This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft File: 84ggnKyyxrgUysV4XUv002zElx8.mft (raw, json) Hash identifier: RIEeDnQFcqnuVoY3rWcvxFl/qvL61BOwCFbBed3ff/8= Subject key identifier: C2:4C:3D:BE:4D:48:01:F9:C0:D2:6F:87:7B:26:BC:AB:F7:59:86:9A Authority key identifier: F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F Certificate issuer: /CN=A9138A50/serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Certificate serial: 04BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft Manifest number: 04B5 Signing time: Wed 24 Dec 2025 23:05:27 +0000 Manifest this update: Wed 24 Dec 2025 23:05:26 +0000 Manifest next update: Wed 31 Dec 2025 23:05:26 +0000 Files and hashes: 1: 84ggnKyyxrgUysV4XUv002zElx8.crl (hash: XJE0tcVlpK7cx9164ijLTqtPK40f25lk2oJo5SZwZs4=) 2: 0DA4853256FC11EC8032440FC4F9AE02.roa (hash: qCU/OsBRO4+PMlzfkCWYCpZe9YTKzCH9brvEdyELMJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 23:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138A50, serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Validity Not Before: Dec 24 23:05:26 2025 GMT Not After : Dec 31 23:05:26 2025 GMT Subject: CN=694c71b6-2558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6f:ff:34:df:fe:0e:c7:58:33:40:c2:9f:17: 78:22:6c:2c:48:88:82:db:10:8f:c4:dd:1b:13:3e: c3:30:cf:69:e0:c4:e6:62:e3:70:d5:0e:e1:f9:02: 91:93:a8:42:36:c2:93:db:b8:7f:43:91:b6:7e:21: 68:79:fc:70:ee:cb:6e:85:7a:10:fe:20:57:db:9c: 6b:c1:a8:0a:de:c4:e9:44:b9:5f:e5:cf:00:6f:ab: f9:9b:ed:43:89:83:1e:ce:2d:c9:3c:b5:74:58:f3: a8:84:d5:3a:c5:c7:3a:27:e8:f8:e7:0b:8b:b8:f4: fd:93:94:b1:41:fd:52:95:de:aa:7a:a3:eb:a8:2a: 75:f6:c6:68:60:2e:75:70:13:93:84:86:c6:b0:3c: 98:85:35:95:4c:4c:53:0c:e5:23:d0:8b:d3:19:74: 72:b6:11:b5:d5:15:c1:e2:c0:28:d0:df:b8:50:98: ec:d6:cd:c2:dd:4c:a3:c7:14:89:7e:68:7f:2f:70: 64:d4:7a:f8:b9:0a:b7:54:e1:30:73:d6:7e:ab:6c: 02:64:69:4d:e7:43:75:89:35:3f:40:04:fc:1f:4b: 6d:83:22:3c:bc:01:7a:2a:61:2d:ca:10:c8:df:02: 6a:02:f5:3f:b9:e7:5f:97:82:60:e3:64:85:f2:78: 84:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4C:3D:BE:4D:48:01:F9:C0:D2:6F:87:7B:26:BC:AB:F7:59:86:9A X509v3 Authority Key Identifier: keyid:F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:82:9e:fd:94:1d:2d:ef:e8:e1:e7:5f:1f:ad:f5:a3:a2:ae: 15:31:f1:dd:2f:17:8e:9b:ca:5e:c3:29:ac:42:3a:ab:2c:b3: 30:1f:e2:26:72:ba:62:35:5c:f3:d5:18:05:b2:33:62:b0:44: cf:63:53:f6:a5:35:3c:57:d9:b4:33:d2:b4:09:f3:e2:99:9d: 87:98:f4:6b:d7:18:c1:f7:0d:6f:93:16:6b:0d:6a:82:74:e3: 16:a9:68:5b:ba:81:bf:0b:49:7b:1a:9b:6d:03:77:c7:ab:11: 60:a0:fe:02:23:14:18:24:42:17:ae:71:9a:d3:80:4d:91:ab: c3:6f:4d:da:ec:ec:6c:38:5a:5a:a0:43:8d:56:aa:7a:b9:9f: 70:05:c7:96:63:b1:4b:4a:eb:9d:bb:d2:84:ab:b9:62:36:5d: 4a:71:f1:0f:65:16:4a:f7:b0:29:d8:53:eb:e5:8b:e5:25:59: 13:27:08:c3:ac:03:81:5a:95:a4:07:08:8b:db:7f:24:2d:53: 67:8b:22:bb:78:b8:f7:ea:59:c3:fa:09:90:f0:23:f5:2a:63: 10:ef:d3:35:0e:f2:9f:da:29:09:f9:02:bb:a7:6b:11:53:c2: 87:63:47:95:5e:e2:69:b6:aa:07:28:c9:4f:cf:7e:d6:fd:b2: 06:fd:a3:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhBNTAxMTAvBgNVBAUTKEYzODgyMDlDQUNCMkM2QjgxNENBQzU3ODVENEJGNEQz NkNDNDk3MUYwHhcNMjUxMjI0MjMwNTI2WhcNMjUxMjMxMjMwNTI2WjAYMRYwFAYD VQQDDA02OTRjNzFiNi0yNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsW//NN/+DsdYM0DCnxd4ImwsSIiC2xCPxN0bEz7DMM9p4MTmYuNw1Q7h+QKR k6hCNsKT27h/Q5G2fiFoefxw7stuhXoQ/iBX25xrwagK3sTpRLlf5c8Ab6v5m+1D iYMezi3JPLV0WPOohNU6xcc6J+j45wuLuPT9k5SxQf1Sld6qeqPrqCp19sZoYC51 cBOThIbGsDyYhTWVTExTDOUj0IvTGXRythG11RXB4sAo0N+4UJjs1s3C3UyjxxSJ fmh/L3Bk1Hr4uQq3VOEwc9Z+q2wCZGlN50N1iTU/QAT8H0ttgyI8vAF6KmEtyhDI 3wJqAvU/uedfl4Jg42SF8niERQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJMPb5N SAH5wNJvh3smvKv3WYaaMB8GA1UdIwQYMBaAFPOIIJysssa4FMrFeF1L9NNsxJcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEE1MC9DOUE3QTQzODU2 RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhyZ1V5c1Y0WFV2MDAyekVs eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0Z2duS3l5eHJnVXlzVjRYVXYwMDJ6RWx4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEE1MC9DOUE3QTQzODU2RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhy Z1V5c1Y0WFV2MDAyekVseDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpgp79lB0t7+jh518frfWjoq4VMfHdLxeOm8pewymsQjqrLLMwH+Im crpiNVzz1RgFsjNisETPY1P2pTU8V9m0M9K0CfPimZ2HmPRr1xjB9w1vkxZrDWqC dOMWqWhbuoG/C0l7GpttA3fHqxFgoP4CIxQYJEIXrnGa04BNkavDb03a7OxsOFpa oEONVqp6uZ9wBceWY7FLSuudu9KEq7liNl1KcfEPZRZK97Ap2FPr5YvlJVkTJwjD rAOBWpWkBwiL238kLVNniyK7eLj36lnD+gmQ8CP1KmMQ79M1DvKf2ikJ+QK7p2sR U8KHY0eVXuJptqoHKMlPz37W/bIG/aOy -----END CERTIFICATE-----Generated at Thu Dec 25 06:57:37 2025 by rpki-client