This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft File: 84XzeRdwIPCIv3TaLANG2HnCKh0.mft (raw, json) Hash identifier: feeu8vD+gTR6g4WsIC08vHwJDYEABqEbf4kQRyA+ENg= Subject key identifier: D2:63:BB:4A:BF:C0:A0:BA:F6:C9:84:AE:77:53:AF:35:9F:46:5A:AF Authority key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D Certificate issuer: /CN=A9112AD5/serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Certificate serial: 0495 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft Manifest number: 0490 Signing time: Sat 20 Dec 2025 23:19:26 +0000 Manifest this update: Sat 20 Dec 2025 23:19:26 +0000 Manifest next update: Sat 27 Dec 2025 23:19:26 +0000 Files and hashes: 1: 84XzeRdwIPCIv3TaLANG2HnCKh0.crl (hash: TneBdhY2pn9gpK7kMHi8d2OhYf2wNStfScwmAst9H24=) 2: 3C09B1A2640F11ECBC536111C4F9AE02.roa (hash: ri0TS1kyJCp5RGAizutNu/7/M8+Gqg86bvQl1YYvFEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 23:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1173 (0x495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112AD5, serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Validity Not Before: Dec 20 23:19:26 2025 GMT Not After : Dec 27 23:19:26 2025 GMT Subject: CN=69472efe-babe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:95:8d:f4:d3:64:ea:db:22:e2:09:14:97:06: e6:1a:43:7c:83:a5:fa:e6:34:22:8c:7e:d8:87:1e: 48:e1:b4:3a:48:89:13:f5:a4:9f:b3:63:5e:71:4f: f8:8a:30:e8:c6:1a:3a:fd:bf:66:54:5a:4f:7e:ed: 6d:a1:1e:d8:94:42:c3:b3:82:11:b0:38:eb:f5:1d: 73:8b:78:83:ea:d6:f5:e0:4e:22:f0:18:0b:0a:33: ca:ee:ec:98:fe:14:cf:a1:8b:0f:18:39:95:7d:e1: e6:6f:c6:cf:5f:d8:99:82:78:d4:61:d2:a5:2c:c5: 52:af:5d:85:83:2a:88:1d:bd:86:18:55:16:eb:e4: 34:e9:60:da:0f:b1:32:dc:27:9b:83:6f:d0:85:ad: 6f:a6:86:2d:d3:4c:a5:9d:1d:2c:d5:23:29:3d:71: 03:19:39:23:75:d9:54:30:a2:b8:13:74:9f:8e:d1: 38:b2:eb:37:8c:42:ec:49:09:fe:53:e0:b6:b3:be: 3c:17:c4:89:89:29:fc:67:13:07:ad:a6:92:9f:ce: 28:db:f0:e5:40:82:1c:4b:1b:9a:21:50:fe:26:da: 51:ce:c0:7b:cb:bf:6c:df:99:90:f9:d8:91:45:a8: f6:7f:96:16:49:a3:37:6c:0d:40:95:32:8e:eb:fe: 7f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:63:BB:4A:BF:C0:A0:BA:F6:C9:84:AE:77:53:AF:35:9F:46:5A:AF X509v3 Authority Key Identifier: keyid:F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:bf:d2:49:03:bc:1d:c8:01:52:1f:f6:5f:de:2d:3f:ad:0d: d7:19:79:e9:e7:43:6e:19:64:b6:65:26:28:b7:64:f0:41:f2: b0:a6:f6:2f:f2:9d:8c:2b:b9:e1:ca:1c:25:5c:fb:1b:32:78: 33:75:06:dc:4e:e0:b3:99:3c:4d:1b:e2:bb:1e:d0:0d:1d:34: a9:f6:f1:50:f9:38:db:31:72:6c:03:0a:42:41:34:19:9d:5e: fe:df:f2:b0:b5:ce:d2:1a:77:a6:d6:61:1e:fb:4e:51:cc:86: a9:6b:e5:03:9e:e2:9e:09:e5:9c:fb:2c:22:5d:0e:e5:2c:5a: df:c3:f7:e3:09:49:94:92:18:e6:b4:d9:95:fd:1c:6e:9e:f1: e2:8a:86:b9:96:1f:a7:ec:20:43:fb:31:1f:70:00:fc:05:fc: 07:8c:0e:b1:30:d3:8f:41:58:d7:b9:8f:4a:f5:e5:b4:ce:bb: fb:29:59:8f:41:2d:eb:33:74:a4:c1:7e:ca:ff:1a:e3:39:30: de:bb:f5:76:3a:20:5c:bb:d5:38:d3:1f:cc:b0:c9:fe:27:7a: 4b:62:1b:3c:71:cd:7d:4f:c2:c2:2f:8a:79:b2:f3:9d:41:94: d2:55:f8:16:d0:d7:d0:d4:0a:8b:9b:61:d8:ab:95:55:3d:75: 6d:00:06:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBRDUxMTAvBgNVBAUTKEYzODVGMzc5MTc3MDIwRjA4OEJGNzREQTJDMDM0NkQ4 NzlDMjJBMUQwHhcNMjUxMjIwMjMxOTI2WhcNMjUxMjI3MjMxOTI2WjAYMRYwFAYD VQQDDA02OTQ3MmVmZS1iYWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05WN9NNk6tsi4gkUlwbmGkN8g6X65jQijH7Yhx5I4bQ6SIkT9aSfs2NecU/4 ijDoxho6/b9mVFpPfu1toR7YlELDs4IRsDjr9R1zi3iD6tb14E4i8BgLCjPK7uyY /hTPoYsPGDmVfeHmb8bPX9iZgnjUYdKlLMVSr12FgyqIHb2GGFUW6+Q06WDaD7Ey 3Cebg2/Qha1vpoYt00ylnR0s1SMpPXEDGTkjddlUMKK4E3SfjtE4sus3jELsSQn+ U+C2s748F8SJiSn8ZxMHraaSn84o2/DlQIIcSxuaIVD+JtpRzsB7y79s35mQ+diR Raj2f5YWSaM3bA1AlTKO6/5/4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJju0q/ wKC69smErndTrzWfRlqvMB8GA1UdIwQYMBaAFPOF83kXcCDwiL902iwDRth5wiod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkFENS9GNDc5NTgwRTY0 MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQQ0l2M1RhTEFORzJIbkNL aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0WHplUmR3SVBDSXYzVGFMQU5HMkhuQ0toMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkFENS9GNDc5NTgwRTY0MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQ Q0l2M1RhTEFORzJIbkNLaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANv9JJA7wdyAFSH/Zf3i0/rQ3XGXnp50NuGWS2ZSYot2TwQfKwpvYv 8p2MK7nhyhwlXPsbMngzdQbcTuCzmTxNG+K7HtANHTSp9vFQ+TjbMXJsAwpCQTQZ nV7+3/Kwtc7SGnem1mEe+05RzIapa+UDnuKeCeWc+ywiXQ7lLFrfw/fjCUmUkhjm tNmV/RxunvHiioa5lh+n7CBD+zEfcAD8BfwHjA6xMNOPQVjXuY9K9eW0zrv7KVmP QS3rM3SkwX7K/xrjOTDeu/V2OiBcu9U40x/MsMn+J3pLYhs8cc19T8LCL4p5svOd QZTSVfgW0NfQ1AqLm2HYq5VVPXVtAAZ7 -----END CERTIFICATE-----Generated at Mon Dec 22 11:32:54 2025 by rpki-client