This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: Vf1gP5a3/Ega/cVvgARoYuyIY+7mP0xNQc5eWCqaMZc= Subject key identifier: 9F:39:6E:2F:BC:21:28:05:5B:E2:AB:CC:6F:C8:B6:D3:3F:D7:EE:E6 Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 77 Signing time: Tue 23 Dec 2025 05:41:09 +0000 Manifest this update: Tue 23 Dec 2025 05:41:08 +0000 Manifest next update: Tue 30 Dec 2025 05:41:08 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: AWoand1AwGlltwfj7mYM6mhZjmOMOJEblQUBO8hmu+U=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Dec 23 05:41:08 2025 GMT Not After : Dec 30 05:41:08 2025 GMT Subject: CN=694a2b74-1ab3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:90:f5:99:5b:ec:dd:0a:00:59:0f:59:de:da: b0:5b:51:18:a5:f0:57:34:0e:9a:5c:34:af:a7:fe: 89:0d:43:f4:d9:51:e9:20:30:fb:83:4f:3a:1b:5c: 3c:d7:ac:9c:9a:49:da:67:11:40:17:5e:e4:8a:f7: 20:af:0f:6d:ec:ce:32:76:1a:b0:93:26:6d:22:4e: f0:36:ee:27:20:44:3b:7d:4e:59:e7:98:a0:d0:1e: d7:d8:b8:05:3c:3b:81:a9:05:cf:0d:dd:91:f5:42: 62:ba:1a:bf:b2:b1:45:61:c4:4e:4b:b4:e7:96:31: 0c:a4:9f:cd:76:d7:76:7f:8c:18:47:38:1b:b3:de: 74:e8:eb:5d:40:4d:1e:5a:c9:79:93:e6:44:af:94: 70:ee:e3:11:c2:e9:df:d4:f6:32:cf:e3:57:60:fd: d0:0a:da:02:a0:b7:e5:59:a2:12:49:31:73:db:34: 2d:32:39:ed:75:3f:b7:ed:85:d4:dc:90:72:65:88: 75:6d:b2:df:9d:36:54:51:1c:7f:fd:89:87:12:1c: 9b:41:8f:e4:fd:2f:17:1d:5e:fb:1c:cc:66:b2:22: 26:6a:45:66:53:8f:d9:a9:20:b5:9b:8f:a7:94:d6: e7:cc:06:7d:3a:42:2d:db:bc:fd:66:6e:d1:da:66: 4a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:39:6E:2F:BC:21:28:05:5B:E2:AB:CC:6F:C8:B6:D3:3F:D7:EE:E6 X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:c8:76:db:12:f0:7b:f4:db:5e:14:97:f6:0b:aa:ee:55:a1: 2d:6e:87:59:c2:d4:e0:87:a1:1d:12:2c:c1:21:1d:d2:a6:38: d2:c9:66:20:4f:02:ea:d5:de:a3:31:71:66:d9:82:9f:09:df: ab:eb:98:b8:25:25:d5:e8:56:52:a3:e2:c5:69:89:39:df:00: 3d:05:c9:2c:4d:90:a9:27:0d:d2:cd:64:67:46:4f:4e:b8:91: a5:d2:13:16:22:22:cf:23:74:ce:15:d9:99:2e:bf:d4:3d:cd: 27:f5:10:1e:94:67:01:46:7d:06:36:ed:34:34:a1:fd:3f:b0: dd:18:12:7c:67:3c:1a:0e:d2:3c:23:3d:2b:db:fd:19:e5:39: eb:e8:8b:70:a2:ef:fe:cd:33:bc:55:41:15:69:4f:f3:86:a1: c3:98:ef:a0:47:85:39:30:cb:04:91:b7:c8:40:34:bb:f7:3a: 0b:9a:b4:dd:bf:45:28:bc:93:83:c8:af:be:da:c3:1e:39:90: 44:da:bf:e1:9e:cd:40:a6:4a:da:86:ee:40:03:e6:af:0f:34: 7f:67:24:b0:3f:e2:70:0a:13:5a:6f:e3:a5:df:b7:ce:a6:03: d5:d8:c2:a7:2d:6c:87:8b:be:68:18:97:68:a4:6f:e0:7d:c2: 74:1e:e2:63 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTEyMjMwNTQxMDhaFw0yNTEyMzAwNTQxMDhaMBgxFjAUBgNV BAMMDTY5NGEyYjc0LTFhYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9kPWZW+zdCgBZD1ne2rBbURil8Fc0DppcNK+n/okNQ/TZUekgMPuDTzobXDzX rJyaSdpnEUAXXuSK9yCvD23szjJ2GrCTJm0iTvA27icgRDt9TlnnmKDQHtfYuAU8 O4GpBc8N3ZH1QmK6Gr+ysUVhxE5LtOeWMQykn81213Z/jBhHOBuz3nTo611ATR5a yXmT5kSvlHDu4xHC6d/U9jLP41dg/dAK2gKgt+VZohJJMXPbNC0yOe11P7fthdTc kHJliHVtst+dNlRRHH/9iYcSHJtBj+T9LxcdXvsczGayIiZqRWZTj9mpILWbj6eU 1ufMBn06Qi3bvP1mbtHaZkrlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnzluL7wh KAVb4qvMb8i20z/X7uYwHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH3IdtsS8Hv0214Ul/YLqu5VoS1uh1nC1OCHoR0SLMEhHdKmONLJZiBP AurV3qMxcWbZgp8J36vrmLglJdXoVlKj4sVpiTnfAD0FySxNkKknDdLNZGdGT064 kaXSExYiIs8jdM4V2Zkuv9Q9zSf1EB6UZwFGfQY27TQ0of0/sN0YEnxnPBoO0jwj PSvb/RnlOevoi3Ci7/7NM7xVQRVpT/OGocOY76BHhTkwywSRt8hANLv3OguatN2/ RSi8k4PIr77awx45kETav+GezUCmStqG7kAD5q8PNH9nJLA/4nAKE1pv46Xft86m A9XYwqctbIeLvmgYl2ikb+B9wnQe4mM= -----END CERTIFICATE-----Generated at Wed Dec 24 14:11:33 2025 by rpki-client