This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: 0xQJb9aga8mn4Rrh5KboBD4+3EMw03NqBVxD5y0KOyc= Subject key identifier: 5B:7B:9B:5D:AC:76:58:D4:95:CE:D0:2F:00:F8:6E:18:0A:58:09:94 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 82 Signing time: Tue 23 Dec 2025 05:37:20 +0000 Manifest this update: Tue 23 Dec 2025 05:37:19 +0000 Manifest next update: Tue 30 Dec 2025 05:37:19 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: nX0qrabOnXRayW9PI+DlYkZHjgPmNh4rvs0REH80slA=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Dec 2025 05:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: Dec 23 05:37:19 2025 GMT Not After : Dec 30 05:37:19 2025 GMT Subject: CN=694a2a8f-90d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:22:d7:ea:b3:54:ab:4b:5e:3e:e9:6b:70:7f: 18:12:7a:d5:18:1d:58:05:a3:b4:c0:a9:ef:4e:c5: 63:96:fe:04:87:48:01:0c:13:5e:84:36:cd:33:e8: ae:5f:a2:aa:fe:79:ce:09:52:cb:d7:48:85:13:51: bd:5e:c5:bc:d7:ea:7b:47:0f:6f:6f:b9:0f:94:39: cb:15:d6:68:23:19:ab:e6:33:92:e9:46:2a:21:08: 34:a3:7c:7f:b3:9c:26:f7:f6:84:6e:7c:ef:70:f1: c3:47:22:e4:c5:ea:79:aa:e2:ff:d7:f3:9b:2b:79: ce:75:16:7d:94:77:6b:0f:96:f2:72:36:e2:26:80: b8:d6:99:1e:8a:bb:b3:ad:a3:11:a2:95:c2:bc:22: 6e:85:79:2a:d3:a1:37:2d:af:d8:2d:6e:1d:e3:44: 3d:96:fa:1b:f8:a8:7a:59:31:8f:3d:33:a3:6f:af: c0:85:e4:05:01:fa:ce:a0:90:8a:be:95:94:28:84: 07:83:da:f5:fb:fa:7f:b7:f0:b9:0c:fb:36:c3:5a: f5:c1:15:f4:c9:45:86:fd:10:2f:59:cf:04:99:dc: e8:e6:78:ff:a9:ec:82:c4:63:9e:ce:97:36:98:7b: 50:27:00:7a:ea:ed:c6:b9:9f:b3:76:a1:9e:d8:09: e4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7B:9B:5D:AC:76:58:D4:95:CE:D0:2F:00:F8:6E:18:0A:58:09:94 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:3b:5c:e4:dc:a6:f9:7d:96:4a:ab:41:3f:66:c2:c4:af:ed: dc:df:b1:ef:3d:23:e8:a2:fd:7d:8c:fb:0e:06:23:61:46:f9: 16:76:f2:d2:e9:eb:74:30:f2:12:46:ec:da:b6:07:5a:a8:0e: 76:98:44:91:7b:f7:e3:bd:76:f6:1e:99:a8:c2:36:54:ce:94: cb:2b:eb:bb:49:0c:02:17:a6:00:88:bd:82:0d:1a:90:7b:47: e9:cc:16:24:a1:64:4e:72:b7:08:57:fe:a5:29:60:86:67:d9: 29:43:e5:46:2f:aa:23:c7:ae:13:9c:40:68:99:49:e1:5f:a7: 5d:dd:ef:1a:3f:50:be:62:29:c3:b0:ab:cd:22:62:7e:cb:79: 03:cf:80:a3:e1:a4:f4:71:1d:f7:4c:0f:5d:88:1b:4f:ef:14: d0:a6:f1:c3:10:ef:3e:df:e5:46:1c:e8:7c:15:84:4c:d4:6d: 13:74:60:a3:71:08:6e:0b:38:4b:2a:ce:63:b1:ac:c1:34:2c: f7:fc:dd:33:f6:40:b8:fb:50:74:36:a4:40:f0:a9:8c:63:11: c4:98:65:8e:b6:cb:1c:3d:9e:a4:42:3e:36:08:65:fc:e4:c6: 6d:be:cb:a8:4e:81:35:14:a2:ff:8a:14:17:96:20:56:79:43: 9d:9b:07:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxNTYxMTAvBgNVBAUTKEFDODdGRDY5MENDNkIyNEM3OEZDM0Y3MUQzMkRERTBE QkEyODkwREIwHhcNMjUxMjIzMDUzNzE5WhcNMjUxMjMwMDUzNzE5WjAYMRYwFAYD VQQDDA02OTRhMmE4Zi05MGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yLX6rNUq0tePulrcH8YEnrVGB1YBaO0wKnvTsVjlv4Eh0gBDBNehDbNM+iu X6Kq/nnOCVLL10iFE1G9XsW81+p7Rw9vb7kPlDnLFdZoIxmr5jOS6UYqIQg0o3x/ s5wm9/aEbnzvcPHDRyLkxep5quL/1/ObK3nOdRZ9lHdrD5bycjbiJoC41pkeiruz raMRopXCvCJuhXkq06E3La/YLW4d40Q9lvob+Kh6WTGPPTOjb6/AheQFAfrOoJCK vpWUKIQHg9r1+/p/t/C5DPs2w1r1wRX0yUWG/RAvWc8Emdzo5nj/qeyCxGOezpc2 mHtQJwB66u3GuZ+zdqGe2AnksQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFt7m12s dljUlc7QLwD4bhgKWAmUMB8GA1UdIwQYMBaAFKyH/WkMxrJMePw/cdMt3g26KJDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzE1Ni8xNDJFNjRERTFD MDMxMUYwQTVEQzE1NTZDNEY5QUUwMi9ySWY5YVF6R3NreDRfRDl4MHkzZURib29r TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzE1Ni8xNDJFNjRERTFDMDMxMUYwQTVEQzE1NTZDNEY5QUUwMi9ySWY5YVF6R3Nr eDRfRDl4MHkzZURib29rTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiO1zk3Kb5fZZKq0E/ZsLEr+3c37HvPSPoov19jPsOBiNhRvkWdvLS 6et0MPISRuzatgdaqA52mESRe/fjvXb2HpmowjZUzpTLK+u7SQwCF6YAiL2CDRqQ e0fpzBYkoWROcrcIV/6lKWCGZ9kpQ+VGL6ojx64TnEBomUnhX6dd3e8aP1C+YinD sKvNImJ+y3kDz4Cj4aT0cR33TA9diBtP7xTQpvHDEO8+3+VGHOh8FYRM1G0TdGCj cQhuCzhLKs5jsazBNCz3/N0z9kC4+1B0NqRA8KmMYxHEmGWOtsscPZ6kQj42CGX8 5MZtvsuoToE1FKL/ihQXliBWeUOdmwdP -----END CERTIFICATE-----Generated at Wed Dec 24 14:12:21 2025 by rpki-client