This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: uPhVOgSVoxLRAF94R9H6xEic/Oi4uHDSuPu8B36vFu0= Subject key identifier: D9:40:57:9F:0E:1E:73:FB:1D:FA:40:B4:9D:6B:0D:AD:EB:41:CB:C9 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01F9 Signing time: Sun 21 Dec 2025 01:45:17 +0000 Manifest this update: Sun 21 Dec 2025 01:45:16 +0000 Manifest next update: Sun 28 Dec 2025 01:45:16 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: sjwwkM3gzCZ+fq2+Mxe0a4pwq7BqkfdiOv6xqfynavU=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) 4: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 5: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Dec 21 01:45:16 2025 GMT Not After : Dec 28 01:45:16 2025 GMT Subject: CN=6947512d-ede1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:48:33:b5:28:78:d9:37:6b:37:46:09:3c:b2: b6:8b:42:e0:11:7c:f5:04:3e:85:ff:de:72:ee:77: d1:b3:9e:b4:50:cc:93:16:44:e6:b0:97:06:aa:a2: bb:4e:a1:4e:5e:1d:df:dc:f1:99:6c:c8:56:c1:90: a7:b5:0b:40:3b:17:30:13:c5:00:71:8c:1d:d7:a9: bf:8e:0e:76:c1:00:c2:73:29:df:36:dc:cb:2a:1d: 89:1e:b4:07:63:0c:ea:89:5f:14:fb:0c:c8:64:0b: 37:b5:56:7d:26:6d:fe:52:0d:fd:50:0f:d4:1d:9e: d4:ef:ff:b6:8d:bf:65:2b:54:08:f2:f8:c2:12:f4: c6:24:be:cc:92:09:c3:60:9f:23:5b:d7:de:5c:4d: 64:e1:46:21:c4:af:df:cb:fe:b7:cb:81:73:00:71: d5:ae:b7:87:96:b7:c6:66:97:8f:75:14:e8:d3:82: df:05:f0:45:26:a7:23:30:67:24:d0:6f:83:6d:27: b9:b3:bf:a8:3e:a8:53:aa:3c:6f:e9:f5:b0:d9:04: a1:4c:82:83:0e:23:59:b3:89:fe:36:67:d1:2a:b2: a4:9c:07:e6:e6:0e:e7:e4:2b:a6:2a:b4:86:30:88: d8:ad:87:f6:04:5c:b0:70:e2:e0:04:43:cf:15:21: 0e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:40:57:9F:0E:1E:73:FB:1D:FA:40:B4:9D:6B:0D:AD:EB:41:CB:C9 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d0:a5:dd:84:3e:fc:bb:ef:09:45:90:c3:be:6d:95:1b:46: 9e:2b:2a:42:d1:d2:10:62:fc:22:c3:7b:6c:4f:a8:30:18:4a: 58:2e:2b:94:12:64:af:da:c5:c2:3c:be:4f:4c:4a:ce:0c:f9: cb:ba:58:3a:af:60:02:c7:53:5e:65:ef:86:5a:c3:08:36:0c: 27:7c:e7:19:55:95:cf:10:d6:e4:a4:2f:21:9a:92:a3:11:82: 86:4d:e0:56:b4:59:d4:ef:31:d9:8e:a0:91:a9:8c:49:38:68: 10:69:22:78:64:65:bd:1b:dd:d9:cd:a6:3e:cb:31:1b:11:43: 15:30:fa:5a:3f:3b:06:93:5f:5e:5d:ab:fd:df:b8:c2:8b:7e: d8:87:29:30:a5:3e:96:d8:24:7a:4c:fd:d9:a7:fc:c0:42:44: 06:19:70:c0:a0:a1:46:10:3c:bf:3e:21:a0:d0:48:74:d6:6f: a4:f0:05:5e:03:9c:9a:70:2c:26:ac:37:0a:d1:37:4a:58:a6: ff:ef:9a:a7:ca:6d:ff:26:24:ee:89:9d:1c:6d:ee:9f:75:1f: af:b7:79:8b:b4:5e:6c:84:9a:e3:19:72:2a:d5:a2:bc:f4:2c: d7:d3:8c:19:60:92:56:60:6d:9e:48:a9:95:09:8e:66:46:56: cc:a9:27:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUxMjIxMDE0NTE2WhcNMjUxMjI4MDE0NTE2WjAYMRYwFAYD VQQDDA02OTQ3NTEyZC1lZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0gztSh42TdrN0YJPLK2i0LgEXz1BD6F/95y7nfRs560UMyTFkTmsJcGqqK7 TqFOXh3f3PGZbMhWwZCntQtAOxcwE8UAcYwd16m/jg52wQDCcynfNtzLKh2JHrQH YwzqiV8U+wzIZAs3tVZ9Jm3+Ug39UA/UHZ7U7/+2jb9lK1QI8vjCEvTGJL7MkgnD YJ8jW9feXE1k4UYhxK/fy/63y4FzAHHVrreHlrfGZpePdRTo04LfBfBFJqcjMGck 0G+DbSe5s7+oPqhTqjxv6fWw2QShTIKDDiNZs4n+NmfRKrKknAfm5g7n5CumKrSG MIjYrYf2BFywcOLgBEPPFSEOpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlAV58O HnP7HfpAtJ1rDa3rQcvJMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/0KXdhD78u+8JRZDDvm2VG0aeKypC0dIQYvwiw3tsT6gwGEpYLiuU EmSv2sXCPL5PTErODPnLulg6r2ACx1NeZe+GWsMINgwnfOcZVZXPENbkpC8hmpKj EYKGTeBWtFnU7zHZjqCRqYxJOGgQaSJ4ZGW9G93ZzaY+yzEbEUMVMPpaPzsGk19e Xav937jCi37YhykwpT6W2CR6TP3Zp/zAQkQGGXDAoKFGEDy/PiGg0Eh01m+k8AVe A5yacCwmrDcK0TdKWKb/75qnym3/JiTuiZ0cbe6fdR+vt3mLtF5shJrjGXIq1aK8 9CzX04wZYJJWYG2eSKmVCY5mRlbMqSd5 -----END CERTIFICATE-----Generated at Sun Dec 21 14:15:10 2025 by rpki-client