This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: FAlgp1sezYu/Y5cb0mlIGTBORUBA0r9/0Kpi9ovYgI0= Subject key identifier: 6A:32:6A:97:BB:28:06:F8:6D:19:ED:2B:5B:73:35:FD:E5:4E:CE:28 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C90 Signing time: Sat 20 Dec 2025 18:06:42 +0000 Manifest this update: Sat 20 Dec 2025 18:06:42 +0000 Manifest next update: Sat 27 Dec 2025 18:06:42 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: lpq12O7A8tC1vRd8hhNgxHkdTEdri2E+yqem4+KiPXM=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Dec 20 18:06:42 2025 GMT Not After : Dec 27 18:06:42 2025 GMT Subject: CN=6946e5b2-3ab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:50:08:de:42:88:70:9e:43:28:6d:8e:8a:dc: 2a:aa:c8:11:d4:0f:99:e0:6a:da:77:d8:38:6c:a6: 5c:ae:45:d5:95:bb:59:6b:82:76:6d:d3:c2:42:e1: 4a:3c:20:69:72:5a:5e:74:dd:a2:9e:41:83:96:0d: 1f:ba:6b:39:48:0a:99:d2:75:57:e7:c6:67:c6:91: eb:b7:ef:da:1b:83:d0:9f:b1:e2:a3:77:bf:87:68: c9:a5:2d:57:ce:ec:bd:73:76:9a:eb:a3:76:44:69: 52:9e:bf:3b:d2:0d:28:80:f8:e3:2e:73:6f:63:32: ec:2d:cb:be:6e:21:fd:b7:a2:96:a3:25:57:27:dc: e4:05:da:85:a5:43:81:bf:fa:0f:3d:c9:33:88:9c: b1:df:75:16:56:cc:1b:f1:be:ed:e9:95:8b:8e:b9: 4c:21:81:97:22:48:a4:90:a5:cf:e9:89:92:eb:4f: 19:0c:86:ce:09:37:20:89:9f:cf:9e:8b:8f:10:29: a0:9f:91:56:ef:e0:26:68:40:46:e8:97:ef:2c:af: fa:a5:63:0e:38:c1:b2:ac:3a:28:d0:af:82:1c:cc: 62:91:20:e0:59:71:10:3e:fa:46:86:39:8f:c2:e7: b1:9d:08:31:d7:61:51:78:2e:91:55:92:bc:89:b4: 03:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:32:6A:97:BB:28:06:F8:6D:19:ED:2B:5B:73:35:FD:E5:4E:CE:28 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:d2:31:d5:58:d4:1a:8b:dd:92:77:f5:10:39:d5:0e:b6:0b: ff:f9:6b:3c:0b:c9:6d:4d:93:99:05:c9:ca:03:3a:5b:a7:b9: a8:1d:29:09:5c:d8:7e:71:73:94:a9:92:cd:c8:89:85:1c:d5: 80:0c:a9:ce:f0:dd:8f:f0:92:e0:f1:3a:de:2a:bc:32:81:82: 6a:6f:b5:5f:4f:b2:36:77:06:d2:53:4c:20:9c:c9:a3:2f:fc: 11:4a:a1:20:04:29:17:e0:2f:d2:22:45:4f:a0:c6:0b:b8:c6: cc:48:c2:7d:f6:f7:39:64:1f:e2:97:ee:02:dc:94:96:a5:9c: 08:78:8b:0d:0d:d1:3b:0c:8d:89:59:34:30:55:9b:66:e7:59: 13:80:9d:f4:45:0b:72:5e:01:e5:3b:75:84:bf:19:e1:a1:16: d0:e6:7c:bc:ff:e4:ec:84:eb:b8:d9:41:44:26:0c:5f:09:ee: 0c:a6:5c:ce:ae:37:63:6b:8c:36:27:a0:03:ee:c2:0b:34:ee: 84:31:c3:57:ec:1b:17:93:fe:f7:d0:f4:6d:b0:16:0e:85:d5: f6:84:79:bb:45:c1:99:25:4f:69:97:ab:16:ab:6f:8b:62:5b: 21:f8:c1:23:40:72:eb:fa:c3:0b:38:9f:a5:51:cb:bd:f3:f3: 8a:1a:04:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUxMjIwMTgwNjQyWhcNMjUxMjI3MTgwNjQyWjAYMRYwFAYD VQQDDA02OTQ2ZTViMi0zYWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VAI3kKIcJ5DKG2OitwqqsgR1A+Z4Grad9g4bKZcrkXVlbtZa4J2bdPCQuFK PCBpclpedN2inkGDlg0fums5SAqZ0nVX58ZnxpHrt+/aG4PQn7Hio3e/h2jJpS1X zuy9c3aa66N2RGlSnr870g0ogPjjLnNvYzLsLcu+biH9t6KWoyVXJ9zkBdqFpUOB v/oPPckziJyx33UWVswb8b7t6ZWLjrlMIYGXIkikkKXP6YmS608ZDIbOCTcgiZ/P nouPECmgn5FW7+AmaEBG6JfvLK/6pWMOOMGyrDoo0K+CHMxikSDgWXEQPvpGhjmP wuexnQgx12FReC6RVZK8ibQDbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGoyape7 KAb4bRntK1tzNf3lTs4oMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx0jHVWNQai92Sd/UQOdUOtgv/+Ws8C8ltTZOZBcnKAzpbp7moHSkJ XNh+cXOUqZLNyImFHNWADKnO8N2P8JLg8TreKrwygYJqb7VfT7I2dwbSU0wgnMmj L/wRSqEgBCkX4C/SIkVPoMYLuMbMSMJ99vc5ZB/il+4C3JSWpZwIeIsNDdE7DI2J WTQwVZtm51kTgJ30RQtyXgHlO3WEvxnhoRbQ5ny8/+TshOu42UFEJgxfCe4MplzO rjdja4w2J6AD7sILNO6EMcNX7BsXk/730PRtsBYOhdX2hHm7RcGZJU9pl6sWq2+L Ylsh+MEjQHLr+sMLOJ+lUcu98/OKGgR3 -----END CERTIFICATE-----Generated at Mon Dec 22 00:12:59 2025 by rpki-client