This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft File: MLwu5bdWT-D98gDnibI6LA2OkiQ.mft (raw, json) Hash identifier: AGwSW0wVXhS3147Ma3cGP5W7ERyv9xqLZb6n02gM9zk= Subject key identifier: 47:F2:ED:D9:12:54:AC:8D:7B:6F:59:C7:DA:12:DC:9C:5E:75:8A:53 Authority key identifier: 30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 Certificate issuer: /CN=A916CAC7/serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Certificate serial: 0CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft Manifest number: 0CB9 Signing time: Sat 20 Dec 2025 17:53:06 +0000 Manifest this update: Sat 20 Dec 2025 17:53:06 +0000 Manifest next update: Sat 27 Dec 2025 17:53:06 +0000 Files and hashes: 1: MLwu5bdWT-D98gDnibI6LA2OkiQ.crl (hash: NNzaDK3wDq0WIsgo4u89CfionSvN0uo0nHu7uLBCwJg=) 2: 9E5B75C0022D11EAAD80DA48C4F9AE02.roa (hash: LXTrgQN3T+0OVcDzvaM6T5a0p0NXB+0zRwSrfQRhFSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3264 (0xcc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAC7, serialNumber=30BC2EE5B7564FE0FDF200E789B23A2C0D8E9224 Validity Not Before: Dec 20 17:53:06 2025 GMT Not After : Dec 27 17:53:06 2025 GMT Subject: CN=6946e282-2021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6f:6e:d8:2c:96:ec:af:8a:cb:16:9c:2b:9d: ec:df:38:79:f2:6f:46:95:c4:e9:fb:fe:f2:20:bb: 1d:72:d8:13:f3:c1:84:51:a4:80:9e:43:43:b9:90: 33:0b:bf:b9:1f:20:4b:c0:57:22:7d:34:6f:8c:55: cf:46:8c:b9:b5:32:d5:ee:91:e8:92:d0:d6:35:4a: 82:26:c7:81:58:9c:29:5a:78:e5:65:0d:30:c4:dc: 5b:aa:cf:f2:00:b3:ec:b1:7e:58:9a:64:e6:fa:80: 17:b5:73:8e:d7:e4:e4:98:00:f4:79:04:de:e6:d2: c7:d7:0e:a5:48:ce:08:e4:38:c3:45:73:ba:b4:34: 42:d9:a5:95:71:ba:25:16:56:2e:a6:76:2e:19:5a: 0c:b1:bb:b1:6b:db:77:3a:a9:33:1c:be:81:06:98: 90:50:36:83:1c:03:d2:8c:a3:0e:7b:8a:5a:77:ea: 59:37:63:0b:19:9d:5f:9b:1b:90:e0:53:a8:35:9e: ef:74:99:70:eb:59:72:85:be:d4:95:1b:4a:7c:73: ce:67:ac:78:a4:97:bc:0e:28:04:0a:29:16:81:f4: 23:e6:3b:71:0c:30:ab:78:f8:17:82:65:96:b4:5f: a0:60:f8:36:91:97:f2:1d:12:c9:86:47:d0:61:e0: fb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F2:ED:D9:12:54:AC:8D:7B:6F:59:C7:DA:12:DC:9C:5E:75:8A:53 X509v3 Authority Key Identifier: keyid:30:BC:2E:E5:B7:56:4F:E0:FD:F2:00:E7:89:B2:3A:2C:0D:8E:92:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MLwu5bdWT-D98gDnibI6LA2OkiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAC7/C139DABA022C11EABE1F0C48C4F9AE02/MLwu5bdWT-D98gDnibI6LA2OkiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:f0:96:21:ff:c6:75:2e:ed:e8:3d:6d:9f:1a:d6:47:a0:cf: