This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft File: 28EoRfH6o1sy_s32oO1NFEKSyMw.mft (raw, json) Hash identifier: og3afCE5dPIYKJ92/LJ+V0NxGg0B31zctsF/84hPAWg= Subject key identifier: 0D:5B:8A:31:9D:E9:46:75:3D:20:5F:1F:5B:9A:D3:A8:CB:1E:9C:9B Authority key identifier: DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC Certificate issuer: /CN=A9134790/serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft Manifest number: 63 Signing time: Fri 19 Dec 2025 06:01:05 +0000 Manifest this update: Fri 19 Dec 2025 06:01:05 +0000 Manifest next update: Fri 26 Dec 2025 06:01:05 +0000 Files and hashes: 1: 28EoRfH6o1sy_s32oO1NFEKSyMw.crl (hash: rSBiZYBK8BMdBG5A4QoSDiCKxlUlMBrYS54wOREg8lQ=) 2: 078FA91C44EA11F09EB11858C4F9AE02.roa (hash: 0gESDeiknT1uDimkCFfPCuziTgWG/TNYoJv8MT/MXRA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 06:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134790, serialNumber=DBC12845F1FAA35B32FECDF6A0ED4D144292C8CC Validity Not Before: Dec 19 06:01:05 2025 GMT Not After : Dec 26 06:01:05 2025 GMT Subject: CN=6944ea21-2a0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:72:be:33:51:23:07:09:da:a9:5f:89:8b: b2:5c:06:45:eb:4b:5c:49:de:7a:60:22:c2:41:e9: d8:16:a1:42:2f:ed:8d:6f:f0:e0:52:9c:02:3c:0c: 9b:fa:4f:83:2c:78:fe:3e:da:aa:55:eb:f1:96:2c: fa:ac:9e:39:61:16:b7:61:ab:23:21:0b:82:5f:a4: 44:b1:20:9c:c5:c7:bf:76:85:19:01:16:fd:f9:c2: 31:6d:08:92:b8:35:1a:59:cf:61:b2:36:61:14:db: 7e:0f:1a:db:36:7c:a4:fc:12:c8:f3:9e:19:44:84: 55:2f:cd:a2:0a:7d:a5:4b:e8:96:94:0f:91:d8:f1: ae:30:b2:37:98:5a:da:b7:e9:49:b9:89:e6:0f:d7: 75:bf:4c:4e:14:0d:09:4c:5e:88:35:73:8a:21:62: 4f:cf:f1:e0:7a:95:fb:90:6f:04:f4:50:e5:b8:87: 6e:7c:b8:84:21:bc:3a:f0:8e:99:96:99:2d:0e:3e: c8:12:2b:b3:15:76:9c:59:3b:b3:85:ef:d2:79:fb: f5:e5:b0:e3:0d:1c:f1:bd:a9:a5:3a:e8:57:27:72: ef:54:8f:74:ca:d2:a7:90:ac:63:cd:f7:55:fb:cf: e1:d9:7d:c0:c5:f0:d8:99:e5:83:b0:08:39:81:b5: 5a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:5B:8A:31:9D:E9:46:75:3D:20:5F:1F:5B:9A:D3:A8:CB:1E:9C:9B X509v3 Authority Key Identifier: keyid:DB:C1:28:45:F1:FA:A3:5B:32:FE:CD:F6:A0:ED:4D:14:42:92:C8:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28EoRfH6o1sy_s32oO1NFEKSyMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134790/5133FEAC44E911F091A96E53C4F9AE02/28EoRfH6o1sy_s32oO1NFEKSyMw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:a6:a3:97:a0:90:f3:0a:f2:3a:ba:02:f7:49:bc:1a:50:92: 