This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft File: scNHRW5UpGYuEJfs0zSsEcAs4As.mft (raw, json) Hash identifier: MX9zSR/hhiHLoyvrhANDQFEu1Ghj/0I6l5myOGEVMZc= Subject key identifier: 20:DD:A3:37:AC:3B:FE:F0:57:E2:DF:27:D2:E8:96:7F:19:C0:F6:97 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0740 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft Manifest number: 072C Signing time: Fri 26 Dec 2025 21:04:51 +0000 Manifest this update: Fri 26 Dec 2025 21:04:50 +0000 Manifest next update: Fri 02 Jan 2026 21:04:50 +0000 Files and hashes: 1: scNHRW5UpGYuEJfs0zSsEcAs4As.crl (hash: kCBtvqi1mzCmsutDFdW57quFMUKSvMkgMd/lrBKyIyY=) 2: 3263B6905E7311EB8B143F3BC4F9AE02.roa (hash: gBF4oLr31oWPGA7GjogpSpsWc/XlGgo5urUgCfPiOZQ=) 3: 31D902165E7311EB8B143F3BC4F9AE02.roa (hash: 3pZFB7pMfCt+Nb4YQaCn5c2ZIXFgDeE9u77BOFaXST0=) 4: 31137FAA5E7311EB8B143F3BC4F9AE02.roa (hash: ivarDOVLEK1o/i2e326AVwZq4fhbkuq+7lnjx1EVCHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 21:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1856 (0x740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Dec 26 21:04:50 2025 GMT Not After : Jan 2 21:04:50 2026 GMT Subject: CN=694ef873-7f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e3:81:d0:3b:25:0e:76:4b:98:94:24:fa:92: eb:a9:4d:38:eb:4f:2a:da:b6:6d:8c:48:25:a8:a2: 01:a7:19:b3:ca:2b:c1:0d:80:a7:9f:35:7c:5d:83: 07:4a:08:de:12:b4:1e:d3:00:f8:46:0b:14:d5:af: b0:4e:48:1d:50:88:1a:b2:91:ca:b0:13:31:fa:7d: 42:a5:4e:a3:98:83:16:3e:87:5d:e4:6f:60:24:50: 05:f2:76:f2:df:ec:ad:bf:b7:5b:6f:b1:67:c2:cc: e5:f7:62:44:9a:37:f7:e6:55:d6:dc:ff:6a:e2:55: c8:33:18:f9:71:52:ae:ab:9e:26:3f:f9:cf:a0:5d: f0:48:6c:9c:c6:08:4f:b6:e5:5e:08:48:c1:1c:d2: 43:82:0c:2a:ce:90:30:8d:f2:3a:75:b8:21:53:9e: 7d:90:eb:27:f6:c3:30:1f:78:7d:fa:36:d4:c6:a1: 04:4b:6c:86:4a:ec:e9:02:43:ae:3e:83:35:33:a7: 2a:41:63:7a:e4:8b:5b:92:f6:5f:62:d6:a5:3a:bb: 1c:9a:0c:f8:d1:88:52:7e:d3:89:3d:e0:11:15:a0: ff:29:2d:a2:24:37:ac:f9:7a:42:24:32:65:f1:fd: f1:a6:73:6a:bf:de:15:00:b8:56:cc:a6:88:02:dd: 2b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DD:A3:37:AC:3B:FE:F0:57:E2:DF:27:D2:E8:96:7F:19:C0:F6:97 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:1a:9b:ab:f4:d6:ac:72:e4:56:ef:e7:c2:f1:06:76:4a:37: 06:a2:e6:ee:33:b7:47:11:3a:19:b7:60:7d:27:99:68:d4:e8: 32:f5:24:24:c1:98:bd:fb:f8:2f:c4:57:ab:64:48:31:db:d4: c6:bc:6c:6f:ed:4d:bb:f1:c1:32:2f:9e:af:53:9e:d3:d6:d1: 6e:53:8e:d3:a1:50:79:11:de:c0:2a:1b:eb:4d:66:e7:1f:13: 10:c0:8c:c1:14:17:bf:cb:39:de:3d:15:ab:c3:66:c5:fe:11: f3:67:a5:91:9d:4c:7f:12:02:05:07:30:7c:01:e0:73:07:0d: 3c:13:b0:ed:5f:f0:65:c0:e8:0a:be:0d:bd:bf:9a:c0:e7:45: 87:c6:82:d5:c1:58:ab:e0:d3:5a:3a:a5:2f:da:1a:74:51:7e: d9:d1:27:bc:71:6f:e6:46:fe:b0:2c:c9:55:48:c4:37:6c:11: 8a:5a:c8:15:1b:4b:07:5d:aa:5e:ad:16:ec:a8:68:20:38:a5: 65:62:3a:e3:35:55:eb:68:8a:76:c9:43:f7:b3:b7:f8:3b:85: b3:f2:e1:f1:93:54:12:5b:da:45:1e:df:51:f9:16:4f:e2:09: eb:63:d4:1a:dd:b5:fa:1b:6b:ff:2f:11:1b:9b:68:da:c8:63: 25:cd:8a:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjUxMjI2MjEwNDUwWhcNMjYwMTAyMjEwNDUwWjAYMRYwFAYD VQQDDA02OTRlZjg3My03ZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+OB0DslDnZLmJQk+pLrqU04608q2rZtjEglqKIBpxmzyivBDYCnnzV8XYMH SgjeErQe0wD4RgsU1a+wTkgdUIgaspHKsBMx+n1CpU6jmIMWPodd5G9gJFAF8nby 3+ytv7dbb7Fnwszl92JEmjf35lXW3P9q4lXIMxj5cVKuq54mP/nPoF3wSGycxghP tuVeCEjBHNJDggwqzpAwjfI6dbghU559kOsn9sMwH3h9+jbUxqEES2yGSuzpAkOu PoM1M6cqQWN65ItbkvZfYtalOrscmgz40YhSftOJPeARFaD/KS2iJDes+XpCJDJl 8f3xpnNqv94VALhWzKaIAt0rmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDdozes O/7wV+LfJ9Loln8ZwPaXMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDQzOC9DNDUwOUQ1NDVFNzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBH WXVFSmZzMHpTc0VjQXM0QXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGGpur9NascuRW7+fC8QZ2SjcGoubuM7dHEToZt2B9J5lo1Ogy9SQk wZi9+/gvxFerZEgx29TGvGxv7U278cEyL56vU57T1tFuU47ToVB5Ed7AKhvrTWbn HxMQwIzBFBe/yznePRWrw2bF/hHzZ6WRnUx/EgIFBzB8AeBzBw08E7DtX/BlwOgK vg29v5rA50WHxoLVwVir4NNaOqUv2hp0UX7Z0Se8cW/mRv6wLMlVSMQ3bBGKWsgV G0sHXaperRbsqGggOKVlYjrjNVXraIp2yUP3s7f4O4Wz8uHxk1QSW9pFHt9R+RZP 4gnrY9Qa3bX6G2v/LxEbm2jayGMlzYri -----END CERTIFICATE-----Generated at Sun Dec 28 22:14:01 2025 by rpki-client