This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft File: FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft (raw, json) Hash identifier: L2T0s1etjqvBh5Iz4hQFi1UlBqFoetDe2shnADRD0D8= Subject key identifier: 46:14:0A:5F:4C:0D:75:38:91:C0:27:72:A6:09:64:6F:6C:3B:F9:E7 Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 0956 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft Manifest number: 094F Signing time: Wed 24 Dec 2025 19:37:10 +0000 Manifest this update: Wed 24 Dec 2025 19:37:09 +0000 Manifest next update: Wed 31 Dec 2025 19:37:09 +0000 Files and hashes: 1: FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl (hash: Tqd7J9wZDfzXXelMJbqWBQ+Xztxalq+6PnCgVNLMCsA=) 2: E9E80356AD6211EABEDF046AC4F9AE02.roa (hash: aOqwloZ9sT/M1OqrjBKZ/MpZ3Pwla48CsTsMrgUxXsk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 19:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2390 (0x956) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: Dec 24 19:37:09 2025 GMT Not After : Dec 31 19:37:09 2025 GMT Subject: CN=694c40e6-be98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:d9:83:ee:5e:5e:a5:91:c2:2a:24:60:cd: ca:79:af:05:a9:ea:69:31:7f:c2:20:11:b8:bc:b8: 73:b8:7b:84:20:0b:19:75:cc:d7:0a:ce:d8:0f:db: ae:02:19:c6:1e:a9:a5:ef:75:9c:b0:7d:bd:34:5d: e9:0b:a3:8c:dd:7e:d5:2b:e7:cc:ca:25:3e:07:d7: f2:59:c2:f9:58:8f:52:70:e5:4d:57:4b:ed:63:86: cd:26:d7:b4:e0:ee:99:c8:04:d8:27:4d:5d:17:5e: c6:ca:5b:a1:1c:a9:76:55:a9:0e:f9:07:52:9f:57: ed:90:ae:c0:e2:69:6a:3a:f4:c7:9f:10:71:b5:c2: b3:5b:89:c1:31:3c:d9:19:ab:81:35:c2:6d:0d:39: 2b:42:9d:e5:3f:f3:e5:6f:ea:01:b6:bc:75:fa:67: 99:4f:fb:fe:c4:73:c8:17:5b:64:93:ec:83:81:0f: 95:fe:28:67:c9:6a:ed:5d:07:d7:a5:3c:70:88:6c: 64:2e:d2:43:03:f6:0a:48:9d:fa:8b:f3:5c:b5:e7: 8d:9d:6b:c5:b7:7b:f3:75:bc:53:d5:20:f0:08:8f: 82:8e:6c:dc:0e:ae:e7:12:44:75:25:6f:04:79:e1: b1:c8:3a:2d:a4:ed:8d:d9:53:f2:c0:9c:4b:a1:73: c0:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:14:0A:5F:4C:0D:75:38:91:C0:27:72:A6:09:64:6F:6C:3B:F9:E7 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:04:55:38:c3:7d:08:8b:67:d6:8f:e3:c4:f5:13:f2:4f:c7: 49:b2:c4:6e:7c:d5:3c:9c:4a:a0:07:36:04:36:4a:bc:4e:b9: 5e:b3:27:f2:bb:cd:84:31:6d:0c:02:67:e4:d3:d0:81:cc:a9: ba:4a:76:2f:0a:18:d9:41:8b:d9:6f:b1:78:b9:5f:3b:4e:56: 71:66:7e:79:3e:9c:69:96:f1:94:12:4e:f8:59:ae:ec:b4:8f: 04:03:91:ac:63:c7:03:e6:d2:e1:75:24:4e:af:b3:15:01:35: 56:38:6c:6e:51:4f:ba:5d:29:5f:1e:ac:3a:cf:c6:7d:3a:be: 4f:f4:77:4a:21:ca:5d:52:81:2c:1f:d0:4a:06:6c:fc:40:5f: be:12:26:77:45:18:0a:62:f8:9d:28:55:d0:bd:c0:38:76:ab: 43:eb:fa:fd:bb:14:16:08:80:44:69:92:74:80:36:df:43:27: 6a:d4:1c:ab:29:2c:5b:57:82:32:e2:48:7c:a0:bd:d1:75:61: d0:dc:2b:fb:59:af:64:0b:b6:3a:fc:22:ac:9c:f7:b1:8c:85: 9b:bc:cd:95:b2:b6:57:e9:4c:06:86:08:de:9b:2c:f8:76:49: 1f:bd:07:32:2a:d6:8c:69:16:37:14:a9:af:fd:97:dd:2e:32: 6f:21:c4:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUxMjI0MTkzNzA5WhcNMjUxMjMxMTkzNzA5WjAYMRYwFAYD VQQDDA02OTRjNDBlNi1iZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa/Zg+5eXqWRwiokYM3Kea8FqeppMX/CIBG4vLhzuHuEIAsZdczXCs7YD9uu AhnGHqml73WcsH29NF3pC6OM3X7VK+fMyiU+B9fyWcL5WI9ScOVNV0vtY4bNJte0 4O6ZyATYJ01dF17GyluhHKl2VakO+QdSn1ftkK7A4mlqOvTHnxBxtcKzW4nBMTzZ GauBNcJtDTkrQp3lP/Plb+oBtrx1+meZT/v+xHPIF1tkk+yDgQ+V/ihnyWrtXQfX pTxwiGxkLtJDA/YKSJ36i/NcteeNnWvFt3vzdbxT1SDwCI+CjmzcDq7nEkR1JW8E eeGxyDotpO2N2VPywJxLoXPAMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYUCl9M DXU4kcAncqYJZG9sO/nnMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjVCQS8wNDlEQ0QyMkFENjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5 X0Q5UkZXVlFQTzlFUkw3Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYBFU4w30Ii2fWj+PE9RPyT8dJssRufNU8nEqgBzYENkq8Trlesyfy u82EMW0MAmfk09CBzKm6SnYvChjZQYvZb7F4uV87TlZxZn55PpxplvGUEk74Wa7s tI8EA5GsY8cD5tLhdSROr7MVATVWOGxuUU+6XSlfHqw6z8Z9Or5P9HdKIcpdUoEs H9BKBmz8QF++EiZ3RRgKYvidKFXQvcA4dqtD6/r9uxQWCIBEaZJ0gDbfQydq1Byr KSxbV4Iy4kh8oL3RdWHQ3Cv7Wa9kC7Y6/CKsnPexjIWbvM2VsrZX6UwGhgjemyz4 dkkfvQcyKtaMaRY3FKmv/ZfdLjJvIcQj -----END CERTIFICATE-----Generated at Thu Dec 25 05:12:56 2025 by rpki-client