This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: d0PiN4pLj+zyXvwoFUonBVR0aXfA17Fhwmz+3n53RvA= Subject key identifier: 1A:A0:C7:90:43:95:7E:1F:47:F6:D6:D9:BE:D2:11:4B:B7:82:26:30 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 0209 Signing time: Tue 23 Dec 2025 01:22:45 +0000 Manifest this update: Tue 23 Dec 2025 01:22:45 +0000 Manifest next update: Tue 30 Dec 2025 01:22:45 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: iSfWitFFF4jb6LdL6Q/FZCJR6wuN217EPwSaAZQ+8CA=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Dec 23 01:22:45 2025 GMT Not After : Dec 30 01:22:45 2025 GMT Subject: CN=6949eee5-98a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ef:1e:4e:2d:7b:cc:9d:a6:6c:6f:cb:9d:48: 20:2a:80:03:73:a7:83:e6:36:5b:60:a5:5c:40:6c: 3c:87:3e:21:fa:3b:b6:07:29:4b:f6:a4:6f:e8:10: bb:3f:d2:84:0f:a0:21:54:55:01:16:6c:dd:ef:23: 39:82:e5:e8:59:f9:68:7e:dc:28:3d:33:c7:a5:97: 20:94:d8:39:ce:89:22:cc:42:42:bb:30:4e:b4:47: 27:c0:28:c8:35:ff:db:4a:b9:5d:09:7c:73:b9:5b: 59:9c:e5:3c:a9:59:8b:0f:eb:eb:83:91:ef:45:02: b4:1a:94:37:77:13:6b:fb:90:19:3c:6e:4d:11:fd: 81:f4:ce:8e:52:e1:51:19:44:da:a4:27:cd:09:87: dd:5a:88:25:0e:50:5e:6c:04:cd:7e:f2:a7:34:66: f3:61:e0:3e:07:c2:89:e3:a0:85:7c:9e:f8:e5:17: ed:27:77:66:ee:55:45:b2:8d:45:e8:81:b8:2b:d3: b0:fd:6c:45:dd:77:76:f9:90:b7:53:44:be:f0:c3: 35:65:09:08:22:b5:23:6c:30:3d:20:8d:4b:4b:82: 8a:fd:12:09:f9:ae:4a:bf:6a:8a:60:4b:65:71:67: 4e:ec:02:d9:87:56:43:b2:be:8b:07:68:aa:16:61: 73:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:A0:C7:90:43:95:7E:1F:47:F6:D6:D9:BE:D2:11:4B:B7:82:26:30 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:d3:76:64:9d:d0:d7:06:2f:5f:2c:52:af:b4:7a:d9:5c:3d: ea:c2:ba:20:15:f7:00:6c:86:5b:43:93:90:8f:4e:3f:60:35: 57:5e:fe:76:54:13:59:d9:7c:5c:0e:2c:57:78:81:b1:bd:df: a2:d5:b5:62:d7:ef:0a:f4:3c:ab:a0:c9:ff:72:0d:b7:f7:c9: 22:33:f6:33:9e:32:8c:0e:73:91:bc:a7:29:d6:3b:91:b3:1b: 2e:06:84:bd:e8:31:bc:31:b3:95:16:f9:da:bd:5e:e9:8e:78: 84:b2:1b:38:5d:33:9a:9a:84:b5:ba:d8:f5:90:7a:b8:bb:a3: 06:aa:71:ba:88:a4:15:60:f2:60:df:65:62:64:25:9b:f8:ae: 40:af:a3:6a:01:39:c6:f4:1f:89:04:0f:50:08:be:62:40:a3: 1f:42:c0:e4:4e:84:be:33:19:de:e3:ca:14:26:f8:fa:0a:08: 27:73:0a:cc:ee:9f:29:88:10:06:75:46:ec:3f:4e:31:a6:f6: 17:c5:98:c7:6c:88:9f:a2:1c:c5:3e:34:d3:69:db:6e:12:0d: a8:d2:14:3e:a2:86:7b:e2:74:33:45:ca:41:7b:16:fd:cc:c7: b2:86:43:62:42:10:2c:c3:a8:05:e4:f8:1b:cb:e6:48:0e:06: ba:00:60:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUxMjIzMDEyMjQ1WhcNMjUxMjMwMDEyMjQ1WjAYMRYwFAYD VQQDDA02OTQ5ZWVlNS05OGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuu8eTi17zJ2mbG/LnUggKoADc6eD5jZbYKVcQGw8hz4h+ju2BylL9qRv6BC7 P9KED6AhVFUBFmzd7yM5guXoWfloftwoPTPHpZcglNg5zokizEJCuzBOtEcnwCjI Nf/bSrldCXxzuVtZnOU8qVmLD+vrg5HvRQK0GpQ3dxNr+5AZPG5NEf2B9M6OUuFR GUTapCfNCYfdWoglDlBebATNfvKnNGbzYeA+B8KJ46CFfJ745RftJ3dm7lVFso1F 6IG4K9Ow/WxF3Xd2+ZC3U0S+8MM1ZQkIIrUjbDA9II1LS4KK/RIJ+a5Kv2qKYEtl cWdO7ALZh1ZDsr6LB2iqFmFz3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqgx5BD lX4fR/bW2b7SEUu3giYwMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr03ZkndDXBi9fLFKvtHrZXD3qwrogFfcAbIZbQ5OQj04/YDVXXv52 VBNZ2XxcDixXeIGxvd+i1bVi1+8K9DyroMn/cg2398kiM/YznjKMDnORvKcp1juR sxsuBoS96DG8MbOVFvnavV7pjniEshs4XTOamoS1utj1kHq4u6MGqnG6iKQVYPJg 32ViZCWb+K5Ar6NqATnG9B+JBA9QCL5iQKMfQsDkToS+Mxne48oUJvj6CggncwrM 7p8piBAGdUbsP04xpvYXxZjHbIifohzFPjTTadtuEg2o0hQ+ooZ74nQzRcpBexb9 zMeyhkNiQhAsw6gF5Pgby+ZIDga6AGCj -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:35 2025 by rpki-client