This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: MWhYOcFRvwvErutR8+D0or3OAiPfhLfuMa0elACa0Z4= Subject key identifier: 88:97:50:CC:7E:DE:82:54:0A:D4:DF:9E:A3:AD:7E:D8:42:93:F2:E9 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 0203 Signing time: Fri 19 Dec 2025 01:37:09 +0000 Manifest this update: Fri 19 Dec 2025 01:37:08 +0000 Manifest next update: Fri 26 Dec 2025 01:37:08 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: wpfZQIvpHzu9F214mab14kaWPskG5nMsxwFXFDZ2JqM=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:37:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Dec 19 01:37:08 2025 GMT Not After : Dec 26 01:37:08 2025 GMT Subject: CN=6944ac45-9d43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c2:ed:ea:b1:c2:7b:9e:b6:e7:64:f9:cb:ed: c8:7f:b0:01:52:60:33:fc:01:ee:74:53:b8:6d:b8: 54:0b:93:63:62:1e:a2:62:30:55:85:3b:7d:92:35: cf:2d:b4:65:6e:c3:eb:a8:40:9f:13:04:a4:41:de: a0:5c:0f:11:13:44:85:8c:48:c3:ed:35:94:b0:51: e8:84:45:96:66:a0:62:52:e1:aa:21:ec:98:d7:3d: 0f:46:60:b5:4e:59:33:ab:e5:c0:3b:71:19:08:7f: 54:95:dc:13:4f:86:bf:ff:1f:98:d5:ae:50:13:48: fc:2f:a5:56:bd:44:74:c3:da:8b:22:00:67:2a:4d: 48:1a:57:b4:a5:4f:dd:f2:da:27:e4:4e:70:dc:af: af:93:bf:95:72:31:e4:04:df:dd:b0:2c:96:51:70: 67:7f:c0:dd:23:87:42:c3:65:0e:44:11:87:d7:f8: 0f:27:5f:35:12:55:26:30:a7:98:1d:ba:a9:5f:70: 84:2e:38:c3:62:94:ef:25:9d:cc:7e:af:33:27:b8: 07:58:94:2f:57:9e:dd:f3:17:9f:30:0e:2c:d5:4f: a5:c6:a1:44:bf:49:b6:8d:96:8b:a8:d4:34:b8:b6: 31:88:af:7e:e9:45:de:a2:52:fc:fb:0b:5e:bc:1e: 2c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:97:50:CC:7E:DE:82:54:0A:D4:DF:9E:A3:AD:7E:D8:42:93:F2:E9 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:6b:6d:87:bb:2f:18:e4:f1:6c:85:e9:d8:fb:1e:cd:86:e1: 0d:94:51:e4:67:a6:c9:6f:6d:0d:72:62:16:83:a1:68:9e:39: 5f:75:dc:2d:87:b0:65:76:c2:d7:e0:fd:b9:f1:91:36:84:95: fa:77:a8:fc:8b:97:4e:47:20:8a:66:de:bb:17:a2:df:84:ec: 4d:ed:10:a2:67:27:04:2e:2f:6a:17:df:2a:e4:47:46:aa:f6: ab:e6:0e:75:92:b2:67:d4:49:2c:5f:c0:50:84:3f:e7:d7:aa: 43:62:9f:b9:24:de:03:2d:52:fd:fc:bb:b4:d8:12:63:90:e1: 00:29:21:b3:b5:b2:20:a5:ab:65:a7:cd:a9:d0:7b:0e:65:55: f4:07:0c:b0:ef:e1:21:4f:5d:12:c5:06:3d:bc:94:f8:25:8e: 63:ff:60:ec:d7:9c:06:50:4e:da:d7:b8:4c:e4:37:ca:9c:44: 19:43:78:fd:d5:cb:7c:1c:67:25:74:cc:15:db:9d:fd:71:6b: 86:ec:63:57:f5:cd:63:9a:d6:0b:ad:b1:33:9d:e6:f0:6a:53: d4:4e:01:11:d9:8b:db:7f:9b:af:19:68:aa:26:95:56:ec:43: 17:03:a2:3b:03:16:68:4d:6c:4c:9d:47:5c:ae:a6:81:e1:2d: c6:4e:a9:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUxMjE5MDEzNzA4WhcNMjUxMjI2MDEzNzA4WjAYMRYwFAYD VQQDDA02OTQ0YWM0NS05ZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMLt6rHCe56252T5y+3If7ABUmAz/AHudFO4bbhUC5NjYh6iYjBVhTt9kjXP LbRlbsPrqECfEwSkQd6gXA8RE0SFjEjD7TWUsFHohEWWZqBiUuGqIeyY1z0PRmC1 Tlkzq+XAO3EZCH9UldwTT4a//x+Y1a5QE0j8L6VWvUR0w9qLIgBnKk1IGle0pU/d 8ton5E5w3K+vk7+VcjHkBN/dsCyWUXBnf8DdI4dCw2UORBGH1/gPJ181ElUmMKeY HbqpX3CELjjDYpTvJZ3Mfq8zJ7gHWJQvV57d8xefMA4s1U+lxqFEv0m2jZaLqNQ0 uLYxiK9+6UXeolL8+wtevB4s5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiXUMx+ 3oJUCtTfnqOtfthCk/LpMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBa22Huy8Y5PFshenY+x7NhuENlFHkZ6bJb20NcmIWg6Fonjlfddwt h7BldsLX4P258ZE2hJX6d6j8i5dORyCKZt67F6LfhOxN7RCiZycELi9qF98q5EdG qvar5g51krJn1EksX8BQhD/n16pDYp+5JN4DLVL9/Lu02BJjkOEAKSGztbIgpatl p82p0HsOZVX0Bwyw7+EhT10SxQY9vJT4JY5j/2Ds15wGUE7a17hM5DfKnEQZQ3j9 1ct8HGcldMwV2539cWuG7GNX9c1jmtYLrbEznebwalPUTgER2Yvbf5uvGWiqJpVW 7EMXA6I7AxZoTWxMnUdcrqaB4S3GTqle -----END CERTIFICATE-----Generated at Fri Dec 19 19:04:34 2025 by rpki-client