This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: jwlBsbzEvuWg3TD0DspjxvsRO6dm7atCNDGy5A01nqU= Subject key identifier: FE:C4:FC:58:3E:E0:3E:77:77:15:CF:C8:E2:4F:19:B4:06:90:F5:CC Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 0521 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 0516 Signing time: Thu 18 Dec 2025 22:55:44 +0000 Manifest this update: Thu 18 Dec 2025 22:55:44 +0000 Manifest next update: Thu 25 Dec 2025 22:55:44 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: iAMQaeXJ4Y/AuQQprZV3Lpj/lMxBXOBsAoYlivR+Qf0=) 2: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 3: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) 4: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 22:55:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1313 (0x521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Dec 18 22:55:44 2025 GMT Not After : Dec 25 22:55:44 2025 GMT Subject: CN=69448670-ea3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:08:e4:d2:17:42:f9:0d:7e:a5:3f:22:8d:b3: 10:7d:18:32:a4:00:51:52:c6:6d:8d:2b:72:77:34: de:20:e3:b2:13:d4:4c:2c:93:18:fc:b0:77:e1:78: ab:19:c0:86:84:fd:3f:aa:b4:13:a5:b3:12:25:6a: 66:0e:ce:3c:88:6a:08:1b:4a:ff:f1:d0:c5:79:d5: 2a:d4:73:0d:2e:68:7a:a0:c7:ba:c5:7e:62:43:b2: 43:e7:5e:47:0f:6f:0f:d8:59:96:92:f8:06:44:cd: 92:cb:f9:0b:88:a4:93:7e:f4:7b:b7:55:86:86:17: f0:fc:33:b7:38:61:3d:9c:0a:6d:fa:59:58:fc:e2: a2:bd:39:cd:48:aa:49:68:55:98:73:bd:1c:40:7c: cc:98:da:bf:4c:d3:43:88:d9:79:e6:f1:e8:89:b8: 7c:d9:b1:df:13:8f:d3:3c:ca:d3:36:d6:40:6a:ac: 30:b7:2a:3d:55:59:b1:43:28:d3:43:21:f7:b5:0e: 4a:c4:ef:5d:8e:70:f9:97:e1:a3:4b:7e:e3:79:ee: 8b:f6:41:70:4d:93:69:54:ba:9b:6c:65:7b:66:87: 48:9e:4a:d8:fb:6d:69:bd:e1:20:d9:b1:f4:84:a1: 46:fe:44:a3:50:b1:b5:ce:9f:65:a9:98:4b:9d:87: b2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C4:FC:58:3E:E0:3E:77:77:15:CF:C8:E2:4F:19:B4:06:90:F5:CC X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:61:9a:77:44:8b:14:d8:d1:bf:e2:f5:e8:22:d6:25:ea:02: 5e:79:2d:78:6b:ad:d7:46:37:38:a0:e2:a0:2f:81:49:bc:c9: cd:5c:db:a1:07:0e:b8:42:6f:58:79:e6:fe:d0:4b:06:99:eb: ba:0b:df:b7:e3:95:f5:d7:40:af:0e:1d:5d:74:97:89:19:02: 70:0a:08:27:4f:af:30:32:a3:bf:12:c4:8b:6a:0b:3c:46:47: ea:ef:9b:47:93:cf:da:56:bc:70:fd:1a:33:fe:b5:96:a4:ee: 83:b4:08:63:4b:ac:7c:bc:07:73:36:eb:a4:96:6e:90:81:8a: 86:4f:f4:11:f2:a0:55:0e:59:5c:ca:6c:23:c1:94:25:bb:c6: f5:2d:1a:4e:f6:ef:bb:df:13:ee:fc:fa:79:2f:6a:9f:e2:61: 84:d3:5a:51:3e:46:8d:39:ed:c0:43:ea:dd:df:c6:82:88:48: 2a:2a:63:dc:df:d5:94:88:d5:d5:e5:6f:c2:7c:1b:53:4a:76: 40:63:69:c8:69:c9:15:4d:4f:d9:0a:96:39:58:f8:f3:e5:95: 3c:03:26:2e:58:d5:93:ea:4d:32:a5:70:f9:fa:e2:e6:cc:d8: 84:3a:2b:26:c2:09:bc:bd:62:eb:b9:dd:4a:47:0d:2f:88:50: cd:f4:f7:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUxMjE4MjI1NTQ0WhcNMjUxMjI1MjI1NTQ0WjAYMRYwFAYD VQQDDA02OTQ0ODY3MC1lYTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgjk0hdC+Q1+pT8ijbMQfRgypABRUsZtjStydzTeIOOyE9RMLJMY/LB34Xir GcCGhP0/qrQTpbMSJWpmDs48iGoIG0r/8dDFedUq1HMNLmh6oMe6xX5iQ7JD515H D28P2FmWkvgGRM2Sy/kLiKSTfvR7t1WGhhfw/DO3OGE9nApt+llY/OKivTnNSKpJ aFWYc70cQHzMmNq/TNNDiNl55vHoibh82bHfE4/TPMrTNtZAaqwwtyo9VVmxQyjT QyH3tQ5KxO9djnD5l+GjS37jee6L9kFwTZNpVLqbbGV7ZodInkrY+21pveEg2bH0 hKFG/kSjULG1zp9lqZhLnYey7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7E/Fg+ 4D53dxXPyOJPGbQGkPXMMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpYZp3RIsU2NG/4vXoItYl6gJeeS14a63XRjc4oOKgL4FJvMnNXNuh Bw64Qm9Yeeb+0EsGmeu6C9+345X110CvDh1ddJeJGQJwCggnT68wMqO/EsSLags8 Rkfq75tHk8/aVrxw/Roz/rWWpO6DtAhjS6x8vAdzNuuklm6QgYqGT/QR8qBVDllc ymwjwZQlu8b1LRpO9u+73xPu/Pp5L2qf4mGE01pRPkaNOe3AQ+rd38aCiEgqKmPc 39WUiNXV5W/CfBtTSnZAY2nIackVTU/ZCpY5WPjz5ZU8AyYuWNWT6k0ypXD5+uLm zNiEOismwgm8vWLrud1KRw0viFDN9Pcj -----END CERTIFICATE-----Generated at Sat Dec 20 08:23:17 2025 by rpki-client