This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: Cb66Gm/1yaeK1KSeQE9iv+rmU0gcqqAJKDt+QCp7JyY= Subject key identifier: AE:0C:D9:46:1B:3B:EA:A9:EE:5F:B5:3F:23:9D:4C:2F:5D:4C:85:E3 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 04D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 04B9 Signing time: Sat 20 Dec 2025 17:14:51 +0000 Manifest this update: Sat 20 Dec 2025 17:14:51 +0000 Manifest next update: Sat 27 Dec 2025 17:14:51 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: nbjsf0IQcbtHs1K94khia6kgwu0tFoGrCjGXkfy9o8Y=) 2: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: gnyXtw8DPj8NyIoRF5c+juRZssMLm6JD2BAlodHTge8=) 3: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: DmIrGfhktKfgLCQnjaBl110FFfgBFAV9ezdr8MQEUXY=) 4: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: pNXwK+NLW6WN3eFo++mYFK5ET5lmuZ4PR6VBVBIThu8=) 5: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: KlPccjW9S2oslSs/m9+b9l8M4oIVNWUx4ZPvJF9e3h0=) 6: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: LSEFGm5YHmuzFm7AHwmKEbs7DnP8Z8GxvqismyoqpxY=) 7: 1479C514596A11ECB1394271C4F9AE02.roa (hash: Wyxy9+iCUkuevTtRSNVP3QalBsjOjf/cD3BqszIe2mo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Dec 20 17:14:51 2025 GMT Not After : Dec 27 17:14:51 2025 GMT Subject: CN=6946d98b-4f3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:82:a6:3e:4b:7b:13:2c:fd:5e:45:1a:62:e5: 72:29:89:82:61:11:e6:64:f5:d2:e9:1c:89:d8:90: ec:c1:98:0a:ba:3a:29:61:71:df:81:de:89:f0:85: b0:03:0c:c9:0e:c4:f4:81:b7:0f:9b:d8:1f:8c:80: 07:5e:66:01:98:09:20:82:fd:c0:93:ae:16:d1:e8: 7b:fa:a3:53:78:15:d4:32:f4:37:4f:3f:0b:6d:88: 97:7f:a9:18:10:a1:fa:5a:fa:62:a2:99:43:06:04: aa:ea:df:be:e3:64:be:f5:a7:50:4a:14:07:57:ba: e4:38:4a:8c:17:e2:62:61:6f:05:e7:65:6c:e7:b1: 73:dc:e7:a3:03:01:87:de:8a:1d:35:19:4d:39:f3: 44:1b:5f:12:87:e1:d6:b9:0d:00:23:53:10:b1:1a: a4:b2:72:1d:d5:e5:08:c6:e0:a9:27:17:94:65:0c: ad:f3:85:98:8c:46:d5:15:29:77:74:5d:fb:ba:29: 01:22:a7:5b:b1:e7:6e:51:a1:0a:3b:28:87:ca:fb: a5:2c:17:51:ac:e3:4f:1e:b0:d2:0a:32:b6:a5:23: ba:cf:73:32:fb:09:e1:93:d2:0b:a3:3d:27:de:11: 59:76:ed:23:65:46:97:92:e7:af:c1:46:cd:26:c5: 42:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:0C:D9:46:1B:3B:EA:A9:EE:5F:B5:3F:23:9D:4C:2F:5D:4C:85:E3 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:75:8f:52:01:fc:db:7b:c9:39:69:12:57:22:50:e8:78:b3: d1:99:28:b7:19:c3:46:22:ce:37:9d:c2:d0:66:6c:58:d5:41: ff:f0:13:cd:0e:04:db:4f:0e:6d:df:e4:64:d7:30:71:6e:35: fc:0a:80:dd:29:f6:d6:b5:11:8b:22:74:0b:ba:b3:b7:98:7f: 48:74:da:a8:59:ca:2a:8c:27:d2:9e:b1:4b:5b:d5:95:ee:2c: 7b:f0:f8:6d:9a:e8:55:13:07:6a:2a:ad:43:ec:87:3a:1d:02: ca:8a:8b:0b:1d:a8:97:74:d8:d9:fe:8b:09:8f:3c:2e:5b:09: d8:89:a7:aa:b0:d2:25:71:1b:8c:e9:39:77:ea:2b:a9:5c:e1: e5:fc:88:49:9e:2b:8b:d8:ac:f2:42:a7:75:d4:33:02:7f:4d: 4d:3a:0f:56:fe:f0:1f:c1:ee:0d:d8:1a:86:c0:af:31:68:32: a2:c0:30:c5:02:b4:f4:b1:5d:9f:6a:89:0c:02:5e:d0:32:70: 7e:90:4e:80:e7:c9:23:e6:0f:81:f2:4f:1a:15:f4:f3:e3:d1: 77:18:51:11:d0:6b:1a:9b:a3:a7:9f:2f:bf:eb:4a:59:dc:41: 41:e3:75:30:95:14:a0:e1:6b:0f:d6:31:9e:8a:08:e1:1e:2b: 92:24:42:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUxMjIwMTcxNDUxWhcNMjUxMjI3MTcxNDUxWjAYMRYwFAYD VQQDDA02OTQ2ZDk4Yi00ZjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4KmPkt7Eyz9XkUaYuVyKYmCYRHmZPXS6RyJ2JDswZgKujopYXHfgd6J8IWw AwzJDsT0gbcPm9gfjIAHXmYBmAkggv3Ak64W0eh7+qNTeBXUMvQ3Tz8LbYiXf6kY EKH6WvpioplDBgSq6t++42S+9adQShQHV7rkOEqMF+JiYW8F52Vs57Fz3OejAwGH 3oodNRlNOfNEG18Sh+HWuQ0AI1MQsRqksnId1eUIxuCpJxeUZQyt84WYjEbVFSl3 dF37uikBIqdbseduUaEKOyiHyvulLBdRrONPHrDSCjK2pSO6z3My+wnhk9ILoz0n 3hFZdu0jZUaXkuevwUbNJsVC5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4M2UYb O+qp7l+1PyOdTC9dTIXjMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQdY9SAfzbe8k5aRJXIlDoeLPRmSi3GcNGIs43ncLQZmxY1UH/8BPN DgTbTw5t3+Rk1zBxbjX8CoDdKfbWtRGLInQLurO3mH9IdNqoWcoqjCfSnrFLW9WV 7ix78PhtmuhVEwdqKq1D7Ic6HQLKiosLHaiXdNjZ/osJjzwuWwnYiaeqsNIlcRuM 6Tl36iupXOHl/IhJniuL2KzyQqd11DMCf01NOg9W/vAfwe4N2BqGwK8xaDKiwDDF ArT0sV2faokMAl7QMnB+kE6A58kj5g+B8k8aFfTz49F3GFER0Gsam6Onny+/60pZ 3EFB43UwlRSg4WsP1jGeigjhHiuSJELz -----END CERTIFICATE-----Generated at Sun Dec 21 12:14:46 2025 by rpki-client