e3:e4:6e:91:ea:27:64:3f:14:4b:e6:cb:86:40:e0:a4:86:cb: cc:d1:1b:a5:57:5a:04:06:5b:61:e4:10:6b:9c:c8:bc:4e:61: ec:c3:de:b4:05:c5:64:b0:9f:9f:8a:52:7b:0b:e1:64:4a:37: c6:c3:74:d6:e7:74:ab:c3:c8:6a:a5:b2:18:4a:9d:0e:03:1f: bf:ad:31:23:e8:ce:0f:d9:c5:83:a9:4b:0f:e3:83:c9:d2:82: bc:f1:b7:24:5b:f2:85:9d:5b:24:ec:1d:97:3a:26:f8:30:c3: 72:cd:a6:24:90:78:e4:49:2c:0d:62:fa:b3:25:d9:cc:f5:36: bf:5d:00:c8:46:e4:d6:d3:c2:c6:36:e0:71:e9:2c:11:1b:6f: 19:15:f2:00:2e:b9:fc:63:ce:68:f4:e2:c7:63:65:aa:d5:64: 35:f4:49:ff:12:a9:cf:40:5d:8c:39:a5:1b:f6:34:32:1a:58: 80:6f:79:84:90:48:da:4b:b1:50:9e:a6:60:7c:dd:4e:f2:53: 3a:c7:2f:45:d4:32:92:20:3b:63:f8:f6:d5:44:d8:41:1b:ff: ac:8b:76:ac:5a:ef:a1:cc:18:75:f6:fd:c6:1f:91:ac:f1:f4: 43:5f:a4:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBQzcxMTAvBgNVBAUTKDMwQkMyRUU1Qjc1NjRGRTBGREYyMDBFNzg5QjIzQTJD MEQ4RTkyMjQwHhcNMjUxMjIwMTc1MzA2WhcNMjUxMjI3MTc1MzA2WjAYMRYwFAYD VQQDDA02OTQ2ZTI4Mi0yMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoG9u2CyW7K+KyxacK53s3zh58m9GlcTp+/7yILsdctgT88GEUaSAnkNDuZAz C7+5HyBLwFcifTRvjFXPRoy5tTLV7pHoktDWNUqCJseBWJwpWnjlZQ0wxNxbqs/y ALPssX5YmmTm+oAXtXOO1+TkmAD0eQTe5tLH1w6lSM4I5DjDRXO6tDRC2aWVcbol FlYupnYuGVoMsbuxa9t3OqkzHL6BBpiQUDaDHAPSjKMOe4pad+pZN2MLGZ1fmxuQ 4FOoNZ7vdJlw61lyhb7UlRtKfHPOZ6x4pJe8DigECikWgfQj5jtxDDCrePgXgmWW tF+gYPg2kZfyHRLJhkfQYeD7fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfy7dkS VKyNe29Zx9oS3JxedYpTMB8GA1UdIwQYMBaAFDC8LuW3Vk/g/fIA54myOiwNjpIk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0FDNy9DMTM5REFCQTAy MkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1QtRDk4Z0RuaWJJNkxBMk9r aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Md3U1YmRXVC1EOThnRG5pYkk2TEEyT2tpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0FDNy9DMTM5REFCQTAyMkMxMUVBQkUxRjBDNDhDNEY5QUUwMi9NTHd1NWJkV1Qt RDk4Z0RuaWJJNkxBMk9raVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm8JYh/8Z1Lu3oPW2fGtZHoM/j5G6R6idkPxRL5suGQOCkhsvM0Rul V1oEBlth5BBrnMi8TmHsw960BcVksJ+filJ7C+FkSjfGw3TW53Srw8hqpbIYSp0O Ax+/rTEj6M4P2cWDqUsP44PJ0oK88bckW/KFnVsk7B2XOib4MMNyzaYkkHjkSSwN YvqzJdnM9Ta/XQDIRuTW08LGNuBx6SwRG28ZFfIALrn8Y85o9OLHY2Wq1WQ19En/ EqnPQF2MOaUb9jQyGliAb3mEkEjaS7FQnqZgfN1O8lM6xy9F1DKSIDtj+PbVRNhB G/+si3asWu+hzBh19v3GH5Gs8fRDX6R5 -----END CERTIFICATE-----Generated at Mon Dec 22 02:51:47 2025 by rpki-client