This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft File: cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft (raw, json) Hash identifier: EqNjbId0JPGdz5uJ2ZWVzkzh2ck/S2dWTb9/t1VElPc= Subject key identifier: 7C:FB:78:62:26:18:C1:0E:95:D3:BF:51:F2:70:54:E8:34:77:34:F9 Authority key identifier: 72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 Certificate issuer: /CN=A9169411/serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Certificate serial: 02DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft Manifest number: 02D2 Signing time: Mon 29 Dec 2025 00:28:43 +0000 Manifest this update: Mon 29 Dec 2025 00:28:43 +0000 Manifest next update: Mon 05 Jan 2026 00:28:43 +0000 Files and hashes: 1: cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl (hash: 2J7dZlzn01cLZvaVB3O6BSEfaleOG2ICHdQmBIQRhpg=) 2: DD976958C2A611EFBB1B9264C4F9AE02.roa (hash: hbJJRaC5M5LUQTbnkq8W618J1VcGyMM13Drb0UsxWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 00:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169411, serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Validity Not Before: Dec 29 00:28:43 2025 GMT Not After : Jan 5 00:28:43 2026 GMT Subject: CN=6951cb3b-8248 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:30:03:3e:75:b5:77:9d:7f:d3:7e:19:f6:17: 05:fe:c9:c6:9a:4c:1f:55:23:cf:d7:cb:7c:c0:61: 4a:7f:5e:e1:25:5b:fc:72:8f:cf:f3:fe:73:49:11: 72:7c:a8:13:84:b1:be:a6:35:03:32:e4:b3:cf:30: 9c:7f:00:37:17:b2:87:6e:5a:5b:b7:ce:b1:37:91: 43:3e:34:e6:f8:b1:7a:3e:28:38:92:ef:18:bb:f2: 9c:ca:84:1b:9e:33:8c:10:5e:bd:4f:41:81:4b:15: 98:c6:94:23:4e:23:6e:84:64:52:a3:2d:8f:5c:3b: ec:cf:f6:2f:2a:5b:b6:20:47:d9:a7:be:52:8b:0f: 86:56:48:91:7d:00:dc:c3:e5:0e:65:ee:1e:63:ce: b2:ec:59:f0:5f:05:62:cd:66:91:a2:dc:91:a1:5c: 50:91:6b:77:cf:46:c6:4e:79:7f:c4:94:2a:0e:e5: a2:25:47:b8:b8:f7:23:e0:bd:ef:68:a7:8a:b5:f9: 1f:1a:49:67:c2:85:09:4d:f4:b8:50:df:64:17:42: 19:c2:42:0d:e0:21:df:e9:94:52:77:0f:d2:06:94: 97:09:14:50:32:bd:c4:b1:32:d9:a5:d7:9b:5b:11: 09:3b:3d:dd:42:14:a4:b1:f0:f2:de:bc:41:07:85: a1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:FB:78:62:26:18:C1:0E:95:D3:BF:51:F2:70:54:E8:34:77:34:F9 X509v3 Authority Key Identifier: keyid:72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:7e:d6:a4:df:f3:84:c2:a2:6b:f0:ca:c9:16:73:84:5c:27: 92:f5:35:ee:00:83:49:a0:7f:fd:38:c6:6e:76:30:27:66:d6: f9:d0:90:f6:dc:8c:da:10:0a:b4:b2:1a:e6:88:a8:1a:88:9a: cd:81:3a:c7:90:f2:17:2d:88:c5:e6:fa:57:98:71:fe:1b:af: ac:06:47:6c:5e:b3:ac:e6:bc:2d:ef:95:8c:52:19:3f:33:c1: f8:be:19:2d:b1:a9:ad:8e:91:c1:96:d4:7f:d6:f1:9e:7d:23: 2c:06:79:ab:d6:1b:2a:36:d8:60:e9:06:9d:f4:b5:39:71:c6: cd:97:eb:49:06:0d:43:f2:f6:46:df:32:9a:77:49:70:82:09: a9:ff:db:60:4b:96:64:e6:60:f6:a8:2e:2e:10:97:df:6a:85: 2f:c1:4d:ab:15:19:94:d8:e5:5b:a1:64:0d:14:90:40:f2:7d: 20:97:84:8f:f4:03:dd:f8:7d:24:07:a3:67:f6:97:f0:8b:2f: 15:97:89:9f:6e:68:f6:87:d2:4c:29:5d:93:25:f5:16:c8:d7: 5a:da:6d:44:d2:30:63:33:88:62:d0:b1:2e:a1:01:c0:d7:bd: 2d:e9:1d:b3:af:90:7e:8c:66:f0:9f:a4:2a:29:33:02:11:52: 46:8d:4f:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0MTExMTAvBgNVBAUTKDcyMDM4QTg4QTYxRDI1QzRGNDA2NTAyNUZDMjZCOENF M0I4QTdBMDIwHhcNMjUxMjI5MDAyODQzWhcNMjYwMTA1MDAyODQzWjAYMRYwFAYD VQQDDA02OTUxY2IzYi04MjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoTADPnW1d51/034Z9hcF/snGmkwfVSPP18t8wGFKf17hJVv8co/P8/5zSRFy fKgThLG+pjUDMuSzzzCcfwA3F7KHblpbt86xN5FDPjTm+LF6Pig4ku8Yu/KcyoQb njOMEF69T0GBSxWYxpQjTiNuhGRSoy2PXDvsz/YvKlu2IEfZp75Siw+GVkiRfQDc w+UOZe4eY86y7FnwXwVizWaRotyRoVxQkWt3z0bGTnl/xJQqDuWiJUe4uPcj4L3v aKeKtfkfGklnwoUJTfS4UN9kF0IZwkIN4CHf6ZRSdw/SBpSXCRRQMr3EsTLZpdeb WxEJOz3dQhSksfDy3rxBB4WhewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHz7eGIm GMEOldO/UfJwVOg0dzT5MB8GA1UdIwQYMBaAFHIDioimHSXE9AZQJfwmuM47inoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQxMS85MTg1M0EwNjE4 QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpjVDBCbEFsX0NhNHpqdUtl Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NnT0tpS1lkSmNUMEJsQWxfQ2E0emp1S2VnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQxMS85MTg1M0EwNjE4QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpj VDBCbEFsX0NhNHpqdUtlZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQftak3/OEwqJr8MrJFnOEXCeS9TXuAINJoH/9OMZudjAnZtb50JD2 3IzaEAq0shrmiKgaiJrNgTrHkPIXLYjF5vpXmHH+G6+sBkdsXrOs5rwt75WMUhk/ M8H4vhktsamtjpHBltR/1vGefSMsBnmr1hsqNthg6Qad9LU5ccbNl+tJBg1D8vZG 3zKad0lwggmp/9tgS5Zk5mD2qC4uEJffaoUvwU2rFRmU2OVboWQNFJBA8n0gl4SP 9APd+H0kB6Nn9pfwiy8Vl4mfbmj2h9JMKV2TJfUWyNda2m1E0jBjM4hi0LEuoQHA 170t6R2zr5B+jGbwn6QqKTMCEVJGjU+0 -----END CERTIFICATE-----Generated at Mon Dec 29 08:25:36 2025 by rpki-client