This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft File: k-Wm1UXgDFaegN4yLrINV1d1BXU.mft (raw, json) Hash identifier: X2ET3uQrukFkIF9tT6CrHdWVC9j7r64UM7hC/PbpWb0= Subject key identifier: 0C:EF:59:4E:9E:84:59:8F:93:09:BB:38:43:61:2D:4A:02:DE:70:38 Authority key identifier: 93:E5:A6:D5:45:E0:0C:56:9E:80:DE:32:2E:B2:0D:57:57:75:05:75 Certificate issuer: /CN=A9171A47/serialNumber=93E5A6D545E00C569E80DE322EB20D5757750575 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-Wm1UXgDFaegN4yLrINV1d1BXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft Manifest number: 33 Signing time: Tue 23 Dec 2025 06:29:09 +0000 Manifest this update: Tue 23 Dec 2025 06:29:08 +0000 Manifest next update: Tue 30 Dec 2025 06:29:08 +0000 Files and hashes: 1: k-Wm1UXgDFaegN4yLrINV1d1BXU.crl (hash: e2k24wprGgBmyy7IZ/a85RBcD1kzvxmVGmHR1UrZJEU=) 2: 1805E4389DE011F0B44FDA76C4F9AE02.roa (hash: BVg645b1ajGzj9xavjn4EeQ2fjsg53CBWQRexvbeM1s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.crl rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-Wm1UXgDFaegN4yLrINV1d1BXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 06:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A47, serialNumber=93E5A6D545E00C569E80DE322EB20D5757750575 Validity Not Before: Dec 23 06:29:08 2025 GMT Not After : Dec 30 06:29:08 2025 GMT Subject: CN=694a36b4-1f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:15:b4:0c:eb:18:58:2b:71:fa:ce:fc:77:6f: 91:ad:44:30:d7:42:70:d6:85:a1:a8:67:c2:08:d2: 56:e0:1f:11:cc:80:39:f5:d9:7f:b2:fd:06:92:c2: 4a:d1:26:be:67:5f:b3:2a:3b:df:44:c6:5e:dd:e1: 69:da:a8:b9:91:90:4c:01:d9:91:42:b9:09:ba:ce: a4:62:a0:39:7f:07:41:a4:b8:dd:e1:f2:bd:2b:66: 35:cb:f8:c6:d2:32:81:99:1f:e8:05:73:6b:df:74: 9a:85:ec:30:2c:35:54:57:81:5e:18:23:00:fa:9f: ce:55:a3:04:71:11:2a:3a:76:dd:61:9a:49:ac:f5: 58:93:aa:66:09:a2:7a:ac:b7:2c:85:ea:09:2b:11: 70:f1:d5:41:12:db:74:e1:37:47:7a:59:6b:4a:f5: d3:1f:4e:29:6b:e2:68:8d:a0:aa:7f:fa:8f:c8:fa: 74:b4:99:32:6b:11:97:e6:fe:e6:36:27:e0:88:36: 06:3e:6d:29:59:51:7a:1e:8b:a0:94:2d:a3:73:38: 35:d8:d9:ff:16:e2:79:32:06:ec:80:4e:29:e9:ca: 53:d1:df:c1:ef:47:69:60:36:ba:f1:f3:42:52:8d: 34:a9:aa:9d:85:c5:23:72:09:4c:44:ec:3f:73:71: f0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:EF:59:4E:9E:84:59:8F:93:09:BB:38:43:61:2D:4A:02:DE:70:38 X509v3 Authority Key Identifier: