This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: YyAW5PZUKDtgfzXruLEMFyukZS81VKYJ4O3QJ1Anyd0= Subject key identifier: 64:0C:BC:7B:DA:44:A1:05:11:EA:E7:59:C6:47:B0:42:74:50:35:9B Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 0528 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 051D Signing time: Wed 31 Dec 2025 23:03:39 +0000 Manifest this update: Wed 31 Dec 2025 23:03:39 +0000 Manifest next update: Wed 07 Jan 2026 23:03:39 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: /f6LjrjpX7MbswfFfQ7GhqYW2PruW9bYaXl/rAcFyl4=) 2: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) 3: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 4: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 Jan 2026 23:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Dec 31 23:03:39 2025 GMT Not After : Jan 7 23:03:39 2026 GMT Subject: CN=6955abcb-0405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d1:d7:3c:a6:18:e3:d8:d7:9d:ad:3f:2f:4b: 19:00:22:a9:4d:36:5e:6c:a9:f3:94:b6:af:0c:2b: f0:76:5d:14:48:29:84:21:22:07:87:36:f2:33:46: 09:79:9c:f0:a6:83:7f:a9:90:a4:ed:9e:68:aa:47: ab:9b:d8:51:cd:cc:35:4f:d5:d3:b9:20:80:8e:4d: ed:0b:06:15:5d:5c:c9:00:a6:98:af:f4:3c:fd:07: bc:f6:3b:cb:4d:9f:bb:2d:67:97:5d:44:3e:1b:b3: b8:81:4e:57:18:b8:ee:21:ae:22:fd:62:23:52:22: 7b:4e:65:ac:b7:e9:ab:e5:c8:85:57:8b:76:45:b8: c5:f9:7e:a6:30:32:e0:f5:05:a5:44:c5:89:de:37: 7e:ad:1f:fc:f3:55:37:1a:8b:b2:67:ad:a1:55:1b: e8:b5:65:3a:10:a1:21:d0:74:e7:36:31:c3:5f:e2: 92:3b:68:dd:67:8f:5b:6d:60:d6:9f:72:eb:20:f9: 3f:fa:a0:48:f9:e7:1d:82:81:e9:2b:7a:45:08:0c: 0d:c6:e3:94:ec:18:bd:e9:9c:eb:a6:ae:58:60:c6: 20:5b:dd:79:ed:a0:85:bd:c4:53:54:3b:c5:16:48: cb:6c:06:41:2a:eb:bd:60:c6:67:35:9c:28:ff:cb: f9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0C:BC:7B:DA:44:A1:05:11:EA:E7:59:C6:47:B0:42:74:50:35:9B X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d8:51:56:c6:ec:ea:c1:b4:3d:f1:1f:81:37:2e:c1:ba:39: cd:07:1f:51:6b:d8:af:1f:39:73:51:c0:63:e5:d5:78:88:e6: ed:6e:f2:24:24:c8:5c:6e:f7:1b:14:3a:a0:12:e4:86:64:a3: f6:92:c5:83:3e:1a:11:01:fd:27:28:b9:90:c8:f1:22:d9:10: 98:9e:00:1c:9d:67:07:9a:21:28:7b:77:69:5c:0d:7c:ff:b3: 7d:9f:50:a7:00:52:90:e9:d5:b5:38:0b:6f:3a:02:cd:a6:10: 93:d0:b7:b7:25:a3:ce:cb:71:48:30:14:39:aa:e7:8f:32:ef: b6:7f:56:49:24:ac:04:d4:ec:94:e8:bf:0d:1c:bf:e7:53:0f: ee:8c:c5:8d:9b:7e:eb:0b:1f:91:95:f6:7d:93:07:79:f1:ee: 27:63:6a:f1:ee:af:5b:d5:b1:8c:5c:18:a5:7e:3d:27:fb:5b: 58:6c:64:96:e1:ee:1b:0e:40:ce:8e:f7:e0:48:61:6a:99:3d: 8d:ef:52:3c:37:fa:65:51:bc:5d:df:be:98:11:9c:54:f3:b6: f6:86:02:f4:7a:26:4d:80:79:0d:ca:13:09:b6:ae:96:2a:92: 1b:1c:4e:e4:57:67:50:c0:66:9d:b4:99:63:64:7c:19:a0:7e: e3:fb:ad:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUxMjMxMjMwMzM5WhcNMjYwMTA3MjMwMzM5WjAYMRYwFAYD VQQDDA02OTU1YWJjYi0wNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNHXPKYY49jXna0/L0sZACKpTTZebKnzlLavDCvwdl0USCmEISIHhzbyM0YJ eZzwpoN/qZCk7Z5oqkerm9hRzcw1T9XTuSCAjk3tCwYVXVzJAKaYr/Q8/Qe89jvL TZ+7LWeXXUQ+G7O4gU5XGLjuIa4i/WIjUiJ7TmWst+mr5ciFV4t2RbjF+X6mMDLg 9QWlRMWJ3jd+rR/881U3GouyZ62hVRvotWU6EKEh0HTnNjHDX+KSO2jdZ49bbWDW n3LrIPk/+qBI+ecdgoHpK3pFCAwNxuOU7Bi96Zzrpq5YYMYgW9157aCFvcRTVDvF FkjLbAZBKuu9YMZnNZwo/8v5/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQMvHva RKEFEernWcZHsEJ0UDWbMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD2FFWxuzqwbQ98R+BNy7BujnNBx9Ra9ivHzlzUcBj5dV4iObtbvIk JMhcbvcbFDqgEuSGZKP2ksWDPhoRAf0nKLmQyPEi2RCYngAcnWcHmiEoe3dpXA18 /7N9n1CnAFKQ6dW1OAtvOgLNphCT0Le3JaPOy3FIMBQ5quePMu+2f1ZJJKwE1OyU 6L8NHL/nUw/ujMWNm37rCx+RlfZ9kwd58e4nY2rx7q9b1bGMXBilfj0n+1tYbGSW 4e4bDkDOjvfgSGFqmT2N71I8N/plUbxd376YEZxU87b2hgL0eiZNgHkNyhMJtq6W KpIbHE7kV2dQwGadtJljZHwZoH7j+62+ -----END CERTIFICATE-----Generated at Thu Jan 1 14:25:29 2026 by rpki-client