This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: Fx8i6Ku38JMn/D+OLY4ID+ZLDdEJtOlLdff3JWg4Q/g= Subject key identifier: 9A:A9:4E:39:99:8F:59:99:CD:B6:12:52:88:75:EC:4A:11:19:6C:17 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 04DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 04D5 Signing time: Wed 24 Dec 2025 22:59:35 +0000 Manifest this update: Wed 24 Dec 2025 22:59:35 +0000 Manifest next update: Wed 31 Dec 2025 22:59:35 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: qDyW5i/MSik66FelM3CETvM+6iYmhgeqJ5gVFtsMcms=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: IrP7jrHdQVwCdKqpccuips54ATRwjRPu8lk/ibgnCpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 22:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1244 (0x4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Dec 24 22:59:35 2025 GMT Not After : Dec 31 22:59:35 2025 GMT Subject: CN=694c7057-5f37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:9e:e5:25:15:93:56:91:01:18:17:1b:37:8e: 54:f6:cb:23:51:8a:18:f7:0f:21:c5:5a:ab:67:ea: 1a:52:09:24:2f:08:9c:17:ae:f9:67:da:ee:41:0f: 88:ab:35:43:c3:16:1f:b3:44:68:45:da:bc:cb:eb: f7:9e:26:6b:c3:14:63:df:29:46:92:68:e4:53:15: 5c:1a:8d:a9:94:6e:a7:3d:36:19:7b:f7:dd:38:0c: d0:58:11:73:3f:85:bc:db:8a:44:b7:59:7a:74:e3: 39:71:a3:25:0a:9e:99:49:b5:b2:e4:06:0c:a1:40: cd:68:96:0b:35:8a:49:e9:2f:08:22:59:b5:f7:fe: df:1a:ca:a2:04:f2:df:93:6c:be:3f:43:36:bb:0f: b2:64:e5:63:2a:6e:10:25:b0:00:07:b3:f3:52:82: 24:bb:ae:58:e7:f4:ea:59:46:99:73:43:bd:84:57: 48:64:bc:a8:b6:45:55:a3:28:ef:b6:36:85:9b:5c: 56:0a:e1:76:a5:39:10:b3:83:be:79:54:ce:89:2e: ae:b3:38:a2:87:f2:90:84:70:5f:23:b6:d2:58:21: f3:4b:27:47:ce:87:c9:98:fe:0c:46:d6:69:09:fd: 0e:94:cb:ab:64:b4:2f:5c:f7:9c:1c:01:c4:f0:f7: f1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A9:4E:39:99:8F:59:99:CD:B6:12:52:88:75:EC:4A:11:19:6C:17 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:90:b0:2e:74:64:c1:cc:b8:2c:1a:a1:0b:e5:e6:50:ad:21: 5e:c8:ac:07:8b:52:5d:bf:98:13:cb:24:0f:b6:78:95:56:a6: ce:a1:0d:25:e4:d6:e6:04:14:df:af:9f:aa:b3:27:28:81:fc: ad:9d:b4:e7:13:ec:ce:94:ad:2d:cc:95:0f:45:39:12:5d:b0: b1:a1:91:ed:17:41:3a:7d:84:3e:d4:92:04:e0:05:21:f1:2f: 43:9b:1e:26:aa:60:50:68:94:fa:a3:9f:e7:0d:a2:1b:a7:fe: 69:19:6f:b4:d6:b4:aa:45:22:39:01:77:5e:fe:18:17:2b:84: ca:6f:f6:a8:9b:06:34:5a:d4:36:a1:2c:4f:96:f2:3d:87:c5: bf:96:4d:31:bd:be:bc:28:11:29:48:35:0f:34:ad:f8:70:65: d2:8e:b6:3c:09:23:4f:f0:a3:1c:89:4a:34:05:c4:a3:20:bd: 5f:b7:bc:ac:8c:13:51:47:92:a4:4d:96:10:83:5e:09:9f:be: d6:49:fc:83:35:ff:e4:e9:09:a8:10:40:6a:b3:7f:2d:53:d8: 5f:84:a9:5c:fc:32:d2:88:ad:0c:b7:97:42:5b:24:cd:cd:37: 5d:99:d4:68:bb:0f:53:8d:8e:0c:69:03:dc:99:3e:eb:70:f1: 6f:bf:c2:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUxMjI0MjI1OTM1WhcNMjUxMjMxMjI1OTM1WjAYMRYwFAYD VQQDDA02OTRjNzA1Ny01ZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Z7lJRWTVpEBGBcbN45U9ssjUYoY9w8hxVqrZ+oaUgkkLwicF675Z9ruQQ+I qzVDwxYfs0RoRdq8y+v3niZrwxRj3ylGkmjkUxVcGo2plG6nPTYZe/fdOAzQWBFz P4W824pEt1l6dOM5caMlCp6ZSbWy5AYMoUDNaJYLNYpJ6S8IIlm19/7fGsqiBPLf k2y+P0M2uw+yZOVjKm4QJbAAB7PzUoIku65Y5/TqWUaZc0O9hFdIZLyotkVVoyjv tjaFm1xWCuF2pTkQs4O+eVTOiS6usziih/KQhHBfI7bSWCHzSydHzofJmP4MRtZp Cf0OlMurZLQvXPecHAHE8PfxaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqpTjmZ j1mZzbYSUoh17EoRGWwXMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6kLAudGTBzLgsGqEL5eZQrSFeyKwHi1Jdv5gTyyQPtniVVqbOoQ0l 5NbmBBTfr5+qsycogfytnbTnE+zOlK0tzJUPRTkSXbCxoZHtF0E6fYQ+1JIE4AUh 8S9Dmx4mqmBQaJT6o5/nDaIbp/5pGW+01rSqRSI5AXde/hgXK4TKb/aomwY0WtQ2 oSxPlvI9h8W/lk0xvb68KBEpSDUPNK34cGXSjrY8CSNP8KMciUo0BcSjIL1ft7ys jBNRR5KkTZYQg14Jn77WSfyDNf/k6QmoEEBqs38tU9hfhKlc/DLSiK0Mt5dCWyTN zTddmdRouw9TjY4MaQPcmT7rcPFvv8Le -----END CERTIFICATE-----Generated at Fri Dec 26 03:47:52 2025 by rpki-client