This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft File: Ns9cwKYOC31UYSoS61uYkoRobbA.mft (raw, json) Hash identifier: tRQvK6i+/wSjm9oRS1R8ZysPYP2kluQNjZfnECzm+nM= Subject key identifier: C4:9F:7D:F7:93:39:EC:B2:47:1E:CB:50:6E:0F:9C:5E:A3:40:D6:B8 Authority key identifier: 36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 Certificate issuer: /CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft Manifest number: 01F5 Signing time: Sun 21 Dec 2025 01:47:33 +0000 Manifest this update: Sun 21 Dec 2025 01:47:32 +0000 Manifest next update: Sun 28 Dec 2025 01:47:32 +0000 Files and hashes: 1: Ns9cwKYOC31UYSoS61uYkoRobbA.crl (hash: ztqXoW+KlrpOBo981QbGLwWQP6+9GKJ/Jl8jzGaBJRw=) 2: B188CE748E7011F08CF3B91AC4F9AE02.roa (hash: z9aB/eMQsAs4dx5UPgq7iMP6FyNI1Namac/Cs27VAaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:47:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECA2, serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Validity Not Before: Dec 21 01:47:32 2025 GMT Not After : Dec 28 01:47:32 2025 GMT Subject: CN=694751b5-138c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9c:c3:7a:32:16:1b:31:b4:a2:ce:f7:54:47: 58:2e:d0:5f:6e:a0:d4:17:35:b7:a9:74:a5:b0:94: fb:1c:e2:a2:6a:8d:6d:4b:5b:9e:4d:8c:c2:88:ab: 9a:d2:f3:d4:cf:d4:4b:0f:96:b0:17:4d:d9:3f:51: 53:bd:c6:30:2b:27:1c:db:c6:b2:98:88:74:8f:14: 91:fb:2a:b0:31:29:76:e2:df:92:9f:bf:e3:c0:84: 61:dc:a7:27:6d:80:2a:eb:d1:09:1f:2b:87:04:78: f6:b7:3a:50:d1:b2:43:2d:c1:36:9c:b7:b5:d4:10: 11:b0:ab:36:81:9c:05:a6:f4:90:25:63:a8:96:1c: cd:d0:a3:c3:96:f1:8a:1c:b5:b4:ea:36:39:03:c5: ca:ef:bf:c6:ca:c5:c6:6f:d1:69:6d:36:9a:58:43: 80:70:e5:f0:e4:16:46:e1:e1:61:21:ce:0a:e4:e1: 1e:27:22:89:db:9c:95:54:df:95:09:f8:03:f4:08: 9e:97:c6:67:92:64:ad:e3:8b:d7:c9:13:62:7a:28: 67:d1:86:dd:e1:6b:1f:05:f9:da:a5:7b:ec:80:a8: e0:0f:09:04:90:1b:00:d5:4a:c6:f2:d3:4e:dc:36: bb:2e:1f:87:e8:44:38:1d:f8:76:19:12:dd:96:2f: 2c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:9F:7D:F7:93:39:EC:B2:47:1E:CB:50:6E:0F:9C:5E:A3:40:D6:B8 X509v3 Authority Key Identifier: keyid:36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:de:d2:d6:2d:10:35:6a:ce:b2:55:d5:21:60:3a:0d:5d:59: 75:27:7d:90:e5:df:66:42:ba:70:a5:1b:a6:64:58:2a:bc:fa: e8:e4:7c:20:fe:f8:b9:e9:1a:f7:bb:13:87:28:51:c7:46:f0: 99:44:15:3d:37:1c:01:e7:5c:31:e2:b4:75:f9:73:86:38:52: 03:90:0c:da:62:4e:bb:6c:4c:8c:6c:77:54:0a:40:0b:3d:96: 13:44:92:9d:93:8f:91:d6:3f:ef:ab:26:67:1a:62:2b:c3:10: 6e:c8:10:1d:62:9c:f5:4b:87:06:98:68:8c:04:96:14:6c:10: 5f:a9:d5:b0:b4:21:2a:a8:94:00:57:3a:d2:34:9d:d3:4e:57: f5:b5:8e:42:8b:e5:e5:dc:a3:be:9d:0d:5a:31:9e:6b:82:59: 89:7e:76:80:7b:f0:c9:9c:d2:a2:99:ad:c6:8e:5f:77:db:11: 91:27:04:1c:9d:75:cd:14:2a:2f:33:52:82:11:92:69:8a:fa: d9:17:b8:2b:18:f6:c6:3f:79:a1:5c:29:74:9c:ab:e0:f5:20: 0c:9f:34:dd:af:a3:16:89:6d:55:f3:5d:39:37:0c:0e:d2:b5: 17:e1:b5:40:0a:d2:ba:dc:67:87:4c:ad:7d:5e:42:9d:8c:f5: 28:d1:37:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQTIxMTAvBgNVBAUTKDM2Q0Y1Q0MwQTYwRTBCN0Q1NDYxMkExMkVCNUI5ODky ODQ2ODZEQjAwHhcNMjUxMjIxMDE0NzMyWhcNMjUxMjI4MDE0NzMyWjAYMRYwFAYD VQQDDA02OTQ3NTFiNS0xMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pzDejIWGzG0os73VEdYLtBfbqDUFzW3qXSlsJT7HOKiao1tS1ueTYzCiKua 0vPUz9RLD5awF03ZP1FTvcYwKycc28aymIh0jxSR+yqwMSl24t+Sn7/jwIRh3Kcn bYAq69EJHyuHBHj2tzpQ0bJDLcE2nLe11BARsKs2gZwFpvSQJWOolhzN0KPDlvGK HLW06jY5A8XK77/GysXGb9FpbTaaWEOAcOXw5BZG4eFhIc4K5OEeJyKJ25yVVN+V CfgD9Aiel8ZnkmSt44vXyRNieihn0Ybd4WsfBfnapXvsgKjgDwkEkBsA1UrG8tNO 3Da7Lh+H6EQ4Hfh2GRLdli8sPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSfffeT OeyyRx7LUG4PnF6jQNa4MB8GA1UdIwQYMBaAFDbPXMCmDgt9VGEqEutbmJKEaG2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNBMi8wMjgyN0NGOEU0 MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0MzMVVZU29TNjF1WWtvUm9i YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zOWN3S1lPQzMxVVlTb1M2MXVZa29Sb2JiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUNBMi8wMjgyN0NGOEU0MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0Mz MVVZU29TNjF1WWtvUm9iYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDa3tLWLRA1as6yVdUhYDoNXVl1J32Q5d9mQrpwpRumZFgqvPro5Hwg /vi56Rr3uxOHKFHHRvCZRBU9NxwB51wx4rR1+XOGOFIDkAzaYk67bEyMbHdUCkAL PZYTRJKdk4+R1j/vqyZnGmIrwxBuyBAdYpz1S4cGmGiMBJYUbBBfqdWwtCEqqJQA VzrSNJ3TTlf1tY5Ci+Xl3KO+nQ1aMZ5rglmJfnaAe/DJnNKima3Gjl932xGRJwQc nXXNFCovM1KCEZJpivrZF7grGPbGP3mhXCl0nKvg9SAMnzTdr6MWiW1V8105NwwO 0rUX4bVACtK63GeHTK19XkKdjPUo0TcU -----END CERTIFICATE-----Generated at Mon Dec 22 07:19:14 2025 by rpki-client