9a:2e:dc:31:00:40:d6:65:fe:84:b2:bc:51:2b:61:5a:18:a1: 37:78:fe:5b:9e:32:ad:d6:81:ec:e0:f1:1b:cd:4d:26:a0:fb: cb:c7:cc:59:4a:86:96:b9:06:6f:fe:1b:e4:ca:9d:b8:28:2f: 4f:85:1b:f6:20:bf:b6:c6:4a:59:1d:30:b8:d2:78:f0:58:b7: b0:7a:08:57:02:be:c1:5b:6b:cc:c0:6f:56:65:9f:cb:8c:29: 29:37:1c:cd:3a:9f:2e:69:40:a3:bc:49:6b:d3:2b:15:7b:80: c6:ec:de:ac:f1:9b:f8:86:0a:7d:a0:6e:9c:64:7d:89:83:94: 34:15:8f:8a:a4:b8:95:65:e2:e2:35:8b:13:57:a5:e2:50:e9: 3c:78:14:f2:33:8a:08:e5:72:ac:30:6f:e6:4b:b3:2c:5d:94: 18:96:41:87:c2:b2:83:d6:43:80:f3:9a:e6:75:ef:2f:e5:0f: d0:3e:a6:93:12:f4:ed:55:10:87:4f:6a:51:2b:3a:b1:8a:53: a9:26:32:ee:56:f7:c2:36:11:c6:21:bc:36:5e:5b:ff:a5:4a: 7e:aa:b6:29:a8:d6:98:b3:76:c6:78:2f:62:8f:b5:ab:be:e8: 2a:95:a7:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NDc5MDExMC8GA1UEBRMoREJDMTI4NDVGMUZBQTM1QjMyRkVDREY2QTBFRDREMTQ0 MjkyQzhDQzAeFw0yNTEyMTkwNjAxMDVaFw0yNTEyMjYwNjAxMDVaMBgxFjAUBgNV BAMMDTY5NDRlYTIxLTJhMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ7nK+M1EjBwnaqV+Ji7JcBkXrS1xJ3npgIsJB6dgWoUIv7Y1v8OBSnAI8DJv6 T4MseP4+2qpV6/GWLPqsnjlhFrdhqyMhC4JfpESxIJzFx792hRkBFv35wjFtCJK4 NRpZz2GyNmEU234PGts2fKT8EsjznhlEhFUvzaIKfaVL6JaUD5HY8a4wsjeYWtq3 6Um5ieYP13W/TE4UDQlMXog1c4ohYk/P8eB6lfuQbwT0UOW4h258uIQhvDrwjpmW mS0OPsgSK7MVdpxZO7OF79J5+/XlsOMNHPG9qaU66Fcncu9Uj3TK0qeQrGPN91X7 z+HZfcDF8NiZ5YOwCDmBtVojAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDVuKMZ3p RnU9IF8fW5rTqMsenJswHwYDVR0jBBgwFoAU28EoRfH6o1sy/s32oO1NFEKSyMww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0NzkwLzUxMzNGRUFDNDRF OTExRjA5MUE5NkU1M0M0RjlBRTAyLzI4RW9SZkg2bzFzeV9zMzJvTzFORkVLU3lN dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjhFb1JmSDZvMXN5X3MzMm9PMU5GRUtTeU13LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 NzkwLzUxMzNGRUFDNDRFOTExRjA5MUE5NkU1M0M0RjlBRTAyLzI4RW9SZkg2bzFz eV9zMzJvTzFORkVLU3lNdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACWmo5egkPMK8jq6AvdJvBpQkpou3DEAQNZl/oSyvFErYVoYoTd4/lue Mq3Wgezg8RvNTSag+8vHzFlKhpa5Bm/+G+TKnbgoL0+FG/Ygv7bGSlkdMLjSePBY t7B6CFcCvsFba8zAb1Zln8uMKSk3HM06ny5pQKO8SWvTKxV7gMbs3qzxm/iGCn2g bpxkfYmDlDQVj4qkuJVl4uI1ixNXpeJQ6Tx4FPIzigjlcqwwb+ZLsyxdlBiWQYfC soPWQ4DzmuZ17y/lD9A+ppMS9O1VEIdPalErOrGKU6kmMu5W98I2EcYhvDZeW/+l Sn6qtimo1pizdsZ4L2KPtau+6CqVp+o= -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:58 2025 by rpki-client