This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: 2nMvNQf6zjny8Gp76OtCrL3d5ivQOdGRDMfb61W82Yo= Subject key identifier: EB:09:D0:EE:45:68:C0:28:A5:17:3F:8E:A5:5F:3D:A6:17:BA:23:CA Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C8B Signing time: Wed 10 Dec 2025 17:46:02 +0000 Manifest this update: Wed 10 Dec 2025 17:46:01 +0000 Manifest next update: Wed 17 Dec 2025 17:46:01 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: I0VP1dt1j3RwJFmM+bqVGdL9pDbTAUeoSWBWmuwlGks=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 17:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Dec 10 17:46:01 2025 GMT Not After : Dec 17 17:46:01 2025 GMT Subject: CN=6939b1d9-9bc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:05:74:00:da:7c:cd:10:59:b8:54:2b:a2:3a: 21:9b:ce:b3:b7:c3:0a:e3:b1:4a:85:06:22:64:a1: 72:76:f3:b9:01:9d:f2:37:45:51:41:2e:1e:ec:81: 3e:f7:01:e2:0d:a2:42:6e:d7:6b:c4:be:1f:8a:37: b2:85:e5:bc:1a:10:ee:d6:6c:62:7c:75:50:09:69: f9:e2:e4:9f:52:5e:0d:95:e6:84:3f:ae:dd:e6:a1: d6:ec:49:73:04:f3:cd:b2:36:b7:9e:79:74:b5:5e: 82:aa:2b:39:24:1d:6d:3f:cb:0c:ab:98:cf:01:cc: b5:e8:35:f0:f8:1b:df:96:0d:51:7f:47:f2:4a:41: 2a:72:c7:8d:1d:4c:d5:c3:35:2e:a6:d6:69:6f:b0: 9a:82:b1:84:4c:36:9f:77:ba:94:be:aa:bb:58:7f: 41:cd:95:07:2d:b9:2c:83:49:b4:67:0b:6c:1e:e2: ec:78:16:77:18:60:e6:4b:a0:f3:12:8c:5d:f4:a0: 2b:6f:51:7b:76:99:80:87:59:38:ad:d4:2e:02:3a: e5:c8:3a:85:3f:ec:53:96:2f:ac:9f:d8:74:16:6c: 6d:35:01:93:55:ce:0a:fe:66:d8:1a:92:e6:78:b5: ca:f7:82:98:9f:25:6e:17:5f:60:dc:21:43:54:46: bb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:09:D0:EE:45:68:C0:28:A5:17:3F:8E:A5:5F:3D:A6:17:BA:23:CA X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:4c:8d:7c:96:8a:10:b8:e6:12:e0:b6:91:a4:a6:6a:79:e6: 4d:cd:f9:1a:22:70:19:75:38:b3:6c:12:db:a9:a6:7a:7c:b7: fc:6c:5c:c3:d3:2e:e9:bb:9d:7d:a6:13:87:62:79:39:9f:a2: 06:09:33:be:67:1f:16:42:21:a9:d9:ac:40:54:03:f1:b0:f6: d9:98:9b:49:db:64:97:41:32:49:42:c6:5f:8c:6c:5e:23:ab: 8c:1e:1b:e7:64:75:af:95:70:eb:af:c3:cc:0a:b2:09:aa:89: d5:58:16:21:eb:32:0f:87:e6:5a:04:38:be:7f:9a:81:26:ca: 8c:d8:2a:58:f6:24:f9:c8:fc:ba:bb:96:c0:09:41:57:db:b2: 9d:0f:1b:3e:85:4a:07:ae:fe:26:33:d9:c2:d3:eb:88:6b:4f: 7b:d2:15:98:72:58:56:6f:2f:23:99:1c:82:38:03:37:82:85: a6:00:f3:a3:7d:93:ba:52:db:4b:99:02:ad:84:be:29:85:94: f4:46:0c:d3:71:26:68:a9:60:bd:9c:0b:56:10:f4:ec:5a:42: cd:9a:ca:7b:01:bf:74:53:50:31:3a:0d:26:bf:83:30:09:da: 27:91:d5:04:29:ea:c5:a8:f9:b5:cd:d0:5e:bd:6a:1a:cc:62: bd:3f:11:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUxMjEwMTc0NjAxWhcNMjUxMjE3MTc0NjAxWjAYMRYwFAYD VQQDEw02OTM5YjFkOS05YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7QV0ANp8zRBZuFQrojohm86zt8MK47FKhQYiZKFydvO5AZ3yN0VRQS4e7IE+ 9wHiDaJCbtdrxL4fijeyheW8GhDu1mxifHVQCWn54uSfUl4NleaEP67d5qHW7Elz BPPNsja3nnl0tV6Cqis5JB1tP8sMq5jPAcy16DXw+Bvflg1Rf0fySkEqcseNHUzV wzUuptZpb7CagrGETDafd7qUvqq7WH9BzZUHLbksg0m0ZwtsHuLseBZ3GGDmS6Dz Eoxd9KArb1F7dpmAh1k4rdQuAjrlyDqFP+xTli+sn9h0FmxtNQGTVc4K/mbYGpLm eLXK94KYnyVuF19g3CFDVEa7UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsJ0O5F aMAopRc/jqVfPaYXuiPKMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoTI18looQuOYS4LaRpKZqeeZNzfkaInAZdTizbBLbqaZ6fLf8bFzD 0y7pu519phOHYnk5n6IGCTO+Zx8WQiGp2axAVAPxsPbZmJtJ22SXQTJJQsZfjGxe I6uMHhvnZHWvlXDrr8PMCrIJqonVWBYh6zIPh+ZaBDi+f5qBJsqM2CpY9iT5yPy6 u5bACUFX27KdDxs+hUoHrv4mM9nC0+uIa0970hWYclhWby8jmRyCOAM3goWmAPOj fZO6UttLmQKthL4phZT0RgzTcSZoqWC9nAtWEPTsWkLNmsp7Ab90U1AxOg0mv4Mw CdonkdUEKerFqPm1zdBevWoazGK9PxEa -----END CERTIFICATE-----Generated at Fri Dec 12 08:02:36 2025 by rpki-client