This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: 5BEFah20brzVe3dM/cngzaVztajkgzrHzcbu1ppE8Fo= Subject key identifier: F4:8D:60:BC:B9:5E:F6:D3:E6:72:CF:2F:10:C1:6C:DD:A9:4D:61:DF Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 0122 Signing time: Tue 23 Dec 2025 03:42:11 +0000 Manifest this update: Tue 23 Dec 2025 03:42:10 +0000 Manifest next update: Tue 30 Dec 2025 03:42:10 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: JkQQRV+Q/8/q6Az+TYkaWZhfib0Uv3TBzksa+glq2Tw=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 03:42:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Dec 23 03:42:10 2025 GMT Not After : Dec 30 03:42:10 2025 GMT Subject: CN=694a0f93-d363 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b1:d6:6d:9d:b6:03:95:2e:f0:aa:d8:32:bc: 60:04:74:d2:73:91:3c:c1:fa:b8:4f:c8:8b:bc:3d: 84:64:17:76:51:fc:74:18:96:89:cf:d7:70:0d:cb: f0:74:5b:d2:b8:8f:aa:79:7b:71:75:d6:20:51:3c: ae:b4:12:05:f7:a7:3b:89:91:02:82:a7:d4:0b:8e: 9e:b9:b0:13:0e:7e:a8:16:b4:b7:bd:de:a5:06:c0: 30:ce:fd:5f:42:13:9d:1d:04:c9:3d:1b:59:01:47: 12:b8:fd:e3:ea:78:8e:d6:62:16:16:bf:3a:61:4a: 58:c7:8e:0e:81:fc:ae:1f:40:f0:7f:4f:c8:91:9d: c6:3c:e3:00:da:a0:97:03:e8:28:a4:08:97:de:41: 06:f9:b7:fb:f1:83:ae:c5:3d:83:0c:13:62:ba:a8: e3:d1:7d:7e:0b:3f:71:a8:dd:79:cf:c4:9f:ff:24: d3:60:07:fe:e4:d8:18:22:eb:0f:18:43:24:51:ab: d3:83:8e:6a:97:67:36:df:dd:86:b8:a4:bf:9d:08: 92:e5:24:60:96:32:bd:13:1d:2f:55:91:37:20:c4: cc:c7:3b:3f:fc:50:de:48:4e:be:70:8a:eb:cc:92: 98:e6:2b:9d:18:19:e9:86:d8:a5:93:6a:d8:cc:a8: 63:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:8D:60:BC:B9:5E:F6:D3:E6:72:CF:2F:10:C1:6C:DD:A9:4D:61:DF X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:ad:2e:16:cd:09:6c:6f:62:d6:be:45:39:a1:54:32:ca:a1: 3e:92:64:9f:df:cb:c8:2c:e7:49:c0:fd:a3:78:b3:12:e6:56: 48:c3:11:c6:68:17:7e:f8:bb:73:7b:a4:ee:ca:40:14:f4:8e: 5f:71:a3:f4:f2:14:38:cf:20:cd:fd:ef:97:30:3f:11:6c:d4: 42:0d:65:7b:e4:a4:64:d8:89:3a:45:f3:39:96:0a:9a:a1:26: 9b:56:ae:65:f3:9c:3e:dd:23:98:fe:54:f2:9e:52:80:f1:f9: 2e:f1:6f:3c:34:61:07:b0:33:66:43:3d:da:2c:f9:be:c6:1f: e6:fb:5c:2e:7d:41:fb:2e:35:c8:39:28:f0:78:8e:21:6e:a0: aa:70:c0:be:a7:72:90:3b:d2:35:ab:90:40:54:9a:5e:19:49: 5f:64:56:2b:3a:7d:2d:11:3e:b8:69:2a:d4:68:8a:ef:b8:c1: e3:b0:f6:7b:d6:62:3f:ec:36:f2:da:d7:77:2b:fe:cf:96:55: 14:3d:29:27:20:a0:7b:68:55:d3:b2:3b:87:54:b6:e4:cc:5c: b3:e1:f9:a9:e5:07:e9:47:46:09:16:d2:43:0b:9f:7b:fd:5d: df:4e:90:a6:1f:be:b2:d9:1b:a8:36:45:15:e0:12:e8:b9:db: e9:65:80:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUxMjIzMDM0MjEwWhcNMjUxMjMwMDM0MjEwWjAYMRYwFAYD VQQDDA02OTRhMGY5My1kMzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bHWbZ22A5Uu8KrYMrxgBHTSc5E8wfq4T8iLvD2EZBd2Ufx0GJaJz9dwDcvw dFvSuI+qeXtxddYgUTyutBIF96c7iZECgqfUC46eubATDn6oFrS3vd6lBsAwzv1f QhOdHQTJPRtZAUcSuP3j6niO1mIWFr86YUpYx44OgfyuH0Dwf0/IkZ3GPOMA2qCX A+gopAiX3kEG+bf78YOuxT2DDBNiuqjj0X1+Cz9xqN15z8Sf/yTTYAf+5NgYIusP GEMkUavTg45ql2c2392GuKS/nQiS5SRgljK9Ex0vVZE3IMTMxzs//FDeSE6+cIrr zJKY5iudGBnphtilk2rYzKhj7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSNYLy5 XvbT5nLPLxDBbN2pTWHfMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRrS4WzQlsb2LWvkU5oVQyyqE+kmSf38vILOdJwP2jeLMS5lZIwxHG aBd++Ltze6TuykAU9I5fcaP08hQ4zyDN/e+XMD8RbNRCDWV75KRk2Ik6RfM5lgqa oSabVq5l85w+3SOY/lTynlKA8fku8W88NGEHsDNmQz3aLPm+xh/m+1wufUH7LjXI OSjweI4hbqCqcMC+p3KQO9I1q5BAVJpeGUlfZFYrOn0tET64aSrUaIrvuMHjsPZ7 1mI/7Dby2td3K/7PllUUPSknIKB7aFXTsjuHVLbkzFyz4fmp5QfpR0YJFtJDC597 /V3fTpCmH76y2RuoNkUV4BLoudvpZYAf -----END CERTIFICATE-----Generated at Wed Dec 24 14:10:37 2025 by rpki-client