This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: JK60QHHOo3ik5YLl+UacZvtH31q++qBtnG/xXZ+p5x0= Subject key identifier: E7:8A:FA:53:01:4A:12:4C:2B:90:B1:2A:69:C5:90:9B:6D:1B:7D:19 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0567 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0562 Signing time: Mon 22 Dec 2025 22:29:15 +0000 Manifest this update: Mon 22 Dec 2025 22:29:15 +0000 Manifest next update: Mon 29 Dec 2025 22:29:15 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: spC2oKa1n9N5+nrZ+K4UZ4EW90ravZzb5XA+WzkSv6c=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PG236be1E8/bdu91IiVOrP0tedgETPtMVawr3zFO1mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 22:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Dec 22 22:29:15 2025 GMT Not After : Dec 29 22:29:15 2025 GMT Subject: CN=6949c63b-80cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:7b:0b:73:30:f6:c9:6e:b2:60:34:5e:11:89: 50:8f:f6:59:53:73:60:23:4e:d8:8f:c2:60:ff:f2: a9:ee:25:c0:42:0e:4c:4c:d1:75:01:04:54:b8:db: 41:2d:50:73:36:bc:7a:6f:d8:5d:5d:a2:09:15:9f: 8b:81:2b:a0:d2:e7:c7:4c:d6:3e:ef:22:5c:06:cd: 2e:72:28:7b:00:30:12:f9:a5:4c:67:ff:76:36:06: d1:5f:3e:45:73:74:a7:47:6c:31:0c:e7:49:0d:71: 1e:0d:ef:8b:0a:fc:5a:46:0d:4d:a1:8f:45:bf:92: 70:06:d2:e5:be:76:3f:52:bc:5b:2e:c6:99:d7:0c: 5a:7f:8d:4e:3c:4d:96:cd:f2:ec:28:d1:cd:eb:ff: f8:76:04:ab:2f:a2:3f:cc:de:8c:33:ea:72:be:19: 72:d2:c7:10:ef:39:88:70:63:2d:a2:bc:9d:93:ec: 5c:f2:39:19:8b:7f:8b:41:d5:fb:d3:f4:d3:f1:d8: 60:c7:8d:aa:84:c0:57:d7:6d:b9:b4:ba:23:9e:a5: 9e:8c:fe:e8:f4:7a:3a:40:82:77:5c:f5:d5:d7:40: 88:30:18:a6:30:bf:5e:43:b3:f8:e2:80:69:41:57: 5a:cd:ef:b6:50:4f:cb:4b:92:2e:b3:f8:66:eb:dc: 65:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:8A:FA:53:01:4A:12:4C:2B:90:B1:2A:69:C5:90:9B:6D:1B:7D:19 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:d3:4c:68:34:e5:8d:02:5d:90:33:cb:c3:29:e9:bb:93:cc: b6:db:28:d7:32:87:ed:f5:32:78:f8:94:db:f1:25:2e:fc:63: 07:82:2f:56:e2:ab:9a:b6:9d:32:8c:51:29:ff:a5:9d:ac:f2: a0:9a:09:7f:db:72:a7:7e:d0:17:df:52:d9:03:27:49:2a:79: f9:56:6f:28:26:37:d0:e1:de:d6:4c:b1:9c:8a:b2:73:13:07: cd:81:75:f8:c7:cf:99:8c:b9:ff:a7:6e:56:0e:1e:c6:db:f3: c3:e0:f3:6c:62:0d:1a:91:55:4c:21:10:76:a3:e4:f2:a0:23: 9c:09:47:2d:5d:9f:a0:8e:5b:7d:d1:16:bd:08:3a:66:85:ca: 28:ff:17:29:0e:87:ae:00:6e:7c:b5:a3:94:1b:3d:03:8b:bf: 47:3d:ff:50:8a:37:76:78:29:16:e1:74:bd:e9:12:ec:4e:a0: 77:b4:e8:9e:5d:e7:c7:b1:23:3c:b2:67:9e:b9:77:d8:f3:9c: cf:b0:69:1f:18:a0:a8:bf:70:d3:17:75:41:55:0d:1d:bf:7f: e6:bf:0d:54:31:f3:67:f6:dc:c9:b9:b8:20:00:91:07:3d:e5: f2:87:7c:6d:76:23:25:e2:d2:13:3b:36:dc:4e:46:67:0b:83: b7:88:57:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUxMjIyMjIyOTE1WhcNMjUxMjI5MjIyOTE1WjAYMRYwFAYD VQQDDA02OTQ5YzYzYi04MGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53sLczD2yW6yYDReEYlQj/ZZU3NgI07Yj8Jg//Kp7iXAQg5MTNF1AQRUuNtB LVBzNrx6b9hdXaIJFZ+LgSug0ufHTNY+7yJcBs0ucih7ADAS+aVMZ/92NgbRXz5F c3SnR2wxDOdJDXEeDe+LCvxaRg1NoY9Fv5JwBtLlvnY/UrxbLsaZ1wxaf41OPE2W zfLsKNHN6//4dgSrL6I/zN6MM+pyvhly0scQ7zmIcGMtorydk+xc8jkZi3+LQdX7 0/TT8dhgx42qhMBX1225tLojnqWejP7o9Ho6QIJ3XPXV10CIMBimML9eQ7P44oBp QVdaze+2UE/LS5Ius/hm69xlNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeK+lMB ShJMK5CxKmnFkJttG30ZMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJ00xoNOWNAl2QM8vDKem7k8y22yjXMoft9TJ4+JTb8SUu/GMHgi9W 4quatp0yjFEp/6WdrPKgmgl/23KnftAX31LZAydJKnn5Vm8oJjfQ4d7WTLGcirJz EwfNgXX4x8+ZjLn/p25WDh7G2/PD4PNsYg0akVVMIRB2o+TyoCOcCUctXZ+gjlt9 0Ra9CDpmhcoo/xcpDoeuAG58taOUGz0Di79HPf9Qijd2eCkW4XS96RLsTqB3tOie XefHsSM8smeeuXfY85zPsGkfGKCov3DTF3VBVQ0dv3/mvw1UMfNn9tzJubggAJEH PeXyh3xtdiMl4tITOzbcTkZnC4O3iFd3 -----END CERTIFICATE-----Generated at Wed Dec 24 04:08:07 2025 by rpki-client