This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft File: cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft (raw, json) Hash identifier: BSv6zS3oXa+UuR8yrA3yL9DmGcTIO3Gq33xozxp/pFk= Subject key identifier: BA:C5:BE:B5:70:51:B0:B0:00:9E:55:EB:91:C6:14:3E:84:81:27:44 Authority key identifier: 72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 Certificate issuer: /CN=A9169411/serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Certificate serial: 02DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft Manifest number: 02D0 Signing time: Thu 25 Dec 2025 00:30:38 +0000 Manifest this update: Thu 25 Dec 2025 00:30:38 +0000 Manifest next update: Thu 01 Jan 2026 00:30:38 +0000 Files and hashes: 1: cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl (hash: vrvAMScbZtrIUyyYCvpPXnFDdoaM94wP1f8ssu9kSXM=) 2: DD976958C2A611EFBB1B9264C4F9AE02.roa (hash: hbJJRaC5M5LUQTbnkq8W618J1VcGyMM13Drb0UsxWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 Jan 2026 00:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169411, serialNumber=72038A88A61D25C4F4065025FC26B8CE3B8A7A02 Validity Not Before: Dec 25 00:30:38 2025 GMT Not After : Jan 1 00:30:38 2026 GMT Subject: CN=694c85ae-150b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:6a:ec:8c:14:81:3d:b5:3a:81:10:2f:e6: fb:bf:0d:cc:81:30:cb:7c:5f:80:18:ed:0c:fb:d4: 01:3b:4a:a6:33:e7:16:e3:28:52:a2:59:ee:89:3f: d2:3a:bb:e6:5e:b5:af:03:8e:f9:e8:4a:b5:fb:82: 6a:3a:6b:02:94:d4:84:ac:df:3f:99:c4:20:e1:78: de:d1:88:3d:fb:84:97:82:04:a5:75:65:5f:73:4e: 16:2b:aa:8a:00:e5:bf:15:45:9c:8d:92:6b:ba:79: 8f:ee:5a:16:89:07:64:79:b0:b0:8e:4a:44:f2:1b: a0:5c:59:3c:fc:2e:48:56:fd:e7:fa:c9:f7:3c:68: eb:25:46:ee:77:95:a7:3b:5e:93:c1:7b:44:67:e1: ee:69:7a:4f:0a:52:e8:49:c9:cf:74:7a:61:04:59: 64:50:1a:6f:06:b5:2f:b9:8c:78:bc:65:cc:dd:f7: 27:27:e7:e9:bc:49:1d:76:ec:5c:8c:5c:ae:c5:c7: 58:1c:63:f3:b6:69:a4:0e:e5:06:68:62:8f:0c:b8: ca:1f:2d:bb:bc:ea:25:64:08:09:4b:bc:b1:cf:70: 9f:6e:b8:63:60:7a:30:9c:2f:f3:fb:e4:06:32:8f: 1e:28:74:25:c2:24:62:ab:f6:0e:59:2c:5b:92:61: 4c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C5:BE:B5:70:51:B0:B0:00:9E:55:EB:91:C6:14:3E:84:81:27:44 X509v3 Authority Key Identifier: keyid:72:03:8A:88:A6:1D:25:C4:F4:06:50:25:FC:26:B8:CE:3B:8A:7A:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cgOKiKYdJcT0BlAl_Ca4zjuKegI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169411/91853A0618BF11EDADDC923AC4F9AE02/cgOKiKYdJcT0BlAl_Ca4zjuKegI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:51:67:fd:30:3f:75:59:49:1f:6a:f9:ad:a7:b7:fa:18:5f: