This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: g7mrbK0Dv/xnOt1BrJRF7DNcVvGn3PkmkGkD+LDVPYQ= Subject key identifier: 6E:A8:33:68:E9:E8:32:4A:0B:79:5C:99:3D:A2:76:95:7C:29:FA:FB Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 020D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0202 Signing time: Tue 23 Dec 2025 01:30:55 +0000 Manifest this update: Tue 23 Dec 2025 01:30:55 +0000 Manifest next update: Tue 30 Dec 2025 01:30:55 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: ujyvsT9MHU0A7bBGh0ulu61CFWeT9xo1nLmmzcWINz0=) 2: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 3: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 01:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 525 (0x20d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Dec 23 01:30:55 2025 GMT Not After : Dec 30 01:30:55 2025 GMT Subject: CN=6949f0cf-f2bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5e:b5:21:90:c6:1d:ef:aa:1a:b5:69:ea:26: fa:ac:4a:83:23:10:9b:58:17:38:cc:f7:1e:be:bb: af:36:0c:0c:fe:a4:53:d2:79:59:26:f1:2e:f5:05: 1f:d1:44:cd:b7:23:e9:d0:0b:ef:12:64:80:b5:49: 97:84:c1:97:03:5f:ad:ef:2c:c3:81:dd:12:c7:b7: 93:7e:c4:36:9b:e8:91:89:10:fd:53:ce:32:90:72: d7:15:31:b9:e6:f4:24:91:9c:63:0b:05:82:62:97: ef:1c:79:00:53:ed:ce:ca:1f:86:05:95:47:2d:23: 77:16:5a:7d:7d:6f:0f:c6:c0:5e:1c:35:2a:76:03: 59:bd:30:7a:32:3a:26:7f:28:28:2d:a5:88:cb:00: 15:ea:2f:b2:08:88:9b:d0:5b:a0:07:a9:6d:75:a8: d2:b4:1c:e1:c4:5b:21:2e:bb:85:a2:94:69:d6:c0: ad:c6:c9:a4:a3:9c:4e:6d:4f:9b:43:10:43:4a:c2: a2:41:5c:fc:ab:e3:46:6f:39:07:ce:77:e3:02:36: 29:5c:b6:a5:46:29:ce:06:ff:c1:4e:10:d0:c3:6b: 57:46:f4:a2:97:5b:a8:81:5d:60:79:78:e3:9c:5c: 1c:e3:e8:e1:08:25:c9:aa:45:cb:10:f4:da:07:56: 73:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A8:33:68:E9:E8:32:4A:0B:79:5C:99:3D:A2:76:95:7C:29:FA:FB X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a2:cf:dd:49:ac:49:5a:c9:b6:29:c9:54:24:7e:0b:21:26: ec:0d:cf:7a:00:a4:07:55:da:2f:40:c6:63:db:22:e4:af:98: 60:83:f9:60:2e:19:a3:3f:48:e2:b7:e4:73:33:b0:94:ed:50: 58:f9:5c:68:0e:32:47:24:04:2c:67:e3:f4:ad:bc:76:89:d5: ba:cc:4a:8c:ab:51:2c:97:9f:1f:03:da:0c:c9:9e:ef:1d:ce: 35:29:de:ed:cf:4e:16:c8:33:5c:6d:66:0a:0b:f9:4c:ba:e5: 48:fe:dd:d0:44:cb:cc:cb:d8:32:4c:0c:66:55:e7:4d:0f:e6: 3a:8f:26:0c:29:2c:ce:02:cd:a1:0e:20:f1:15:fc:c0:a6:d7: 94:b7:63:f2:ae:28:85:3e:ae:10:a3:7f:18:65:f3:e0:9f:8f: 3e:98:d0:a6:c7:1d:94:86:47:44:48:85:f3:77:06:51:c3:5d: bd:07:86:4c:cf:91:27:c9:61:bb:14:bd:21:46:74:40:18:bf: 83:47:62:b6:7a:c7:77:0d:f1:dd:88:66:83:a6:56:f8:52:ea: 06:a4:c2:32:6c:ca:c9:13:bb:9d:89:e3:3c:fb:8d:50:e5:b9: 51:83:7f:10:93:31:71:af:29:8d:e5:7b:26:57:b5:15:29:83: 12:e1:ba:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUxMjIzMDEzMDU1WhcNMjUxMjMwMDEzMDU1WjAYMRYwFAYD VQQDDA02OTQ5ZjBjZi1mMmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoV61IZDGHe+qGrVp6ib6rEqDIxCbWBc4zPcevruvNgwM/qRT0nlZJvEu9QUf 0UTNtyPp0AvvEmSAtUmXhMGXA1+t7yzDgd0Sx7eTfsQ2m+iRiRD9U84ykHLXFTG5 5vQkkZxjCwWCYpfvHHkAU+3Oyh+GBZVHLSN3Flp9fW8PxsBeHDUqdgNZvTB6Mjom fygoLaWIywAV6i+yCIib0FugB6ltdajStBzhxFshLruFopRp1sCtxsmko5xObU+b QxBDSsKiQVz8q+NGbzkHznfjAjYpXLalRinOBv/BThDQw2tXRvSil1uogV1geXjj nFwc4+jhCCXJqkXLEPTaB1ZzOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6oM2jp 6DJKC3lcmT2idpV8Kfr7MB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsos/dSaxJWsm2KclUJH4LISbsDc96AKQHVdovQMZj2yLkr5hgg/lg LhmjP0jit+RzM7CU7VBY+VxoDjJHJAQsZ+P0rbx2idW6zEqMq1Esl58fA9oMyZ7v Hc41Kd7tz04WyDNcbWYKC/lMuuVI/t3QRMvMy9gyTAxmVedND+Y6jyYMKSzOAs2h DiDxFfzApteUt2PyriiFPq4Qo38YZfPgn48+mNCmxx2UhkdESIXzdwZRw129B4ZM z5EnyWG7FL0hRnRAGL+DR2K2esd3DfHdiGaDplb4UuoGpMIybMrJE7udieM8+41Q 5blRg38QkzFxrymN5XsmV7UVKYMS4bpA -----END CERTIFICATE-----Generated at Tue Dec 23 09:43:36 2025 by rpki-client