This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft File: FN2GhClPGzOjE6-48OuhyKADeAk.mft (raw, json) Hash identifier: qbsWemnka7Wj8ei8QA5ypqGhwfVB8asc+dj+Rcbdo5A= Subject key identifier: AC:45:BB:0E:1B:2A:37:DA:02:E4:BF:7F:EB:AA:CC:7D:50:A1:58:0D Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft Manifest number: EE Signing time: Sun 21 Dec 2025 04:34:19 +0000 Manifest this update: Sun 21 Dec 2025 04:34:19 +0000 Manifest next update: Sun 28 Dec 2025 04:34:19 +0000 Files and hashes: 1: FN2GhClPGzOjE6-48OuhyKADeAk.crl (hash: FERrsGA3RLT2kI5dHCnDTgOAppkipioLvLIpZJ+JERc=) 2: E9B0903AF38811EF81B8CE39C4F9AE02.roa (hash: 2fQyEMRkeBroC7JG6dhKWVMOmAu2peytDIRfiN3h3TE=) 3: F7981812F38811EFAC05053AC4F9AE02.roa (hash: D/9SKPwUI+9VjDA2s/SYyY7F96WxlOAy4mRC6PjrPZo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05, serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Validity Not Before: Dec 21 04:34:19 2025 GMT Not After : Dec 28 04:34:19 2025 GMT Subject: CN=694778cb-f0b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d6:bd:b1:87:68:69:c2:3d:9c:fd:43:e1:bb: 15:24:a7:d0:01:3f:c4:5f:c5:5a:de:8e:d3:bc:c2: 23:d5:e2:4c:9b:1b:cd:f9:c5:2e:44:4e:75:70:da: f8:4d:04:a4:56:f5:8f:f2:4f:12:c9:1c:03:af:7f: 19:79:9d:16:52:71:cd:d0:6b:33:af:65:91:08:30: d1:51:d3:86:1e:6a:7d:58:10:bf:7c:75:72:31:d5: 3c:bf:db:b9:13:cd:43:27:85:69:b9:86:61:35:0e: e9:62:9a:f8:01:dd:c2:02:37:be:0e:1b:a9:96:c0: ab:40:91:e8:c8:55:e7:c8:2d:95:07:27:79:cc:55: d1:72:75:72:45:75:12:bf:e4:c4:cb:76:0c:de:15: 1b:14:81:f8:df:08:b2:9a:8c:4b:97:de:9d:ff:e0: 9b:c6:71:a5:fc:db:fa:b6:c2:42:6d:c8:30:6c:b0: a6:0d:fb:47:b6:af:d2:1e:e9:f9:13:80:33:d2:ba: a3:40:99:f5:ab:ff:ac:6a:8b:05:d4:e5:df:01:79: 1f:72:35:d9:55:b8:6c:60:8d:49:66:f9:5d:f1:b7: 7a:5a:7b:11:dc:06:1b:19:89:8a:65:ab:54:07:4d: 5d:75:fb:cc:8e:7f:b4:a7:ec:a0:45:47:61:22:c5: 6c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:45:BB:0E:1B:2A:37:DA:02:E4:BF:7F:EB:AA:CC:7D:50:A1:58:0D X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:7c:a8:55:1c:fd:64:ce:ca:d6:bf:bc:3e:bf:91:78:06:d3: 44:fe:f6:1b:f2:c2:0b:e9:64:b8:26:85:f9:ea:aa:ef:71:aa: cb:13:6c:86:06:cd:3e:0b:d3:9a:78:c7:dd:28:d2:e7:01:e7: 08:b9:63:a3:a4:32:3b:3c:6b:a5:9a:37:ff:5f:33:6d:88:fc: 11:e4:29:32:09:70:2c:3d:f7:92:13:ba:4d:a2:80:de:21:bd: ca:13:4d:6a:dc:b4:28:31:76:8b:58:e7:d4:dd:cb:1c:9b:17: 57:5e:46:c7:e9:38:81:6c:a4:85:9b:81:80:e1:ed:53:6b:19: 3f:cc:58:44:f3:64:3c:73:6f:9d:ed:43:43:92:d8:40:76:fb: 60:9c:35:87:5c:6b:91:4c:53:ef:f0:a0:d5:d1:be:93:10:e3: c1:5b:23:56:0d:9b:f2:1a:3b:66:85:86:f5:da:29:67:4e:73: 96:9b:4f:51:b0:56:8f:62:ed:4e:c4:66:3a:eb:75:db:ad:d6: 0e:23:8c:a1:fc:74:ce:c0:c0:16:46:3d:27:5a:f3:57:2e:2e: 58:c6:bd:31:a2:d3:df:f1:13:4a:b2:58:c2:f0:90:d2:fa:ff: d4:98:99:b9:20:c5:83:ce:86:e5:37:5d:ff:ac:aa:d7:e7:de: 2e:25:b8:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBBMDUxMTAvBgNVBAUTKDE0REQ4Njg0Mjk0RjFCMzNBMzEzQUZCOEYwRUJBMUM4 QTAwMzc4MDkwHhcNMjUxMjIxMDQzNDE5WhcNMjUxMjI4MDQzNDE5WjAYMRYwFAYD VQQDDA02OTQ3NzhjYi1mMGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNa9sYdoacI9nP1D4bsVJKfQAT/EX8Va3o7TvMIj1eJMmxvN+cUuRE51cNr4 TQSkVvWP8k8SyRwDr38ZeZ0WUnHN0Gszr2WRCDDRUdOGHmp9WBC/fHVyMdU8v9u5 E81DJ4VpuYZhNQ7pYpr4Ad3CAje+DhuplsCrQJHoyFXnyC2VByd5zFXRcnVyRXUS v+TEy3YM3hUbFIH43wiymoxLl96d/+CbxnGl/Nv6tsJCbcgwbLCmDftHtq/SHun5 E4Az0rqjQJn1q/+saosF1OXfAXkfcjXZVbhsYI1JZvld8bd6WnsR3AYbGYmKZatU B01ddfvMjn+0p+ygRUdhIsVs5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxFuw4b KjfaAuS/f+uqzH1QoVgNMB8GA1UdIwQYMBaAFBTdhoQpTxszoxOvuPDrocigA3gJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEEwNS9EMTdDODg2ODdD OEExMUVGOEZBQjY5MDlDNEY5QUUwMi9GTjJHaENsUEd6T2pFNi00OE91aHlLQURl QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEEwNS9EMTdDODg2ODdDOEExMUVGOEZBQjY5MDlDNEY5QUUwMi9GTjJHaENsUEd6 T2pFNi00OE91aHlLQURlQWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqfKhVHP1kzsrWv7w+v5F4BtNE/vYb8sIL6WS4JoX56qrvcarLE2yG Bs0+C9OaeMfdKNLnAecIuWOjpDI7PGulmjf/XzNtiPwR5CkyCXAsPfeSE7pNooDe Ib3KE01q3LQoMXaLWOfU3cscmxdXXkbH6TiBbKSFm4GA4e1Taxk/zFhE82Q8c2+d 7UNDkthAdvtgnDWHXGuRTFPv8KDV0b6TEOPBWyNWDZvyGjtmhYb12ilnTnOWm09R sFaPYu1OxGY663XbrdYOI4yh/HTOwMAWRj0nWvNXLi5Yxr0xotPf8RNKsljC8JDS +v/UmJm5IMWDzoblN13/rKrX594uJbif -----END CERTIFICATE-----Generated at Mon Dec 22 12:58:41 2025 by rpki-client