This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft File: rBnGa8SzHOuTC6auDW63R7EKtgY.mft (raw, json) Hash identifier: +aWD0VH+v6/zOU1IthwLvALrH8k4vbZopLxHTa5lVjI= Subject key identifier: B7:97:36:B9:6C:AC:DC:19:CC:8D:BB:28:FF:66:ED:7E:15:DB:AA:A4 Authority key identifier: AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 Certificate issuer: /CN=A9141E28/serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Certificate serial: 34F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft Manifest number: 34F3 Signing time: Thu 18 Dec 2025 14:38:43 +0000 Manifest this update: Thu 18 Dec 2025 14:38:43 +0000 Manifest next update: Thu 25 Dec 2025 14:38:43 +0000 Files and hashes: 1: rBnGa8SzHOuTC6auDW63R7EKtgY.crl (hash: mcI8tAN6SOY9ctxRUk+fCJGxTk5Hao9Ku5pQ4GtdBSA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 14:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13555 (0x34f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141E28, serialNumber=AC19C66BC4B31CEB930BA6AE0D6EB747B10AB606 Validity Not Before: Dec 18 14:38:43 2025 GMT Not After : Dec 25 14:38:43 2025 GMT Subject: CN=694411f3-9645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fa:86:49:dd:ba:c8:e8:38:65:b7:78:2e:a4: 90:0a:8f:a9:0b:4d:2b:47:35:07:d6:cd:f9:64:c8: 24:35:c3:cc:6e:f5:03:ac:f5:2f:c8:aa:34:3d:23: 9e:d3:30:9a:c8:bc:08:e1:45:62:c1:9c:cb:d2:f8: ad:9b:5e:e6:99:64:6f:eb:79:9c:2f:3e:80:13:1d: 3c:a7:0e:c4:ad:0f:3e:08:c6:9e:7f:a4:01:36:8c: c1:60:4e:e0:1c:58:73:f0:f5:66:01:6f:ea:ec:cc: dd:76:68:05:8e:0d:12:98:f6:83:04:0d:6d:9d:a2: 8c:42:0e:d8:b1:cd:56:d4:a0:9f:0d:a9:b7:9d:b1: 4c:2f:83:61:df:66:65:f2:8e:34:e9:e8:10:e1:ff: b6:2a:20:56:3f:84:d5:41:7b:4a:0a:b9:e6:78:d5: 41:43:86:ba:83:22:d7:d4:08:31:ef:e7:94:09:a2: b4:c2:a8:08:7c:b2:5d:f3:73:5f:1b:27:22:aa:bf: ae:91:ba:ea:75:c1:a4:2d:92:b0:d5:6a:f4:74:73: 33:dd:e6:bd:9d:8d:0e:4e:3c:51:ad:76:3e:06:c6: d5:81:7e:14:74:fc:3c:12:56:1d:42:db:c4:e5:93: 6d:28:b5:a1:ce:7d:14:27:a2:5b:d3:1d:8d:12:e8: 7d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:97:36:B9:6C:AC:DC:19:CC:8D:BB:28:FF:66:ED:7E:15:DB:AA:A4 X509v3 Authority Key Identifier: keyid:AC:19:C6:6B:C4:B3:1C:EB:93:0B:A6:AE:0D:6E:B7:47:B1:0A:B6:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rBnGa8SzHOuTC6auDW63R7EKtgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141E28/8458B9101D8F11E2AB03A2EE08B02CD2/rBnGa8SzHOuTC6auDW63R7EKtgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:03:8d:d2:1b:27:7d:f5:3e:90:af:0f:a4:d1:85:3d:91:44: 