keyid:93:E5:A6:D5:45:E0:0C:56:9E:80:DE:32:2E:B2:0D:57:57:75:05:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-Wm1UXgDFaegN4yLrINV1d1BXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A47/97C5A0149DD611F0A4315E0AC4F9AE02/k-Wm1UXgDFaegN4yLrINV1d1BXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:bd:63:7a:c2:54:63:20:da:33:28:a5:7e:29:8b:9d:28:5a: 40:2b:f3:24:40:8d:02:15:3e:78:5a:4c:15:fa:84:97:b5:6c: d6:d3:46:40:25:66:18:dc:4c:fe:cc:b8:61:27:c0:36:41:64: 1e:39:17:1e:4e:56:94:26:0e:fe:44:66:9b:b8:b4:43:24:80: 82:85:f2:4f:a2:cc:25:1a:c2:94:2e:e9:98:83:b3:45:c4:1c: cc:90:0e:0c:a7:9b:96:f4:0a:b5:bf:44:36:2f:17:a6:5f:d2: 31:7c:d4:9f:1a:08:f8:86:4f:2d:59:1a:50:25:f5:45:d8:da: af:b7:a6:c6:9a:24:75:fe:59:1b:77:0c:29:e4:02:72:a9:32: b3:fd:89:47:eb:cd:36:3a:03:de:b9:1e:0d:6e:52:aa:88:61: a2:87:05:a8:b5:40:de:ba:c8:c7:91:5a:d0:ee:47:7c:5c:d5: e9:21:a8:70:0e:1d:dd:9b:c9:d5:3a:44:f9:1e:f2:ce:ab:ee: 81:3f:c4:1c:43:73:ee:01:cd:3e:74:10:d3:8e:07:73:44:c9: b1:72:82:1e:3f:7c:02:8d:d1:78:5c:26:2b:0b:df:1a:03:5b: 7a:73:0f:37:f8:2c:fa:3e:64:d9:87:a1:c9:c8:a5:75:8f:f4: a2:62:d7:39 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MUE0NzExMC8GA1UEBRMoOTNFNUE2RDU0NUUwMEM1NjlFODBERTMyMkVCMjBENTc1 Nzc1MDU3NTAeFw0yNTEyMjMwNjI5MDhaFw0yNTEyMzAwNjI5MDhaMBgxFjAUBgNV BAMMDTY5NGEzNmI0LTFmN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUFbQM6xhYK3H6zvx3b5GtRDDXQnDWhaGoZ8II0lbgHxHMgDn12X+y/QaSwkrR Jr5nX7MqO99Exl7d4WnaqLmRkEwB2ZFCuQm6zqRioDl/B0GkuN3h8r0rZjXL+MbS MoGZH+gFc2vfdJqF7DAsNVRXgV4YIwD6n85VowRxESo6dt1hmkms9ViTqmYJonqs tyyF6gkrEXDx1UES23ThN0d6WWtK9dMfTilr4miNoKp/+o/I+nS0mTJrEZfm/uY2 J+CINgY+bSlZUXoei6CULaNzODXY2f8W4nkyBuyATinpylPR38HvR2lgNrrx80JS jTSpqp2FxSNyCUxE7D9zcfBXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDO9ZTp6E WY+TCbs4Q2EtSgLecDgwHwYDVR0jBBgwFoAUk+Wm1UXgDFaegN4yLrINV1d1BXUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxQTQ3Lzk3QzVBMDE0OURE NjExRjBBNDMxNUUwQUM0RjlBRTAyL2stV20xVVhnREZhZWdONHlMcklOVjFkMUJY VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvay1XbTFVWGdERmFlZ040eUxySU5WMWQxQlhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx QTQ3Lzk3QzVBMDE0OURENjExRjBBNDMxNUUwQUM0RjlBRTAyL2stV20xVVhnREZh ZWdONHlMcklOVjFkMUJYVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJC9Y3rCVGMg2jMopX4pi50oWkAr8yRAjQIVPnhaTBX6hJe1bNbTRkAl ZhjcTP7MuGEnwDZBZB45Fx5OVpQmDv5EZpu4tEMkgIKF8k+izCUawpQu6ZiDs0XE HMyQDgynm5b0CrW/RDYvF6Zf0jF81J8aCPiGTy1ZGlAl9UXY2q+3psaaJHX+WRt3 DCnkAnKpMrP9iUfrzTY6A965Hg1uUqqIYaKHBai1QN66yMeRWtDuR3xc1ekhqHAO Hd2bydU6RPke8s6r7oE/xBxDc+4BzT50ENOOB3NEybFygh4/fAKN0XhcJisL3xoD W3pzDzf4LPo+ZNmHocnIpXWP9KJi1zk= -----END CERTIFICATE-----Generated at Wed Dec 24 15:46:44 2025 by rpki-client