This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft File: cXp42D7DjxcRAnMoE5hEns3RBQA.mft (raw, json) Hash identifier: Y8MaQ9ERZVu/2iB9yup93R7oo2YHf8CuNpI+/ylJsmo= Subject key identifier: 09:66:08:77:2C:D9:57:D7:C5:40:ED:DF:87:1F:AB:7C:54:5F:E9:23 Authority key identifier: 71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 Certificate issuer: /CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft Manifest number: 06A7 Signing time: Mon 22 Dec 2025 21:35:44 +0000 Manifest this update: Mon 22 Dec 2025 21:35:44 +0000 Manifest next update: Mon 29 Dec 2025 21:35:44 +0000 Files and hashes: 1: cXp42D7DjxcRAnMoE5hEns3RBQA.crl (hash: Y9uh72aaoo2pkvF4TkmfGy7TVE7TOb45ggz6YbNV4yM=) 2: B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa (hash: xehlefIOCjN/1m1sil/A3Br1rK2e2Chjm65NVpSEx0A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 21:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168D20, serialNumber=717A78D83EC38F17110273281398449ECDD10500 Validity Not Before: Dec 22 21:35:44 2025 GMT Not After : Dec 29 21:35:44 2025 GMT Subject: CN=6949b9b0-5922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9f:de:47:31:a9:86:27:bd:f4:ea:1a:ee:4a: 11:c6:2f:af:ea:10:54:98:37:07:24:16:69:5e:3e: f3:64:89:f2:56:9b:80:ac:5c:66:a3:de:6d:47:59: ba:11:ce:c7:ab:ac:d8:ca:ca:a3:6b:84:06:03:bc: ad:af:ec:fe:48:7b:8c:0e:39:e3:4c:3a:ec:da:33: a4:c1:04:aa:59:db:3a:6a:d5:a3:bd:ad:f3:fc:5d: a2:2e:89:c4:cb:0b:a6:ce:a0:39:6a:2d:f2:d3:4b: de:82:62:27:40:94:28:60:a7:d1:1c:5b:dd:fb:dc: 1c:a1:6f:6a:b2:e5:a7:f1:31:84:31:eb:91:d4:67: 09:8f:81:c5:4b:4b:4d:fb:f2:1a:a4:8d:a8:47:5c: 3d:59:c1:4e:58:12:ff:2b:dd:b6:79:c9:5d:50:f5: 09:4d:f8:3d:32:10:e7:a4:ec:ef:01:b8:c0:cd:24: 8d:d0:f8:c0:5f:38:82:97:8a:98:e6:b5:e0:18:2f: 08:7c:b8:40:c2:04:6c:3b:ce:0f:36:7b:fa:e1:a8: 55:b5:37:5f:b7:48:c2:c0:bf:cf:47:ad:37:5d:c3: 56:0c:25:db:d8:63:99:c1:ee:71:d7:ad:40:88:4c: d9:d8:62:d0:7d:d4:49:67:34:51:52:20:8e:e7:69: 49:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:66:08:77:2C:D9:57:D7:C5:40:ED:DF:87:1F:AB:7C:54:5F:E9:23 X509v3 Authority Key Identifier: keyid:71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ac:d5:ef:19:dd:df:8d:7c:be:7c:d9:6b:5f:c3:7c:10:09: 81:e2:f1:40:cb:90:fe:b7:c3:18:4e:37:4d:8e:1e:c3:fe:aa: f3:87:78:5a:0f:46:92:f7:d8:d9:05:22:d4:a8:ea:03:1d:4d: 7a:10:cd:64:dd:e9:22:55:a5:8c:e9:79:42:46:24:58:36:1f: a3:82:f1:b6:f9:90:9e:7d:60:7a:70:d8:27:e9:42:ae:bd:07: 1a:16:8f:39:87:0c:10:40:51:d3:f7:af:a2:20:c3:3c:df:a5: 32:6c:97:ea:da:b2:89:22:c4:c0:04:13:67:ef:01:4e:41:0e: d6:da:59:5f:e1:14:b6:db:4d:5a:8a:b1:17:f2:2e:31:56:f0: 03:1f:67:12:45:08:05:fd:fb:30:3e:50:13:15:15:ce:26:0e: 7b:c3:1c:5b:c8:d8:26:ca:04:61:23:92:c4:77:13:e5:2a:d3: db:17:ed:b5:e6:be:7c:59:7b:88:0a:4d:6e:b6:84:d5:f9:e3: 18:50:03:7c:8c:b1:4f:e0:d6:c6:a8:cd:47:19:78:7d:97:32: 2e:5a:d6:c2:72:45:d0:92:1d:75:30:8a:e3:17:a4:54:72:af: 1c:52:ad:e9:1a:f1:f5:95:07:ff:52:38:f8:f4:09:0b:d7:0e: dd:31:2c:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NjhEMjAxMTAvBgNVBAUTKDcxN0E3OEQ4M0VDMzhGMTcxMTAyNzMyODEzOTg0NDlF Q0REMTA1MDAwHhcNMjUxMjIyMjEzNTQ0WhcNMjUxMjI5MjEzNTQ0WjAYMRYwFAYD VQQDDA02OTQ5YjliMC01OTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25/eRzGphie99Ooa7koRxi+v6hBUmDcHJBZpXj7zZInyVpuArFxmo95tR1m6 Ec7Hq6zYysqja4QGA7ytr+z+SHuMDjnjTDrs2jOkwQSqWds6atWjva3z/F2iLonE ywumzqA5ai3y00vegmInQJQoYKfRHFvd+9wcoW9qsuWn8TGEMeuR1GcJj4HFS0tN +/IapI2oR1w9WcFOWBL/K922ecldUPUJTfg9MhDnpOzvAbjAzSSN0PjAXziCl4qY 5rXgGC8IfLhAwgRsO84PNnv64ahVtTdft0jCwL/PR603XcNWDCXb2GOZwe5x161A iEzZ2GLQfdRJZzRRUiCO52lJhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlmCHcs 2VfXxUDt34cfq3xUX+kjMB8GA1UdIwQYMBaAFHF6eNg+w48XEQJzKBOYRJ7N0QUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEQyMC9DMEM2QUU1Qzkz NUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4Y1JBbk1vRTVoRW5zM1JC UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYcDQyRDdEanhjUkFuTW9FNWhFbnMzUkJRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEQyMC9DMEM2QUU1QzkzNUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4 Y1JBbk1vRTVoRW5zM1JCUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAerNXvGd3fjXy+fNlrX8N8EAmB4vFAy5D+t8MYTjdNjh7D/qrzh3ha D0aS99jZBSLUqOoDHU16EM1k3ekiVaWM6XlCRiRYNh+jgvG2+ZCefWB6cNgn6UKu vQcaFo85hwwQQFHT96+iIMM836UybJfq2rKJIsTABBNn7wFOQQ7W2llf4RS2201a irEX8i4xVvADH2cSRQgF/fswPlATFRXOJg57wxxbyNgmygRhI5LEdxPlKtPbF+21 5r58WXuICk1utoTV+eMYUAN8jLFP4NbGqM1HGXh9lzIuWtbCckXQkh11MIrjF6RU cq8cUq3pGvH1lQf/Ujj49AkL1w7dMSw8 -----END CERTIFICATE-----Generated at Wed Dec 24 14:09:41 2025 by rpki-client