This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: NzVF/7Ci8JHuz0Q5lrHubURvCTtWozeOK/Nz+wW52YU= Subject key identifier: DE:85:25:F7:C1:8B:47:0D:AC:A1:A0:9B:1B:B4:BF:D3:72:4B:76:98 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 242F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 2400 Signing time: Wed 24 Dec 2025 15:39:35 +0000 Manifest this update: Wed 24 Dec 2025 15:39:35 +0000 Manifest next update: Wed 31 Dec 2025 15:39:35 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: u8LnxqAYhNcgJs4RSs3ujJ/4wvXMNDANKzSDjxIc1O0=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9263 (0x242f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Dec 24 15:39:35 2025 GMT Not After : Dec 31 15:39:35 2025 GMT Subject: CN=694c0937-30bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2a:e5:7b:20:6f:cf:73:b4:b5:06:66:f2:57: b6:87:4a:47:e3:35:96:9c:9d:ca:cd:80:4e:cb:46: 1b:74:6e:5f:88:a3:43:9b:f3:48:a3:a2:d6:e2:6c: 45:78:60:8c:1a:5b:01:dd:c6:e5:99:68:7e:89:7d: 5d:63:77:94:c2:2d:cf:83:d7:54:cc:02:7a:68:62: d9:4a:79:6a:60:42:be:53:2c:2c:49:b1:05:1b:9b: 73:27:ac:b5:21:ac:0d:49:59:b3:f1:87:3c:88:50: b0:71:9b:90:18:a7:b5:c4:36:f7:80:a0:5b:e4:a9: 41:8b:dd:0a:0e:dd:8c:46:b0:48:7a:d2:6b:e9:ea: 35:b5:16:f9:cb:3a:d2:cb:a6:36:0e:4c:14:4d:a9: e1:d8:0a:b5:88:a4:ec:d3:28:3e:f1:b0:04:2b:52: 2f:77:40:54:f9:fb:5d:51:ee:e2:92:22:cd:11:ec: 39:2e:4c:4a:9d:e5:05:a2:63:a7:cb:1d:a1:cb:ac: bf:d2:d1:83:0a:83:9f:ff:1b:e6:66:4b:57:f2:af: 81:1f:fa:4b:6a:fa:c1:41:fd:f9:dc:c7:93:7a:15: 5e:5f:33:7c:3c:4e:3a:f8:8d:87:07:15:93:f3:c3: a9:e8:97:e2:31:ba:2e:27:0c:7d:6a:7c:33:c5:49: e9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:85:25:F7:C1:8B:47:0D:AC:A1:A0:9B:1B:B4:BF:D3:72:4B:76:98 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:dc:b8:bb:ca:32:3c:50:70:3c:00:76:68:8d:62:e3:dd:6c: 8d:c0:ad:00:60:83:75:d5:04:2b:3e:4d:94:d2:9f:c0:58:2a: 2b:2c:97:d1:ce:9d:ed:ba:a8:0b:86:fa:73:31:6f:cf:1d:cc: a5:86:6c:50:6b:84:8c:5a:a3:c1:0f:17:3a:ab:b6:c3:a1:ad: 4b:e0:fa:88:42:2f:91:cb:7f:e0:80:46:39:e9:1c:b0:4f:b0: 92:8a:23:8f:59:02:4e:76:75:70:9b:f7:09:ed:0b:3d:36:65: 1d:b4:f5:ec:ea:42:16:19:ff:f1:b8:5d:e4:9b:00:3a:4d:2a: 1f:31:9a:86:6e:19:c4:12:7a:89:1a:b5:be:13:ab:58:e1:10: 29:a9:ef:ea:a8:9c:11:44:bd:84:52:d6:70:fb:f6:9b:66:92: 97:e9:f4:64:34:37:6a:a1:a6:f2:20:d6:d0:b7:5d:f8:88:f2: 63:fb:7f:b7:55:9d:5a:fe:15:e6:12:53:28:d9:a5:68:91:99: a0:b0:ab:8b:b8:f4:9f:ec:5a:81:1d:f8:3f:71:a2:63:1a:3b: 4b:f2:2e:7d:44:63:e8:76:12:f1:23:f8:0c:3d:b9:23:d3:66: b1:1f:60:21:5e:26:db:87:08:be:33:46:d4:c9:ad:f1:da:ae: 97:46:9d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUxMjI0MTUzOTM1WhcNMjUxMjMxMTUzOTM1WjAYMRYwFAYD VQQDDA02OTRjMDkzNy0zMGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SrleyBvz3O0tQZm8le2h0pH4zWWnJ3KzYBOy0YbdG5fiKNDm/NIo6LW4mxF eGCMGlsB3cblmWh+iX1dY3eUwi3Pg9dUzAJ6aGLZSnlqYEK+UywsSbEFG5tzJ6y1 IawNSVmz8Yc8iFCwcZuQGKe1xDb3gKBb5KlBi90KDt2MRrBIetJr6eo1tRb5yzrS y6Y2DkwUTanh2Aq1iKTs0yg+8bAEK1Ivd0BU+ftdUe7ikiLNEew5LkxKneUFomOn yx2hy6y/0tGDCoOf/xvmZktX8q+BH/pLavrBQf353MeTehVeXzN8PE46+I2HBxWT 88Op6JfiMbouJwx9anwzxUnp8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6FJffB i0cNrKGgmxu0v9NyS3aYMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp3Li7yjI8UHA8AHZojWLj3WyNwK0AYIN11QQrPk2U0p/AWCorLJfR zp3tuqgLhvpzMW/PHcylhmxQa4SMWqPBDxc6q7bDoa1L4PqIQi+Ry3/ggEY56Ryw T7CSiiOPWQJOdnVwm/cJ7Qs9NmUdtPXs6kIWGf/xuF3kmwA6TSofMZqGbhnEEnqJ GrW+E6tY4RApqe/qqJwRRL2EUtZw+/abZpKX6fRkNDdqoabyINbQt134iPJj+3+3 VZ1a/hXmElMo2aVokZmgsKuLuPSf7FqBHfg/caJjGjtL8i59RGPodhLxI/gMPbkj 02axH2AhXibbhwi+M0bUya3x2q6XRp0F -----END CERTIFICATE-----Generated at Wed Dec 24 19:32:15 2025 by rpki-client