This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft File: AQtAe3X24zjzr7WajWJxXDwC7PQ.mft (raw, json) Hash identifier: Zo4p4J9a5T0td7VHdu2jLuO5N2/zDn6hTmltwzjAVm0= Subject key identifier: 4C:70:89:78:FC:FF:AE:93:DB:BF:8E:FB:CA:00:A9:3A:25:25:71:1E Authority key identifier: 01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 Certificate issuer: /CN=A9132EC7/serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Certificate serial: 173B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft Manifest number: 1728 Signing time: Sat 20 Dec 2025 16:24:26 +0000 Manifest this update: Sat 20 Dec 2025 16:24:25 +0000 Manifest next update: Sat 27 Dec 2025 16:24:25 +0000 Files and hashes: 1: AQtAe3X24zjzr7WajWJxXDwC7PQ.crl (hash: 5+C1wGfQwwcc16jkp6xIhMlSpjL/dKnKzeIAukwPIv0=) 2: 0D4F5906FA7911E7B85F4E7EC4F9AE02.roa (hash: 822Cv07i81nzITiBp8oPidqObRAFnQ5Dsa+D8sFZUvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5947 (0x173b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132EC7, serialNumber=010B407B75F6E338F3AFB59A8D62715C3C02ECF4 Validity Not Before: Dec 20 16:24:25 2025 GMT Not After : Dec 27 16:24:25 2025 GMT Subject: CN=6946cdba-de03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:71:dc:04:e0:18:82:0c:74:9f:e8:40:c8:66: 5b:d6:1e:53:8a:13:2d:fa:2c:d8:14:7e:3b:57:40: c9:a3:32:40:62:36:3a:3e:c9:2d:ac:d9:fc:3f:42: ae:e2:35:89:1e:27:4a:90:6d:62:11:ff:6c:61:de: 08:24:98:d3:82:ad:68:05:6d:ae:f7:a3:1c:59:87: a3:18:51:4e:69:89:9b:76:d1:72:6e:8b:8d:4d:06: b8:8e:21:0f:bc:a4:d3:cd:d1:19:9a:c9:07:23:5b: 77:ce:c7:f6:26:4a:fe:eb:de:5e:0f:cb:0d:a5:31: cb:d2:b3:b9:b2:71:8a:48:fa:c0:a0:25:7e:6e:19: 66:6f:f3:e7:98:b4:3d:b2:29:73:32:95:c6:c8:af: 9d:77:f1:f5:6f:fa:f3:49:2f:62:9b:b3:a1:05:94: e8:7b:e8:b5:09:6f:98:00:58:7b:74:72:84:da:81: c2:dd:1a:61:fd:8b:22:35:d0:21:db:5f:2a:89:31: f2:32:4a:bb:e0:25:79:92:ec:fd:b4:77:f9:cd:c8: 38:0e:3f:3c:24:5a:84:98:27:fd:68:f6:d7:45:57: c5:9d:2d:03:ff:1f:05:5f:bc:3d:a8:2e:3f:ee:a5: 76:dd:9c:3c:74:47:05:eb:48:66:44:a8:48:2e:65: c5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:70:89:78:FC:FF:AE:93:DB:BF:8E:FB:CA:00:A9:3A:25:25:71:1E X509v3 Authority Key Identifier: keyid:01:0B:40:7B:75:F6:E3:38:F3:AF:B5:9A:8D:62:71:5C:3C:02:EC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQtAe3X24zjzr7WajWJxXDwC7PQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132EC7/2934726AFA7811E79CB6087DC4F9AE02/AQtAe3X24zjzr7WajWJxXDwC7PQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:df:1c:d3:9c:a9:aa:a9:e4:c0:b5:fd:c8:5f:0e:43:93:dc: