This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: 1jd/vfo8iN4Sp8wKh7H7uVOb6XtcMffYKbwSCEeuCKY= Subject key identifier: 55:C2:87:53:38:11:7A:E0:FA:FA:47:1C:93:AE:FB:B9:F3:6A:FA:E7 Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0B3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0B33 Signing time: Mon 22 Dec 2025 18:44:53 +0000 Manifest this update: Mon 22 Dec 2025 18:44:53 +0000 Manifest next update: Mon 29 Dec 2025 18:44:53 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: RMQWTrI8pdD4k1kUxUBMN/zK+9c2KO18GuXeMJ9e0JY=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: vRrkQ11gFoedPJsbqh7nQv1lr6X8LYa0tpYVg51dxDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2875 (0xb3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Dec 22 18:44:53 2025 GMT Not After : Dec 29 18:44:53 2025 GMT Subject: CN=694991a5-3b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:22:67:84:a3:e8:f6:26:50:2c:48:76:31:58: 5d:05:71:f6:7b:49:01:0f:0d:12:0e:b6:80:f2:31: c4:ad:4a:5f:65:9a:7e:37:c0:14:33:f0:d7:98:fd: be:ee:46:15:5c:ba:00:91:9e:98:5b:4e:01:b6:77: 18:7a:b0:e9:ce:7e:43:56:f8:5d:5d:23:72:d4:5e: 50:ef:26:97:4d:22:29:19:c4:a3:67:8c:ec:0d:ba: a5:eb:e7:3b:ae:26:3a:c2:9f:df:9f:03:01:9d:d7: b8:25:31:df:e5:a1:17:b5:22:6b:a6:79:74:64:ad: 0b:ec:51:36:bc:c7:e9:94:70:d3:24:b5:7d:d7:56: ea:b7:5f:94:45:f0:9e:51:ae:6c:e3:fa:3b:a2:09: 8d:a5:56:d0:b5:b2:2e:49:eb:9d:a2:62:78:9c:3c: 88:5e:13:2e:69:4d:ca:9c:21:19:24:e6:a9:e2:bf: dd:6a:0a:88:2b:b1:54:2d:24:40:6b:22:17:ff:4a: ab:ff:ac:11:28:fd:9d:7d:e1:ef:4f:25:91:42:3b: bd:1a:63:d0:dd:78:42:ee:8b:56:eb:a0:29:19:f7: 08:dc:c6:50:d0:ee:a4:c7:ec:58:8e:1d:d9:5c:88: 78:ee:53:9e:ba:63:b7:27:ab:f4:fd:f0:0b:db:ff: 0c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C2:87:53:38:11:7A:E0:FA:FA:47:1C:93:AE:FB:B9:F3:6A:FA:E7 X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f3:c6:21:b7:94:95:2e:93:c9:5f:7d:28:43:85:0e:a2:16: 28:c8:bc:fc:ec:ad:12:ba:d8:f0:dc:e4:70:a9:e9:d0:bf:13: 24:22:1d:c7:c3:65:3b:56:96:ce:9c:52:7a:47:6b:05:04:2a: c4:f1:b2:0d:66:d9:60:1c:3e:33:dd:df:29:cf:46:ac:91:17: 15:36:2e:46:87:96:bc:36:4b:85:68:37:a7:30:32:20:67:15: 76:5f:e8:44:ee:14:07:19:44:c2:ca:c8:81:ec:89:35:55:ba: 00:d5:3b:fd:47:2b:30:bf:f8:30:8d:f7:e6:f1:45:88:58:34: e6:9d:2b:ee:ef:df:e3:c8:d6:37:65:23:54:bf:d8:b7:6e:3a: 55:43:ea:24:97:0b:e1:de:92:c7:56:c3:5f:97:6e:3b:31:5d: 89:cf:77:b0:fc:77:9e:70:02:3c:50:bb:fc:47:7e:26:20:99: 7d:51:ca:c9:c2:d4:93:6c:08:18:9a:cc:66:13:25:4c:f7:36: bf:b6:4d:1d:a0:9d:06:71:21:6d:20:8f:ee:ea:09:8e:73:65: 68:14:e5:b0:d9:8e:b3:51:07:9e:6b:ce:27:72:c2:dd:32:6d: ef:c2:12:b0:ba:32:b5:a2:0d:a4:a6:0d:3b:54:2f:2c:75:4f: f4:7b:07:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjUxMjIyMTg0NDUzWhcNMjUxMjI5MTg0NDUzWjAYMRYwFAYD VQQDDA02OTQ5OTFhNS0zYjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSJnhKPo9iZQLEh2MVhdBXH2e0kBDw0SDraA8jHErUpfZZp+N8AUM/DXmP2+ 7kYVXLoAkZ6YW04BtncYerDpzn5DVvhdXSNy1F5Q7yaXTSIpGcSjZ4zsDbql6+c7 riY6wp/fnwMBnde4JTHf5aEXtSJrpnl0ZK0L7FE2vMfplHDTJLV911bqt1+URfCe Ua5s4/o7ogmNpVbQtbIuSeudomJ4nDyIXhMuaU3KnCEZJOap4r/dagqIK7FULSRA ayIX/0qr/6wRKP2dfeHvTyWRQju9GmPQ3XhC7otW66ApGfcI3MZQ0O6kx+xYjh3Z XIh47lOeumO3J6v0/fAL2/8McQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXCh1M4 EXrg+vpHHJOu+7nzavrnMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa88Yht5SVLpPJX30oQ4UOohYoyLz87K0Sutjw3ORwqenQvxMkIh3H w2U7VpbOnFJ6R2sFBCrE8bINZtlgHD4z3d8pz0askRcVNi5Gh5a8NkuFaDenMDIg ZxV2X+hE7hQHGUTCysiB7Ik1VboA1Tv9Ryswv/gwjffm8UWIWDTmnSvu79/jyNY3 ZSNUv9i3bjpVQ+oklwvh3pLHVsNfl247MV2Jz3ew/HeecAI8ULv8R34mIJl9UcrJ wtSTbAgYmsxmEyVM9za/tk0doJ0GcSFtII/u6gmOc2VoFOWw2Y6zUQeea84ncsLd Mm3vwhKwujK1og2kpg07VC8sdU/0ewf6 -----END CERTIFICATE-----Generated at Wed Dec 24 14:14:18 2025 by rpki-client