This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft File: 6N3s7Bb-NIXVthplph7s11qYG0M.mft (raw, json) Hash identifier: +8gWYJxPVRNgLyGExnbCxKTbFPm2fCwV9EQWEzXEZgY= Subject key identifier: F0:8F:9F:6C:00:42:70:B9:A7:19:B8:A6:7E:97:52:8C:F5:21:D3:DC Authority key identifier: E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 Certificate issuer: /CN=A9172EF8/serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft Manifest number: 086F Signing time: Sat 20 Dec 2025 20:02:13 +0000 Manifest this update: Sat 20 Dec 2025 20:02:12 +0000 Manifest next update: Sat 27 Dec 2025 20:02:12 +0000 Files and hashes: 1: 6N3s7Bb-NIXVthplph7s11qYG0M.crl (hash: ajwOvpyV6V/pUvf7J4mRqX8bvTi+QdCSnggTlcUPhAc=) 2: 879AF91C9A8C11EF98A18D7FC4F9AE02.roa (hash: 6OWIgJkNxstxhvie89g5RYpzHfbz0XePQatIfAXwpWw=) 3: 82001182986511EFBFE02134C4F9AE02.roa (hash: TLQPV8U5lGZB70Fi67w4+2isfFUOL9hf77z3nqbL1o8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 20:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172EF8, serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Validity Not Before: Dec 20 20:02:12 2025 GMT Not After : Dec 27 20:02:12 2025 GMT Subject: CN=694700c5-ad01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:8c:5e:64:ac:ad:0b:59:48:08:00:5f:6a:55: 03:05:72:f4:26:2f:96:d1:35:09:2d:98:90:e4:98: 63:e9:a2:84:fc:db:6b:43:bb:0f:cf:2a:d5:d9:b6: 62:02:9d:7a:eb:dd:08:e7:a9:7e:46:db:7c:ff:29: db:9f:8d:d5:75:52:d2:40:57:64:9c:85:fd:e5:9a: 7d:87:e0:73:eb:f5:f6:f4:95:49:57:e2:0e:d6:10: 20:be:42:8d:94:b8:6f:f3:8a:37:e9:ec:f7:a4:e7: 60:49:1c:73:b8:98:4b:a4:d1:a0:2e:1b:14:62:09: b2:9e:68:c1:80:06:e6:96:2d:e1:b3:63:f1:6d:56: f0:bc:79:58:73:36:f9:a6:13:2e:b3:33:76:82:5f: 16:92:d3:a9:bb:8d:cb:fc:92:8f:aa:0e:fd:22:ac: b2:e2:f8:f2:33:1f:1b:0a:a8:e7:29:60:a3:35:74: 01:48:97:ec:02:95:54:76:65:5a:b1:dd:90:85:62: c4:fa:da:4f:78:ed:50:26:a3:54:25:63:81:64:ae: 56:92:96:fd:80:88:66:43:f7:94:11:88:c2:27:44: d3:01:9f:a9:ed:f9:e7:87:7a:6e:e9:f2:46:33:66: 4a:38:ce:fb:4d:1b:e2:94:be:07:a5:cf:c8:ab:dd: fe:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:8F:9F:6C:00:42:70:B9:A7:19:B8:A6:7E:97:52:8C:F5:21:D3:DC X509v3 Authority Key Identifier: keyid:E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:28:ef:d3:b3:d6:00:b3:fd:4b:dc:3f:25:14:4c:fd:7b:d2: 72:27:a5:ff:2e:6f:88:67:f4:b9:c8:a4:ec:ad:8f:8a:2d:74: 03:81:c9:d5:f7:1c:7c:db:c3:e7:70:c9:1a:e6:88:e5:03:bb: b1:e9:03:d9:f8:99:cd:80:1d:b1:3f:12:51:6f:90:46:ff:ed: a2:4a:01:3d:a4:ac:ff:bc:69:0a:64:58:f8:7f:d4:b8:a2:6b: e1:48:ba:1b:6d:41:dc:38:05:9a:03:86:00:b5:a7:19:fe:0b: f1:b3:58:02:a2:c4:08:0f:aa:2e:a9:eb:a8:7e:32:f6:94:c5: af:83:10:46:b7:a7:38:ff:99:46:83:b6:7e:ea:aa:0e:71:65: c0:5d:d9:ac:79:e8:e6:bb:30:82:17:43:7c:0b:31:65:17:10: b0:c4:5c:31:c3:b0:54:30:32:e4:4a:a3:44:a3:67:63:e6:42: 9a:62:ec:15:7b:9e:8f:cb:25:5f:92:9e:20:a4:4d:7f:94:b6: 43:be:6e:74:4a:25:10:dd:37:92:07:12:a7:5e:55:91:a7:9e: 35:0e:23:c1:ff:5f:66:e2:04:b5:db:d2:42:dc:02:0a:2b:f4: e8:d9:52:5d:91:e3:ee:13:95:3e:08:71:54:05:29:06:6b:bf: 94:68:5e:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJFRjgxMTAvBgNVBAUTKEU4RERFQ0VDMTZGRTM0ODVENUI2MUE2NUE2MUVFQ0Q3 NUE5ODFCNDMwHhcNMjUxMjIwMjAwMjEyWhcNMjUxMjI3MjAwMjEyWjAYMRYwFAYD VQQDDA02OTQ3MDBjNS1hZDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoxeZKytC1lICABfalUDBXL0Ji+W0TUJLZiQ5Jhj6aKE/NtrQ7sPzyrV2bZi Ap16690I56l+Rtt8/ynbn43VdVLSQFdknIX95Zp9h+Bz6/X29JVJV+IO1hAgvkKN lLhv84o36ez3pOdgSRxzuJhLpNGgLhsUYgmynmjBgAbmli3hs2PxbVbwvHlYczb5 phMuszN2gl8WktOpu43L/JKPqg79Iqyy4vjyMx8bCqjnKWCjNXQBSJfsApVUdmVa sd2QhWLE+tpPeO1QJqNUJWOBZK5Wkpb9gIhmQ/eUEYjCJ0TTAZ+p7fnnh3pu6fJG M2ZKOM77TRvilL4Hpc/Iq93+EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCPn2wA QnC5pxm4pn6XUoz1IdPcMB8GA1UdIwQYMBaAFOjd7OwW/jSF1bYaZaYe7NdamBtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkVGOC83N0Y5OEMzOERE OEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5JWFZ0aHBscGg3czExcVlH ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOM3M3QmItTklYVnRocGxwaDdzMTFxWUcwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkVGOC83N0Y5OEMzOEREOEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5J WFZ0aHBscGg3czExcVlHME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9KO/Ts9YAs/1L3D8lFEz9e9JyJ6X/Lm+IZ/S5yKTsrY+KLXQDgcnV 9xx828PncMka5ojlA7ux6QPZ+JnNgB2xPxJRb5BG/+2iSgE9pKz/vGkKZFj4f9S4 omvhSLobbUHcOAWaA4YAtacZ/gvxs1gCosQID6ouqeuofjL2lMWvgxBGt6c4/5lG g7Z+6qoOcWXAXdmseejmuzCCF0N8CzFlFxCwxFwxw7BUMDLkSqNEo2dj5kKaYuwV e56PyyVfkp4gpE1/lLZDvm50SiUQ3TeSBxKnXlWRp541DiPB/19m4gS129JC3AIK K/To2VJdkePuE5U+CHFUBSkGa7+UaF5d -----END CERTIFICATE-----Generated at Sun Dec 21 16:00:55 2025 by rpki-client