This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: r+IhtBzBs1gY5laJC99/bRmSjE/czOUx96T6QVtBAtw= Subject key identifier: 5A:B7:AB:2E:72:15:E7:3E:B0:7D:44:2D:D0:C4:B3:3C:53:49:55:52 Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0CF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0CDE Signing time: Mon 22 Dec 2025 17:48:47 +0000 Manifest this update: Mon 22 Dec 2025 17:48:46 +0000 Manifest next update: Mon 29 Dec 2025 17:48:46 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: QeDyEtvXYr/VeDWObYM1sq9T4TTAH+Z9W0dB6jVpFZo=) 2: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (hash: TMu5hEbfrLw2YdTkxYULJSdYTtAL2nPXUFAhyo3Mq1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 17:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3317 (0xcf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Dec 22 17:48:46 2025 GMT Not After : Dec 29 17:48:46 2025 GMT Subject: CN=6949847f-22ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:9a:cc:8c:2f:ed:8b:b1:67:2b:08:f6:96:4a: 84:9c:5a:31:4f:b5:9a:a7:b8:87:35:8e:5f:69:e4: 99:c0:74:91:c4:41:5a:8e:1a:c0:6a:1f:23:42:dc: ee:9c:00:38:5f:fd:6f:30:06:83:4b:86:b4:24:ad: e8:3c:8c:8d:f0:2a:97:ee:21:14:fc:09:70:b7:50: 11:c0:ca:93:4f:24:ac:8f:a8:39:90:89:77:74:0e: 6d:e7:a6:2d:b4:16:85:05:a9:2c:15:1c:d6:ff:20: 08:10:da:44:5a:6b:31:e1:b1:be:cb:1e:01:0d:eb: e8:fa:26:25:34:3c:e3:a4:16:d8:f2:bd:ab:c7:ea: 8e:62:f5:fe:6a:d0:2b:36:9c:78:55:14:5f:a9:dc: 23:2a:b4:65:66:e6:7e:c8:ae:70:da:79:8e:6c:7e: 7f:23:90:e5:55:7f:3a:c2:96:f7:c1:bc:f0:2d:e6: f0:0f:b1:16:1b:50:e9:45:0d:a9:96:81:02:4f:cc: 06:ad:2d:8b:76:e2:97:74:4e:20:31:bb:33:05:96: da:f2:85:13:12:7b:a5:a3:aa:0b:17:93:37:8d:77: 67:72:17:6c:40:cb:25:8a:91:d5:4a:2c:a6:f0:50: 58:fd:47:f2:41:ff:f3:3c:75:ab:0f:f0:80:98:4e: 77:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B7:AB:2E:72:15:E7:3E:B0:7D:44:2D:D0:C4:B3:3C:53:49:55:52 X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:84:c4:43:23:e6:52:4a:0a:8a:21:e8:3e:60:22:15:83:3c: 39:e4:92:7e:30:f4:28:b6:98:14:50:0f:48:76:08:18:b8:91: 9f:7e:19:2d:c0:e7:d5:6b:11:32:7e:2f:a8:f8:e5:87:ae:67: 21:f2:b6:a2:99:56:7e:01:8a:05:b6:55:da:74:22:03:81:f7: 33:65:82:9b:a4:8a:d8:b4:cd:a8:3e:29:66:3c:94:49:67:78: dd:98:8d:48:e3:d2:e1:0a:04:4a:08:2f:1d:ca:c9:1d:e0:05: f8:69:81:87:22:5b:f6:1d:f8:c2:70:10:ab:0d:bd:1b:ef:31: 68:c2:b2:27:eb:f4:8c:59:c3:79:ad:f1:73:cf:23:0a:a5:a8: 51:f1:2c:fb:31:bc:aa:5d:b4:e3:d1:e3:34:99:a3:db:ef:c1: 94:5b:30:a0:6e:ae:a6:d0:28:e9:ed:45:88:6f:2d:35:20:fa: 1c:d6:e7:59:63:b5:35:0f:a7:2b:fb:bb:f5:c2:69:4d:c6:30: 8d:99:ab:cd:15:4f:dd:99:10:81:31:00:5e:c6:ac:d9:42:26: cb:7e:95:91:eb:b0:2b:3c:a3:21:e8:59:d5:a5:2f:1e:10:3e: 2a:d9:c6:2f:d6:5c:66:04:06:03:75:d1:b2:ad:f3:e2:8e:5e: 45:5e:24:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjUxMjIyMTc0ODQ2WhcNMjUxMjI5MTc0ODQ2WjAYMRYwFAYD VQQDDA02OTQ5ODQ3Zi0yMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApprMjC/ti7FnKwj2lkqEnFoxT7Wap7iHNY5faeSZwHSRxEFajhrAah8jQtzu nAA4X/1vMAaDS4a0JK3oPIyN8CqX7iEU/Alwt1ARwMqTTySsj6g5kIl3dA5t56Yt tBaFBaksFRzW/yAIENpEWmsx4bG+yx4BDevo+iYlNDzjpBbY8r2rx+qOYvX+atAr Npx4VRRfqdwjKrRlZuZ+yK5w2nmObH5/I5DlVX86wpb3wbzwLebwD7EWG1DpRQ2p loECT8wGrS2LduKXdE4gMbszBZba8oUTEnulo6oLF5M3jXdnchdsQMslipHVSiym 8FBY/UfyQf/zPHWrD/CAmE53jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFq3qy5y Fec+sH1ELdDEszxTSVVSMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWhMRDI+ZSSgqKIeg+YCIVgzw55JJ+MPQotpgUUA9IdggYuJGffhkt wOfVaxEyfi+o+OWHrmch8raimVZ+AYoFtlXadCIDgfczZYKbpIrYtM2oPilmPJRJ Z3jdmI1I49LhCgRKCC8dyskd4AX4aYGHIlv2HfjCcBCrDb0b7zFowrIn6/SMWcN5 rfFzzyMKpahR8Sz7MbyqXbTj0eM0maPb78GUWzCgbq6m0Cjp7UWIby01IPoc1udZ Y7U1D6cr+7v1wmlNxjCNmavNFU/dmRCBMQBexqzZQibLfpWR67ArPKMh6FnVpS8e ED4q2cYv1lxmBAYDddGyrfPijl5FXiSf -----END CERTIFICATE-----Generated at Wed Dec 24 10:48:48 2025 by rpki-client