This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft File: madm1M-kWp-eN3glBJixJ2jEHho.mft (raw, json) Hash identifier: Qwg7bbWGnbKlX7BE2Kp9L0DTjZxEK8Q0A9BI0rwZq80= Subject key identifier: 0C:2A:66:B8:42:85:95:86:7A:57:F8:21:39:96:BB:6B:0D:A7:44:18 Authority key identifier: 99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A Certificate issuer: /CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft Manifest number: F8 Signing time: Tue 23 Dec 2025 04:13:45 +0000 Manifest this update: Tue 23 Dec 2025 04:13:45 +0000 Manifest next update: Tue 30 Dec 2025 04:13:45 +0000 Files and hashes: 1: madm1M-kWp-eN3glBJixJ2jEHho.crl (hash: l/JJkz26K94IpEx4/eWVxQsxOazFj++Aj/vrBt26/5s=) 2: 4DD8750E69A611EF84A27584C4F9AE02.roa (hash: kQamVFgmYMR8msjGru66GiLhfU+VJZnNEztLqZV6JgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 04:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155501, serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Validity Not Before: Dec 23 04:13:45 2025 GMT Not After : Dec 30 04:13:45 2025 GMT Subject: CN=694a16f9-6bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:01:95:5f:bc:6a:20:32:cb:5e:60:4b:7a:83: 4c:05:9b:73:d0:9a:ef:1e:d0:a7:92:6a:26:60:50: eb:4a:e2:86:a1:c3:1d:29:65:3d:71:ef:79:d4:b1: a9:e8:a0:43:61:34:3b:b3:00:6d:6f:f3:bd:b7:da: 86:dd:bf:71:1c:e0:f3:2e:c4:04:93:0d:a2:ce:eb: 84:dd:6e:72:15:4f:b2:9d:34:57:9d:e9:33:ee:dc: b9:b1:d0:88:18:e9:ed:92:fc:2e:3d:3e:02:48:ec: db:22:0a:00:84:e2:67:52:b6:49:1d:aa:dd:11:1e: 13:63:3c:37:1e:f0:8b:61:bd:92:70:8b:af:b6:f9: d9:0e:0f:49:7a:4b:3b:11:24:94:fe:c7:4e:2f:91: cd:9d:29:9f:66:e3:3c:17:eb:99:e7:d7:3b:2b:2f: 2a:c2:f4:c6:60:36:ac:87:1f:cb:8d:de:bd:3b:48: 3b:4f:2e:c5:ca:15:97:1f:47:59:cc:96:7e:97:61: 00:b5:53:28:3c:fe:ff:44:a1:37:0a:9e:34:4e:c7: 55:dc:f8:7a:e0:7e:c0:f5:fe:05:a2:e7:0e:9e:1d: 7d:43:07:56:87:64:09:a7:c6:62:42:3a:d2:b8:a2: 8f:56:dd:9b:b1:73:61:e5:6d:ad:43:25:0a:27:74: e4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:2A:66:B8:42:85:95:86:7A:57:F8:21:39:96:BB:6B:0D:A7:44:18 X509v3 Authority Key Identifier: keyid:99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:23:bc:bd:41:49:f7:09:ba:1d:d1:71:b8:5f:a5:dc:57:db: 2b:14:f1:79:f1:74:89:ed:47:93:77:9d:59:67:37:16:10:ff: fa:b3:3a:59:bc:e6:8b:09:1b:78:43:10:8f:9e:14:65:89:57: 26:ad:ed:24:2f:85:e5:22:a0:5e:c9:cb:0f:33:72:d5:6f:f4: b6:16:43:45:51:8a:a0:1b:72:de:88:2f:1e:15:29:45:94:59: 92:a7:37:92:6b:46:d3:0f:ad:b1:8a:a9:af:31:bc:0f:51:6f: 5c:c5:55:63:d1:e5:5d:26:56:17:04:1b:1d:5b:bc:74:dd:09: 79:bd:12:ee:65:e8:a3:3a:7e:68:34:0d:fd:7c:a2:50:ca:bb: c0:37:e9:75:d9:51:c9:53:64:37:4d:f9:1f:f6:54:fe:b4:88: 1b:1c:76:b8:93:a8:ea:5e:f8:52:b6:b0:0a:66:5b:9d:c7:0b: db:02:48:96:c0:b8:04:e5:cd:94:f7:04:65:ff:7a:62:6d:bf: fd:bb:7f:d4:07:8f:e7:d6:00:e5:5f:d2:0f:b5:fc:55:71:47: ce:21:29:71:7d:0d:0e:d1:28:3b:8c:69:54:13:7a:71:e9:61: e5:b1:b1:d1:61:9f:ef:29:8c:ec:84:f0:ef:af:f7:b2:3c:a4: 6d:d7:78:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU1MDExMTAvBgNVBAUTKDk5QTc2NkQ0Q0ZBNDVBOUY5RTM3NzgyNTA0OThCMTI3 NjhDNDFFMUEwHhcNMjUxMjIzMDQxMzQ1WhcNMjUxMjMwMDQxMzQ1WjAYMRYwFAYD VQQDDA02OTRhMTZmOS02YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+AGVX7xqIDLLXmBLeoNMBZtz0JrvHtCnkmomYFDrSuKGocMdKWU9ce951LGp 6KBDYTQ7swBtb/O9t9qG3b9xHODzLsQEkw2izuuE3W5yFU+ynTRXnekz7ty5sdCI GOntkvwuPT4CSOzbIgoAhOJnUrZJHardER4TYzw3HvCLYb2ScIuvtvnZDg9Jeks7 ESSU/sdOL5HNnSmfZuM8F+uZ59c7Ky8qwvTGYDashx/Ljd69O0g7Ty7FyhWXH0dZ zJZ+l2EAtVMoPP7/RKE3Cp40TsdV3Ph64H7A9f4FoucOnh19QwdWh2QJp8ZiQjrS uKKPVt2bsXNh5W2tQyUKJ3TkuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwqZrhC hZWGelf4ITmWu2sNp0QYMB8GA1UdIwQYMBaAFJmnZtTPpFqfnjd4JQSYsSdoxB4a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTUwMS8yNjg4RTMwMjY4 REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dwLWVOM2dsQkppeEoyakVI aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hZG0xTS1rV3AtZU4zZ2xCSml4SjJqRUhoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTUwMS8yNjg4RTMwMjY4REYxMUVGODMwODlFMEJDNEY5QUUwMi9tYWRtMU0ta1dw LWVOM2dsQkppeEoyakVIaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhI7y9QUn3Cbod0XG4X6XcV9srFPF58XSJ7UeTd51ZZzcWEP/6szpZ vOaLCRt4QxCPnhRliVcmre0kL4XlIqBeycsPM3LVb/S2FkNFUYqgG3LeiC8eFSlF lFmSpzeSa0bTD62xiqmvMbwPUW9cxVVj0eVdJlYXBBsdW7x03Ql5vRLuZeijOn5o NA39fKJQyrvAN+l12VHJU2Q3Tfkf9lT+tIgbHHa4k6jqXvhStrAKZludxwvbAkiW wLgE5c2U9wRl/3pibb/9u3/UB4/n1gDlX9IPtfxVcUfOISlxfQ0O0Sg7jGlUE3px 6WHlsbHRYZ/vKYzshPDvr/eyPKRt13gB -----END CERTIFICATE-----Generated at Wed Dec 24 17:37:35 2025 by rpki-client