This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: ast7JdEMthvxJrW6l23CY/S8YIGOf+sJlERK4BfOmHk= Subject key identifier: 45:9D:AF:7C:0A:7C:D3:1F:FC:C4:60:89:71:22:F7:CD:A3:0E:E1:86 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B61 Signing time: Mon 22 Dec 2025 18:40:18 +0000 Manifest this update: Mon 22 Dec 2025 18:40:17 +0000 Manifest next update: Mon 29 Dec 2025 18:40:17 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: dafc8NLQiTKpayIc1oLwVD0JWm7fX9OIU95FmenATiY=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: MFAkJWqLTCFjc2AZoDqXIN5GFKdjipOlXptUILZsE5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 18:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2921 (0xb69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Dec 22 18:40:17 2025 GMT Not After : Dec 29 18:40:17 2025 GMT Subject: CN=69499091-23df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4c:6b:f2:21:90:9d:b9:c4:a3:7e:9a:c1:27: ee:e5:34:d0:95:54:79:12:a4:79:92:8a:1e:ec:10: dc:9c:09:10:2c:95:bd:35:e8:4d:e6:21:e8:c0:36: d1:ec:1a:6e:d8:8d:0f:69:e0:8b:3e:59:42:64:58: 7c:43:d5:8a:87:fe:b6:30:b9:37:50:e6:48:78:fd: f3:5b:63:35:bd:80:3a:4d:66:d3:6b:fc:c2:bd:b3: cc:39:86:31:08:23:eb:22:d4:29:06:01:bd:c0:a4: be:08:c9:01:66:e6:36:43:71:eb:0e:2b:f3:5a:a2: a1:8d:4f:38:13:b1:4d:95:4b:3f:f0:21:69:d4:5e: 4d:c3:5c:c1:59:5e:27:35:1d:4f:a1:8b:2f:f1:c4: 88:4d:f9:c7:72:6a:1a:50:5f:98:11:ae:7f:44:b4: a6:b0:68:6d:19:76:d5:4e:d1:44:d5:c6:ec:a7:ab: 47:ed:b1:b5:33:e3:85:ae:95:a2:75:85:b8:41:f7: 90:33:47:41:1b:d7:54:e0:21:9f:76:0b:65:32:73: 1e:d5:b7:eb:cd:eb:30:e1:a5:ec:ea:72:91:ab:d7: 58:f2:52:6e:03:71:88:ed:3f:6f:a8:81:13:7f:b2: 1e:0b:2d:ed:25:f8:81:b3:22:54:8d:4d:a8:92:45: a5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:9D:AF:7C:0A:7C:D3:1F:FC:C4:60:89:71:22:F7:CD:A3:0E:E1:86 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:02:d6:6e:ed:a7:aa:96:84:8b:ac:7d:9a:19:b1:54:04:73: 13:14:28:f3:b8:4a:dd:9c:d9:4f:ce:b7:e7:84:bd:48:28:3c: 76:6c:2c:e5:69:86:74:38:c7:34:c5:ec:74:ac:d2:0f:b1:1a: cd:a6:4c:ba:ce:2c:2a:c7:13:73:35:9a:2b:89:30:b5:12:70: 18:a0:e8:7e:1f:83:50:ef:50:a3:df:71:46:42:bb:ab:10:3d: e9:89:cd:0e:e6:19:92:90:9a:01:5a:21:91:4a:aa:01:98:5a: a1:ed:c7:3e:19:ac:d8:37:86:ed:93:bb:7a:92:ce:b4:48:fe: e7:f7:88:33:a4:93:c5:65:6e:da:c5:66:04:01:59:33:58:a0: 28:d9:f5:3d:8b:c7:da:53:bc:7c:5d:4c:77:d1:f1:ab:ab:ab: be:8a:20:43:d4:73:01:28:12:9c:d2:ac:f5:7a:3f:75:bb:ab: f3:ad:a4:75:43:0e:15:c7:1b:76:24:ba:35:dd:cb:c8:f4:c8: 3e:eb:f9:ae:37:ab:4a:0b:1a:4e:33:85:da:c9:e5:65:d1:72: ec:60:60:f4:14:01:19:22:ac:3e:9d:9f:10:b7:80:43:06:71: 82:76:c7:6d:12:11:85:d2:d3:3a:7f:d5:eb:25:9a:0d:53:17: ef:31:99:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUxMjIyMTg0MDE3WhcNMjUxMjI5MTg0MDE3WjAYMRYwFAYD VQQDDA02OTQ5OTA5MS0yM2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtExr8iGQnbnEo36awSfu5TTQlVR5EqR5kooe7BDcnAkQLJW9NehN5iHowDbR 7Bpu2I0PaeCLPllCZFh8Q9WKh/62MLk3UOZIeP3zW2M1vYA6TWbTa/zCvbPMOYYx CCPrItQpBgG9wKS+CMkBZuY2Q3HrDivzWqKhjU84E7FNlUs/8CFp1F5Nw1zBWV4n NR1PoYsv8cSITfnHcmoaUF+YEa5/RLSmsGhtGXbVTtFE1cbsp6tH7bG1M+OFrpWi dYW4QfeQM0dBG9dU4CGfdgtlMnMe1bfrzesw4aXs6nKRq9dY8lJuA3GI7T9vqIET f7IeCy3tJfiBsyJUjU2okkWlYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWdr3wK fNMf/MRgiXEi982jDuGGMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEAtZu7aeqloSLrH2aGbFUBHMTFCjzuErdnNlPzrfnhL1IKDx2bCzl aYZ0OMc0xex0rNIPsRrNpky6ziwqxxNzNZoriTC1EnAYoOh+H4NQ71Cj33FGQrur ED3pic0O5hmSkJoBWiGRSqoBmFqh7cc+GazYN4btk7t6ks60SP7n94gzpJPFZW7a xWYEAVkzWKAo2fU9i8faU7x8XUx30fGrq6u+iiBD1HMBKBKc0qz1ej91u6vzraR1 Qw4Vxxt2JLo13cvI9Mg+6/muN6tKCxpOM4XayeVl0XLsYGD0FAEZIqw+nZ8Qt4BD BnGCdsdtEhGF0tM6f9XrJZoNUxfvMZmJ -----END CERTIFICATE-----Generated at Wed Dec 24 15:47:25 2025 by rpki-client