This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft File: 1gA1BzfqQktAGySBBT0rwpFsutE.mft (raw, json) Hash identifier: orlqXep4fBkiu2hpHpqWPSFMPK2tH2ul24ZsGKz56/c= Subject key identifier: 6F:96:14:0D:3B:20:A9:D4:D3:40:B6:98:EA:5F:5F:3E:81:DC:63:E9 Authority key identifier: D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 Certificate issuer: /CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft Manifest number: FF Signing time: Sun 21 Dec 2025 04:21:47 +0000 Manifest this update: Sun 21 Dec 2025 04:21:47 +0000 Manifest next update: Sun 28 Dec 2025 04:21:47 +0000 Files and hashes: 1: 1gA1BzfqQktAGySBBT0rwpFsutE.crl (hash: BrKpALn+t/TASBUPl5bOQJtH8nsUirDSrN8/zClwHCw=) 2: FD557922606A11EF8B9F6820C4F9AE02.roa (hash: ewsNS72wnAdnQiFMusstfvI/PZNeUDtev9nr2+xdPsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154973, serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Validity Not Before: Dec 21 04:21:47 2025 GMT Not After : Dec 28 04:21:47 2025 GMT Subject: CN=694775db-8286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:02:32:62:12:cf:95:75:b0:16:6a:96:04:a7: 7b:81:ed:80:7d:3d:d1:98:95:44:75:42:e1:d5:05: e0:c6:c8:d9:26:49:63:bb:1c:0d:00:b4:83:23:4d: 25:3e:03:c7:0b:25:ca:7e:fd:2f:0d:82:9d:d8:53: 9b:59:63:04:ff:97:89:c7:c2:bc:f9:f6:06:9a:d4: c0:73:ee:d5:2d:2c:09:a2:8c:21:1c:bc:93:3c:ee: 63:fb:a3:e5:5f:df:79:27:a0:6a:85:63:a3:12:e8: 4d:02:e3:ff:4b:f8:bf:07:62:b4:11:c2:98:9a:87: f7:93:d5:1d:0d:c7:9d:a2:d0:50:ad:f7:ad:68:3d: 54:3d:82:30:3b:d8:c4:16:35:e7:54:25:2e:e8:36: b9:fa:86:fa:41:57:a2:ea:c6:b8:a8:19:2b:96:3c: 9e:3f:ff:13:61:77:56:6c:55:8e:d0:ee:9a:eb:3c: 68:da:29:da:b0:bb:4d:5b:f5:34:0f:6a:25:9c:19: 1a:9f:b7:df:85:ae:68:9c:4c:f4:fd:48:1c:e1:d8: 37:bd:89:52:98:6b:55:a8:ba:d9:66:19:bd:be:ee: 01:e9:0e:e9:0c:ef:de:3c:8d:cd:ae:c3:22:89:af: 03:c1:f8:c6:18:7e:7b:5f:54:2b:6d:84:41:fc:27: 5a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:96:14:0D:3B:20:A9:D4:D3:40:B6:98:EA:5F:5F:3E:81:DC:63:E9 X509v3 Authority Key Identifier: keyid:D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:b4:cb:58:c7:b7:d1:55:63:c8:9a:9e:c9:12:e1:69:b6:eb: 3c:df:dc:8b:df:a6:d4:f5:39:9c:30:c0:ab:52:6c:c6:11:e2: 80:7a:46:69:27:93:58:a1:0d:88:91:90:9c:20:ee:be:4f:7f: c0:40:43:bb:4f:0b:c2:e1:81:02:87:86:7d:06:6f:43:a6:84: 22:60:2d:33:89:a1:34:e7:d4:e1:da:cf:b6:56:ac:be:e2:11: 0b:8e:b7:65:5f:1f:b2:31:b6:51:e8:43:0f:5f:58:af:91:46: 9e:3e:a7:7b:4f:6f:a8:41:c4:74:45:44:56:0f:b7:36:97:ac: af:a4:bc:97:dc:3c:2c:b6:d5:32:2d:ab:3f:94:da:bc:56:39: 56:b1:7d:46:db:ac:e6:b2:6c:2c:97:fd:6a:b2:f6:a6:ba:bb: 7f:df:f9:9a:b8:db:40:27:e8:c4:35:11:c9:70:64:f3:5f:00: 4d:dc:78:1e:e5:d6:5f:7d:93:ac:76:30:22:4b:20:32:72:24: 4a:60:1b:5f:fd:fc:53:c7:ba:ab:b9:63:35:38:a8:e4:65:d3: d1:51:df:5e:a6:fa:c8:78:2f:2a:fc:dc:93:5d:3f:ee:1f:15: 8e:bf:19:82:e3:14:5c:37:11:af:d0:f4:94:04:1c:e9:9f:f5: 10:eb:d8:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5NzMxMTAvBgNVBAUTKEQ2MDAzNTA3MzdFQTQyNEI0MDFCMjQ4MTA1M0QyQkMy OTE2Q0JBRDEwHhcNMjUxMjIxMDQyMTQ3WhcNMjUxMjI4MDQyMTQ3WjAYMRYwFAYD VQQDDA02OTQ3NzVkYi04Mjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAIyYhLPlXWwFmqWBKd7ge2AfT3RmJVEdULh1QXgxsjZJkljuxwNALSDI00l PgPHCyXKfv0vDYKd2FObWWME/5eJx8K8+fYGmtTAc+7VLSwJoowhHLyTPO5j+6Pl X995J6BqhWOjEuhNAuP/S/i/B2K0EcKYmof3k9UdDcedotBQrfetaD1UPYIwO9jE FjXnVCUu6Da5+ob6QVei6sa4qBkrljyeP/8TYXdWbFWO0O6a6zxo2inasLtNW/U0 D2olnBkan7ffha5onEz0/Ugc4dg3vYlSmGtVqLrZZhm9vu4B6Q7pDO/ePI3NrsMi ia8DwfjGGH57X1QrbYRB/CdahQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+WFA07 IKnU00C2mOpfXz6B3GPpMB8GA1UdIwQYMBaAFNYANQc36kJLQBskgQU9K8KRbLrR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDk3My9BNjVCQzYyNjYw NkExMUVGODk4RURCMUZDNEY5QUUwMi8xZ0ExQnpmcVFrdEFHeVNCQlQwcndwRnN1 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFnQTFCemZxUWt0QUd5U0JCVDByd3BGc3V0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk3My9BNjVCQzYyNjYwNkExMUVGODk4RURCMUZDNEY5QUUwMi8xZ0ExQnpmcVFr dEFHeVNCQlQwcndwRnN1dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBtMtYx7fRVWPImp7JEuFptus839yL36bU9TmcMMCrUmzGEeKAekZp J5NYoQ2IkZCcIO6+T3/AQEO7TwvC4YECh4Z9Bm9DpoQiYC0ziaE059Th2s+2Vqy+ 4hELjrdlXx+yMbZR6EMPX1ivkUaePqd7T2+oQcR0RURWD7c2l6yvpLyX3DwsttUy Las/lNq8VjlWsX1G26zmsmwsl/1qsvamurt/3/mauNtAJ+jENRHJcGTzXwBN3Hge 5dZffZOsdjAiSyAyciRKYBtf/fxTx7qruWM1OKjkZdPRUd9epvrIeC8q/NyTXT/u HxWOvxmC4xRcNxGv0PSUBBzpn/UQ69hz -----END CERTIFICATE-----Generated at Mon Dec 22 12:38:31 2025 by rpki-client