fb:14:53:c5:df:6f:e2:bd:85:da:0d:94:a5:97:1a:8e:6f:48: 86:28:5e:0c:58:36:eb:4d:f6:b6:bc:7a:5e:02:c7:c9:e9:f3: 41:e4:22:0e:5e:88:ea:3f:8e:e4:f2:7e:3f:6d:b5:a8:48:2e: 2c:4d:24:28:cd:6f:89:75:4e:9c:4b:b7:12:f5:32:88:8d:42: 06:07:d4:b1:07:98:cd:11:46:ed:cb:be:b2:ee:d9:1e:63:b0: 0e:86:52:28:69:c1:aa:fb:be:47:e3:5c:47:e8:8d:22:f6:f9: d1:e8:21:35:6c:92:68:ee:12:c2:2c:a4:34:bd:0d:ed:93:ad: 1c:ea:4d:b2:f5:95:58:50:8f:2b:5d:69:c5:c8:4c:fb:09:16: 66:70:0e:18:c2:d9:92:0c:1a:14:5f:06:b0:9f:4a:b8:7c:01: 86:ca:e0:8e:b1:48:17:aa:52:cc:c1:12:ec:09:e4:4b:6f:30: 32:10:91:ff:bd:e2:70:97:79:3f:a1:cc:37:14:6b:86:45:99: b0:52:ee:4b:10:fb:7e:cc:35:e7:f1:d5:ab:a3:0c:b3:7a:b8: 4f:eb:80:a0:76:76:27:54:17:fe:f3:e7:d2:89:7d:64:47:c3: 23:bb:1c:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJFQzcxMTAvBgNVBAUTKDAxMEI0MDdCNzVGNkUzMzhGM0FGQjU5QThENjI3MTVD M0MwMkVDRjQwHhcNMjUxMjIwMTYyNDI1WhcNMjUxMjI3MTYyNDI1WjAYMRYwFAYD VQQDDA02OTQ2Y2RiYS1kZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXHcBOAYggx0n+hAyGZb1h5TihMt+izYFH47V0DJozJAYjY6PsktrNn8P0Ku 4jWJHidKkG1iEf9sYd4IJJjTgq1oBW2u96McWYejGFFOaYmbdtFybouNTQa4jiEP vKTTzdEZmskHI1t3zsf2Jkr+695eD8sNpTHL0rO5snGKSPrAoCV+bhlmb/PnmLQ9 silzMpXGyK+dd/H1b/rzSS9im7OhBZToe+i1CW+YAFh7dHKE2oHC3Rph/YsiNdAh 218qiTHyMkq74CV5kuz9tHf5zcg4Dj88JFqEmCf9aPbXRVfFnS0D/x8FX7w9qC4/ 7qV23Zw8dEcF60hmRKhILmXFXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExwiXj8 /66T27+O+8oAqTolJXEeMB8GA1UdIwQYMBaAFAELQHt19uM486+1mo1icVw8Auz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkVDNy8yOTM0NzI2QUZB NzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6anpyN1dhaldKeFhEd0M3 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRdEFlM1gyNHpqenI3V2FqV0p4WER3QzdQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkVDNy8yOTM0NzI2QUZBNzgxMUU3OUNCNjA4N0RDNEY5QUUwMi9BUXRBZTNYMjR6 anpyN1dhaldKeFhEd0M3UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC03xzTnKmqqeTAtf3IXw5Dk9z7FFPF32/ivYXaDZSllxqOb0iGKF4M WDbrTfa2vHpeAsfJ6fNB5CIOXojqP47k8n4/bbWoSC4sTSQozW+JdU6cS7cS9TKI jUIGB9SxB5jNEUbty76y7tkeY7AOhlIoacGq+75H41xH6I0i9vnR6CE1bJJo7hLC LKQ0vQ3tk60c6k2y9ZVYUI8rXWnFyEz7CRZmcA4YwtmSDBoUXwawn0q4fAGGyuCO sUgXqlLMwRLsCeRLbzAyEJH/veJwl3k/ocw3FGuGRZmwUu5LEPt+zDXn8dWrowyz erhP64CgdnYnVBf+8+fSiX1kR8Mjuxxg -----END CERTIFICATE-----Generated at Mon Dec 22 03:51:37 2025 by rpki-client