This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft File: sbozBTw5ulhlU3dDESOJ4wDEiAc.mft (raw, json) Hash identifier: K81Si88xTND66UNUxJNj8ooppUvt1Jiy7h7g+86Ge0M= Subject key identifier: 2C:7B:B5:AA:02:50:C2:51:12:02:F8:81:19:CD:ED:A9:67:3A:11:1F Authority key identifier: B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 Certificate issuer: /CN=A9150384/serialNumber=B1BA33053C39BA5865537743112389E300C48807 Certificate serial: 0CF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft Manifest number: 0CDC Signing time: Thu 18 Dec 2025 17:57:47 +0000 Manifest this update: Thu 18 Dec 2025 17:57:47 +0000 Manifest next update: Thu 25 Dec 2025 17:57:47 +0000 Files and hashes: 1: sbozBTw5ulhlU3dDESOJ4wDEiAc.crl (hash: liDCuR7wRRIS6xT84WISm2C+s23dQWlzPbmeXlqT5uA=) 2: 3240ED82D62D11EFB0442B5DC4F9AE02.roa (hash: TMu5hEbfrLw2YdTkxYULJSdYTtAL2nPXUFAhyo3Mq1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 17:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3315 (0xcf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150384, serialNumber=B1BA33053C39BA5865537743112389E300C48807 Validity Not Before: Dec 18 17:57:47 2025 GMT Not After : Dec 25 17:57:47 2025 GMT Subject: CN=6944409b-743b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:08:c8:6f:17:f0:f1:77:69:a9:10:ca:c8:e2: cf:50:df:7c:89:71:bb:82:2b:fb:cb:32:ff:f3:bf: c3:fb:f2:83:2d:3e:a7:26:1b:de:08:93:ad:16:5f: 65:bf:55:ea:6e:a5:fc:8e:fe:be:19:90:51:57:54: 3a:7c:4e:3e:0a:50:ac:7f:02:7e:48:69:a2:a2:bb: 92:de:b9:a5:5f:b2:a0:b8:81:8a:d5:1a:7f:45:70: 71:c7:f0:83:53:e7:6d:88:5e:f6:0f:45:3a:9a:de: ef:cd:a4:42:26:32:3a:8a:3b:5f:fc:ef:17:e9:d4: c8:b9:a9:87:f9:f7:2d:37:b8:2f:c8:24:95:a1:5b: ba:48:3c:c5:8e:fb:81:e5:ee:41:5c:3f:76:63:ad: ed:61:1d:66:61:2c:0d:f4:8d:a3:0f:f4:b6:68:4f: 20:25:01:91:88:72:c3:35:e5:b9:00:70:0c:ec:7b: 42:7a:f6:50:8f:c4:cc:dd:6c:b1:3b:57:a6:03:3a: 51:de:4d:97:36:79:f3:bd:88:53:71:d8:ba:3d:ec: 40:44:a8:70:d0:fe:56:13:09:68:64:b5:13:f0:95: a8:1b:3e:64:d2:15:e4:0b:ee:b6:97:f5:7b:71:f4: 2f:17:76:90:d0:73:c7:05:08:64:57:14:40:45:f6: f1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7B:B5:AA:02:50:C2:51:12:02:F8:81:19:CD:ED:A9:67:3A:11:1F X509v3 Authority Key Identifier: keyid:B1:BA:33:05:3C:39:BA:58:65:53:77:43:11:23:89:E3:00:C4:88:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sbozBTw5ulhlU3dDESOJ4wDEiAc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150384/937F372E005A11EAA094BD31C4F9AE02/sbozBTw5ulhlU3dDESOJ4wDEiAc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:07:5b:86:f9:68:58:3e:a8:5d:49:4f:8f:91:0c:be:7e:91: