This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: QoBSfrxPlTm5GeUzvlVfx93mmM0dNf/Pn43nebNqijA= Subject key identifier: 82:6F:3F:B7:30:57:10:38:C8:05:62:B4:8C:BC:6A:87:E1:D0:AF:5B Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0B39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0B31 Signing time: Thu 18 Dec 2025 18:54:43 +0000 Manifest this update: Thu 18 Dec 2025 18:54:42 +0000 Manifest next update: Thu 25 Dec 2025 18:54:42 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: SGS9anrR7I/b5+xfK0QdXDAPfDohla8kbo3BaQJTMtQ=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: vRrkQ11gFoedPJsbqh7nQv1lr6X8LYa0tpYVg51dxDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2873 (0xb39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Dec 18 18:54:42 2025 GMT Not After : Dec 25 18:54:42 2025 GMT Subject: CN=69444df3-09e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:01:d8:b1:b2:84:1f:b9:e7:c4:c9:72:3c:58: 73:27:bf:08:de:af:13:67:c9:bf:ab:cb:79:59:8f: b3:58:ba:1d:5c:fb:f9:d7:9e:e2:09:3b:80:20:f6: 4d:99:22:8e:fe:fb:80:41:1b:8b:8c:32:c2:5f:db: f4:53:46:35:26:04:17:9f:3f:eb:6b:49:df:f7:cc: 3a:9d:44:b3:c5:a3:0b:85:24:d4:59:da:4a:2d:86: 1b:d0:c1:3a:e7:b5:24:ee:a7:36:d8:79:fa:80:40: cd:8a:c4:9d:85:fc:50:86:db:07:79:f4:93:9e:d7: 9c:fa:ab:85:70:92:98:18:a3:67:2b:65:c0:aa:50: bb:ad:ed:bf:04:2a:75:89:8b:f1:6b:3f:07:40:c7: cf:90:01:4e:65:1d:4c:ee:6f:17:e1:8d:5a:cf:03: 6c:30:85:6a:af:35:eb:f9:12:d1:f6:46:e7:8a:83: 98:fb:c6:38:0d:99:2b:b2:26:b0:36:ae:08:fd:32: c0:4e:b4:5d:18:b4:8c:13:44:60:3d:49:96:36:3d: 8b:27:62:a7:69:4f:da:db:22:75:8c:02:70:89:d4: 39:9c:74:bf:8b:42:87:d4:d3:e7:6e:dd:0d:13:22: cb:d4:05:2b:a1:9b:27:76:f0:23:8b:5a:b2:24:77: eb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6F:3F:B7:30:57:10:38:C8:05:62:B4:8C:BC:6A:87:E1:D0:AF:5B X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:63:21:a7:79:8d:ba:c9:f0:ef:ca:e6:30:49:a9:65:fc:a6: 31:70:2f:78:25:b0:e8:24:03:18:0a:ff:ce:83:5d:d3:9a:84: 03:fb:d1:e7:4a:61:ec:9a:88:b2:cd:c0:fc:3d:89:57:5f:c6: 48:c9:35:18:ca:a3:0e:81:c3:aa:90:e3:89:53:18:99:f4:50: fc:74:72:11:e7:44:b8:7c:33:d6:a1:67:f0:ad:69:40:fa:da: 13:5f:98:0d:35:b9:c1:f6:71:7e:84:6b:c6:a4:22:31:c3:c4: 7e:22:fe:02:c4:9c:b5:20:40:f4:dc:c7:4f:84:b8:d3:28:75: da:b2:4b:59:8a:a6:40:71:e1:c7:90:1c:98:74:11:1e:40:70: e9:25:ee:8e:7e:b9:83:ee:96:99:84:de:d0:0f:ef:85:0e:d4: a7:fe:fa:72:20:ac:ac:fc:93:e7:bd:f9:6f:f1:d1:58:4d:d4: af:62:19:93:3c:be:a8:39:63:32:9e:48:e6:36:e6:fb:d8:3b: 75:a5:75:b1:5e:f9:2e:04:41:75:93:8a:44:1b:60:86:b1:35: af:c2:bc:94:a8:d8:35:f1:e3:73:37:22:d3:85:be:0c:3d:c9: 21:5a:98:97:2a:e8:9c:94:1f:8b:38:56:fb:34:e5:54:c4:0e: 67:c0:b9:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjUxMjE4MTg1NDQyWhcNMjUxMjI1MTg1NDQyWjAYMRYwFAYD VQQDDA02OTQ0NGRmMy0wOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQHYsbKEH7nnxMlyPFhzJ78I3q8TZ8m/q8t5WY+zWLodXPv5157iCTuAIPZN mSKO/vuAQRuLjDLCX9v0U0Y1JgQXnz/ra0nf98w6nUSzxaMLhSTUWdpKLYYb0ME6 57Uk7qc22Hn6gEDNisSdhfxQhtsHefSTntec+quFcJKYGKNnK2XAqlC7re2/BCp1 iYvxaz8HQMfPkAFOZR1M7m8X4Y1azwNsMIVqrzXr+RLR9kbnioOY+8Y4DZkrsiaw Nq4I/TLATrRdGLSME0RgPUmWNj2LJ2KnaU/a2yJ1jAJwidQ5nHS/i0KH1NPnbt0N EyLL1AUroZsndvAji1qyJHfrFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJvP7cw VxA4yAVitIy8aofh0K9bMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIYyGneY26yfDvyuYwSall/KYxcC94JbDoJAMYCv/Og13TmoQD+9Hn SmHsmoiyzcD8PYlXX8ZIyTUYyqMOgcOqkOOJUxiZ9FD8dHIR50S4fDPWoWfwrWlA +toTX5gNNbnB9nF+hGvGpCIxw8R+Iv4CxJy1IED03MdPhLjTKHXasktZiqZAceHH kByYdBEeQHDpJe6OfrmD7paZhN7QD++FDtSn/vpyIKys/JPnvflv8dFYTdSvYhmT PL6oOWMynkjmNub72Dt1pXWxXvkuBEF1k4pEG2CGsTWvwryUqNg18eNzNyLThb4M PckhWpiXKuiclB+LOFb7NOVUxA5nwLnX -----END CERTIFICATE-----Generated at Fri Dec 19 23:57:20 2025 by rpki-client