This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft File: tDxOPTL5W1BV0E_cAfhRljfImm8.mft (raw, json) Hash identifier: T6KsjOp3zmHWXsPUOIVXub6kiXBsuSES5TjoIMCxyZI= Subject key identifier: 68:18:F6:72:BB:B9:83:6B:CA:7E:2C:66:93:CB:01:97:07:87:D0:4E Authority key identifier: B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F Certificate issuer: /CN=A9161F73/serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft Manifest number: 0110 Signing time: Wed 17 Dec 2025 04:27:08 +0000 Manifest this update: Wed 17 Dec 2025 04:27:08 +0000 Manifest next update: Wed 24 Dec 2025 04:27:08 +0000 Files and hashes: 1: tDxOPTL5W1BV0E_cAfhRljfImm8.crl (hash: nz+BPrJrQaq3Q5Ldo69PbO6AEq6gCbCgTcEySOeYHFs=) 2: 858870583D0A11EF829DCE39C4F9AE02.roa (hash: RTDmiAUTa+6e7BNeD1q7cr5hG3t1MJJWblXaDUXHJew=) 3: 38BDA87E3D0A11EF9EEE4439C4F9AE02.roa (hash: ZlBqKGquKmDZSHNnRJSZITSYuAIz8r1LwmFTYmRFcj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 03:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F73, serialNumber=B43C4E3D32F95B5055D04FDC01F8519637C89A6F Validity Not Before: Dec 17 04:27:08 2025 GMT Not After : Dec 24 04:27:08 2025 GMT Subject: CN=6942311c-0a85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:66:78:50:9e:b7:9e:c3:9f:c1:79:36:ae:fc: 8f:98:91:0f:3e:15:a2:ea:c1:a7:3b:1c:89:81:15: 82:4f:38:a6:47:68:e5:2b:03:c5:c0:fb:e3:20:dc: b7:ad:45:fb:b2:56:77:bb:13:52:fe:c3:79:f3:40: 5f:31:6f:b4:62:51:12:a3:7f:c3:68:65:ef:3b:14: 57:20:ae:cb:23:e8:22:e8:f0:89:5d:41:1b:44:04: 24:f5:56:c6:92:6e:fe:f0:50:67:f5:fc:e1:06:15: ae:be:66:fc:29:a0:0e:92:b5:ed:7c:14:1d:ec:7c: bc:8c:fd:d8:d7:25:ca:26:01:f7:ff:c6:93:63:3c: 15:af:ad:40:ae:7b:0c:bb:f2:a4:9b:7a:87:f8:81: 04:57:2b:2e:37:87:9f:2e:ce:96:bb:e0:ed:78:83: 2b:f8:bd:00:9b:cb:ba:f6:72:d6:bf:2c:f3:95:cb: 99:7f:d6:f6:c0:6b:32:09:22:74:6f:12:85:95:b8: 87:c2:d4:e1:38:75:fa:9f:fe:e9:1f:67:12:65:31: 31:25:30:bc:5e:d0:bf:14:a2:ac:30:25:40:ce:21: 9d:16:77:51:06:53:fa:07:9d:a7:2a:1b:1d:a1:38: ad:11:49:d6:da:10:92:31:f9:c1:ed:4b:b2:08:28: db:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:18:F6:72:BB:B9:83:6B:CA:7E:2C:66:93:CB:01:97:07:87:D0:4E X509v3 Authority Key Identifier: keyid:B4:3C:4E:3D:32:F9:5B:50:55:D0:4F:DC:01:F8:51:96:37:C8:9A:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tDxOPTL5W1BV0E_cAfhRljfImm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F73/6DF0E1083D0711EFB5C9EC24C4F9AE02/tDxOPTL5W1BV0E_cAfhRljfImm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:90:cb:8d:56:5a:5f:c1:79:89:47:bf:0c:e8:f6:09:8e:19: 