This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: AHMV1CnRQ7o2JcWSbkCyEBQmvEjjsqjWPEqz22l36Zs= Subject key identifier: E1:1A:9F:C5:83:D3:45:F6:0C:28:A9:4D:05:19:A8:BA:3C:5E:75:F2 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1C0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BFB Signing time: Sat 20 Dec 2025 16:02:39 +0000 Manifest this update: Sat 20 Dec 2025 16:02:38 +0000 Manifest next update: Sat 27 Dec 2025 16:02:38 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: 94deu2ZLO+tguxd/NgYmECdFrGeE8KcQ4qSXGb3qYbQ=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:02:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7181 (0x1c0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Dec 20 16:02:38 2025 GMT Not After : Dec 27 16:02:38 2025 GMT Subject: CN=6946c89f-3cda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:97:9a:43:ef:4e:a3:87:1e:a1:36:cb:f9:9c: 35:cd:77:bd:ee:28:3e:33:87:84:45:79:7b:60:71: 2a:44:88:75:ee:ee:69:ce:bc:70:94:b2:01:a8:01: 65:0e:7b:95:91:bf:1b:6f:aa:19:cb:30:02:88:85: a8:9c:ff:7e:4e:bb:20:5c:06:a0:e3:60:d1:3f:f3: 04:58:a3:b0:5f:1f:fb:6c:3b:9d:16:a4:7e:d1:c1: 0f:8e:87:aa:46:bf:4d:1c:21:f1:f0:71:39:c6:7b: 3b:3b:af:4b:97:a6:b1:22:9f:aa:e9:cc:4c:8b:ec: f2:48:5d:95:6a:81:8d:78:c7:86:a4:ea:b2:8a:81: f0:e9:c2:4f:d8:4a:88:b5:e1:12:1d:37:53:51:35: 0b:a3:24:38:98:d2:53:82:a8:ed:ee:5e:dd:ff:29: 5d:42:e1:09:e9:90:36:c9:5d:ed:60:28:4e:75:cb: 7f:fc:58:89:57:b3:99:a8:54:7b:ed:31:b2:1a:df: 75:5d:08:f8:2e:be:b3:41:92:74:eb:be:9d:fb:87: a6:ac:40:b3:ae:fd:70:5d:e2:7b:c1:15:38:4d:a9: 69:1e:b2:93:5d:f4:ce:e4:e7:98:7b:24:74:93:a2: a4:2c:43:f3:a7:f7:1e:ab:1c:34:e4:8a:3b:47:d9: 4d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:1A:9F:C5:83:D3:45:F6:0C:28:A9:4D:05:19:A8:BA:3C:5E:75:F2 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:a5:9b:23:e3:af:65:83:bc:2e:78:ad:5d:46:a1:34:f0:7e: 68:ca:05:1f:a4:b8:28:0f:74:30:df:86:2d:a8:89:e8:85:1f: 1e:f2:67:99:1f:f9:e1:21:dd:96:5f:2b:20:63:28:a0:17:bd: 66:af:93:f9:7f:5e:42:97:76:95:f3:c7:d9:34:ed:f2:fd:6e: a6:7f:56:11:b5:7e:0e:d2:a1:d8:6a:49:79:e7:45:3b:32:f7: 4e:a5:32:61:68:87:af:f3:ba:17:c7:ea:4f:6b:3e:26:19:f5: 00:67:85:fc:9e:95:6c:32:6a:99:73:ce:b8:af:9e:ad:c8:a6: 74:98:86:42:e2:c1:04:20:cd:87:e1:73:f1:5c:a2:a2:a9:25: 55:52:fc:9a:45:ee:ce:11:fa:e1:64:0b:7c:6c:7e:db:c4:8c: 3c:b2:e3:e2:5e:d7:e8:98:4e:3d:be:34:12:9e:e6:53:c9:0d: 17:02:aa:65:f2:74:6c:df:19:76:65:f6:85:45:50:db:c2:de: 78:6a:8f:67:cc:8f:30:7c:4f:cf:8d:28:10:a9:f2:c1:94:56: ab:7f:ae:ee:18:d1:28:92:7d:bf:7e:9b:16:1e:ef:9e:20:08: af:bf:55:ec:9a:d7:e7:b9:51:06:06:a5:09:18:91:8c:54:23: 7b:47:44:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUxMjIwMTYwMjM4WhcNMjUxMjI3MTYwMjM4WjAYMRYwFAYD VQQDDA02OTQ2Yzg5Zi0zY2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZeaQ+9Oo4ceoTbL+Zw1zXe97ig+M4eERXl7YHEqRIh17u5pzrxwlLIBqAFl DnuVkb8bb6oZyzACiIWonP9+TrsgXAag42DRP/MEWKOwXx/7bDudFqR+0cEPjoeq Rr9NHCHx8HE5xns7O69Ll6axIp+q6cxMi+zySF2VaoGNeMeGpOqyioHw6cJP2EqI teESHTdTUTULoyQ4mNJTgqjt7l7d/yldQuEJ6ZA2yV3tYChOdct//FiJV7OZqFR7 7TGyGt91XQj4Lr6zQZJ0676d+4emrECzrv1wXeJ7wRU4TalpHrKTXfTO5OeYeyR0 k6KkLEPzp/ceqxw05Io7R9lNLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEan8WD 00X2DCipTQUZqLo8XnXyMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+pZsj469lg7wueK1dRqE08H5oygUfpLgoD3Qw34YtqInohR8e8meZ H/nhId2WXysgYyigF71mr5P5f15Cl3aV88fZNO3y/W6mf1YRtX4O0qHYakl550U7 MvdOpTJhaIev87oXx+pPaz4mGfUAZ4X8npVsMmqZc864r56tyKZ0mIZC4sEEIM2H 4XPxXKKiqSVVUvyaRe7OEfrhZAt8bH7bxIw8suPiXtfomE49vjQSnuZTyQ0XAqpl 8nRs3xl2ZfaFRVDbwt54ao9nzI8wfE/PjSgQqfLBlFarf67uGNEokn2/fpsWHu+e IAivv1XsmtfnuVEGBqUJGJGMVCN7R0Si -----END CERTIFICATE-----Generated at Sun Dec 21 20:21:44 2025 by rpki-client