2c:ee:75:25:93:d7:68:c9:e6:bf:d4:76:24:07:33:be:b2:2c: 2c:72:83:5b:1d:de:9f:7c:49:53:02:c8:ca:cd:fd:70:31:e1: a4:fc:99:d8:b7:26:ab:f1:69:85:b7:2a:68:b4:9f:d6:a9:7c: f4:cd:77:37:72:4c:48:ee:8c:ef:6a:5d:52:18:01:d5:13:a4: 68:8a:95:dc:c2:ec:c3:e8:bb:e8:6b:2a:0b:0d:a4:d3:ae:04: c3:91:a6:34:6e:3c:6b:c3:b8:84:c0:35:ef:01:42:96:a9:13: 45:7a:c7:02:23:45:52:a5:71:77:9a:81:17:af:13:04:c4:c9: 58:d7:74:0e:15:99:c4:4c:11:83:93:0a:43:f8:05:42:b3:98: fb:a5:e3:26:9a:ab:70:77:5d:df:b9:3b:6c:b4:2d:87:1c:60: f2:85:56:94:f1:6b:1a:06:d8:b7:91:87:72:cb:c0:56:0e:66: da:6a:9b:91:25:55:e6:21:a0:36:f6:f8:e6:d7:92:db:48:d2: f0:ac:39:1d:25:5a:e4:58:50:26:54:69:4b:73:a9:6d:5d:54: 0d:b9:bb:b0:30:82:70:1b:fc:3c:05:e2:ae:4a:28:24:ca:ae: 85:7e:c3:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFFMjgxMTAvBgNVBAUTKEFDMTlDNjZCQzRCMzFDRUI5MzBCQTZBRTBENkVCNzQ3 QjEwQUI2MDYwHhcNMjUxMjE4MTQzODQzWhcNMjUxMjI1MTQzODQzWjAYMRYwFAYD VQQDDA02OTQ0MTFmMy05NjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvqGSd26yOg4Zbd4LqSQCo+pC00rRzUH1s35ZMgkNcPMbvUDrPUvyKo0PSOe 0zCayLwI4UViwZzL0vitm17mmWRv63mcLz6AEx08pw7ErQ8+CMaef6QBNozBYE7g HFhz8PVmAW/q7MzddmgFjg0SmPaDBA1tnaKMQg7Ysc1W1KCfDam3nbFML4Nh32Zl 8o406egQ4f+2KiBWP4TVQXtKCrnmeNVBQ4a6gyLX1Agx7+eUCaK0wqgIfLJd83Nf Gyciqr+ukbrqdcGkLZKw1Wr0dHMz3ea9nY0OTjxRrXY+BsbVgX4UdPw8ElYdQtvE 5ZNtKLWhzn0UJ6Jb0x2NEuh9BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeXNrls rNwZzI27KP9m7X4V26qkMB8GA1UdIwQYMBaAFKwZxmvEsxzrkwumrg1ut0exCrYG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUUyOC84NDU4QjkxMDFE OEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhPdVRDNmF1RFc2M1I3RUt0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JCbkdhOFN6SE91VEM2YXVEVzYzUjdFS3RnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUUyOC84NDU4QjkxMDFEOEYxMUUyQUIwM0EyRUUwOEIwMkNEMi9yQm5HYThTekhP dVRDNmF1RFc2M1I3RUt0Z1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/A43SGyd99T6Qrw+k0YU9kUQs7nUlk9doyea/1HYkBzO+siwscoNb Hd6ffElTAsjKzf1wMeGk/JnYtyar8WmFtypotJ/WqXz0zXc3ckxI7ozval1SGAHV E6RoipXcwuzD6LvoayoLDaTTrgTDkaY0bjxrw7iEwDXvAUKWqRNFescCI0VSpXF3 moEXrxMExMlY13QOFZnETBGDkwpD+AVCs5j7peMmmqtwd13fuTtstC2HHGDyhVaU 8WsaBti3kYdyy8BWDmbaapuRJVXmIaA29vjm15LbSNLwrDkdJVrkWFAmVGlLc6lt XVQNubuwMIJwG/w8BeKuSigkyq6FfsMw -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:07 2025 by rpki-client