This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft File: rEGRrDoak5bnjWEvN026zI8tkbU.mft (raw, json) Hash identifier: ncOtix4XM+mmcfPW8U5JG1GbKj/68n1IKk0VJXZVrOc= Subject key identifier: 91:88:15:7E:3A:F4:A7:6C:FA:D1:B2:5D:A0:73:EB:A3:4A:75:00:1F Authority key identifier: AC:41:91:AC:3A:1A:93:96:E7:8D:61:2F:37:4D:BA:CC:8F:2D:91:B5 Certificate issuer: /CN=A9169CD3/serialNumber=AC4191AC3A1A9396E78D612F374DBACC8F2D91B5 Certificate serial: 2510 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft Manifest number: 24F3 Signing time: Sat 20 Dec 2025 15:37:46 +0000 Manifest this update: Sat 20 Dec 2025 15:37:46 +0000 Manifest next update: Sat 27 Dec 2025 15:37:46 +0000 Files and hashes: 1: rEGRrDoak5bnjWEvN026zI8tkbU.crl (hash: RGpyI6dHtmAMJG/GdMlSB7kY5DlAYVHa461CiOIit+k=) 2: 174B2A3441B611F0A03F6C24C4F9AE02.roa (hash: x6GPjwO5sO5Bvm7pWp4Iun3mTm45HGe7z8yRruy5J90=) 3: 842CE8807AE311EF91F51E42C4F9AE02.roa (hash: yW1gxtnqZQt1zea/7tYkbc/ydhmgNTTD61RsdDWGpBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.crl rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 15:37:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9488 (0x2510) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169CD3, serialNumber=AC4191AC3A1A9396E78D612F374DBACC8F2D91B5 Validity Not Before: Dec 20 15:37:46 2025 GMT Not After : Dec 27 15:37:46 2025 GMT Subject: CN=6946c2ca-c9e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6a:56:bd:e9:57:a1:3b:9d:2f:b1:1f:ee:4f: 58:4e:c1:82:8d:38:37:ab:d8:8d:32:a0:8d:f5:d6: cf:9c:f2:05:41:d9:61:77:c4:96:2e:41:7e:13:4b: f7:a6:2e:40:77:af:6e:29:bc:5d:cd:25:15:0e:76: f8:b1:79:94:1b:1e:1e:c4:11:c3:30:b0:7c:dd:a8: 5e:5e:32:a7:d4:ef:ad:18:78:e0:51:d8:e5:ed:d4: f1:a8:3b:d1:9d:7a:5f:dd:12:0a:14:e9:b3:fe:48: 07:ec:16:49:2a:df:d6:14:da:65:85:40:11:70:42: 61:d8:07:b0:fa:a4:92:39:8a:f2:2f:5e:14:d7:b4: 12:83:f4:51:eb:c1:da:b4:35:32:3a:86:dc:17:f6: 2f:4e:3e:e6:c9:4e:c7:f2:e4:a7:0c:6f:e9:90:9d: d3:59:fc:11:b3:9a:ee:70:a9:b5:fc:47:e2:a3:b4: 89:d7:84:88:b0:7f:4a:f9:76:37:58:a8:07:dd:16: 37:6a:dd:63:b0:ce:e6:04:63:62:ab:00:05:04:2a: c5:2d:ce:60:90:b9:0f:4f:8b:e0:3a:7c:2a:c0:da: 93:61:d5:f5:32:93:9a:5e:1b:17:78:c0:84:bb:91: 7a:ec:3f:88:59:0c:7b:18:48:e6:38:5b:88:e5:ef: 54:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:88:15:7E:3A:F4:A7:6C:FA:D1:B2:5D:A0:73:EB:A3:4A:75:00:1F X509v3 Authority Key Identifier: