This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft File: 9TkpGRnN4USwNO8oiwpjR4PoLH8.mft (raw, json) Hash identifier: gaq+DvBXvloqvLx/SHaF/Sb78jBd30RDhdeeFIKrp6M= Subject key identifier: 71:F9:9A:64:DA:8E:F9:66:30:90:4A:77:EB:66:89:5C:1A:8A:4B:67 Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F Certificate issuer: /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Certificate serial: 04D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft Manifest number: 0495 Signing time: Sat 20 Dec 2025 23:29:27 +0000 Manifest this update: Sat 20 Dec 2025 23:29:27 +0000 Manifest next update: Sat 27 Dec 2025 23:29:27 +0000 Files and hashes: 1: 9TkpGRnN4USwNO8oiwpjR4PoLH8.crl (hash: DNw5KQCzjSAU4ceI6WwFqP5VnCSVfhfl+/2grILiE1g=) 2: 976C4E84F72711EFB800B84BC4F9AE02.roa (hash: yyqYiyN6Yt2drA5esyg23pSPV3UCCGrSIBo6P8TjMZ4=) 3: 06B47656E38A11EFA4DDBC1EC4F9AE02.roa (hash: jw0OS28NBUixcPBkwOHR1vk2bGtDUl1DjQdu4UsyyXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C61B, serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Validity Not Before: Dec 20 23:29:27 2025 GMT Not After : Dec 27 23:29:27 2025 GMT Subject: CN=69473157-4bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cb:22:d2:59:ce:1a:0a:95:46:3b:07:71:a6: fc:d2:8c:72:6c:1e:76:d7:24:f4:40:5e:b5:37:ae: 4f:ec:44:22:a4:b6:12:a3:bf:ff:5e:81:7d:c5:ef: f6:97:39:2e:82:89:bd:d2:57:1e:12:81:18:b6:ea: 45:99:b8:2f:bf:42:bd:1f:1b:97:5d:47:68:0f:78: fc:ad:cd:ac:9d:3e:61:94:70:38:b2:64:df:9b:66: 47:20:58:65:75:82:8b:67:a6:05:2a:61:f6:b3:db: 7a:3f:e7:f2:df:e8:ee:e7:77:a2:d4:da:48:26:32: 0a:37:fe:61:ca:44:51:b2:46:87:27:e2:d4:0a:17: 8e:ef:a4:f6:78:00:16:98:a9:87:9c:63:a4:8e:0a: b1:f3:ce:b9:ae:7e:53:e9:4d:66:72:14:a5:19:12: c9:4f:5a:cd:8a:27:b9:eb:1c:40:67:4e:5c:8f:a6: 95:a3:28:cb:03:aa:07:c1:b9:70:bd:23:63:f4:bb: 7e:da:b9:f3:5b:10:18:13:57:27:40:a5:24:5a:af: d9:89:f5:ce:8c:5b:d2:f8:55:c8:c4:9c:eb:98:b7: 14:0e:c0:7f:58:0f:b8:f6:11:51:ec:8a:ee:0f:91: 8a:f1:a0:53:36:b4:36:bd:4a:c6:53:b6:dc:0f:2f: 43:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F9:9A:64:DA:8E:F9:66:30:90:4A:77:EB:66:89:5C:1A:8A:4B:67 X509v3 Authority Key Identifier: keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:58:f9:fc:27:73:6d:92:0a:79:04:b4:9b:d1:26:c7:34:d3: 25:97:ad:f6:3d:94:90:43:17:e4:c4:3b:96:35:c7:67:f1:2c: 11:dd:4f:2a:e8:86:d2:17:1d:4e:37:b2:da:98:83:b1:4f:a6: 13:eb:8c:a9:8a:27:8d:eb:10:1d:65:bd:3f:89:df:eb:0b:76: f5:07:e7:90:15:46:90:cf:e3:fd:f5:2b:d1:4e:7d:fa:7b:0f: a0:5f:ab:80:5d:80:46:28:3e:2b:d8:de:5b:8b:25:76:33:f6: 47:8d:f5:06:a6:29:02:53:63:31:b5:66:a2:4e:fb:62:ec:cd: 78:f8:d5:57:e4:ee:05:70:07:42:9b:bf:a0:14:a9:85:b9:6c: ac:39:9f:d5:97:0f:ee:d4:87:56:5c:d1:4f:9c:31:71:72:ac: 7c:98:61:ae:9d:c9:8a:6e:42:b0:52:3f:22:32:52:4e:44:0e: f8:85:fb:44:85:57:df:22:ad:1a:ba:30:9d:10:ed:d8:ac:30: cb:d8:6b:9d:53:26:45:51:bb:cc:71:dd:04:f1:4b:93:e3:ef: 5b:77:cc:fa:65:77:32:88:31:1e:a6:a6:de:08:b7:f5:2d:34: 76:78:7a:33:8f:cd:f4:b4:72:22:33:c5:b4:0f:eb:c8:8e:3b: 40:c4:e1:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3 ODNFODJDN0YwHhcNMjUxMjIwMjMyOTI3WhcNMjUxMjI3MjMyOTI3WjAYMRYwFAYD VQQDDA02OTQ3MzE1Ny00YmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMsi0lnOGgqVRjsHcab80oxybB521yT0QF61N65P7EQipLYSo7//XoF9xe/2 lzkugom90lceEoEYtupFmbgvv0K9HxuXXUdoD3j8rc2snT5hlHA4smTfm2ZHIFhl dYKLZ6YFKmH2s9t6P+fy3+ju53ei1NpIJjIKN/5hykRRskaHJ+LUCheO76T2eAAW mKmHnGOkjgqx8865rn5T6U1mchSlGRLJT1rNiie56xxAZ05cj6aVoyjLA6oHwblw vSNj9Lt+2rnzWxAYE1cnQKUkWq/ZifXOjFvS+FXIxJzrmLcUDsB/WA+49hFR7Iru D5GK8aBTNrQ2vUrGU7bcDy9DUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH5mmTa jvlmMJBKd+tmiVwaiktnMB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzYxQi81MUVGRkEzMDgyNjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRV U3dOTzhvaXdwalI0UG9MSDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0WPn8J3Ntkgp5BLSb0SbHNNMll632PZSQQxfkxDuWNcdn8SwR3U8q 6IbSFx1ON7LamIOxT6YT64ypiieN6xAdZb0/id/rC3b1B+eQFUaQz+P99SvRTn36 ew+gX6uAXYBGKD4r2N5biyV2M/ZHjfUGpikCU2MxtWaiTvti7M14+NVX5O4FcAdC m7+gFKmFuWysOZ/Vlw/u1IdWXNFPnDFxcqx8mGGuncmKbkKwUj8iMlJORA74hftE hVffIq0aujCdEO3YrDDL2GudUyZFUbvMcd0E8UuT4+9bd8z6ZXcyiDEepqbeCLf1 LTR2eHozj830tHIiM8W0D+vIjjtAxOEq -----END CERTIFICATE-----Generated at Sun Dec 21 17:53:48 2025 by rpki-client