This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: GTeoboYAbJl6BIVHmuqmJ4sE7TWYUsB9tUxFLVRMicQ= Subject key identifier: 0C:02:2F:C6:F2:41:2C:10:E1:67:18:DF:E2:70:05:45:32:7B:97:74 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01BE Signing time: Sat 27 Dec 2025 02:03:05 +0000 Manifest this update: Sat 27 Dec 2025 02:03:04 +0000 Manifest next update: Sat 03 Jan 2026 02:03:04 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: XCU+oa1GW6nNVZM0ufFnl3K0ZLD8+xx1OhVaBSBS3eM=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 02:03:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Dec 27 02:03:04 2025 GMT Not After : Jan 3 02:03:04 2026 GMT Subject: CN=694f3e59-409d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8a:11:c1:e1:27:06:22:2d:a8:12:4e:25:01: 7b:7f:dd:fe:f3:08:27:1d:42:15:bd:55:ee:e1:cd: 61:aa:c7:8d:82:65:00:e8:69:7a:f0:be:bd:73:6e: d2:b9:b7:85:9f:05:e1:af:58:96:76:91:a6:07:18: d5:21:ee:cc:dd:14:a3:9f:44:d2:9f:b7:a9:2f:e3: 2a:dc:7f:98:a3:58:d4:b2:bb:16:d7:59:1c:58:e0: 13:23:a0:16:68:53:ab:ac:0e:09:59:aa:43:9b:20: 2f:64:96:b8:e7:68:ef:e4:1c:e7:77:f1:6e:f1:ab: 21:90:ab:ab:06:c9:a2:9d:98:47:f2:0e:fd:f5:b0: 02:40:d7:95:7e:fb:ac:10:14:7e:63:79:61:e4:4d: 1b:34:6b:d0:77:6f:ff:80:f7:8f:d6:96:8b:8a:2d: cb:14:df:ea:92:50:6c:0e:9e:bd:c8:9b:8c:17:e1: bf:aa:1d:90:17:00:8b:8b:f6:08:df:29:57:8a:5a: 2c:8d:da:9c:bd:1a:4f:04:17:6a:fa:50:6b:ec:79: 4c:e2:7c:fd:ff:32:a9:e8:b7:00:2b:73:4f:75:ab: 94:69:01:c3:cb:33:2e:6e:c3:dc:df:c6:6c:92:7f: 87:29:0c:eb:2b:48:f9:f6:20:27:75:30:e0:1d:98: 3c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:02:2F:C6:F2:41:2C:10:E1:67:18:DF:E2:70:05:45:32:7B:97:74 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:27:b7:5e:18:0f:5d:82:79:33:e4:74:23:23:12:e7:f0:10: b0:73:be:c6:01:3d:3e:4f:08:ea:91:f7:87:e0:85:7f:84:3a: 20:75:c7:f9:a7:b2:55:52:40:32:94:52:93:04:f3:7d:08:87: 84:97:6a:b2:a0:a7:9d:b3:17:64:e9:39:ea:c8:c0:a2:f7:69: 1c:fc:17:bb:1d:4c:d0:7c:c3:8f:0e:8f:ac:ed:1c:f5:5f:22: 8c:bc:31:a7:44:a7:dd:d6:b6:72:4a:b2:f6:82:f1:6a:93:ba: fc:64:82:b4:f7:ea:e1:bb:54:bd:b5:08:2e:31:e9:8c:d2:99: b9:da:90:41:08:69:c3:0d:da:ed:ed:76:ff:74:27:76:a3:09: 78:01:34:4c:53:43:0d:ac:1b:06:d4:19:50:7b:c9:cd:84:11: dd:c6:8d:4a:4a:c5:67:2b:6d:10:a6:df:6d:77:22:40:23:5f: 98:bc:8a:07:2b:1a:55:0f:90:52:b6:8d:5c:e9:29:cb:7c:8e: f5:88:c3:0d:b3:95:3e:c3:31:12:2c:00:c7:7b:5e:cb:4d:a9: e8:44:32:26:16:90:c5:46:f0:43:dd:52:ca:22:12:ff:35:86: 20:73:51:17:92:c1:83:0c:de:09:81:a2:37:d5:cf:0c:f5:3e: 64:25:57:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUxMjI3MDIwMzA0WhcNMjYwMTAzMDIwMzA0WjAYMRYwFAYD VQQDDA02OTRmM2U1OS00MDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ooRweEnBiItqBJOJQF7f93+8wgnHUIVvVXu4c1hqseNgmUA6Gl68L69c27S ubeFnwXhr1iWdpGmBxjVIe7M3RSjn0TSn7epL+Mq3H+Yo1jUsrsW11kcWOATI6AW aFOrrA4JWapDmyAvZJa452jv5Bznd/Fu8ashkKurBsminZhH8g799bACQNeVfvus EBR+Y3lh5E0bNGvQd2//gPeP1paLii3LFN/qklBsDp69yJuMF+G/qh2QFwCLi/YI 3ylXilosjdqcvRpPBBdq+lBr7HlM4nz9/zKp6LcAK3NPdauUaQHDyzMubsPc38Zs kn+HKQzrK0j59iAndTDgHZg8wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwCL8by QSwQ4WcY3+JwBUUye5d0MB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2J7deGA9dgnkz5HQjIxLn8BCwc77GAT0+TwjqkfeH4IV/hDogdcf5 p7JVUkAylFKTBPN9CIeEl2qyoKedsxdk6TnqyMCi92kc/Be7HUzQfMOPDo+s7Rz1 XyKMvDGnRKfd1rZySrL2gvFqk7r8ZIK09+rhu1S9tQguMemM0pm52pBBCGnDDdrt 7Xb/dCd2owl4ATRMU0MNrBsG1BlQe8nNhBHdxo1KSsVnK20Qpt9tdyJAI1+YvIoH KxpVD5BSto1c6SnLfI71iMMNs5U+wzESLADHe17LTanoRDImFpDFRvBD3VLKIhL/ NYYgc1EXksGDDN4JgaI31c8M9T5kJVcp -----END CERTIFICATE-----Generated at Mon Dec 29 00:46:12 2025 by rpki-client