This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft File: 9ZvGR-kMztyU6oWmLrjrGL0DUms.mft (raw, json) Hash identifier: clQ+h4A1uoooABrDMz/b60NLk2cFek2NuN4QJtugkcU= Subject key identifier: EE:5B:AB:27:D7:37:C0:DE:D2:86:F3:BF:14:01:F1:E0:B1:25:0C:EF Authority key identifier: F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B Certificate issuer: /CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Certificate serial: 0873 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft Manifest number: 0864 Signing time: Mon 22 Dec 2025 20:02:21 +0000 Manifest this update: Mon 22 Dec 2025 20:02:21 +0000 Manifest next update: Mon 29 Dec 2025 20:02:21 +0000 Files and hashes: 1: 9ZvGR-kMztyU6oWmLrjrGL0DUms.crl (hash: QvXjuaSMH9td23qmlmhmNA0im2S/ZbEiUR7QNMVxclI=) 2: EED16B2CEC4211EABC227339C4F9AE02.roa (hash: s2s36tPsVayQvyzrmiPTLM0ItU8BPdhPyK3m7KjQ7po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 20:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2163 (0x873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CFD2, serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Validity Not Before: Dec 22 20:02:21 2025 GMT Not After : Dec 29 20:02:21 2025 GMT Subject: CN=6949a3cd-4cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9c:53:77:d8:21:32:1f:14:53:6b:14:7a:08: a6:fa:6a:a6:8d:e2:ca:49:c7:6a:b8:f6:42:64:db: 36:01:98:0f:6f:e3:9f:8d:4b:a9:04:0b:39:51:80: f3:82:55:56:da:5b:51:15:af:3d:af:9c:af:ac:6b: a8:68:6a:39:a0:f3:3e:8f:00:9e:05:c1:3e:e6:1e: a7:32:de:85:c4:04:b6:71:03:af:e6:e5:be:7e:da: 86:0c:62:e3:e7:74:d3:ba:05:06:76:4c:a1:8b:30: bb:5a:69:58:ea:66:7d:50:00:22:02:dd:c3:da:34: 41:57:ef:ee:13:ab:fd:48:a6:7f:fd:f2:ec:0e:48: ce:bb:7d:c3:b2:ae:20:e6:f1:fc:fd:d3:27:95:bc: d9:a9:8c:73:de:8c:be:4d:fb:cb:bb:a8:3e:ef:21: ff:4e:93:d7:58:51:93:8e:8e:3c:56:0c:41:e4:42: 45:18:82:58:2d:c0:7e:68:2a:1c:16:17:6d:45:50: b9:98:4c:1b:88:9f:63:c4:f2:85:ff:89:95:10:d0: 3a:c3:6c:26:66:83:9c:c2:b5:f9:ed:14:89:c6:55: ef:e4:90:7e:81:eb:d1:53:55:f7:f9:62:4b:3b:c3: f4:59:38:f3:71:e3:27:2f:83:5e:b4:ec:6e:a0:51: 98:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:5B:AB:27:D7:37:C0:DE:D2:86:F3:BF:14:01:F1:E0:B1:25:0C:EF X509v3 Authority Key Identifier: keyid:F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:35:9a:b1:cb:55:1c:8e:59:12:57:e9:6c:9d:0a:0d:ac:27: 2c:5f:93:1d:98:34:38:a6:18:69:ff:93:5a:16:aa:4e:fc:0a: d4:2a:03:e0:f7:b8:16:0e:5c:e0:2a:1a:9e:72:c1:a9:d6:d4: 51:fa:6c:50:37:1c:49:7f:4e:f4:1d:dc:f6:d7:67:d3:32:f2: b6:f7:92:83:cb:0a:4a:af:a9:d3:2f:84:a9:55:8d:0f:1a:7c: ff:e7:9a:80:76:7b:ad:03:0c:03:68:1d:32:aa:54:5a:0e:51: 8e:1c:88:1f:e4:b2:79:5d:2c:50:e1:00:df:f0:8b:35:26:96: e3:b9:66:04:a9:fc:99:ad:0f:be:76:99:41:85:c6:77:1a:e8: d3:26:fa:bc:1d:0c:db:1b:a0:07:d3:37:d8:1a:b4:d2:71:3f: 37:5f:55:88:1b:2d:02:ac:61:13:fc:85:99:9b:25:4b:d2:95: 73:fb:a5:b5:e9:ae:e9:dd:cd:7c:81:40:78:1b:f4:16:f2:21: b0:b4:92:c2:e2:ff:96:40:98:b7:8c:a1:10:13:0d:22:87:7b: 2f:b6:73:66:cd:e8:f3:d3:ac:99:9c:e2:8f:f2:28:69:94:18: 8c:3f:6b:22:57:4a:80:3b:d8:a9:6a:d1:25:1b:a6:4a:3e:c4: b3:5d:e0:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NGRDIxMTAvBgNVBAUTKEY1OUJDNjQ3RTkwQ0NFREM5NEVBODVBNjJFQjhFQjE4 QkQwMzUyNkIwHhcNMjUxMjIyMjAwMjIxWhcNMjUxMjI5MjAwMjIxWjAYMRYwFAYD VQQDDA02OTQ5YTNjZC00Y2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJxTd9ghMh8UU2sUegim+mqmjeLKScdquPZCZNs2AZgPb+OfjUupBAs5UYDz glVW2ltRFa89r5yvrGuoaGo5oPM+jwCeBcE+5h6nMt6FxAS2cQOv5uW+ftqGDGLj 53TTugUGdkyhizC7WmlY6mZ9UAAiAt3D2jRBV+/uE6v9SKZ//fLsDkjOu33Dsq4g 5vH8/dMnlbzZqYxz3oy+TfvLu6g+7yH/TpPXWFGTjo48VgxB5EJFGIJYLcB+aCoc FhdtRVC5mEwbiJ9jxPKF/4mVENA6w2wmZoOcwrX57RSJxlXv5JB+gevRU1X3+WJL O8P0WTjzceMnL4NetOxuoFGYjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5bqyfX N8De0obzvxQB8eCxJQzvMB8GA1UdIwQYMBaAFPWbxkfpDM7clOqFpi646xi9A1Jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0ZEMi8xRDJBODk0MkU2 RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0eVU2b1dtTHJqckdMMERV bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzladkdSLWtNenR5VTZvV21McmpyR0wwRFVtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0ZEMi8xRDJBODk0MkU2RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0 eVU2b1dtTHJqckdMMERVbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDiNZqxy1UcjlkSV+lsnQoNrCcsX5MdmDQ4phhp/5NaFqpO/ArUKgPg 97gWDlzgKhqecsGp1tRR+mxQNxxJf070Hdz212fTMvK295KDywpKr6nTL4SpVY0P Gnz/55qAdnutAwwDaB0yqlRaDlGOHIgf5LJ5XSxQ4QDf8Is1JpbjuWYEqfyZrQ++ dplBhcZ3GujTJvq8HQzbG6AH0zfYGrTScT83X1WIGy0CrGET/IWZmyVL0pVz+6W1 6a7p3c18gUB4G/QW8iGwtJLC4v+WQJi3jKEQEw0ih3svtnNmzejz06yZnOKP8ihp lBiMP2siV0qAO9ipatElG6ZKPsSzXeAP -----END CERTIFICATE-----Generated at Wed Dec 24 17:40:28 2025 by rpki-client