This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft File: tO2w1sy18AyTBDdO6B9eJhrmcck.mft (raw, json) Hash identifier: tN3wE3agj4F2gu0qVY9nsjLuC+ELeR6BpbjKb+jrkiY= Subject key identifier: C7:B4:4F:D1:0D:FC:D3:82:37:08:7F:F2:C1:45:6A:F1:F8:1D:67:33 Authority key identifier: B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 Certificate issuer: /CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft Manifest number: 0193 Signing time: Sun 21 Dec 2025 02:45:44 +0000 Manifest this update: Sun 21 Dec 2025 02:45:44 +0000 Manifest next update: Sun 28 Dec 2025 02:45:44 +0000 Files and hashes: 1: tO2w1sy18AyTBDdO6B9eJhrmcck.crl (hash: MSSjmkb4C/DlTDDVX9Lu32cMA2AUudDER0t3M8roBVY=) 2: 34DED1A2798711EEA7D73423C4F9AE02.roa (hash: pB1reIfyHdxeUfXs+919CuRxWhrieVaoumr+2A452aM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116AC6, serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Validity Not Before: Dec 21 02:45:44 2025 GMT Not After : Dec 28 02:45:44 2025 GMT Subject: CN=69475f58-0a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bb:a2:53:7e:68:d5:fe:12:7a:d4:ea:16:a7: fd:be:03:1d:0d:c2:36:92:8d:34:ee:16:29:31:41: 34:5d:cb:f4:12:63:79:0e:bb:7d:03:c6:b6:6c:c4: a4:11:58:05:0e:8d:59:e1:c8:ec:05:69:c9:f9:40: 16:b4:0e:ec:15:07:79:68:15:1a:0f:e8:aa:c9:91: e1:e8:af:f4:0f:2c:39:30:98:36:f4:74:34:f9:63: b6:bc:bd:d3:48:57:f0:b5:53:5f:6d:8a:df:a8:3c: fc:18:34:c3:8c:d0:c2:5b:9c:cc:67:42:9c:d2:f0: f4:05:bc:15:4a:01:bd:c4:21:37:7f:e3:d6:71:51: 95:f1:07:64:13:57:c8:f6:31:9a:7e:c1:60:47:98: 30:8e:95:37:2e:4e:4f:43:32:87:66:46:5e:4c:65: 77:a0:de:f7:ca:40:b0:ac:ec:f3:79:3d:cb:12:d9: 41:55:4e:fa:b6:a1:d4:b1:88:2c:44:7f:ca:c6:dc: dd:a8:fc:6e:f0:52:50:d1:a0:00:48:cf:d5:34:94: d9:63:f9:5c:3a:ae:b0:d3:da:9f:50:ff:7e:f1:ff: 27:41:ae:36:32:07:4c:fc:1b:78:b6:3a:71:27:e4: e7:fa:27:c7:dd:96:2e:d6:b0:38:8f:61:4a:79:45: 78:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:B4:4F:D1:0D:FC:D3:82:37:08:7F:F2:C1:45:6A:F1:F8:1D:67:33 X509v3 Authority Key Identifier: keyid:B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:27:72:8c:a9:4b:93:da:ab:35:1f:b5:f0:41:67:cd:26:65: 45:5b:3f:5c:68:ef:b8:7c:6c:1e:41:c1:e9:a1:22:61:16:ea: 7b:63:de:cc:5f:18:80:ab:32:e9:f2:65:32:a8:66:00:a4:47: 93:f0:0c:5a:d8:2f:fa:ee:ab:fa:58:18:1e:78:f7:5a:54:21: e0:63:0d:4e:83:a4:63:19:e0:91:65:56:39:6b:f6:d6:da:cb: 3c:f8:1e:c6:8a:df:5e:0c:1c:cf:58:f8:34:78:bc:74:62:62: 14:71:38:aa:9d:f7:81:29:ac:11:97:05:f4:7a:62:d3:43:87: c6:59:ac:f2:4d:a6:dc:0a:77:11:1b:b1:f3:50:e8:45:ce:4c: 01:d0:1a:b1:fb:fc:9c:c7:a4:1e:88:e5:8e:f9:ea:5e:a0:48: 19:a8:eb:6e:8c:fd:8a:e6:e6:bc:80:9f:ed:3d:df:8e:27:0d: a8:70:a4:09:46:e9:b7:3c:4e:e1:c7:48:8e:3c:82:69:0d:58: da:62:f0:c8:bb:e8:57:21:d6:6c:9e:07:a3:64:95:6b:76:8c: 00:b8:df:07:0d:0b:6f:76:d9:6a:ec:a7:a9:d8:2e:f4:cb:2f: 43:9c:1c:9e:e1:69:85:83:ca:d4:84:60:33:71:e5:5f:22:4f: 28:04:2e:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZBQzYxMTAvBgNVBAUTKEI0RURCMEQ2Q0NCNUYwMEM5MzA0Mzc0RUU4MUY1RTI2 MUFFNjcxQzkwHhcNMjUxMjIxMDI0NTQ0WhcNMjUxMjI4MDI0NTQ0WjAYMRYwFAYD VQQDDA02OTQ3NWY1OC0wYTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27uiU35o1f4SetTqFqf9vgMdDcI2ko007hYpMUE0Xcv0EmN5Drt9A8a2bMSk EVgFDo1Z4cjsBWnJ+UAWtA7sFQd5aBUaD+iqyZHh6K/0Dyw5MJg29HQ0+WO2vL3T SFfwtVNfbYrfqDz8GDTDjNDCW5zMZ0Kc0vD0BbwVSgG9xCE3f+PWcVGV8QdkE1fI 9jGafsFgR5gwjpU3Lk5PQzKHZkZeTGV3oN73ykCwrOzzeT3LEtlBVU76tqHUsYgs RH/KxtzdqPxu8FJQ0aAASM/VNJTZY/lcOq6w09qfUP9+8f8nQa42MgdM/Bt4tjpx J+Tn+ifH3ZYu1rA4j2FKeUV4QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMe0T9EN /NOCNwh/8sFFavH4HWczMB8GA1UdIwQYMBaAFLTtsNbMtfAMkwQ3TugfXiYa5nHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkFDNi9BMUI2Q0JFQTc5 N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThBeVRCRGRPNkI5ZUpocm1j Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPMncxc3kxOEF5VEJEZE82QjllSmhybWNjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkFDNi9BMUI2Q0JFQTc5N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThB eVRCRGRPNkI5ZUpocm1jY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMJ3KMqUuT2qs1H7XwQWfNJmVFWz9caO+4fGweQcHpoSJhFup7Y97M XxiAqzLp8mUyqGYApEeT8Axa2C/67qv6WBgeePdaVCHgYw1Og6RjGeCRZVY5a/bW 2ss8+B7Git9eDBzPWPg0eLx0YmIUcTiqnfeBKawRlwX0emLTQ4fGWazyTabcCncR G7HzUOhFzkwB0Bqx+/ycx6QeiOWO+epeoEgZqOtujP2K5ua8gJ/tPd+OJw2ocKQJ Rum3PE7hx0iOPIJpDVjaYvDIu+hXIdZsngejZJVrdowAuN8HDQtvdtlq7Kep2C70 yy9DnBye4WmFg8rUhGAzceVfIk8oBC4T -----END CERTIFICATE-----Generated at Sun Dec 21 10:20:33 2025 by rpki-client