keyid:AC:41:91:AC:3A:1A:93:96:E7:8D:61:2F:37:4D:BA:CC:8F:2D:91:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:9e:5e:18:4a:ff:d2:d0:67:42:17:bd:b3:b6:f9:fc:16:18: ea:88:41:23:ec:bb:e8:38:cf:5f:80:b5:5a:61:0b:c3:db:73: e4:cc:9e:ef:31:ab:78:5a:be:7c:3b:0e:9c:8f:fa:cb:8b:6c: 2f:93:b2:2f:27:e9:43:52:cc:f8:db:a8:54:6f:c3:e4:43:3c: f2:df:63:17:64:56:2a:9f:7e:b7:60:35:22:d6:cc:f5:54:42: 17:68:d9:3e:f6:15:05:26:18:ff:2d:0c:9c:88:4f:82:e6:26: a9:eb:b0:5b:16:06:ed:dc:0c:43:ed:df:2c:cb:b9:f1:a7:7a: fb:5e:f5:85:61:00:c4:e7:28:40:f5:21:c7:46:9a:15:36:da: db:16:e0:47:8a:c2:77:2a:b6:69:d0:6a:a6:8f:ec:3a:48:6e: d2:d0:01:09:80:dc:ee:38:03:07:2e:56:7a:8e:fd:77:ac:ec: 91:c5:da:74:b5:31:46:23:94:d1:4f:f4:15:a3:1a:5c:e8:39: 47:96:95:2c:7a:af:f7:1b:fd:99:11:39:26:ef:16:f5:c6:4c: 52:f6:b9:bb:60:e1:54:45:90:54:cd:a2:89:7d:fb:7f:fa:7a: 51:7c:b8:d3:cc:fd:bc:98:bb:88:df:14:f4:92:bf:ff:da:14: cc:ab:63:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDRDMxMTAvBgNVBAUTKEFDNDE5MUFDM0ExQTkzOTZFNzhENjEyRjM3NERCQUND OEYyRDkxQjUwHhcNMjUxMjIwMTUzNzQ2WhcNMjUxMjI3MTUzNzQ2WjAYMRYwFAYD VQQDDA02OTQ2YzJjYS1jOWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WpWvelXoTudL7Ef7k9YTsGCjTg3q9iNMqCN9dbPnPIFQdlhd8SWLkF+E0v3 pi5Ad69uKbxdzSUVDnb4sXmUGx4exBHDMLB83aheXjKn1O+tGHjgUdjl7dTxqDvR nXpf3RIKFOmz/kgH7BZJKt/WFNplhUARcEJh2Aew+qSSOYryL14U17QSg/RR68Ha tDUyOobcF/YvTj7myU7H8uSnDG/pkJ3TWfwRs5rucKm1/Efio7SJ14SIsH9K+XY3 WKgH3RY3at1jsM7mBGNiqwAFBCrFLc5gkLkPT4vgOnwqwNqTYdX1MpOaXhsXeMCE u5F67D+IWQx7GEjmOFuI5e9UfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJGIFX46 9Kds+tGyXaBz66NKdQAfMB8GA1UdIwQYMBaAFKxBkaw6GpOW541hLzdNusyPLZG1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUNEMy84MTIyODZEMjQ3 MTExMUU1QTQ0OTYzMzVDNEY5QUUwMi9yRUdSckRvYWs1Ym5qV0V2TjAyNnpJOHRr YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JFR1JyRG9hazVibmpXRXZOMDI2ekk4dGtiVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUNEMy84MTIyODZEMjQ3MTExMUU1QTQ0OTYzMzVDNEY5QUUwMi9yRUdSckRvYWs1 Ym5qV0V2TjAyNnpJOHRrYlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlnl4YSv/S0GdCF72ztvn8FhjqiEEj7LvoOM9fgLVaYQvD23PkzJ7v Mat4Wr58Ow6cj/rLi2wvk7IvJ+lDUsz426hUb8PkQzzy32MXZFYqn363YDUi1sz1 VEIXaNk+9hUFJhj/LQyciE+C5iap67BbFgbt3AxD7d8sy7nxp3r7XvWFYQDE5yhA 9SHHRpoVNtrbFuBHisJ3KrZp0Gqmj+w6SG7S0AEJgNzuOAMHLlZ6jv13rOyRxdp0 tTFGI5TRT/QVoxpc6DlHlpUseq/3G/2ZETkm7xb1xkxS9rm7YOFURZBUzaKJfft/ +npRfLjTzP28mLuI3xT0kr//2hTMq2Oi -----END CERTIFICATE-----Generated at Mon Dec 22 15:16:32 2025 by rpki-client