This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: WSEf0Igf3SpoXjXhjToPtnG2d93Ma2QrznHfJykNdNM= Subject key identifier: 5D:64:52:8D:D4:35:5A:32:7D:FA:A2:03:4F:5F:26:8D:1C:50:63:3F Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: EA Signing time: Sun 21 Dec 2025 04:37:25 +0000 Manifest this update: Sun 21 Dec 2025 04:37:25 +0000 Manifest next update: Sun 28 Dec 2025 04:37:25 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: CGEbOUl11RAqAvlOUTUXEujQLfcycRqX/4bmflCllzc=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: 2KKCuwPRzvtxCM2tfqPBKgcx+LBlA+mjEQsE3gjTcg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 04:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Dec 21 04:37:25 2025 GMT Not After : Dec 28 04:37:25 2025 GMT Subject: CN=69477985-ee08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:49:48:a7:11:c5:c0:e7:f0:68:0c:8b:21:c6: fb:2f:a5:ff:70:b4:38:d1:50:28:90:49:91:e1:b3: 36:cf:6c:11:ac:3a:70:b7:ec:d8:f5:15:d9:e9:41: c0:73:b0:18:e9:ee:c1:fe:44:d1:d2:fc:17:43:4c: 87:19:9d:a1:e6:06:ad:dc:3a:78:da:66:ff:bd:cf: 3a:d5:f7:ef:54:71:7c:0e:d9:80:a9:7e:d0:ae:9a: 72:2d:36:ca:03:9f:6a:f8:5b:53:c2:eb:f9:3c:22: 7e:71:3f:9f:4e:db:f6:bf:be:b4:5c:ed:de:aa:a2: 86:fe:37:82:c9:39:dc:93:e2:5b:ec:36:70:10:cd: 60:45:cf:18:ea:64:5e:ac:24:2e:8e:f2:24:79:24: 66:c7:9a:b8:6a:4f:51:36:c4:15:95:75:0f:fa:2d: 5c:44:88:ff:d3:4a:58:7b:09:d3:1f:3c:56:b1:5c: 78:c6:09:19:f9:20:63:a3:6c:d1:4e:9e:c1:35:20: 4e:6f:7f:5d:ed:e1:97:35:76:1e:6b:89:eb:18:5c: 0d:2b:82:12:71:a9:82:eb:a5:8d:b1:a1:32:8b:d6: 32:3a:db:9e:66:83:0f:64:a9:d9:07:13:71:e8:1a: 64:1b:7c:af:98:c6:ec:4e:02:73:62:92:eb:a8:55: 04:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:64:52:8D:D4:35:5A:32:7D:FA:A2:03:4F:5F:26:8D:1C:50:63:3F X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:12:e2:d7:91:71:57:af:8b:6a:52:72:87:b7:7d:a9:ce:98: a6:b3:3b:03:08:57:00:20:e1:6a:57:b1:0c:40:b1:26:bc:bc: 00:05:18:a9:d5:7d:8a:cb:c2:e1:b6:6d:e6:83:09:f1:e1:87: 08:76:e3:34:1c:47:da:6d:74:04:11:79:09:76:3a:e4:af:cb: 5f:0c:b8:ab:11:15:97:6c:ba:41:a9:86:a9:49:89:c4:35:0e: a9:d6:2a:c4:37:83:d1:59:a3:e2:98:c4:63:30:43:fa:5b:27: e1:2a:b7:f7:aa:7c:8f:56:ed:e3:ce:10:1f:92:af:41:9b:fa: 3f:ca:37:ea:49:40:a2:3b:0b:0a:f0:12:4a:ae:e3:6c:3c:a8: b5:08:e5:ad:59:d1:67:d1:38:73:f2:9a:ad:3d:18:d1:c0:d5: 67:64:1c:0f:d7:38:2b:5a:fc:70:a1:00:94:83:87:a3:ed:64: b6:01:7b:d1:de:eb:c5:39:ec:c3:d5:be:b8:83:37:58:ff:f0: 38:52:6b:82:44:ca:c4:14:52:1f:a5:ad:02:a8:36:5a:d2:e6: 15:60:7c:07:fb:a1:4c:9e:be:94:22:93:26:cb:98:2f:6f:92: 79:72:ca:47:67:68:8c:3c:25:c0:70:ea:32:05:06:ef:19:9d: dc:41:14:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUxMjIxMDQzNzI1WhcNMjUxMjI4MDQzNzI1WjAYMRYwFAYD VQQDDA02OTQ3Nzk4NS1lZTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3klIpxHFwOfwaAyLIcb7L6X/cLQ40VAokEmR4bM2z2wRrDpwt+zY9RXZ6UHA c7AY6e7B/kTR0vwXQ0yHGZ2h5gat3Dp42mb/vc861ffvVHF8DtmAqX7QrppyLTbK A59q+FtTwuv5PCJ+cT+fTtv2v760XO3eqqKG/jeCyTnck+Jb7DZwEM1gRc8Y6mRe rCQujvIkeSRmx5q4ak9RNsQVlXUP+i1cRIj/00pYewnTHzxWsVx4xgkZ+SBjo2zR Tp7BNSBOb39d7eGXNXYea4nrGFwNK4IScamC66WNsaEyi9YyOtueZoMPZKnZBxNx 6BpkG3yvmMbsTgJzYpLrqFUEtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1kUo3U NVoyffqiA09fJo0cUGM/MB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALEuLXkXFXr4tqUnKHt32pzpimszsDCFcAIOFqV7EMQLEmvLwABRip 1X2Ky8Lhtm3mgwnx4YcIduM0HEfabXQEEXkJdjrkr8tfDLirERWXbLpBqYapSYnE NQ6p1irEN4PRWaPimMRjMEP6WyfhKrf3qnyPVu3jzhAfkq9Bm/o/yjfqSUCiOwsK 8BJKruNsPKi1COWtWdFn0Thz8pqtPRjRwNVnZBwP1zgrWvxwoQCUg4ej7WS2AXvR 3uvFOezD1b64gzdY//A4UmuCRMrEFFIfpa0CqDZa0uYVYHwH+6FMnr6UIpMmy5gv b5J5cspHZ2iMPCXAcOoyBQbvGZ3cQRSz -----END CERTIFICATE-----Generated at Mon Dec 22 15:45:01 2025 by rpki-client