87:0e:fa:12:cf:ed:1e:62:46:f9:18:84:db:31:97:3b:86:39: 4c:ba:72:df:04:1a:02:99:b4:b7:e5:db:29:1f:74:e1:af:71: a9:a2:78:6e:44:01:bf:fc:c3:62:1a:34:97:fa:9d:02:a3:2c: 0e:5c:0d:68:2f:65:26:81:5a:08:2b:5c:b3:af:a0:8f:7f:f0: 54:fb:30:21:41:6c:dd:8e:3e:4d:18:4c:6f:18:51:83:d2:3b: 2a:14:fb:e2:e8:7e:0a:62:8c:32:b0:c0:8b:06:98:94:89:b8: 6e:ac:38:f2:d9:a7:36:11:f6:6d:22:19:42:bd:3f:d3:29:bb: 42:e3:fb:b8:cc:8a:2a:df:a9:50:94:ba:99:c9:86:4a:12:d7: 11:e2:e5:44:7e:84:1c:c1:f8:e2:59:ea:c9:59:c2:1f:68:dd: 33:79:f6:0d:e2:5b:60:e2:e2:15:f9:09:cf:5c:4b:0f:f5:c0: f7:e2:7c:bd:72:20:33:29:f5:cf:30:b7:5e:9c:1d:1f:89:04: f2:74:2e:5f:7a:96:00:e7:fa:04:c5:4b:35:0d:19:3b:6d:c1: 86:e0:03:48:1b:15:e4:4e:90:9b:ea:d0:82:16:28:b1:73:8a: 6e:22:9e:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGNzMxMTAvBgNVBAUTKEI0M0M0RTNEMzJGOTVCNTA1NUQwNEZEQzAxRjg1MTk2 MzdDODlBNkYwHhcNMjUxMjE3MDQyNzA4WhcNMjUxMjI0MDQyNzA4WjAYMRYwFAYD VQQDDA02OTQyMzExYy0wYTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2Z4UJ63nsOfwXk2rvyPmJEPPhWi6sGnOxyJgRWCTzimR2jlKwPFwPvjINy3 rUX7slZ3uxNS/sN580BfMW+0YlESo3/DaGXvOxRXIK7LI+gi6PCJXUEbRAQk9VbG km7+8FBn9fzhBhWuvmb8KaAOkrXtfBQd7Hy8jP3Y1yXKJgH3/8aTYzwVr61ArnsM u/Kkm3qH+IEEVysuN4efLs6Wu+DteIMr+L0Am8u69nLWvyzzlcuZf9b2wGsyCSJ0 bxKFlbiHwtThOHX6n/7pH2cSZTExJTC8XtC/FKKsMCVAziGdFndRBlP6B52nKhsd oTitEUnW2hCSMfnB7UuyCCjbTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgY9nK7 uYNryn4sZpPLAZcHh9BOMB8GA1UdIwQYMBaAFLQ8Tj0y+VtQVdBP3AH4UZY3yJpv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUY3My82REYwRTEwODNE MDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcxQlYwRV9jQWZoUmxqZklt bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3REeE9QVEw1VzFCVjBFX2NBZmhSbGpmSW1tOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUY3My82REYwRTEwODNEMDcxMUVGQjVDOUVDMjRDNEY5QUUwMi90RHhPUFRMNVcx QlYwRV9jQWZoUmxqZkltbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZkMuNVlpfwXmJR78M6PYJjhmHDvoSz+0eYkb5GITbMZc7hjlMunLf BBoCmbS35dspH3Thr3GponhuRAG//MNiGjSX+p0CoywOXA1oL2UmgVoIK1yzr6CP f/BU+zAhQWzdjj5NGExvGFGD0jsqFPvi6H4KYowysMCLBpiUibhurDjy2ac2EfZt IhlCvT/TKbtC4/u4zIoq36lQlLqZyYZKEtcR4uVEfoQcwfjiWerJWcIfaN0zefYN 4ltg4uIV+QnPXEsP9cD34ny9ciAzKfXPMLdenB0fiQTydC5fepYA5/oExUs1DRk7 bcGG4ANIGxXkTpCb6tCCFiixc4puIp7X -----END CERTIFICATE-----Generated at Wed Dec 17 11:43:07 2025 by rpki-client