This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: GpPUL56+Jy6uixWzJL6NE8MozwkwTybBleM6mRYQd4I= Subject key identifier: 1B:20:2C:D0:48:45:5E:65:2A:EA:CF:D5:6F:83:7A:6D:4B:FE:EA:DD Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 06AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 06A7 Signing time: Mon 22 Dec 2025 21:32:09 +0000 Manifest this update: Mon 22 Dec 2025 21:32:08 +0000 Manifest next update: Mon 29 Dec 2025 21:32:08 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: J6yWgCvDiV5yEASM6BoZ20izLQeNwKJx95qYsaQTrmI=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: Q95/nW6cBcg6eSxuqekACSAFlF9Gvg9OiOnkTSpqx38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Dec 22 21:32:08 2025 GMT Not After : Dec 29 21:32:08 2025 GMT Subject: CN=6949b8d9-0782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8e:11:f7:95:6f:15:4a:2b:fc:67:df:df:d1: b5:73:c6:b8:30:8f:05:9e:29:ae:4e:f3:bb:38:9c: b2:38:c5:50:43:61:5d:a6:9b:1c:4e:6f:37:3b:78: 66:5e:e7:2d:2c:3a:83:be:e3:6c:8e:78:0f:83:d5: e0:c6:ad:cb:9b:16:a5:77:3f:37:14:27:a3:19:b3: 01:77:1d:32:a3:50:4d:b4:7f:9c:f2:d0:f9:d3:a6: a7:e7:59:de:28:ff:5b:43:11:4c:71:46:23:f8:ae: 57:ad:03:8e:e9:a4:37:5b:28:29:80:c9:fb:c1:cd: 6f:a7:67:cd:42:6c:dc:57:70:ec:e1:9b:a7:eb:62: 4f:21:99:75:51:dd:cc:c2:fd:50:cf:67:39:6d:12: 18:f4:66:ef:fb:41:27:54:9b:4c:43:a4:ec:6d:25: f4:e5:a3:d8:68:5a:80:fd:64:2e:a5:71:0d:0b:2b: 39:f6:76:f7:23:29:fe:6e:39:9d:5e:64:a1:a7:fe: a4:df:f7:a8:0b:86:aa:8e:75:d4:29:02:f4:41:65: 7d:43:4b:18:12:1f:78:8f:27:ad:58:6b:9d:84:99: a8:3b:66:01:90:f3:4b:9b:28:6d:ac:ad:7c:a8:de: 1f:42:d4:40:eb:fe:de:fb:ff:c3:91:06:96:6d:89: 91:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:20:2C:D0:48:45:5E:65:2A:EA:CF:D5:6F:83:7A:6D:4B:FE:EA:DD X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:5b:04:33:df:75:0c:79:d8:df:4e:20:c6:e7:d0:42:e7:9b: 7e:4f:cf:43:42:d8:38:f8:3f:20:2f:6c:15:51:b4:4a:e0:67: 4a:22:f4:fa:ce:60:c7:8d:03:e8:e7:22:eb:53:39:79:c3:b9: 84:6f:ce:4c:6d:fb:02:14:79:62:40:af:e9:c8:03:b0:6e:84: 9a:f1:5b:b7:b3:8d:5c:07:54:29:87:51:56:25:03:3b:6c:fd: 71:38:a9:70:bf:76:c9:e8:e6:7c:b9:32:bd:88:a0:6c:3d:71: a2:26:e0:51:27:53:61:e7:32:5d:a6:6a:c8:1e:4a:20:c5:cd: 99:b3:89:62:1c:8f:da:14:3c:53:f1:fe:70:d6:5b:3d:ea:58: 0e:4d:e2:f7:ff:de:c3:07:25:7f:5f:11:67:7e:07:ed:59:4b: 85:68:20:08:ff:bd:f1:11:c7:9a:56:1b:84:f0:9d:fc:1a:24: 90:23:8f:98:2f:23:a4:9e:6c:f2:af:ea:c7:bf:ba:23:9d:be: 0e:37:0c:20:17:60:33:51:e0:22:62:cc:5d:e8:7b:cc:43:c5: 2e:71:59:7f:d7:88:30:ce:b3:9a:10:f7:33:2e:02:b1:0b:42: f6:01:4c:65:e7:cf:a5:33:f3:ad:98:2d:91:58:3a:e8:32:92: 99:9d:99:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjUxMjIyMjEzMjA4WhcNMjUxMjI5MjEzMjA4WjAYMRYwFAYD VQQDDA02OTQ5YjhkOS0wNzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx44R95VvFUor/Gff39G1c8a4MI8FnimuTvO7OJyyOMVQQ2FdppscTm83O3hm XuctLDqDvuNsjngPg9Xgxq3Lmxaldz83FCejGbMBdx0yo1BNtH+c8tD506an51ne KP9bQxFMcUYj+K5XrQOO6aQ3WygpgMn7wc1vp2fNQmzcV3Ds4Zun62JPIZl1Ud3M wv1Qz2c5bRIY9Gbv+0EnVJtMQ6TsbSX05aPYaFqA/WQupXENCys59nb3Iyn+bjmd XmShp/6k3/eoC4aqjnXUKQL0QWV9Q0sYEh94jyetWGudhJmoO2YBkPNLmyhtrK18 qN4fQtRA6/7e+//DkQaWbYmRIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBsgLNBI RV5lKurP1W+Dem1L/urdMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADWwQz33UMedjfTiDG59BC55t+T89DQtg4+D8gL2wVUbRK4GdKIvT6 zmDHjQPo5yLrUzl5w7mEb85MbfsCFHliQK/pyAOwboSa8Vu3s41cB1Qph1FWJQM7 bP1xOKlwv3bJ6OZ8uTK9iKBsPXGiJuBRJ1Nh5zJdpmrIHkogxc2Zs4liHI/aFDxT 8f5w1ls96lgOTeL3/97DByV/XxFnfgftWUuFaCAI/73xEceaVhuE8J38GiSQI4+Y LyOknmzyr+rHv7ojnb4ONwwgF2AzUeAiYsxd6HvMQ8UucVl/14gwzrOaEPczLgKx C0L2AUxl58+lM/OtmC2RWDroMpKZnZlY -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:41 2025 by rpki-client