This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: rNYlkTXcOKxtyUrnTpDIU48bFYG4oG9I8ua/faC3Qs0= Subject key identifier: 1B:39:75:1A:D4:64:D5:BD:13:5A:23:FE:B3:20:0F:CF:6B:0C:E5:5E Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 0237 Signing time: Fri 19 Dec 2025 01:06:59 +0000 Manifest this update: Fri 19 Dec 2025 01:06:59 +0000 Manifest next update: Fri 26 Dec 2025 01:06:59 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: OgiD13PaRmrs1LJsaomTW/QFul23F8bhc1f4Wz/8bQ4=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Dec 19 01:06:59 2025 GMT Not After : Dec 26 01:06:59 2025 GMT Subject: CN=6944a533-3667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8e:69:34:90:12:34:15:a1:92:c9:95:20:72: 83:57:8c:f8:51:4e:03:00:7e:f9:99:03:81:e5:ec: de:01:77:77:ac:f4:fa:40:11:47:d0:b7:12:3a:d9: f0:24:8f:aa:36:42:bc:86:6b:43:63:c9:b4:2e:52: 38:21:ad:a7:bf:94:7e:19:23:5d:56:b2:b6:11:53: 7d:7b:d0:9c:42:21:ae:56:67:d9:aa:bf:92:a4:fc: eb:d4:2e:0f:8a:42:ba:98:f1:25:26:8c:79:36:7f: aa:a7:4b:af:31:52:01:16:3d:b2:5c:be:54:22:64: 56:74:0a:14:a6:c2:bb:72:be:a6:6e:59:d5:65:9d: ba:fd:b0:0d:fd:4e:2b:3e:d4:00:df:1d:10:81:41: 9c:22:52:96:bc:1d:05:16:ca:0c:e4:c0:e1:cd:db: 1d:93:91:e1:8a:3b:b6:cc:9a:4d:0e:4d:c0:14:f7: 25:ac:f5:d6:96:51:e3:27:2f:8a:c3:b5:0d:08:c5: a0:97:1a:15:62:5c:5b:e1:1f:fa:5f:bb:50:bf:2e: 2b:ef:ac:ab:fe:ca:6e:7c:80:24:37:55:7f:15:de: af:da:cf:c1:6f:03:ab:58:87:3e:af:b2:f9:a0:b7: 56:7c:93:da:25:ea:e9:31:42:48:ca:87:a7:2f:19: 15:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:39:75:1A:D4:64:D5:BD:13:5A:23:FE:B3:20:0F:CF:6B:0C:E5:5E X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:78:28:d9:70:0a:64:8e:d7:6e:9e:de:e8:d1:06:04:a4:28: e4:9c:c0:bf:dd:9a:51:de:af:04:8d:11:68:cc:ed:ba:77:7a: 2e:08:d9:65:60:1d:93:21:9b:2b:d2:32:7b:89:d5:19:72:ac: 8c:9d:ce:9e:59:60:1d:91:ea:dd:0f:06:ae:3e:6e:8a:98:dd: 69:2b:cb:e2:3f:88:2a:53:4b:ac:a5:7a:16:26:c3:e7:3c:0c: d1:08:d6:e1:7d:97:9f:35:ba:ad:ad:a8:39:ad:0d:e6:cb:18: 0c:e5:27:03:dc:28:ac:a0:69:3b:6b:d3:c7:53:1e:48:3c:a6: 3e:59:77:65:16:cb:05:96:28:c9:d1:2e:0e:0a:65:ac:71:bf: 01:ae:1a:51:ce:db:45:06:c5:51:ec:be:a3:3c:12:ec:18:8c: df:fd:8c:31:56:00:6b:e5:44:3c:ba:a1:52:72:a1:94:c8:46: 6f:74:ae:29:41:fd:77:5c:af:8b:01:38:ba:88:e5:f4:04:75: 1c:df:35:4a:14:61:c0:68:38:3f:b1:a4:24:7d:d0:96:f2:91: 7f:ef:3d:35:57:3f:19:31:f0:de:25:1b:32:b8:2e:b9:7e:4f: 7e:d9:55:16:d0:98:d8:af:cc:05:c3:b2:bf:26:86:b1:7c:fb: db:9b:ea:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUxMjE5MDEwNjU5WhcNMjUxMjI2MDEwNjU5WjAYMRYwFAYD VQQDDA02OTQ0YTUzMy0zNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo5pNJASNBWhksmVIHKDV4z4UU4DAH75mQOB5ezeAXd3rPT6QBFH0LcSOtnw JI+qNkK8hmtDY8m0LlI4Ia2nv5R+GSNdVrK2EVN9e9CcQiGuVmfZqr+SpPzr1C4P ikK6mPElJox5Nn+qp0uvMVIBFj2yXL5UImRWdAoUpsK7cr6mblnVZZ26/bAN/U4r PtQA3x0QgUGcIlKWvB0FFsoM5MDhzdsdk5Hhiju2zJpNDk3AFPclrPXWllHjJy+K w7UNCMWglxoVYlxb4R/6X7tQvy4r76yr/spufIAkN1V/Fd6v2s/BbwOrWIc+r7L5 oLdWfJPaJerpMUJIyoenLxkVCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBs5dRrU ZNW9E1oj/rMgD89rDOVeMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALeCjZcApkjtdunt7o0QYEpCjknMC/3ZpR3q8EjRFozO26d3ouCNll YB2TIZsr0jJ7idUZcqyMnc6eWWAdkerdDwauPm6KmN1pK8viP4gqU0uspXoWJsPn PAzRCNbhfZefNbqtrag5rQ3myxgM5ScD3CisoGk7a9PHUx5IPKY+WXdlFssFlijJ 0S4OCmWscb8BrhpRzttFBsVR7L6jPBLsGIzf/YwxVgBr5UQ8uqFScqGUyEZvdK4p Qf13XK+LATi6iOX0BHUc3zVKFGHAaDg/saQkfdCW8pF/7z01Vz8ZMfDeJRsyuC65 fk9+2VUW0JjYr8wFw7K/JoaxfPvbm+pp -----END CERTIFICATE-----Generated at Fri Dec 19 19:22:58 2025 by rpki-client