This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: HipSiu/p9U4yRaJniEtm46f1dzLlq7xMje5PHISEYZA= Subject key identifier: 88:38:BA:E1:44:6C:34:A0:9F:B9:F1:F7:9D:CD:57:56:4A:71:BD:92 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0D8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0D82 Signing time: Thu 18 Dec 2025 17:44:17 +0000 Manifest this update: Thu 18 Dec 2025 17:44:16 +0000 Manifest next update: Thu 25 Dec 2025 17:44:16 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: 7BCfVU3Uae2+tafmDmXKVtVg8EnLpRW/GwHdH3478I8=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: 5GX92aioe88puPmyzGflssCck3bnuW06XT8lCNmGXB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:44:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3467 (0xd8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Dec 18 17:44:16 2025 GMT Not After : Dec 25 17:44:16 2025 GMT Subject: CN=69443d70-e38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4f:06:01:38:d9:a5:9f:fc:a3:3d:20:be:65: 73:81:e1:4e:75:99:42:6d:73:3e:9a:b9:0a:33:87: 09:69:85:45:60:72:a3:9d:37:cd:9f:96:c3:4c:e0: 68:f2:51:34:d8:fe:a7:5e:de:7a:f4:c1:d7:0d:81: 2f:91:32:f3:f8:a0:f4:bc:ea:97:16:14:ba:19:32: b3:aa:91:3e:79:67:51:2e:01:0b:db:a1:1f:16:fa: 64:63:68:20:05:73:1a:49:14:c6:0a:cb:dc:b6:ca: 9a:11:79:22:8d:e0:58:67:3e:75:6c:36:16:33:c3: fc:70:5b:54:f4:2c:b3:37:a9:49:22:0d:ac:8a:9c: 16:55:e5:16:18:a5:96:69:06:8f:9c:99:46:04:60: 04:35:cd:58:b7:00:12:5a:94:0d:d7:5a:ca:5f:fc: 30:e3:86:67:2c:f2:b0:4b:48:4e:5a:29:5f:da:ae: 8d:b5:5b:28:14:cd:95:ec:aa:0f:49:55:76:37:5f: fc:7d:5f:90:8f:c8:cd:d2:48:ce:8e:a3:6f:03:ae: c9:c0:d0:5a:eb:ad:1c:9f:40:fc:bc:fb:72:31:73: 74:f5:86:f6:21:b1:2d:30:4f:45:1f:77:3b:94:4b: 87:25:fb:36:b0:1a:03:b3:88:7d:19:67:ab:c6:76: e1:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:38:BA:E1:44:6C:34:A0:9F:B9:F1:F7:9D:CD:57:56:4A:71:BD:92 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:8f:0d:69:0b:13:a7:77:44:54:65:9c:b8:d4:b1:f8:e0:b7: 16:56:8d:ce:59:c6:0e:6d:7e:7a:f4:89:65:01:1d:30:d5:24: 8f:ca:14:c5:50:72:21:53:81:6d:35:68:b5:8d:1c:19:d5:b3: 8e:be:83:a2:70:6c:e2:27:26:e6:36:24:c9:5b:31:19:97:1a: 6e:ec:5a:36:78:08:2b:1d:69:01:2c:ee:48:4e:35:fb:36:08: 82:2b:1a:68:cd:06:79:2f:67:9c:a9:79:af:bd:d2:8e:38:b2: 45:69:e7:11:36:98:8d:bb:06:b0:17:02:c2:e5:9b:94:91:ad: 62:7e:07:a0:a8:5a:35:b2:7c:8e:7d:42:d4:66:6a:b1:02:6b: 96:c6:62:68:22:e8:0f:23:1e:c7:92:7a:2a:19:41:05:ca:a0: f3:3d:d3:30:ef:b2:93:b7:ae:ac:8e:2e:f6:70:2a:45:c8:ab: d5:29:0f:b9:05:d1:1b:b9:b1:cd:f0:d0:51:58:c2:b7:55:37: 1e:67:94:f8:46:ef:43:e6:13:e8:23:47:c4:70:bf:ae:64:24: 01:b9:45:3e:08:aa:6d:c8:3f:84:b9:e7:e6:ca:91:20:d5:1a: fe:55:74:dc:36:37:66:d6:5b:1c:e1:b6:68:23:fb:8a:d1:f1: d8:0d:07:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjUxMjE4MTc0NDE2WhcNMjUxMjI1MTc0NDE2WjAYMRYwFAYD VQQDDA02OTQ0M2Q3MC1lMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4k8GATjZpZ/8oz0gvmVzgeFOdZlCbXM+mrkKM4cJaYVFYHKjnTfNn5bDTOBo 8lE02P6nXt569MHXDYEvkTLz+KD0vOqXFhS6GTKzqpE+eWdRLgEL26EfFvpkY2gg BXMaSRTGCsvctsqaEXkijeBYZz51bDYWM8P8cFtU9CyzN6lJIg2sipwWVeUWGKWW aQaPnJlGBGAENc1YtwASWpQN11rKX/ww44ZnLPKwS0hOWilf2q6NtVsoFM2V7KoP SVV2N1/8fV+Qj8jN0kjOjqNvA67JwNBa660cn0D8vPtyMXN09Yb2IbEtME9FH3c7 lEuHJfs2sBoDs4h9GWerxnbh+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg4uuFE bDSgn7nx953NV1ZKcb2SMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdjw1pCxOnd0RUZZy41LH44LcWVo3OWcYObX569IllAR0w1SSPyhTF UHIhU4FtNWi1jRwZ1bOOvoOicGziJybmNiTJWzEZlxpu7Fo2eAgrHWkBLO5ITjX7 NgiCKxpozQZ5L2ecqXmvvdKOOLJFaecRNpiNuwawFwLC5ZuUka1ifgegqFo1snyO fULUZmqxAmuWxmJoIugPIx7HknoqGUEFyqDzPdMw77KTt66sji72cCpFyKvVKQ+5 BdEbubHN8NBRWMK3VTceZ5T4Ru9D5hPoI0fEcL+uZCQBuUU+CKptyD+EuefmypEg 1Rr+VXTcNjdm1lsc4bZoI/uK0fHYDQcj -----END CERTIFICATE-----Generated at Fri Dec 19 20:31:55 2025 by rpki-client