e3:c6:d2:26:ea:a7: 67:53:7a:56:72:0c:48:ab:32:23:60:19:a4:2c:ae: c6:ed:88:b7:f5:fb:83:1b:d3:26:5c:e5:f0:39:b5: f5:a8:f7:0b:7f:67:82:1a:f5:5e:7d:c4:09:ed:f0: 6e:7f:29:2b:22:ea:d1:f7:b3:71:8f:0c:f4:4a:27: 95:7c:86:95:b5:6c:9d:26:ce:ec:7d:de:b7:a1:25: 4a:79:61:06:6f:2d:fe:c2:14:4e:0e:22:87:ef:d5: 92:c1:43:84:e4:99:9d:ac:a0:2f:6d:a3:07:8d:f3: 2a:f9:73:a8:12:17:43:ac:fc:06:e9:e7:a2:4d:17: a1:8d:c9:4c:6c:27:e6:a5:5c:fe:88:0b:02:cc:b9: f1:85:68:a3:89:8d:fb:27:56:e7:70:ec:26:df:96: 8b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5C:FF:D1:FC:1D:42:BF:D2:D8:99:17:24:00:2D:97:AC:B5:2A:DB X509v3 Authority Key Identifier: keyid:A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:fa:da:44:d5:bc:dd:b2:d1:56:a6:59:73:af:f3:95:1e:32: a8:c7:46:4d:2d:3b:47:87:52:1a:ff:a7:a0:b9:1d:60:35:f6: 74:e3:69:fd:8c:7d:07:60:ae:d5:da:87:08:76:28:19:dc:82: cc:ba:fc:5e:d0:11:5a:8b:53:27:62:43:f6:3f:a9:be:95:30: 92:09:e6:43:5c:2d:9f:91:8f:2b:66:55:d0:14:52:f9:e4:9f: 2d:5c:da:a4:94:84:24:e5:f7:f8:6d:c4:c3:9d:e3:f5:f2:ea: b0:25:3e:55:44:8c:e5:35:48:71:6e:6b:69:37:bc:74:13:f2: b1:c1:e2:2d:30:a7:a1:a0:9b:f2:b1:c2:67:49:2c:67:e7:ea: 5f:86:74:13:d4:12:b9:db:69:a0:70:df:ee:1e:70:8a:38:9d: de:49:fc:fc:57:9d:02:92:c4:45:ab:b0:7f:00:ae:69:cb:e7: 9c:95:c3:ff:7a:ac:6c:fd:8d:f9:74:82:58:f1:29:0c:df:d5: 03:88:13:ce:da:28:7a:72:b4:5e:be:ae:de:8e:80:c2:50:4c: 49:1e:f1:9d:1d:3b:7c:d7:05:01:0d:29:2f:78:69:89:18:34: 27:a5:61:67:15:49:a6:e7:d3:5b:b8:da:5b:26:92:c2:2c:0c: a4:a3:4d:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDRDExMTAvBgNVBAUTKEEzRDVDRjQzREU1QjNEOEI5QzM0M0VENDQ5QzE2OTBF QkUzNDE3MEUwHhcNMjUxMjIyMjIwMTU0WhcNMjUxMjI5MjIwMTU0WjAYMRYwFAYD VQQDDA02OTQ5YmZkMi04NWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkpKvcfTR/65IUya6gZAbqAvSpIIwUckaDWsEP8M20TCjUaKQ7y4QIuPZf7b z0zfGsCuQ2/0J9U3ubijfB/ZwUJVDZn3nc31I/czUeLdEruXVApfmaoqO+IaZMmx D0TFm+HjxtIm6qdnU3pWcgxIqzIjYBmkLK7G7Yi39fuDG9MmXOXwObX1qPcLf2eC GvVefcQJ7fBufykrIurR97Nxjwz0SieVfIaVtWydJs7sfd63oSVKeWEGby3+whRO DiKH79WSwUOE5JmdrKAvbaMHjfMq+XOoEhdDrPwG6eeiTRehjclMbCfmpVz+iAsC zLnxhWijiY37J1bncOwm35aL2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZc/9H8 HUK/0tiZFyQALZestSrbMB8GA1UdIwQYMBaAFKPVz0PeWz2LnDQ+1EnBaQ6+NBcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NEMS9BRDdGNDVBNENE QzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZdWNORDdVU2NGcERyNDBG dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285WFBROTViUFl1Y05EN1VTY0ZwRHI0MEZ3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0NEMS9BRDdGNDVBNENEQzQxMUVCQjVGNDgzNTVDNEY5QUUwMi9vOVhQUTk1YlBZ dWNORDdVU2NGcERyNDBGdzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo+tpE1bzdstFWpllzr/OVHjKox0ZNLTtHh1Ia/6eguR1gNfZ042n9 jH0HYK7V2ocIdigZ3ILMuvxe0BFai1MnYkP2P6m+lTCSCeZDXC2fkY8rZlXQFFL5 5J8tXNqklIQk5ff4bcTDneP18uqwJT5VRIzlNUhxbmtpN7x0E/KxweItMKehoJvy scJnSSxn5+pfhnQT1BK522mgcN/uHnCKOJ3eSfz8V50CksRFq7B/AK5py+eclcP/ eqxs/Y35dIJY8SkM39UDiBPO2ih6crRevq7ejoDCUExJHvGdHTt81wUBDSkveGmJ GDQnpWFnFUmm59NbuNpbJpLCLAyko02g -----END CERTIFICATE-----Generated at Mon Dec 22 23:51:00 2025 by rpki-client