d9:c0:c4:46:30:a1:e2:73:48:6c:ad:7a:00:22:9f:09:2c:b1: 19:b7:d5:19:9d:86:7d:48:b3:83:bd:83:01:af:6b:06:78:fe: 7e:b7:98:99:9b:85:33:14:22:ac:62:26:32:d9:01:ce:7e:44: b2:57:11:af:13:d3:c2:11:ed:46:65:28:fc:6a:44:f4:f7:f3: 0a:8c:5d:97:44:2d:60:c8:47:82:9f:45:84:ef:78:d0:73:23: 46:c6:b1:ea:de:b5:15:b2:81:78:1a:2a:b3:6d:7f:98:b2:ab: 2f:94:1f:ac:80:f0:03:5c:ff:5d:16:95:7f:54:83:cd:ac:80: c2:52:5e:c2:47:96:d5:5d:ab:d8:e0:61:5b:8d:af:5e:ea:1a: a2:eb:f5:8f:f3:16:88:3f:55:77:de:e1:c9:cd:f3:66:fd:20: 13:e8:5e:a4:36:45:79:8b:14:2c:4f:f9:a3:e7:bb:f0:7e:6e: 1a:02:d7:aa:1d:11:d8:79:2f:af:d3:56:75:33:b5:67:37:aa: bc:bc:ec:74:83:b7:ca:d6:c2:3c:f2:60:ff:a8:1f:7b:db:07: 20:bf:7a:8a:e8:a6:e5:0c:0d:ea:ed:1a:ea:b0:cb:17:3f:02: c8:19:11:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzODQxMTAvBgNVBAUTKEIxQkEzMzA1M0MzOUJBNTg2NTUzNzc0MzExMjM4OUUz MDBDNDg4MDcwHhcNMjUxMjE4MTc1NzQ3WhcNMjUxMjI1MTc1NzQ3WjAYMRYwFAYD VQQDDA02OTQ0NDA5Yi03NDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgjIbxfw8XdpqRDKyOLPUN98iXG7giv7yzL/87/D+/KDLT6nJhveCJOtFl9l v1XqbqX8jv6+GZBRV1Q6fE4+ClCsfwJ+SGmioruS3rmlX7KguIGK1Rp/RXBxx/CD U+dtiF72D0U6mt7vzaRCJjI6ijtf/O8X6dTIuamH+fctN7gvyCSVoVu6SDzFjvuB 5e5BXD92Y63tYR1mYSwN9I2jD/S2aE8gJQGRiHLDNeW5AHAM7HtCevZQj8TM3Wyx O1emAzpR3k2XNnnzvYhTcdi6PexARKhw0P5WEwloZLUT8JWoGz5k0hXkC+62l/V7 cfQvF3aQ0HPHBQhkVxRARfbxJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCx7taoC UMJREgL4gRnN7alnOhEfMB8GA1UdIwQYMBaAFLG6MwU8ObpYZVN3QxEjieMAxIgH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDM4NC85MzdGMzcyRTAw NUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVsaGxVM2RERVNPSjR3REVp QWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nib3pCVHc1dWxobFUzZERFU09KNHdERWlBYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDM4NC85MzdGMzcyRTAwNUExMUVBQTA5NEJEMzFDNEY5QUUwMi9zYm96QlR3NXVs aGxVM2RERVNPSjR3REVpQWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkB1uG+WhYPqhdSU+PkQy+fpHZwMRGMKHic0hsrXoAIp8JLLEZt9UZ nYZ9SLODvYMBr2sGeP5+t5iZm4UzFCKsYiYy2QHOfkSyVxGvE9PCEe1GZSj8akT0 9/MKjF2XRC1gyEeCn0WE73jQcyNGxrHq3rUVsoF4GiqzbX+YsqsvlB+sgPADXP9d FpV/VIPNrIDCUl7CR5bVXavY4GFbja9e6hqi6/WP8xaIP1V33uHJzfNm/SAT6F6k NkV5ixQsT/mj57vwfm4aAteqHRHYeS+v01Z1M7VnN6q8vOx0g7fK1sI88mD/qB97 2wcgv3qK6KblDA3q7RrqsMsXPwLIGRF8 -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:39 2025 by rpki-client