This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: nTZd8W6mPztpdv18YzQc/rJv0TyoJU4qfBRNv4pXSow= Subject key identifier: 3E:B3:58:8F:67:B9:89:03:F6:3D:E4:9C:DF:B1:61:2E:0F:9B:7F:C7 Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 0783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2DD7 Signing time: Mon 22 Dec 2025 15:32:13 +0000 Manifest this update: Mon 22 Dec 2025 15:32:13 +0000 Manifest next update: Mon 29 Dec 2025 15:32:13 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: aepW4z5+TR+RYLdXv2MEUtA02K1oQ3izWevM0x0OcWs=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: ekyxreCpgMcKP34usIZn12GGqR3mbNPPXZzJX4hQpac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 15:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1923 (0x783) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Dec 22 15:32:13 2025 GMT Not After : Dec 29 15:32:13 2025 GMT Subject: CN=6949647d-8594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:0d:6a:3a:71:2b:f7:59:c5:84:f8:6e:3a:43: b4:a3:f2:b8:60:80:13:1a:b5:7a:c5:ce:6c:3d:b9: 25:b2:32:e9:0c:df:fa:6f:cc:e8:00:a9:ea:f1:43: 85:4d:69:cd:c4:d9:a6:02:26:38:ca:bd:8c:11:e1: 84:da:46:78:34:e2:6e:6f:91:00:83:88:f8:61:01: aa:3a:7d:03:b9:4c:ab:c9:1e:19:00:f0:4c:8b:4d: 11:84:74:05:9a:9d:d7:4c:16:98:ab:e5:63:98:ad: 21:36:47:e6:a9:85:03:45:5e:bc:37:cd:09:0d:37: e9:28:66:0e:c3:79:5f:97:0c:4f:5b:51:2b:dc:a0: bd:9d:d3:00:5f:ff:e6:64:c7:ce:b9:27:a6:8d:75: 04:94:eb:10:9b:0a:99:20:a4:6c:6d:09:98:12:38: a0:2a:7b:71:3c:25:36:ed:c6:db:10:61:ff:b5:6e: 1b:1e:52:96:df:04:b4:f5:d3:45:ed:7a:76:0c:13: 3d:72:bb:50:4c:a2:0d:db:ae:c5:53:bb:d8:56:1e: b5:e6:f6:53:be:3e:7e:db:56:98:92:28:02:a4:5d: 32:5f:0d:69:76:fa:33:c3:4f:dc:30:58:6b:b2:d8: 99:02:52:9d:9d:b6:40:a9:d7:f5:77:e6:0a:75:db: f5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B3:58:8F:67:B9:89:03:F6:3D:E4:9C:DF:B1:61:2E:0F:9B:7F:C7 X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:6c:43:bb:ac:1b:31:50:1c:5b:99:fa:bb:d9:91:9d:83:1f: ca:d4:1d:da:31:68:17:61:ad:78:bc:5c:05:d7:3d:b6:07:e9: c4:a7:8d:82:a7:52:47:7c:e1:86:8c:93:32:21:fb:ce:f4:b6: ad:13:23:2b:a5:6b:0b:e1:e3:3b:52:86:3d:bc:23:b6:7f:c8: f0:a7:ed:24:34:0c:14:19:62:29:af:15:6a:a9:00:5e:c0:97: 82:1d:88:c8:62:34:c8:8f:c0:0e:26:01:3a:59:4f:23:e4:32: e3:35:98:42:a5:76:4b:59:26:40:b9:9d:bb:93:61:04:12:44: a3:19:2e:2b:b1:50:d7:6b:e2:ee:83:96:b1:a5:06:64:ac:2d: 44:80:68:8b:fd:f0:03:bf:33:48:d8:7e:d9:72:5b:3c:97:45: bb:01:57:b5:dc:d4:05:c4:d1:fc:fb:c4:72:db:40:b3:0b:4d: 93:42:bd:10:29:15:be:30:28:58:4a:4c:73:9c:50:e8:4d:39: 20:b7:3e:e6:18:16:b6:15:0b:f4:d4:87:cb:cf:51:ea:17:cb: 4c:d3:44:3b:0d:bc:ca:e0:70:f2:e7:eb:97:e9:a5:37:ef:1f: 4c:1f:10:9b:e5:75:63:86:ab:7c:60:78:3d:78:f1:4c:b9:ec: 4c:78:d3:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjUxMjIyMTUzMjEzWhcNMjUxMjI5MTUzMjEzWjAYMRYwFAYD VQQDDA02OTQ5NjQ3ZC04NTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqw1qOnEr91nFhPhuOkO0o/K4YIATGrV6xc5sPbklsjLpDN/6b8zoAKnq8UOF TWnNxNmmAiY4yr2MEeGE2kZ4NOJub5EAg4j4YQGqOn0DuUyryR4ZAPBMi00RhHQF mp3XTBaYq+VjmK0hNkfmqYUDRV68N80JDTfpKGYOw3lflwxPW1Er3KC9ndMAX//m ZMfOuSemjXUElOsQmwqZIKRsbQmYEjigKntxPCU27cbbEGH/tW4bHlKW3wS09dNF 7Xp2DBM9crtQTKIN267FU7vYVh615vZTvj5+21aYkigCpF0yXw1pdvozw0/cMFhr stiZAlKdnbZAqdf1d+YKddv16wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6zWI9n uYkD9j3knN+xYS4Pm3/HMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClbEO7rBsxUBxbmfq72ZGdgx/K1B3aMWgXYa14vFwF1z22B+nEp42C p1JHfOGGjJMyIfvO9LatEyMrpWsL4eM7UoY9vCO2f8jwp+0kNAwUGWIprxVqqQBe wJeCHYjIYjTIj8AOJgE6WU8j5DLjNZhCpXZLWSZAuZ27k2EEEkSjGS4rsVDXa+Lu g5axpQZkrC1EgGiL/fADvzNI2H7Zcls8l0W7AVe13NQFxNH8+8Ry20CzC02TQr0Q KRW+MChYSkxznFDoTTkgtz7mGBa2FQv01IfLz1HqF8tM00Q7DbzK4HDy5+uX6aU3 7x9MHxCb5XVjhqt8YHg9ePFMuexMeNM8 -----END CERTIFICATE-----Generated at Tue Dec 23 23:53:31 2025 by rpki-client