This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: bp+cjAbFOAHbRwsK1JpxrI45p41VWH3jzlli0B7aVVg= Subject key identifier: F8:C3:44:B4:A0:50:5E:33:F6:A2:21:B2:52:04:2E:BD:B7:91:6C:13 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 0170 Signing time: Fri 19 Dec 2025 03:03:39 +0000 Manifest this update: Fri 19 Dec 2025 03:03:38 +0000 Manifest next update: Fri 26 Dec 2025 03:03:38 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: nQDsDaEV0sQULnBNZxzeZ2J2I+iEhNmuGLOZPgSbThk=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Dec 19 03:03:38 2025 GMT Not After : Dec 26 03:03:38 2025 GMT Subject: CN=6944c08b-3da5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5e:5d:71:a5:ea:74:16:f6:27:da:d8:f2:aa: 33:03:ea:bf:2c:6c:b4:b7:a7:96:fd:10:c2:ec:6f: 6e:cc:40:a1:28:10:c7:28:64:e7:f9:d1:d8:3a:05: 41:a1:44:b0:f7:d0:71:f4:c8:f8:38:0d:4c:8a:3e: 88:e8:18:34:33:67:a2:36:6d:1c:d6:e5:2a:ff:f7: 18:20:4a:56:a9:b9:eb:67:c3:74:5a:ef:97:94:20: f1:78:04:ba:76:1a:e8:00:ba:8b:da:59:ec:d2:f8: 2b:f4:f2:9e:a0:56:e7:ad:57:9d:17:77:43:30:14: 9f:b9:e7:39:11:c4:2f:9b:5c:26:bf:57:5e:0b:25: 3d:a9:84:7d:e3:4f:c4:a3:fe:bc:81:f3:32:3c:57: 19:50:7d:9e:e4:46:c8:31:d8:87:a1:4c:9b:04:f0: 20:c7:c9:36:f1:15:7c:c4:26:1e:34:51:41:06:83: 18:e2:8b:1d:f3:69:43:91:a4:69:18:59:95:34:57: 47:b0:50:6b:37:42:ea:24:9e:5b:f2:bd:11:07:e2: 56:92:f9:ae:88:60:8e:e9:f5:39:f8:e2:fc:29:03: 3e:84:0e:9d:bf:7d:12:2e:d2:ff:34:a2:e1:c5:7a: 7c:ff:13:1c:5f:77:79:9e:32:5d:67:d4:b4:46:59: 13:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:C3:44:B4:A0:50:5E:33:F6:A2:21:B2:52:04:2E:BD:B7:91:6C:13 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:b9:1b:aa:a0:08:7e:18:bb:21:2d:c0:b7:5b:c4:fc:97:5d: 8f:d1:85:e0:9d:46:78:0f:ca:a6:b2:b9:63:d3:15:c3:55:97: 9e:7e:df:8a:57:2e:65:07:cc:24:f2:97:7a:0c:39:8d:b8:7f: 99:1a:29:8b:93:5d:0c:7a:bd:fa:43:0d:ba:27:5f:6c:44:34: 21:27:36:1a:8e:f1:f9:12:7c:a9:8d:70:2e:33:66:18:c5:24: 5a:51:13:6a:3c:11:38:d7:aa:a2:50:05:5e:c8:4e:c5:f3:f9: 70:2e:3b:92:82:6b:27:3c:c7:a6:9c:ce:12:fa:c7:1d:0f:9d: 72:db:3b:ca:6f:ee:e6:51:a6:c2:82:f8:25:b4:f4:dc:e6:79: 48:72:2f:59:cf:90:10:7c:75:be:d3:be:52:8f:2f:f2:d8:1a: 57:91:7d:aa:a7:5f:65:06:2a:63:0b:0c:d7:0b:25:29:2d:2f: 9e:9b:9a:78:1f:b1:34:c8:5d:86:ed:f1:91:9f:19:53:b3:04: a3:ed:83:2b:0d:9a:82:d7:30:71:a8:cb:f2:1e:28:8b:51:33: d0:b3:6c:40:95:0c:9e:ba:ca:b1:71:44:f3:9b:b8:e2:a0:41: 0f:55:c3:5b:5c:ce:ea:7f:67:7c:e6:06:ba:31:12:dc:71:29: 5c:22:82:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUxMjE5MDMwMzM4WhcNMjUxMjI2MDMwMzM4WjAYMRYwFAYD VQQDDA02OTQ0YzA4Yi0zZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnF5dcaXqdBb2J9rY8qozA+q/LGy0t6eW/RDC7G9uzEChKBDHKGTn+dHYOgVB oUSw99Bx9Mj4OA1Mij6I6Bg0M2eiNm0c1uUq//cYIEpWqbnrZ8N0Wu+XlCDxeAS6 dhroALqL2lns0vgr9PKeoFbnrVedF3dDMBSfuec5EcQvm1wmv1deCyU9qYR940/E o/68gfMyPFcZUH2e5EbIMdiHoUybBPAgx8k28RV8xCYeNFFBBoMY4osd82lDkaRp GFmVNFdHsFBrN0LqJJ5b8r0RB+JWkvmuiGCO6fU5+OL8KQM+hA6dv30SLtL/NKLh xXp8/xMcX3d5njJdZ9S0RlkTKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjDRLSg UF4z9qIhslIELr23kWwTMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTuRuqoAh+GLshLcC3W8T8l12P0YXgnUZ4D8qmsrlj0xXDVZeeft+K Vy5lB8wk8pd6DDmNuH+ZGimLk10Mer36Qw26J19sRDQhJzYajvH5EnypjXAuM2YY xSRaURNqPBE416qiUAVeyE7F8/lwLjuSgmsnPMemnM4S+scdD51y2zvKb+7mUabC gvgltPTc5nlIci9Zz5AQfHW+075Sjy/y2BpXkX2qp19lBipjCwzXCyUpLS+em5p4 H7E0yF2G7fGRnxlTswSj7YMrDZqC1zBxqMvyHiiLUTPQs2xAlQyeusqxcUTzm7ji oEEPVcNbXM7qf2d85ga6MRLccSlcIoIq -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:14 2025 by rpki-client