This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: Fg5Bu2YIqDTkruQJjof5ma8/GpnnQ0OWtOTOlgQCrzU= Subject key identifier: D0:65:3A:F2:AB:E6:95:A1:8F:6F:32:AB:D6:13:9A:FA:17:A8:B9:A2 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 020A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 0207 Signing time: Fri 19 Dec 2025 01:34:59 +0000 Manifest this update: Fri 19 Dec 2025 01:34:58 +0000 Manifest next update: Fri 26 Dec 2025 01:34:58 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: usBgNqko7o9l2rDYNbQ06fLNdqxafSDQGUj9S1WMB7I=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 522 (0x20a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Dec 19 01:34:58 2025 GMT Not After : Dec 26 01:34:58 2025 GMT Subject: CN=6944abc2-f291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:38:f2:4d:01:eb:f8:eb:7f:67:18:1e:3d: ba:57:c0:ee:1d:71:72:33:50:e9:12:63:ed:23:19: d4:e4:18:e8:c3:37:48:68:be:ee:0f:d2:cc:b4:e4: 1d:22:c9:cf:77:7e:1b:6a:ac:5b:6c:cf:2a:e9:72: 98:03:83:e6:b4:da:46:60:d3:e2:88:af:54:b2:c2: 1b:56:85:82:df:13:02:b5:84:44:b5:fc:38:c8:fa: e4:39:f0:d2:72:ff:7c:00:29:ae:2a:79:f6:fb:a8: 13:72:63:22:6e:ef:8e:af:3b:45:7d:09:ce:38:3f: 55:39:be:97:9c:93:64:95:18:03:54:d6:c5:f2:02: b1:5d:bb:4c:e2:bb:cf:80:56:4f:fe:23:ca:a5:87: 04:bf:fc:d8:9d:f6:5c:15:b8:21:10:3c:bb:83:64: b4:9d:76:a1:42:da:e6:c9:64:aa:b3:46:82:b7:72: 37:52:77:cb:96:c8:7b:01:c3:51:72:fe:2a:91:d0: c1:58:cd:de:20:00:1c:10:bd:ab:5c:04:ea:8b:b8: 02:9a:da:9b:5d:a5:6f:1f:6c:40:52:ca:e7:59:19: ea:59:24:09:a7:0d:0c:ff:83:e8:10:78:10:6e:5b: 2b:e6:c7:8d:ca:bf:dd:08:c1:a1:48:85:15:86:7e: 34:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:65:3A:F2:AB:E6:95:A1:8F:6F:32:AB:D6:13:9A:FA:17:A8:B9:A2 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:3c:93:9a:c3:68:33:b1:d8:30:55:00:56:5a:fb:cd:7d:17: 11:1c:dc:88:ae:f4:fa:4f:e9:3e:95:dc:fc:ab:0a:56:71:69: 4b:f0:fe:27:e0:d6:c8:31:1c:5a:72:1c:9d:1e:5c:40:ce:96: 92:80:1d:f7:5e:98:86:fb:1a:df:37:71:1b:2f:9f:6f:62:7a: fa:75:03:4d:aa:54:0f:10:f9:9f:33:20:f0:a8:07:dc:4a:6e: f6:cb:17:af:ec:d2:c8:9e:d0:1d:df:ae:33:8c:e1:45:b4:ed: a9:95:35:a2:2e:78:0b:49:ee:11:a1:de:62:cc:36:05:5b:f3: c5:d0:2a:43:a9:d9:a6:5c:71:9a:18:ae:32:e0:32:26:3c:97: fd:78:9b:4c:5e:dd:e6:ed:ca:b6:6b:52:f4:1d:df:46:93:9a: 06:a0:b8:98:8a:a2:0a:f3:26:5d:43:23:9f:74:df:82:bd:c1: 19:1a:21:3f:31:5b:85:85:70:ca:ad:42:77:36:ab:e1:d0:ae: 2f:ac:a3:a9:db:df:f2:2d:58:3f:79:e8:64:89:77:8c:16:41: 85:14:0f:b8:a9:8e:54:dd:38:80:84:17:20:20:67:fc:a6:64: 84:25:9e:f2:fc:7f:3c:af:00:96:f3:64:96:65:38:35:17:2f: bc:dd:a3:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUxMjE5MDEzNDU4WhcNMjUxMjI2MDEzNDU4WjAYMRYwFAYD VQQDDA02OTQ0YWJjMi1mMjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5Q48k0B6/jrf2cYHj26V8DuHXFyM1DpEmPtIxnU5BjowzdIaL7uD9LMtOQd IsnPd34baqxbbM8q6XKYA4PmtNpGYNPiiK9UssIbVoWC3xMCtYREtfw4yPrkOfDS cv98ACmuKnn2+6gTcmMibu+OrztFfQnOOD9VOb6XnJNklRgDVNbF8gKxXbtM4rvP gFZP/iPKpYcEv/zYnfZcFbghEDy7g2S0nXahQtrmyWSqs0aCt3I3UnfLlsh7AcNR cv4qkdDBWM3eIAAcEL2rXATqi7gCmtqbXaVvH2xAUsrnWRnqWSQJpw0M/4PoEHgQ blsr5seNyr/dCMGhSIUVhn40JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBlOvKr 5pWhj28yq9YTmvoXqLmiMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1PJOaw2gzsdgwVQBWWvvNfRcRHNyIrvT6T+k+ldz8qwpWcWlL8P4n 4NbIMRxachydHlxAzpaSgB33XpiG+xrfN3EbL59vYnr6dQNNqlQPEPmfMyDwqAfc Sm72yxev7NLIntAd364zjOFFtO2plTWiLngLSe4Rod5izDYFW/PF0CpDqdmmXHGa GK4y4DImPJf9eJtMXt3m7cq2a1L0Hd9Gk5oGoLiYiqIK8yZdQyOfdN+CvcEZGiE/ MVuFhXDKrUJ3Nqvh0K4vrKOp29/yLVg/eehkiXeMFkGFFA+4qY5U3TiAhBcgIGf8 pmSEJZ7y/H88rwCW82SWZTg1Fy+83aMO -----END CERTIFICATE-----Generated at Sat Dec 20 20:58:14 2025 by rpki-client