This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft File: rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft (raw, json) Hash identifier: 9eNGqHcJ0mM6UOaU8nSvUIdU5K39skZ0HBETzSXnycc= Subject key identifier: 7F:CF:55:3B:CF:A2:F0:26:50:9F:C0:0B:E4:E7:19:61:03:26:36:C0 Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 10C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft Manifest number: 10BC Signing time: Sat 20 Dec 2025 17:03:32 +0000 Manifest this update: Sat 20 Dec 2025 17:03:31 +0000 Manifest next update: Sat 27 Dec 2025 17:03:31 +0000 Files and hashes: 1: rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl (hash: /v/p/tr9ajnz5C6bvJX3B5mFTVyTlthlN5X33SCr9R8=) 2: 6B1B75BC756311EFB6C7E64CC4F9AE02.roa (hash: 7SbyZl6WzchDvPbf0/nq4tvYfqbtpgq7UAgLfrYKHTw=) 3: CBAED530FE6A11ECAB640344C4F9AE02.roa (hash: 8EmwRqTTi0D6Jqb1QQoQFecB/Y41qpXK3rVqh44z4W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4290 (0x10c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974, serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: Dec 20 17:03:31 2025 GMT Not After : Dec 27 17:03:31 2025 GMT Subject: CN=6946d6e4-83b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2b:b6:24:9c:2c:02:4c:4f:f6:30:8b:65:d9: 13:62:16:67:0f:e6:06:33:e0:1c:05:d2:41:23:58: ab:27:87:86:5f:39:cf:58:ab:05:18:bc:b2:c8:04: d2:c8:0e:67:da:24:44:6a:17:a2:03:15:29:41:4d: 54:2a:6f:b4:cc:96:a7:1a:92:8b:0d:7a:dd:4b:fa: 8c:b7:47:88:b3:b8:28:cc:ea:e7:85:d7:36:49:01: e3:2f:a1:7c:be:f2:24:77:49:39:94:d5:5d:7c:c5: 39:b4:81:09:db:bd:77:88:b7:c9:e7:26:ab:cb:a5: 8f:8f:ba:2c:c1:b0:e9:18:61:32:c2:51:5d:95:03: 9d:43:d1:a4:35:71:c2:7d:e4:b0:79:3a:7b:fe:3e: 3c:af:c0:3f:7b:87:9e:21:2b:e9:43:0c:16:0b:9c: ea:d6:a8:41:70:3b:40:0c:56:ed:58:4f:24:a5:fe: 0a:a6:78:53:31:25:2b:08:b8:1c:da:8c:8d:5b:c1: ae:5e:a1:97:fd:71:0f:ed:0e:14:82:92:88:52:f2: 1b:d9:55:3a:fd:98:f6:08:4d:3c:37:d2:92:3a:15: ac:43:eb:2f:39:6c:dd:12:b1:13:cc:79:b1:0e:73: b7:4d:60:81:0e:74:18:84:2d:51:62:82:aa:3f:70: 85:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:CF:55:3B:CF:A2:F0:26:50:9F:C0:0B:E4:E7:19:61:03:26:36:C0 X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:20:fe:7b:2e:6b:9b:6a:af:8e:47:88:46:e8:46:5b:34:b5: 80:8b:85:1e:8c:3a:50:9b:73:48:aa:63:3b:08:9d:3e:4f:62: 7d:ea:a1:ac:f6:bb:50:c5:dc:a6:d3:98:97:ac:91:6d:73:10: 6b:0c:4d:1f:55:e8:a2:00:22:6f:a3:82:b0:f9:c6:9f:48:eb: 81:8d:29:9f:1f:fa:98:9a:3f:a0:b2:34:83:3b:fc:22:9a:71: 55:ab:9f:c2:05:34:86:95:4d:1b:ab:b5:c6:70:80:d4:2a:f5: ba:db:82:c9:49:a3:75:25:d7:a1:22:4b:0c:4d:11:bd:b8:9f: 0c:f0:ee:32:0b:f4:b1:2d:c9:b7:5f:4f:c2:f1:19:2d:ca:14: 1e:70:ba:09:b7:10:32:d3:15:20:9f:95:46:5d:54:2b:9f:27: 91:b4:ec:c1:a5:8d:d4:c9:6d:23:3d:53:10:6a:f4:5b:95:25: 3d:1f:7d:82:07:b9:1e:5d:dd:d6:9b:91:4e:40:b7:db:84:96: f8:5b:96:da:3d:a8:eb:f9:25:c5:01:4c:89:77:ec:18:04:10: 62:3d:4a:75:09:93:0f:e5:5c:78:d6:00:9c:35:06:2e:fc:8a: 00:5f:72:c9:78:a4:38:f8:79:52:75:68:27:35:1c:8b:a2:2a: 78:1e:bb:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjUxMjIwMTcwMzMxWhcNMjUxMjI3MTcwMzMxWjAYMRYwFAYD VQQDDA02OTQ2ZDZlNC04M2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSu2JJwsAkxP9jCLZdkTYhZnD+YGM+AcBdJBI1irJ4eGXznPWKsFGLyyyATS yA5n2iREaheiAxUpQU1UKm+0zJanGpKLDXrdS/qMt0eIs7gozOrnhdc2SQHjL6F8 vvIkd0k5lNVdfMU5tIEJ2713iLfJ5yary6WPj7oswbDpGGEywlFdlQOdQ9GkNXHC feSweTp7/j48r8A/e4eeISvpQwwWC5zq1qhBcDtADFbtWE8kpf4KpnhTMSUrCLgc 2oyNW8GuXqGX/XEP7Q4UgpKIUvIb2VU6/Zj2CE08N9KSOhWsQ+svOWzdErETzHmx DnO3TWCBDnQYhC1RYoKqP3CFAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/PVTvP ovAmUJ/AC+TnGWEDJjbAMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk3NC9FMTA1QjNCQTNBNDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdl TmxXNWwwTGZzNTZJTzdrVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/IP57Lmubaq+OR4hG6EZbNLWAi4UejDpQm3NIqmM7CJ0+T2J96qGs 9rtQxdym05iXrJFtcxBrDE0fVeiiACJvo4Kw+cafSOuBjSmfH/qYmj+gsjSDO/wi mnFVq5/CBTSGlU0bq7XGcIDUKvW624LJSaN1JdehIksMTRG9uJ8M8O4yC/SxLcm3 X0/C8RktyhQecLoJtxAy0xUgn5VGXVQrnyeRtOzBpY3UyW0jPVMQavRblSU9H32C B7keXd3Wm5FOQLfbhJb4W5baPajr+SXFAUyJd+wYBBBiPUp1CZMP5Vx41gCcNQYu /IoAX3LJeKQ4+HlSdWgnNRyLoip4HrtX -----END CERTIFICATE-----Generated at Sun Dec 21 08:18:29 2025 by rpki-client