This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft File: _dkd0w6bH-o7t-Eq73YhZigSmyM.mft (raw, json) Hash identifier: tvMYozX57vCCEHKqngX3QZJobch0Po6V/lyjpM7Zmz4= Subject key identifier: 49:24:04:7A:BF:7E:D0:E7:53:D0:B9:ED:EB:C7:6B:9A:7C:B7:46:88 Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 Certificate issuer: /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft Manifest number: 0175 Signing time: Sun 21 Dec 2025 03:02:48 +0000 Manifest this update: Sun 21 Dec 2025 03:02:48 +0000 Manifest next update: Sun 28 Dec 2025 03:02:48 +0000 Files and hashes: 1: _dkd0w6bH-o7t-Eq73YhZigSmyM.crl (hash: jYgQYU8J9cMa7sD2GqiZq34h2IFf48PUa+GtezuUJm4=) 2: DECE1662A87D11EE882D7B6EC4F9AE02.roa (hash: xl8vsoM8lRXsIwAeubyIxGM45u4MhqEQVgY77rzjzp4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 03:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192B86, serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Validity Not Before: Dec 21 03:02:48 2025 GMT Not After : Dec 28 03:02:48 2025 GMT Subject: CN=69476358-7a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:29:45:1e:2d:1d:23:08:5f:09:6d:b1:11:27: 6a:c3:4d:76:1c:18:ab:26:b2:90:93:6d:f5:01:a9: f8:6b:b0:58:e8:4e:c3:d2:87:0f:dc:d0:70:83:ba: c5:47:96:6d:8d:ce:9e:de:b4:88:aa:66:40:a9:dd: f3:7e:99:b5:f4:f5:04:c7:54:36:6e:41:dd:ac:54: 44:72:10:12:24:b3:20:ca:b3:65:ed:f2:f2:97:27: cc:60:2d:81:4f:46:7f:c0:48:c6:d7:9c:da:57:36: 8f:e8:cb:a9:f0:0f:c0:0a:ce:cb:46:69:f6:70:5c: 83:99:2e:0c:11:a4:d0:b8:35:fe:d6:ab:d4:92:ef: 2a:f8:00:f3:79:ce:85:94:09:4d:63:fd:b1:98:43: 4f:2a:e2:6a:cd:9f:e1:55:fd:94:90:4a:0d:e5:ae: 1a:f3:83:42:f6:24:cd:2b:e3:19:ca:77:60:2a:df: 76:d3:02:d3:a0:45:cb:aa:48:65:ff:02:b7:d4:4e: 74:4f:15:e1:bc:e1:54:78:d0:77:d1:f8:d0:b5:83: b9:ec:2e:f7:10:ff:e2:4b:94:1c:dc:80:65:06:00: af:fb:1f:d2:95:62:2d:b7:eb:10:a5:74:51:66:02: c0:b5:b9:3a:16:5c:88:d4:00:fe:66:5a:69:e5:44: d6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:24:04:7A:BF:7E:D0:E7:53:D0:B9:ED:EB:C7:6B:9A:7C:B7:46:88 X509v3 Authority Key Identifier: keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:a6:c1:f1:34:2c:8e:ad:04:ee:24:19:db:a6:3d:90:dd:cc: 06:39:1f:06:09:18:43:eb:3f:23:8c:8d:b0:6c:35:7d:ac:52: 9b:bb:fd:1f:ce:6f:02:cb:de:1e:a4:14:f7:5c:22:14:d2:be: cb:6f:1d:96:99:28:e0:e1:41:04:65:88:b2:17:e0:1a:58:92: 23:92:11:66:af:ed:22:61:ff:da:56:fb:fc:2d:b5:2b:56:2f: 46:4f:74:f2:c5:2b:d0:d1:b0:4f:fd:74:54:e9:ed:33:89:3c: 74:be:76:68:5c:50:61:49:e2:ca:60:a9:f0:98:24:74:61:e6: 72:7d:25:48:4a:c9:0a:76:6a:1b:32:a0:8f:a7:30:e6:17:b1: d1:e5:8e:18:38:12:6e:08:14:5d:fc:db:1c:a6:c3:ee:a9:17: e0:45:0d:a1:a7:1c:f0:06:98:f7:6e:42:71:7b:d1:6d:7a:77: dd:62:24:f8:14:a9:b5:12:60:87:40:63:bf:a0:00:b8:49:95: 23:a6:81:d0:6f:a4:e6:0f:5b:a3:70:7a:87:97:4b:80:65:18: 78:dd:84:e1:08:10:85:69:cd:de:4d:56:c5:33:8e:5e:c5:5c: e9:af:87:9f:c0:82:2f:83:b4:25:5a:79:f9:a8:12:47:39:98: 12:87:0a:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCODYxMTAvBgNVBAUTKEZERDkxREQzMEU5QjFGRUEzQkI3RTEyQUVGNzYyMTY2 MjgxMjlCMjMwHhcNMjUxMjIxMDMwMjQ4WhcNMjUxMjI4MDMwMjQ4WjAYMRYwFAYD VQQDDA02OTQ3NjM1OC03YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoilFHi0dIwhfCW2xESdqw012HBirJrKQk231Aan4a7BY6E7D0ocP3NBwg7rF R5Ztjc6e3rSIqmZAqd3zfpm19PUEx1Q2bkHdrFREchASJLMgyrNl7fLylyfMYC2B T0Z/wEjG15zaVzaP6Mup8A/ACs7LRmn2cFyDmS4MEaTQuDX+1qvUku8q+ADzec6F lAlNY/2xmENPKuJqzZ/hVf2UkEoN5a4a84NC9iTNK+MZyndgKt920wLToEXLqkhl /wK31E50TxXhvOFUeNB30fjQtYO57C73EP/iS5Qc3IBlBgCv+x/SlWItt+sQpXRR ZgLAtbk6FlyI1AD+Zlpp5UTWVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkkBHq/ ftDnU9C57evHa5p8t0aIMB8GA1UdIwQYMBaAFP3ZHdMOmx/qO7fhKu92IWYoEpsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkI4Ni84NkU5NzdDQUE4 N0QxMUVFOUZBNTVBNkRDNEY5QUUwMi9fZGtkMHc2Ykgtbzd0LUVxNzNZaFppZ1Nt eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ka2QwdzZiSC1vN3QtRXE3M1loWmlnU215TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkI4Ni84NkU5NzdDQUE4N0QxMUVFOUZBNTVBNkRDNEY5QUUwMi9fZGtkMHc2Ykgt bzd0LUVxNzNZaFppZ1NteU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2psHxNCyOrQTuJBnbpj2Q3cwGOR8GCRhD6z8jjI2wbDV9rFKbu/0f zm8Cy94epBT3XCIU0r7Lbx2WmSjg4UEEZYiyF+AaWJIjkhFmr+0iYf/aVvv8LbUr Vi9GT3TyxSvQ0bBP/XRU6e0ziTx0vnZoXFBhSeLKYKnwmCR0YeZyfSVISskKdmob MqCPpzDmF7HR5Y4YOBJuCBRd/NscpsPuqRfgRQ2hpxzwBpj3bkJxe9FtenfdYiT4 FKm1EmCHQGO/oAC4SZUjpoHQb6TmD1ujcHqHl0uAZRh43YThCBCFac3eTVbFM45e xVzpr4efwIIvg7QlWnn5qBJHOZgShwqq -----END CERTIFICATE-----Generated at Mon Dec 22 02:20:50 2025 by rpki-client