This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: +IlDlix5wfFm9Tu5KP5GeaDNV6bM6ly/x0aVq1plIHE= Subject key identifier: BD:77:4A:97:59:C3:5A:49:F9:04:67:60:7E:77:52:A4:70:D4:D1:87 Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09C2 Signing time: Thu 18 Dec 2025 20:16:52 +0000 Manifest this update: Thu 18 Dec 2025 20:16:51 +0000 Manifest next update: Thu 25 Dec 2025 20:16:51 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: JgYkN2Z9UNBTknFcsv+ZVCWIcc7NKUGUA2A+N7FtuxA=) 2: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 3: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: 39xXi+BE3qKyQgrVuislk1mPEFnbEpJPwLiHtitE6BQ=) 4: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 20:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2531 (0x9e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Dec 18 20:16:51 2025 GMT Not After : Dec 25 20:16:51 2025 GMT Subject: CN=69446134-54cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:46:11:b9:f0:92:75:a3:08:6e:24:4c:a9:dd: 3c:57:38:c7:05:d3:af:b2:08:bc:30:24:8c:9e:3a: c7:03:18:e5:6c:b0:ea:af:30:d3:72:36:ce:3e:d6: 10:2d:b6:f4:2e:79:d1:25:4a:f8:97:3d:a2:3e:18: 1a:3e:7a:00:f2:1c:f9:73:ab:a9:83:c9:04:0e:17: 09:81:23:57:7f:14:31:99:70:bf:6c:4f:0a:fe:5a: eb:4a:76:b2:c6:76:09:5a:4e:97:ae:16:49:cf:69: c7:09:db:e4:42:25:4c:0c:14:68:33:34:ac:ee:9a: 53:e7:f6:9e:0d:0a:af:c0:6c:5b:a5:85:44:53:a4: c2:2f:df:99:ed:28:74:c2:da:9d:65:fb:8b:89:ac: 1e:0f:ec:8a:52:18:18:d5:fc:21:c2:75:ed:60:cc: 18:b9:a6:55:13:cb:10:6c:c9:fb:6a:5f:b8:9d:2f: 59:70:ed:fa:20:9d:1f:bc:2c:69:c5:c4:cd:25:5f: e1:0a:53:33:5b:13:f2:6e:53:6f:1e:93:a7:ab:dc: 53:b1:8d:56:89:e4:ca:24:d2:b9:56:ca:b8:c4:a7: e9:18:a8:59:ad:24:e7:51:8b:55:62:60:aa:ea:df: 51:91:d5:22:0a:e8:15:12:a7:65:8a:06:06:47:d8: c0:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:77:4A:97:59:C3:5A:49:F9:04:67:60:7E:77:52:A4:70:D4:D1:87 X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0c:dd:ea:9c:84:96:77:18:8b:4b:75:a9:fc:c6:2d:ff:a0: eb:cf:4f:d0:a4:ed:f8:01:00:0e:91:19:0e:70:04:ec:bf:f9: f9:6f:b4:10:90:f5:1a:51:bb:0f:70:a8:ba:44:f4:43:de:97: 20:01:c4:11:bd:97:bf:c5:45:92:cf:3b:8f:9d:b6:b8:df:87: f3:b1:a7:ff:4d:67:e5:e2:43:10:a5:c3:1d:e4:c1:56:8f:b4: 9e:4e:b2:3e:5b:e9:2b:fd:bb:4b:12:10:d0:7d:03:79:b3:8a: 89:6c:5b:bc:5c:1f:a6:92:ed:03:66:f3:65:d8:f7:d6:5c:c1: b1:71:97:6d:0d:fb:93:e1:cc:8c:53:eb:6a:fc:47:f9:f2:48: 96:cd:1b:a1:f8:e7:81:cb:de:1c:58:ea:4b:ef:cf:20:7e:27: ec:90:8e:be:d2:40:9d:51:c1:73:b0:22:ba:22:f5:86:ee:02: c5:fd:fd:72:f6:41:b0:85:05:4e:d6:cc:cc:66:69:62:e7:62: 29:0b:6c:68:fb:df:5c:f1:8b:2d:29:12:63:e5:e0:e7:b3:c7: 98:e1:e5:ef:64:c9:aa:a7:17:4e:66:59:27:98:30:3e:bd:23: 38:ce:fe:af:bd:5b:16:bb:3b:43:1c:6c:0e:3a:a3:5a:7e:e9: a5:36:47:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUxMjE4MjAxNjUxWhcNMjUxMjI1MjAxNjUxWjAYMRYwFAYD VQQDDA02OTQ0NjEzNC01NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0YRufCSdaMIbiRMqd08VzjHBdOvsgi8MCSMnjrHAxjlbLDqrzDTcjbOPtYQ Lbb0LnnRJUr4lz2iPhgaPnoA8hz5c6upg8kEDhcJgSNXfxQxmXC/bE8K/lrrSnay xnYJWk6XrhZJz2nHCdvkQiVMDBRoMzSs7ppT5/aeDQqvwGxbpYVEU6TCL9+Z7Sh0 wtqdZfuLiaweD+yKUhgY1fwhwnXtYMwYuaZVE8sQbMn7al+4nS9ZcO36IJ0fvCxp xcTNJV/hClMzWxPyblNvHpOnq9xTsY1WieTKJNK5Vsq4xKfpGKhZrSTnUYtVYmCq 6t9RkdUiCugVEqdligYGR9jAAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL13SpdZ w1pJ+QRnYH53UqRw1NGHMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcDN3qnISWdxiLS3Wp/MYt/6Drz0/QpO34AQAOkRkOcATsv/n5b7QQ kPUaUbsPcKi6RPRD3pcgAcQRvZe/xUWSzzuPnba434fzsaf/TWfl4kMQpcMd5MFW j7SeTrI+W+kr/btLEhDQfQN5s4qJbFu8XB+mku0DZvNl2PfWXMGxcZdtDfuT4cyM U+tq/Ef58kiWzRuh+OeBy94cWOpL788gfifskI6+0kCdUcFzsCK6IvWG7gLF/f1y 9kGwhQVO1szMZmli52IpC2xo+99c8YstKRJj5eDns8eY4eXvZMmqpxdOZlknmDA+ vSM4zv6vvVsWuztDHGwOOqNafumlNkfS -----END CERTIFICATE-----Generated at Fri Dec 19 12:23:17 2025 by rpki-client