This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft File: WghDEGDly0pzQThDpsLwBL78Mr8.mft (raw, json) Hash identifier: 021kiBT9DW+8dI16HYHh1GLtZNCA74K7B8sP4HGc/UE= Subject key identifier: 10:61:64:9B:36:23:7B:15:BE:C0:3F:47:CD:F0:E6:49:2D:16:74:46 Authority key identifier: 5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF Certificate issuer: /CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Certificate serial: 0524 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft Manifest number: 051F Signing time: Mon 22 Dec 2025 22:40:23 +0000 Manifest this update: Mon 22 Dec 2025 22:40:22 +0000 Manifest next update: Mon 29 Dec 2025 22:40:22 +0000 Files and hashes: 1: WghDEGDly0pzQThDpsLwBL78Mr8.crl (hash: gyMrkAWXGpjCyaumGaVHWBX6ZZa5l9LgmOM1mtzFdQA=) 2: 846935702CD911ECA528B744C4F9AE02.roa (hash: W1EZe814Szf15WwX2ObaPNFong/hjvqkU7/N1EMoShM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1316 (0x524) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DF1, serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Validity Not Before: Dec 22 22:40:22 2025 GMT Not After : Dec 29 22:40:22 2025 GMT Subject: CN=6949c8d7-692d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c7:64:5d:e8:d5:53:7c:49:46:0d:f9:ec:16: 51:67:aa:91:c9:31:3a:89:ac:8d:6a:14:52:e9:c7: 57:35:1c:89:38:2d:67:39:e4:29:e7:d2:ad:fc:78: 5f:13:57:a9:62:4d:b9:9d:87:77:20:fd:13:ab:3e: a9:eb:36:89:9d:62:6c:12:52:1f:b3:da:58:87:49: a8:70:be:f2:70:96:c2:a4:02:b7:f3:5f:b5:72:7c: 51:d5:ec:fe:6c:0e:7b:3a:87:cc:d3:3f:1b:66:7e: 44:00:75:a9:d9:29:db:eb:56:f2:64:32:27:b9:a6: 97:eb:a9:c5:48:5f:0e:97:98:67:be:3c:f1:7e:47: a0:04:6e:76:13:9b:e0:53:6f:2c:9e:c7:fe:3c:c7: 53:c0:97:d7:f7:98:04:0a:a3:a1:82:66:92:64:3c: e2:03:ed:c2:77:b0:3b:be:30:20:00:c4:08:34:bd: 72:2f:3e:bc:ea:53:0d:b5:2d:a1:72:f6:30:be:fe: 5b:1a:20:18:e2:9f:79:5f:91:a2:e9:ae:9e:0e:51: 02:a2:f7:96:5c:84:fa:3f:93:ff:2f:11:3c:77:5a: eb:27:0b:7b:45:13:c0:ed:85:a4:b5:27:ec:03:a1: 78:ca:16:17:ce:c1:0e:23:b0:ea:f1:b7:9d:1c:86: 35:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:61:64:9B:36:23:7B:15:BE:C0:3F:47:CD:F0:E6:49:2D:16:74:46 X509v3 Authority Key Identifier: keyid:5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:7a:78:35:01:4d:0d:52:63:aa:9a:22:b0:fd:6b:85:63:30: fb:73:7a:b3:e8:6a:8f:0b:d1:4a:54:5c:b2:6a:08:a8:2a:31: ce:1c:52:10:f2:b0:31:2a:13:2e:21:87:b1:24:a4:90:7d:bd: 0d:cd:1a:3d:99:2f:48:f3:0e:1e:ed:22:bb:f3:b9:44:d5:16: 18:0e:21:54:58:f8:1c:1a:58:93:dd:ea:19:0c:03:6a:f9:36: a6:c7:11:3f:fc:7b:3e:65:6a:19:ab:15:53:79:10:56:9b:b3: d2:7b:0c:2e:0a:b8:8e:dc:2a:21:08:83:94:b7:4d:2b:7f:19: 10:df:9e:8d:4c:1e:7f:23:af:d5:fc:2a:c1:a3:74:94:2a:d8: 73:0d:ea:55:26:1a:5c:85:45:59:4c:31:8c:3d:c2:19:1e:90: db:9e:54:7c:e3:b2:f2:0d:1d:2e:2b:05:13:07:f0:eb:33:b7: bf:f5:35:a0:9b:e5:a2:89:98:65:d7:b7:44:f3:82:38:10:17: d1:a1:9c:e9:aa:11:f3:1a:fb:f3:0e:1e:49:af:06:6b:0a:0e: c2:1d:9f:d7:26:17:5d:ce:99:f5:15:a5:c4:6a:11:3e:2a:23: 95:9f:28:ea:a9:57:5b:8c:69:21:ab:84:13:2c:3d:c5:d5:6e: 32:36:b6:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERjExMTAvBgNVBAUTKDVBMDg0MzEwNjBFNUNCNEE3MzQxMzg0M0E2QzJGMDA0 QkVGQzMyQkYwHhcNMjUxMjIyMjI0MDIyWhcNMjUxMjI5MjI0MDIyWjAYMRYwFAYD VQQDDA02OTQ5YzhkNy02OTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMdkXejVU3xJRg357BZRZ6qRyTE6iayNahRS6cdXNRyJOC1nOeQp59Kt/Hhf E1epYk25nYd3IP0Tqz6p6zaJnWJsElIfs9pYh0mocL7ycJbCpAK381+1cnxR1ez+ bA57OofM0z8bZn5EAHWp2Snb61byZDInuaaX66nFSF8Ol5hnvjzxfkegBG52E5vg U28snsf+PMdTwJfX95gECqOhgmaSZDziA+3Cd7A7vjAgAMQINL1yLz686lMNtS2h cvYwvv5bGiAY4p95X5Gi6a6eDlECoveWXIT6P5P/LxE8d1rrJwt7RRPA7YWktSfs A6F4yhYXzsEOI7Dq8bedHIY1eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBBhZJs2 I3sVvsA/R83w5kktFnRGMB8GA1UdIwQYMBaAFFoIQxBg5ctKc0E4Q6bC8AS+/DK/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERGMS9FMzc5RDVBMDJD RDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkwcHpRVGhEcHNMd0JMNzhN cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnaERFR0RseTBwelFUaERwc0x3Qkw3OE1yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MERGMS9FMzc5RDVBMDJDRDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkw cHpRVGhEcHNMd0JMNzhNcjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUeng1AU0NUmOqmiKw/WuFYzD7c3qz6GqPC9FKVFyyagioKjHOHFIQ 8rAxKhMuIYexJKSQfb0NzRo9mS9I8w4e7SK787lE1RYYDiFUWPgcGliT3eoZDANq +TamxxE//Hs+ZWoZqxVTeRBWm7PSewwuCriO3CohCIOUt00rfxkQ356NTB5/I6/V /CrBo3SUKthzDepVJhpchUVZTDGMPcIZHpDbnlR847LyDR0uKwUTB/DrM7e/9TWg m+WiiZhl17dE84I4EBfRoZzpqhHzGvvzDh5JrwZrCg7CHZ/XJhddzpn1FaXEahE+ KiOVnyjqqVdbjGkhq4QTLD3F1W4yNraC -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:09 2025 by rpki-client