This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: VSwQhg3xWE4pHrjAMibTIt6pv4bCASnO1LXYqB0wBLs= Subject key identifier: 67:01:17:CC:CE:2E:E2:1C:BB:06:34:DF:C7:9D:85:50:FA:BF:1E:F4 Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 01D7 Signing time: Tue 23 Dec 2025 01:48:00 +0000 Manifest this update: Tue 23 Dec 2025 01:48:00 +0000 Manifest next update: Tue 30 Dec 2025 01:48:00 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: zExRCl9TaMcRu/ZBi7snfku+2r9J3Fc+BRXJO3Zh7/A=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Dec 23 01:48:00 2025 GMT Not After : Dec 30 01:48:00 2025 GMT Subject: CN=6949f4d0-ed9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:42:4a:df:74:cd:48:de:dc:64:af:c1:21:01: b0:b6:f3:5f:dc:59:93:e3:31:4c:74:8b:10:e6:41: 22:cc:b5:c4:67:8d:8f:25:f2:69:86:3e:0d:33:96: 1b:fe:2c:e1:8f:d5:cf:8f:2b:7d:b6:49:9b:fc:61: c2:3a:cf:13:d8:c4:5c:0f:00:30:c1:3b:cd:de:01: 4d:66:a4:b2:8a:33:0c:22:db:3e:fe:c7:25:a8:7b: 69:ea:6f:ef:71:64:e3:f4:74:05:66:38:69:83:65: c2:bf:15:27:1d:7b:29:ef:be:04:b0:6c:52:47:82: 40:9e:25:47:9e:c1:8d:9f:7e:3b:ab:b2:9e:c4:13: d7:e8:1f:82:78:f4:af:7a:f3:0c:d1:45:fc:21:55: b3:c1:3c:59:86:e0:e0:4e:c8:e3:3d:c9:4e:61:33: 7b:e4:1b:27:cc:11:77:33:4b:7f:4a:ff:83:3a:11: 29:c8:a5:7b:6d:e1:9f:d8:aa:cb:43:7f:38:4d:06: 97:f5:09:f8:dc:23:f2:18:d4:27:df:66:ea:10:a8: 33:f1:91:a8:96:d8:ed:97:d2:bd:84:b5:14:1a:85: f2:64:56:a1:5c:e3:26:33:9d:48:ab:16:e7:62:8f: ec:d4:8f:0b:16:72:e8:79:91:7d:6d:e1:55:9f:ea: c7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:01:17:CC:CE:2E:E2:1C:BB:06:34:DF:C7:9D:85:50:FA:BF:1E:F4 X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:d1:84:86:7f:23:50:16:78:d7:a3:84:ad:54:fc:c8:1d:32: 70:95:69:c2:1c:88:d4:64:f2:a5:34:94:03:61:70:f9:59:62: e7:b3:4d:95:e5:87:fb:d7:89:6e:5b:69:4f:40:9a:03:81:7a: 59:95:cd:86:73:bd:6f:64:0e:70:c7:89:16:54:ba:c2:51:8c: 91:ec:d3:a1:5b:ed:86:08:af:6d:dc:d4:6a:c9:c8:e1:10:fb: c0:76:ab:39:b8:43:93:81:13:1a:a2:4b:61:58:e6:4e:99:65: 20:85:16:ea:80:91:f9:d9:38:9c:fd:3e:98:c7:37:46:20:f4: 2d:30:c2:89:9b:9f:26:ab:02:ce:a7:23:20:18:59:9e:0c:47: 40:cd:09:14:99:db:ca:d0:81:5d:61:93:32:13:f0:d3:15:60: 8b:f8:f0:6b:cf:c0:87:24:6a:66:12:ad:12:7a:13:63:06:18: 35:b0:15:d7:96:5f:cf:39:ce:96:20:7f:e0:9e:de:dc:17:82: 6b:2a:f9:9b:0b:29:05:d7:bb:c9:d3:a9:9e:2f:cb:a9:9c:57: 78:8f:ae:a9:f9:f6:b0:1d:5b:df:4d:ec:88:4f:42:68:f9:bf: 8d:40:01:15:28:7d:d7:2d:73:95:40:f6:69:d8:ac:79:7b:1a: 6c:82:ce:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUxMjIzMDE0ODAwWhcNMjUxMjMwMDE0ODAwWjAYMRYwFAYD VQQDDA02OTQ5ZjRkMC1lZDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUJK33TNSN7cZK/BIQGwtvNf3FmT4zFMdIsQ5kEizLXEZ42PJfJphj4NM5Yb /izhj9XPjyt9tkmb/GHCOs8T2MRcDwAwwTvN3gFNZqSyijMMIts+/sclqHtp6m/v cWTj9HQFZjhpg2XCvxUnHXsp774EsGxSR4JAniVHnsGNn347q7KexBPX6B+CePSv evMM0UX8IVWzwTxZhuDgTsjjPclOYTN75BsnzBF3M0t/Sv+DOhEpyKV7beGf2KrL Q384TQaX9Qn43CPyGNQn32bqEKgz8ZGoltjtl9K9hLUUGoXyZFahXOMmM51Iqxbn Yo/s1I8LFnLoeZF9beFVn+rHvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcBF8zO LuIcuwY038edhVD6vx70MB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn0YSGfyNQFnjXo4StVPzIHTJwlWnCHIjUZPKlNJQDYXD5WWLns02V 5Yf714luW2lPQJoDgXpZlc2Gc71vZA5wx4kWVLrCUYyR7NOhW+2GCK9t3NRqycjh EPvAdqs5uEOTgRMaokthWOZOmWUghRbqgJH52Tic/T6YxzdGIPQtMMKJm58mqwLO pyMgGFmeDEdAzQkUmdvK0IFdYZMyE/DTFWCL+PBrz8CHJGpmEq0SehNjBhg1sBXX ll/POc6WIH/gnt7cF4JrKvmbCykF17vJ06meL8upnFd4j66p+fawHVvfTeyIT0Jo +b+NQAEVKH3XLXOVQPZp2Kx5expsgs7f -----END CERTIFICATE-----Generated at Tue Dec 23 09:43:09 2025 by rpki-client