This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: pkmI9IKVddzw7yoJmgc8Xk+OLv92/G3UPAUNW97Y7WU= Subject key identifier: 46:9A:CB:28:8F:66:73:51:DF:90:0F:26:63:74:52:AB:CD:77:1C:3B Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0F33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0F1D Signing time: Sat 20 Dec 2025 17:18:58 +0000 Manifest this update: Sat 20 Dec 2025 17:18:57 +0000 Manifest next update: Sat 27 Dec 2025 17:18:57 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: q1o4RndxCIz3wJliGPXiM5CzzNJ+Eh7qPlDTTmkltxI=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: A7sH5kT/nJtv/IMtWiRgvA6A10KdIHaRx/+kfjus0Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3891 (0xf33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Dec 20 17:18:57 2025 GMT Not After : Dec 27 17:18:57 2025 GMT Subject: CN=6946da81-04c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ba:14:34:a1:e6:1d:da:51:f6:dc:5e:3e:02: fb:f8:fc:76:03:84:58:66:c8:a8:14:34:39:4a:cb: ec:de:0e:bc:cb:8a:37:e0:8c:60:3c:1c:ad:91:df: c5:b9:3d:1f:cb:3d:11:13:45:f0:1b:78:52:57:ff: c5:af:58:7c:40:d6:8b:0b:99:cd:91:91:e2:67:61: cc:8f:62:37:cd:e7:92:a1:61:e1:d6:4d:37:16:ed: 7f:9b:dd:f1:ab:08:0e:d0:6c:c5:7f:d9:99:85:df: 30:04:46:ae:10:dd:62:9f:74:60:14:46:9e:4e:00: f8:a4:28:cd:39:2c:2f:59:7b:b9:0e:0d:3f:67:f2: 08:33:e4:32:8a:b6:18:ff:aa:3f:4b:ca:1e:f1:f1: 7b:6b:e2:dc:1b:72:19:1d:6b:c0:b8:6a:a6:90:f1: e7:28:cf:31:0c:ab:a8:ac:5f:35:1d:87:b6:53:49: 47:e6:7d:a4:ee:c6:98:df:16:f7:1d:02:e8:7a:9c: 8f:3c:03:c7:35:02:89:21:5a:4b:8d:aa:de:54:60: 07:ed:b3:1d:ca:d7:9c:13:0b:b8:67:39:94:84:41: 3f:50:60:bf:47:01:c5:7a:59:42:40:51:aa:23:33: 6e:7a:b8:11:1e:28:37:c3:a0:bb:dd:82:3e:fd:8c: 6f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:9A:CB:28:8F:66:73:51:DF:90:0F:26:63:74:52:AB:CD:77:1C:3B X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:fc:0d:82:73:b2:39:91:51:95:0f:24:ee:ef:6c:33:f9:9b: 90:70:74:97:ea:65:b0:af:8b:32:02:a2:28:5b:66:c4:90:1c: 0a:46:10:0e:5d:79:3b:61:a7:ad:e5:a6:cb:fe:bc:36:cc:42: 7f:48:0e:44:c7:56:30:31:4f:4c:ec:2c:51:e1:a3:b1:a4:aa: 15:04:b6:36:34:a0:10:45:f2:95:8a:53:01:80:f5:b3:3e:8b: d9:1d:98:53:45:98:10:0b:8a:d0:d6:fe:8e:8e:d9:53:f5:98: 7c:24:0e:58:03:25:26:42:ef:8d:3c:2e:ea:55:b4:79:17:47: 57:03:f7:d2:45:dd:c3:0d:5e:db:d4:59:96:d1:71:4e:fb:39: f1:97:3e:ea:ab:61:f5:54:70:46:b5:ed:75:06:c1:50:3d:09: 50:fc:1e:0c:b5:01:47:8a:36:e1:5b:1b:f7:77:87:42:28:73: c7:1e:02:ee:e3:55:6b:8f:de:1e:bb:ca:5a:1f:e1:cc:33:51: 6e:52:67:c8:f9:4f:ad:db:4e:e1:b3:7e:d5:18:ee:62:1a:a5: 2e:1b:eb:9d:ae:64:cd:84:99:16:af:db:15:0c:47:ac:85:01: 24:27:33:82:f1:b0:69:44:ff:36:fa:06:3b:32:de:e4:f5:83: 10:f6:5c:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUxMjIwMTcxODU3WhcNMjUxMjI3MTcxODU3WjAYMRYwFAYD VQQDDA02OTQ2ZGE4MS0wNGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsroUNKHmHdpR9txePgL7+Px2A4RYZsioFDQ5Ssvs3g68y4o34IxgPBytkd/F uT0fyz0RE0XwG3hSV//Fr1h8QNaLC5nNkZHiZ2HMj2I3zeeSoWHh1k03Fu1/m93x qwgO0GzFf9mZhd8wBEauEN1in3RgFEaeTgD4pCjNOSwvWXu5Dg0/Z/IIM+QyirYY /6o/S8oe8fF7a+LcG3IZHWvAuGqmkPHnKM8xDKuorF81HYe2U0lH5n2k7saY3xb3 HQLoepyPPAPHNQKJIVpLjareVGAH7bMdytecEwu4ZzmUhEE/UGC/RwHFellCQFGq IzNuergRHig3w6C73YI+/YxvWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEaayyiP ZnNR35APJmN0UqvNdxw7MB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk/A2Cc7I5kVGVDyTu72wz+ZuQcHSX6mWwr4syAqIoW2bEkBwKRhAO XXk7Yaet5abL/rw2zEJ/SA5Ex1YwMU9M7CxR4aOxpKoVBLY2NKAQRfKVilMBgPWz PovZHZhTRZgQC4rQ1v6OjtlT9Zh8JA5YAyUmQu+NPC7qVbR5F0dXA/fSRd3DDV7b 1FmW0XFO+znxlz7qq2H1VHBGte11BsFQPQlQ/B4MtQFHijbhWxv3d4dCKHPHHgLu 41Vrj94eu8paH+HMM1FuUmfI+U+t207hs37VGO5iGqUuG+udrmTNhJkWr9sVDEes hQEkJzOC8bBpRP82+gY7Mt7k9YMQ9lzl -----END CERTIFICATE-----Generated at Sun Dec 21 08:00:22 2025 by rpki-client