This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: /NmDpAnQa8JtTfFmilfnHmaauWXHINti8kU7LmyBOX4= Subject key identifier: 7B:8B:A9:FA:CD:63:0C:09:2F:FE:68:99:98:C7:E1:76:8E:B0:20:7F Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 07E7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 07DF Signing time: Sat 20 Dec 2025 15:47:32 +0000 Manifest this update: Sat 20 Dec 2025 15:47:32 +0000 Manifest next update: Sat 27 Dec 2025 15:47:32 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: qUDaBBgN4p1Xqwgels3X/wN+G7sWxRD0syV1emQ5qWg=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Dec 20 15:47:32 2025 GMT Not After : Dec 27 15:47:32 2025 GMT Subject: CN=6946c514-9b12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:af:13:96:0f:9e:7d:72:b6:76:c3:63:bd:2a: 9e:ad:5b:99:05:72:ef:32:57:51:53:eb:51:1d:55: 7f:2b:c7:be:22:4e:d5:bc:2d:9a:85:2c:f1:f6:77: 2e:fb:56:46:e4:f9:f4:68:cd:0f:6b:4a:12:dd:82: 47:64:71:97:c8:a1:1a:49:49:7c:8d:c9:c4:ce:0f: 71:e4:8f:95:3d:53:74:37:76:91:10:5b:01:2d:7b: 26:4e:8c:0d:ee:25:a8:82:ef:96:3f:d7:d0:c2:39: ef:14:c6:d6:3a:5a:4c:bd:e5:a5:cc:f6:1a:1d:85: ef:9f:91:7c:2a:90:6e:e2:fe:83:a6:44:4c:10:e1: b5:75:a9:1b:01:47:16:9d:da:3d:55:85:d4:e4:e3: 1d:30:5e:52:ac:b5:9f:98:6f:3e:a1:43:a0:ac:62: d6:97:b9:54:c7:88:fb:d5:e0:16:16:41:e6:9b:7c: f0:3f:14:5b:bc:1e:51:75:e7:4e:9b:3d:28:13:6c: 1c:a1:fb:c1:97:ff:2e:05:91:1b:ac:c9:f8:c1:ec: 0a:3e:91:9d:63:ca:d3:18:ec:c9:11:2f:11:1c:2b: 5f:f6:bb:f9:ef:fa:a5:64:d9:22:f8:8e:34:9c:95: 0b:b9:88:0f:9b:df:fa:2c:74:94:10:b1:7d:3a:39: 0c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8B:A9:FA:CD:63:0C:09:2F:FE:68:99:98:C7:E1:76:8E:B0:20:7F X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:94:67:ef:69:22:a8:f0:0f:11:0d:76:85:00:a2:84:22:db: 01:3f:b2:fa:25:66:71:61:4b:4d:00:bc:94:43:07:43:47:e8: c9:d0:2a:bf:93:45:66:87:d4:d7:a2:fd:81:10:dc:2f:f2:c6: 46:b4:b9:67:76:5d:6a:31:1b:72:bb:43:04:2a:b1:f4:53:fd: f2:f9:c3:40:84:9f:fa:29:c1:39:9b:52:e5:d2:ac:9d:4f:93: 1b:a4:b0:d2:fa:01:03:9b:02:2e:66:46:eb:c4:ac:5e:4d:09: 9a:a1:ab:b0:77:8a:ab:30:1e:d2:80:44:f4:22:5f:ab:6c:6d: 37:26:59:54:60:5a:95:ae:24:9a:32:e5:03:11:e2:68:91:e4: bb:b3:52:19:e0:1e:fc:d8:29:b2:ca:f7:4b:3d:20:6d:3d:d1: a8:5e:5e:88:65:0b:a9:cd:00:ac:33:c9:26:54:45:6a:34:3e: d2:40:59:66:77:51:43:e7:27:70:3c:e3:96:79:7f:09:27:bb: b5:0f:62:31:5c:7f:fb:e9:56:d3:93:b5:ce:74:dc:8b:af:20: 34:ff:05:69:d0:48:a2:93:cc:e8:bd:11:df:67:f3:a9:46:5c: 8c:67:e0:a9:59:e5:1c:6f:03:19:13:bd:3d:56:b2:cc:f4:79: 9c:ad:ea:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUxMjIwMTU0NzMyWhcNMjUxMjI3MTU0NzMyWjAYMRYwFAYD VQQDDA02OTQ2YzUxNC05YjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq68Tlg+efXK2dsNjvSqerVuZBXLvMldRU+tRHVV/K8e+Ik7VvC2ahSzx9ncu +1ZG5Pn0aM0Pa0oS3YJHZHGXyKEaSUl8jcnEzg9x5I+VPVN0N3aREFsBLXsmTowN 7iWogu+WP9fQwjnvFMbWOlpMveWlzPYaHYXvn5F8KpBu4v6DpkRMEOG1dakbAUcW ndo9VYXU5OMdMF5SrLWfmG8+oUOgrGLWl7lUx4j71eAWFkHmm3zwPxRbvB5RdedO mz0oE2wcofvBl/8uBZEbrMn4wewKPpGdY8rTGOzJES8RHCtf9rv57/qlZNki+I40 nJULuYgPm9/6LHSUELF9OjkMbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHuLqfrN YwwJL/5omZjH4XaOsCB/MB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtlGfvaSKo8A8RDXaFAKKEItsBP7L6JWZxYUtNALyUQwdDR+jJ0Cq/ k0Vmh9TXov2BENwv8sZGtLlndl1qMRtyu0MEKrH0U/3y+cNAhJ/6KcE5m1Ll0qyd T5MbpLDS+gEDmwIuZkbrxKxeTQmaoauwd4qrMB7SgET0Il+rbG03JllUYFqVriSa MuUDEeJokeS7s1IZ4B782CmyyvdLPSBtPdGoXl6IZQupzQCsM8kmVEVqND7SQFlm d1FD5ydwPOOWeX8JJ7u1D2IxXH/76VbTk7XOdNyLryA0/wVp0Eiik8zovRHfZ/Op RlyMZ+CpWeUcbwMZE709VrLM9Hmcrer0 -----END CERTIFICATE-----Generated at Sat Dec 20 21:12:06 2025 by rpki-client