This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: RN5rNcl8BnxZr0hjka65avKErDgrktAaU2oIMwU4hu4= Subject key identifier: 14:E7:BB:A2:AA:63:BB:6B:C9:FB:CB:C8:34:9D:AD:7B:0F:93:33:B1 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 0273 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 026F Signing time: Tue 23 Dec 2025 00:36:46 +0000 Manifest this update: Tue 23 Dec 2025 00:36:45 +0000 Manifest next update: Tue 30 Dec 2025 00:36:45 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: w8P9hGU85UVmywXoK22cyXV0o8LLBWTv/YuO8qHhB48=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: R3jRDvm0E8vyU2n+jY+lrRNs85d0z5lzmVh9QqpC5jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 00:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Dec 23 00:36:45 2025 GMT Not After : Dec 30 00:36:45 2025 GMT Subject: CN=6949e41e-f403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:b9:7c:20:60:fd:4a:bc:15:b0:50:9d:91:fb: 6c:09:5c:13:8c:ec:61:c9:d5:85:0b:a9:64:60:73: e5:24:4d:e5:3f:3b:e9:48:82:fa:7c:9b:95:a4:77: 7d:50:2a:26:8f:01:41:e2:7a:b9:3e:f8:47:35:19: 6a:db:87:d2:73:2b:66:8f:d2:58:e5:34:68:4b:12: 79:50:45:e5:54:f6:c9:e0:6e:df:c1:6e:cc:36:b4: 12:da:c9:6f:f9:ee:d0:9c:ef:d8:54:d4:03:bd:ac: 28:4d:ba:81:07:46:0d:0a:e1:dc:d9:0b:57:69:5a: 08:4f:bd:3a:94:12:33:8c:bd:e9:e1:ca:21:1d:1a: ca:93:51:36:1d:2c:07:cb:c7:3c:9d:8b:8d:0d:40: 4e:93:46:6c:dc:b1:88:3a:4e:d8:35:67:8d:e0:6f: 2c:26:14:d9:c8:14:58:26:8e:94:52:ff:e6:a0:d6: a5:8b:bc:64:5f:9a:cd:6a:86:0a:7a:9b:41:ba:8b: 45:e6:d0:df:ae:99:f3:86:5b:ae:17:78:67:4f:bf: cc:92:1f:4e:a4:05:ad:1f:7f:eb:ca:3f:7d:59:cc: 81:f3:db:d7:ec:e8:c9:08:5d:ea:e8:60:a9:20:31: cb:0e:8f:cb:6d:6a:7a:25:44:a6:b1:08:aa:d5:86: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E7:BB:A2:AA:63:BB:6B:C9:FB:CB:C8:34:9D:AD:7B:0F:93:33:B1 X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:87:e7:a6:ba:a1:1b:2a:75:95:e3:b9:c1:f5:e8:05:fb:cc: e6:d4:b3:06:68:d3:1f:b8:a2:7b:aa:1d:8f:b1:be:24:d2:22: da:79:0e:35:83:c3:87:da:e9:95:54:fe:20:1b:74:2a:0d:ed: a8:31:e6:ca:b8:47:ef:0e:6d:c9:68:94:34:a6:42:2c:64:ba: 78:d1:37:0a:56:c7:31:f3:7f:e5:24:7a:5e:a8:87:8b:cd:39: 42:52:86:05:83:96:29:12:bd:08:f1:92:3c:18:f1:50:71:59: 00:b0:dc:2d:49:af:52:46:bc:b2:ea:83:a4:62:98:c3:94:40: 38:69:cb:dd:19:53:c9:e2:76:53:1e:67:b2:60:a1:1c:bd:08: 3b:35:ed:71:f5:9f:2f:10:1b:eb:0c:24:06:75:26:09:8e:ce: 49:78:80:10:b1:f3:96:58:46:91:af:c6:c9:c4:98:95:ce:41: dc:e9:71:86:72:d2:75:8b:83:67:ae:cd:80:eb:4b:cc:3e:3b: 87:79:44:55:7c:9d:c9:a6:78:cb:7d:82:7a:de:2e:d0:a5:dc: be:9b:5c:76:32:d9:44:11:a1:89:ee:6d:50:aa:be:f5:71:69: 56:ad:1e:b1:bb:1b:a8:61:2b:be:70:4e:c7:26:b5:a7:de:45: 75:15:19:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjUxMjIzMDAzNjQ1WhcNMjUxMjMwMDAzNjQ1WjAYMRYwFAYD VQQDDA02OTQ5ZTQxZS1mNDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh7l8IGD9SrwVsFCdkftsCVwTjOxhydWFC6lkYHPlJE3lPzvpSIL6fJuVpHd9 UComjwFB4nq5PvhHNRlq24fScytmj9JY5TRoSxJ5UEXlVPbJ4G7fwW7MNrQS2slv +e7QnO/YVNQDvawoTbqBB0YNCuHc2QtXaVoIT706lBIzjL3p4cohHRrKk1E2HSwH y8c8nYuNDUBOk0Zs3LGIOk7YNWeN4G8sJhTZyBRYJo6UUv/moNali7xkX5rNaoYK eptBuotF5tDfrpnzhluuF3hnT7/Mkh9OpAWtH3/ryj99WcyB89vX7OjJCF3q6GCp IDHLDo/LbWp6JUSmsQiq1YZsAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTnu6Kq Y7tryfvLyDSdrXsPkzOxMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9h+emuqEbKnWV47nB9egF+8zm1LMGaNMfuKJ7qh2Psb4k0iLaeQ41 g8OH2umVVP4gG3QqDe2oMebKuEfvDm3JaJQ0pkIsZLp40TcKVscx83/lJHpeqIeL zTlCUoYFg5YpEr0I8ZI8GPFQcVkAsNwtSa9SRryy6oOkYpjDlEA4acvdGVPJ4nZT HmeyYKEcvQg7Ne1x9Z8vEBvrDCQGdSYJjs5JeIAQsfOWWEaRr8bJxJiVzkHc6XGG ctJ1i4Nnrs2A60vMPjuHeURVfJ3JpnjLfYJ63i7Qpdy+m1x2MtlEEaGJ7m1Qqr71 cWlWrR6xuxuoYSu+cE7HJrWn3kV1FRnU -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:29 2025 by rpki-client