This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: HZNcwxBiNeFgC5LzP8tKpJG2uIbTW0ofJP8ogrwrzJQ= Subject key identifier: 85:74:14:29:49:C2:A6:ED:2E:11:BD:9F:D0:EB:19:7E:2F:CC:62:0B Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 063D Signing time: Wed 24 Dec 2025 21:58:09 +0000 Manifest this update: Wed 24 Dec 2025 21:58:08 +0000 Manifest next update: Wed 31 Dec 2025 21:58:08 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: yf4UKFsYvDN1Kfp2AeEEXA9+Z9VlkdkT9JZXIZrISJ0=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 21:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Dec 24 21:58:08 2025 GMT Not After : Dec 31 21:58:08 2025 GMT Subject: CN=694c61f0-32d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d8:f5:fa:6d:07:cd:b1:b7:0e:ef:bd:29:d2: 24:f4:ac:32:96:e4:06:26:fe:4b:06:9d:b6:5f:01: 24:c3:d8:50:24:ad:51:a4:90:08:69:d8:11:b5:db: 5a:af:e3:aa:ed:a3:e7:63:ce:89:68:b2:f1:f6:99: 92:af:36:08:86:bc:fd:f1:b1:10:2a:aa:24:e6:05: 42:5a:22:51:83:2f:83:5e:6f:11:f6:96:d9:60:59: 7e:34:c9:05:c4:72:43:e5:d7:ad:dd:1d:2f:57:fe: 19:24:a0:78:82:0e:2f:3d:d7:ac:53:3e:9c:df:8e: 11:a4:56:af:02:99:5c:b5:53:76:b6:99:0d:c1:69: f8:b2:6c:c5:15:19:bd:06:a2:04:3f:61:92:ac:46: a4:e5:da:97:ed:fc:c6:97:b1:d9:cc:82:59:c3:30: 32:11:65:e7:7c:a2:ae:9c:01:6d:df:74:84:7e:2d: f5:b7:55:a1:70:e2:94:de:95:a7:77:36:a3:fc:d5: d0:70:bf:da:f5:2d:ac:8c:c7:79:29:b1:93:ac:77: 42:13:22:17:78:6f:6b:e1:0d:3c:e6:7e:ec:a5:73: aa:cf:58:c9:fd:96:cd:00:d9:be:45:4d:49:12:56: 4f:eb:86:4f:c0:d0:a8:c2:b8:66:ac:3b:a5:04:8b: e5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:74:14:29:49:C2:A6:ED:2E:11:BD:9F:D0:EB:19:7E:2F:CC:62:0B X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:75:72:ad:da:6d:04:16:c9:4f:91:24:94:1e:3f:28:6e:e6: 80:0a:c0:eb:26:a1:19:82:cf:f2:a9:7f:86:b0:2b:07:97:98: 5b:d0:cb:cb:83:8d:29:46:c8:29:46:e4:e4:ef:01:6f:74:8d: aa:60:db:fe:4e:4e:da:bf:72:be:c8:11:e1:53:33:92:fb:c5: 36:31:a9:db:25:65:a7:f5:81:44:0f:74:06:43:8e:0a:ae:f4: 5d:87:3b:b2:b7:e2:ce:81:07:6a:0f:0e:43:11:1f:c0:b7:45: da:73:cc:c9:f8:73:49:18:4b:9d:27:0c:49:94:73:dc:3a:14: 44:a9:1f:04:a4:94:f9:da:f2:e9:fd:dc:73:e2:74:8b:13:d0: 0c:20:2b:8f:59:e7:5d:88:da:e8:49:86:44:9e:b3:36:c5:10: c1:d5:0c:a8:ce:36:0a:38:8b:b4:92:aa:1f:bb:e1:ff:7a:f8: a3:ad:95:ea:b5:99:a8:f2:fb:f1:4c:a1:fd:61:72:f8:7d:fa: 51:3c:29:08:9f:ac:e8:07:0a:3f:88:78:0f:b1:d9:db:7b:1f: 78:e4:5c:be:c8:3b:35:14:40:3f:aa:bd:c2:89:89:64:9e:fc: da:7e:ae:c2:f7:0a:9b:c9:6d:35:7a:53:8a:bd:20:80:3f:17: 45:6d:02:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUxMjI0MjE1ODA4WhcNMjUxMjMxMjE1ODA4WjAYMRYwFAYD VQQDDA02OTRjNjFmMC0zMmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9j1+m0HzbG3Du+9KdIk9KwyluQGJv5LBp22XwEkw9hQJK1RpJAIadgRtdta r+Oq7aPnY86JaLLx9pmSrzYIhrz98bEQKqok5gVCWiJRgy+DXm8R9pbZYFl+NMkF xHJD5det3R0vV/4ZJKB4gg4vPdesUz6c344RpFavAplctVN2tpkNwWn4smzFFRm9 BqIEP2GSrEak5dqX7fzGl7HZzIJZwzAyEWXnfKKunAFt33SEfi31t1WhcOKU3pWn dzaj/NXQcL/a9S2sjMd5KbGTrHdCEyIXeG9r4Q085n7spXOqz1jJ/ZbNANm+RU1J ElZP64ZPwNCowrhmrDulBIvl6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIV0FClJ wqbtLhG9n9DrGX4vzGILMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArdXKt2m0EFslPkSSUHj8obuaACsDrJqEZgs/yqX+GsCsHl5hb0MvL g40pRsgpRuTk7wFvdI2qYNv+Tk7av3K+yBHhUzOS+8U2ManbJWWn9YFED3QGQ44K rvRdhzuyt+LOgQdqDw5DER/At0Xac8zJ+HNJGEudJwxJlHPcOhREqR8EpJT52vLp /dxz4nSLE9AMICuPWeddiNroSYZEnrM2xRDB1QyozjYKOIu0kqofu+H/evijrZXq tZmo8vvxTKH9YXL4ffpRPCkIn6zoBwo/iHgPsdnbex945Fy+yDs1FEA/qr3CiYlk nvzafq7C9wqbyW01elOKvSCAPxdFbQLv -----END CERTIFICATE-----Generated at Fri Dec 26 18:02:29 2025 by rpki-client