c2:f5:0c:68:c1:17:00:a4:92:b3:f7:7b:10:94:c0:d5:6a:4e: 65:57:4f:b1:89:8f:0a:52:0c:5e:d4:b9:d3:f5:33:71:d8:f7: 32:f2:87:9c:1f:92:51:f1:2c:69:f9:65:eb:59:26:81:c7:2b: fd:f9:de:7d:9e:9d:9f:82:e6:6a:30:f0:5e:31:3c:05:87:d7: 69:a4:80:a3:89:30:9e:9e:08:e5:01:36:49:a1:c5:93:2c:14: c6:19:0b:53:14:0f:76:ad:ec:d2:7e:f5:73:fc:51:b7:5e:b7: b2:53:bb:41:a9:d0:7d:21:d0:64:a5:2c:7e:17:73:10:78:54: 8e:f0:c9:62:97:cc:82:69:f3:8a:91:b4:7f:c4:fa:6d:e4:a9: 3e:10:79:99:95:0d:e8:6a:ff:89:83:57:13:9b:cf:7d:ce:86: b1:c0:2b:a3:4e:fa:6e:9f:96:3e:62:25:57:bc:6d:5d:5d:b7: 3f:6d:50:aa:96:73:69:fa:ee:65:1b:ec:cd:61:a4:27:69:20: b3:ae:fe:fb:74:86:e7:67:a9:5c:c0:5f:02:98:c0:c8:4c:e0: b8:2d:e6:b3:10:c6:7c:df:3c:f0:c9:40:84:c6:b6:89:59:f9: bc:11:16:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0MTExMTAvBgNVBAUTKDcyMDM4QTg4QTYxRDI1QzRGNDA2NTAyNUZDMjZCOENF M0I4QTdBMDIwHhcNMjUxMjI1MDAzMDM4WhcNMjYwMTAxMDAzMDM4WjAYMRYwFAYD VQQDDA02OTRjODVhZS0xNTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29Fq7IwUgT21OoEQL+b7vw3MgTDLfF+AGO0M+9QBO0qmM+cW4yhSolnuiT/S OrvmXrWvA4756Eq1+4JqOmsClNSErN8/mcQg4Xje0Yg9+4SXggSldWVfc04WK6qK AOW/FUWcjZJrunmP7loWiQdkebCwjkpE8hugXFk8/C5IVv3n+sn3PGjrJUbud5Wn O16TwXtEZ+HuaXpPClLoScnPdHphBFlkUBpvBrUvuYx4vGXM3fcnJ+fpvEkdduxc jFyuxcdYHGPztmmkDuUGaGKPDLjKHy27vOolZAgJS7yxz3CfbrhjYHownC/z++QG Mo8eKHQlwiRiq/YOWSxbkmFMUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrFvrVw UbCwAJ5V65HGFD6EgSdEMB8GA1UdIwQYMBaAFHIDioimHSXE9AZQJfwmuM47inoC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQxMS85MTg1M0EwNjE4 QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpjVDBCbEFsX0NhNHpqdUtl Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NnT0tpS1lkSmNUMEJsQWxfQ2E0emp1S2VnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQxMS85MTg1M0EwNjE4QkYxMUVEQUREQzkyM0FDNEY5QUUwMi9jZ09LaUtZZEpj VDBCbEFsX0NhNHpqdUtlZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbUWf9MD91WUkfavmtp7f6GF/C9QxowRcApJKz93sQlMDVak5lV0+x iY8KUgxe1LnT9TNx2Pcy8oecH5JR8Sxp+WXrWSaBxyv9+d59np2fguZqMPBeMTwF h9dppICjiTCengjlATZJocWTLBTGGQtTFA92rezSfvVz/FG3XreyU7tBqdB9IdBk pSx+F3MQeFSO8Mlil8yCafOKkbR/xPpt5Kk+EHmZlQ3oav+Jg1cTm899zoaxwCuj Tvpun5Y+YiVXvG1dXbc/bVCqlnNp+u5lG+zNYaQnaSCzrv77dIbnZ6lcwF8CmMDI TOC4LeazEMZ83zzwyUCExraJWfm8ERau -----END CERTIFICATE-----Generated at Fri Dec 26 19:29:35 2025 by rpki-client