This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft File: ao09a_bbD13jJOQgxXOwqRhDx5Q.mft (raw, json) Hash identifier: ZEeOhk2AvoKvPzs8TtyXQPPBJe37u4XjKkoZ/vpO29A= Subject key identifier: FC:E0:82:35:59:C1:BA:83:7C:31:3E:9C:01:D0:AC:D1:F7:85:65:8D Authority key identifier: 6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 Certificate issuer: /CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Certificate serial: 019F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft Manifest number: 019B Signing time: Sun 21 Dec 2025 02:39:01 +0000 Manifest this update: Sun 21 Dec 2025 02:39:00 +0000 Manifest next update: Sun 28 Dec 2025 02:39:00 +0000 Files and hashes: 1: ao09a_bbD13jJOQgxXOwqRhDx5Q.crl (hash: mFNmRjOyxybXTZAuAT9TJqSmq9jU8FP4TEscOavxlXQ=) 2: 2152B7B06C0411EEBC1AA814C4F9AE02.roa (hash: OgtSGJ5OXdScPeyQQLIa+zffj6S5x6FMffLKFbYg9qM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 02:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 415 (0x19f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A108, serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Validity Not Before: Dec 21 02:39:00 2025 GMT Not After : Dec 28 02:39:00 2025 GMT Subject: CN=69475dc5-563a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:82:2d:fd:84:58:1d:35:06:8f:10:f1:0b:fd: c1:5a:e4:3e:2a:df:9d:ba:76:da:ee:64:39:bc:80: 6c:dd:3e:3f:2f:2c:10:ae:77:fa:72:76:84:c0:6f: a0:4c:36:6e:a8:ce:8b:ce:64:45:b3:2e:36:99:04: 56:ec:c5:6a:26:93:9f:d6:b5:5f:aa:e3:37:18:a3: 92:6e:51:33:65:2f:71:ff:16:bc:b8:97:29:fa:dc: 29:b5:58:48:e1:33:84:b7:ac:b0:9d:ca:b3:52:16: 8f:fd:c2:9d:55:df:9f:e6:b6:6a:00:66:12:d3:e6: 56:7e:ee:63:24:22:79:51:88:6c:54:54:07:98:76: 1b:36:8a:02:ce:ca:d9:84:5c:b3:1f:ba:b3:90:33: 56:37:ad:98:8d:1e:6c:8e:99:2b:18:eb:0d:53:73: a0:e9:4f:b8:91:35:f0:33:b7:6a:af:62:29:9e:90: f5:17:76:a4:e1:7f:f6:c3:c1:d5:10:4b:e3:93:e9: af:4d:75:60:0d:8e:06:89:4f:71:9f:cd:16:22:1c: 3e:83:70:8e:c7:b6:b3:92:76:4f:43:ed:dc:1a:f0: a6:ce:b3:20:45:e5:4e:30:c8:87:a1:06:b9:e6:69: 9d:bd:50:15:e1:50:2f:00:5c:31:8a:58:a8:e1:a9: bd:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E0:82:35:59:C1:BA:83:7C:31:3E:9C:01:D0:AC:D1:F7:85:65:8D X509v3 Authority Key Identifier: keyid:6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:8a:5c:7d:07:7c:06:6f:71:6f:4d:13:39:3b:5b:3b:23:1e: cf:22:24:31:7e:a6:98:99:67:1f:05:69:44:78:5c:58:3b:b4: 1a:f5:73:bb:3f:07:b8:2e:8e:72:b0:6f:71:b2:20:ec:47:83: 97:62:25:3b:f5:b6:85:b4:92:d2:26:e6:ca:d4:10:ef:69:2a: f9:e7:c0:07:7b:c2:6f:7b:9b:8a:51:a9:3e:f6:13:b7:b5:35: b6:a3:bd:dc:c8:1e:30:ca:09:dc:9f:4c:f5:0c:20:3c:79:f9: b1:bf:f0:d1:55:ad:83:a3:5d:89:48:b4:a3:1c:38:5b:45:50: 75:4f:28:02:9f:28:08:95:a1:68:57:88:39:0d:f0:5d:86:e8: c2:9d:ef:2a:b9:5b:b1:68:48:02:3f:63:35:53:8b:7f:53:d9: af:aa:05:c4:d3:b1:d7:d0:7b:6b:26:95:97:75:74:1c:bd:7c: ed:4f:94:e9:f2:44:a7:c4:fd:9c:bd:69:03:67:50:44:4f:47: b6:71:7b:61:3c:6c:80:16:9c:7b:9f:a4:76:12:fc:bd:8b:d8: f1:87:f7:dd:2f:ae:fe:54:f0:89:c5:47:06:22:d4:54:ce:83: d3:1b:25:3b:64:45:2f:16:2a:31:9a:b5:23:c7:b5:26:f6:da: fa:20:82:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExMDgxMTAvBgNVBAUTKDZBOEQzRDZCRjZEQjBGNURFMzI0RTQyMEM1NzNCMEE5 MTg0M0M3OTQwHhcNMjUxMjIxMDIzOTAwWhcNMjUxMjI4MDIzOTAwWjAYMRYwFAYD VQQDDA02OTQ3NWRjNS01NjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4It/YRYHTUGjxDxC/3BWuQ+Kt+dunba7mQ5vIBs3T4/LywQrnf6cnaEwG+g TDZuqM6LzmRFsy42mQRW7MVqJpOf1rVfquM3GKOSblEzZS9x/xa8uJcp+twptVhI 4TOEt6ywncqzUhaP/cKdVd+f5rZqAGYS0+ZWfu5jJCJ5UYhsVFQHmHYbNooCzsrZ hFyzH7qzkDNWN62YjR5sjpkrGOsNU3Og6U+4kTXwM7dqr2IpnpD1F3ak4X/2w8HV EEvjk+mvTXVgDY4GiU9xn80WIhw+g3COx7azknZPQ+3cGvCmzrMgReVOMMiHoQa5 5mmdvVAV4VAvAFwxilio4am9XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzggjVZ wbqDfDE+nAHQrNH3hWWNMB8GA1UdIwQYMBaAFGqNPWv22w9d4yTkIMVzsKkYQ8eU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTEwOC9GOTU4RkM0QTZD MDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQxM2pKT1FneFhPd3FSaER4 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FvMDlhX2JiRDEzakpPUWd4WE93cVJoRHg1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTEwOC9GOTU4RkM0QTZDMDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQx M2pKT1FneFhPd3FSaER4NVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmilx9B3wGb3FvTRM5O1s7Ix7PIiQxfqaYmWcfBWlEeFxYO7Qa9XO7 Pwe4Lo5ysG9xsiDsR4OXYiU79baFtJLSJubK1BDvaSr558AHe8Jve5uKUak+9hO3 tTW2o73cyB4wygncn0z1DCA8efmxv/DRVa2Do12JSLSjHDhbRVB1TygCnygIlaFo V4g5DfBdhujCne8quVuxaEgCP2M1U4t/U9mvqgXE07HX0HtrJpWXdXQcvXztT5Tp 8kSnxP2cvWkDZ1BET0e2cXthPGyAFpx7n6R2Evy9i9jxh/fdL67+VPCJxUcGItRU zoPTGyU7ZEUvFioxmrUjx7Um9tr6III3 -----END CERTIFICATE-----Generated at Sun Dec 21 14:13:38 2025 by rpki-client