This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: QZHuHZez65073qNZl0h/+3SAwWe5avGf98zaQ9SLWII= Subject key identifier: 99:A2:E1:02:54:D7:FD:12:0B:EA:81:2B:4E:45:0E:C2:FE:26:62:AB Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: CE Signing time: Sat 27 Dec 2025 04:42:26 +0000 Manifest this update: Sat 27 Dec 2025 04:42:26 +0000 Manifest next update: Sat 03 Jan 2026 04:42:26 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: 1Jsory3h7Z0W7x6Psq3QJdFOB+nFl4LrI5J3L+yzJSo=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: u84W1M8BSH4Fa+WJxMh9/IQCwGN476f0YWGryaIG1g4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 Jan 2026 04:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Dec 27 04:42:26 2025 GMT Not After : Jan 3 04:42:26 2026 GMT Subject: CN=694f63b2-bfb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:36:9c:66:c3:b7:4d:24:dc:24:6e:d2:72:2d: ad:c2:3a:e2:40:96:94:8c:b5:6e:55:d1:12:51:29: 02:ff:ce:31:ca:08:2d:cd:fd:f0:f9:d8:63:f1:eb: bc:2a:7d:95:0e:d6:56:00:d7:ec:32:ac:8a:65:23: d7:11:86:45:0d:d2:9f:c9:62:98:45:df:2b:f3:d7: 44:d1:8f:4a:c9:18:bf:6c:dc:5b:51:e5:a1:f4:a8: a5:b2:58:42:da:67:d2:e1:b0:cf:b5:2a:e8:61:e8: 79:8b:ec:65:47:02:e6:31:c7:62:0c:ad:b8:7d:02: ee:69:50:05:06:c0:5e:00:81:1f:14:01:e1:e6:cd: 40:31:40:f2:c9:88:43:2d:8d:76:4b:68:04:48:ec: b5:4c:ec:ee:d4:d6:32:2f:bd:3e:50:e2:9c:fd:eb: cd:a0:4d:42:1e:4e:8a:bf:dd:49:16:de:ed:6f:f7: a9:a9:d2:eb:f2:0d:6d:c8:68:e3:5c:a3:c5:ac:82: 66:c2:8d:66:d1:b2:00:9d:56:ce:4a:6a:f7:09:c2: 6e:6f:a0:aa:4b:e4:21:2b:3f:e5:1e:44:53:ad:df: 7a:12:b3:33:5c:f6:0a:29:84:9a:47:20:49:35:76: 6e:4d:f7:18:b2:b8:0d:cb:1a:72:32:e8:cc:ef:05: 3d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A2:E1:02:54:D7:FD:12:0B:EA:81:2B:4E:45:0E:C2:FE:26:62:AB X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:59:42:09:ab:a7:05:5d:f3:6d:6f:81:5e:69:a8:24:42:b0: e3:6a:07:25:62:8c:65:19:57:1a:78:cb:8a:f7:8a:5b:5e:3c: 91:99:d9:9c:84:6e:c3:85:a0:fe:b6:f6:3a:91:8f:10:70:5a: ff:fb:52:f2:a2:9a:3d:0b:bb:93:37:d3:12:b4:ac:07:5b:c2: b9:7d:81:98:4b:52:cc:4e:d5:bc:6a:11:65:0a:db:6a:8b:dd: c2:f9:72:48:ac:84:d7:48:bb:e8:64:94:69:31:c4:71:42:b0: 04:4f:34:2b:9c:44:26:d2:df:f9:eb:da:82:8b:da:fe:d7:f7: d9:02:af:d6:f6:9c:8d:b4:8a:99:0e:c5:f5:ff:ee:51:cc:67: f3:72:66:f3:09:43:7f:14:b7:78:eb:26:d6:ac:09:6e:10:d2: 7f:d2:0f:27:88:76:4d:a0:f2:df:68:d1:b8:db:6b:77:c9:5c: 3b:10:f7:48:4d:ec:a9:98:52:0d:54:d2:df:64:cd:8e:d4:f8: 5a:3d:5e:9f:cc:4a:53:38:29:20:8c:6c:77:6b:ae:34:ab:ca: c0:b0:3f:53:2a:98:74:a8:a9:9e:4b:ed:d1:54:9d:b3:b3:5e: d4:2f:82:6f:d5:2c:91:22:8a:1e:23:b2:75:96:aa:62:9e:9d: d3:69:22:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEFENTQ1RDI1MDRGRTFERTkyQUUxNzY2REY0NjU3NjM3 REI3QTdFNzUwHhcNMjUxMjI3MDQ0MjI2WhcNMjYwMTAzMDQ0MjI2WjAYMRYwFAYD VQQDDA02OTRmNjNiMi1iZmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTacZsO3TSTcJG7Sci2twjriQJaUjLVuVdESUSkC/84xyggtzf3w+dhj8eu8 Kn2VDtZWANfsMqyKZSPXEYZFDdKfyWKYRd8r89dE0Y9KyRi/bNxbUeWh9KilslhC 2mfS4bDPtSroYeh5i+xlRwLmMcdiDK24fQLuaVAFBsBeAIEfFAHh5s1AMUDyyYhD LY12S2gESOy1TOzu1NYyL70+UOKc/evNoE1CHk6Kv91JFt7tb/epqdLr8g1tyGjj XKPFrIJmwo1m0bIAnVbOSmr3CcJub6CqS+QhKz/lHkRTrd96ErMzXPYKKYSaRyBJ NXZuTfcYsrgNyxpyMujM7wU9iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJmi4QJU 1/0SC+qBK05FDsL+JmKrMB8GA1UdIwQYMBaAFK1UXSUE/h3pKuF2bfRldjfben51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FNTM5Q0RBMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhla3E0WFp0OUdWMk45dDZm blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FNTM5Q0RBMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhl a3E0WFp0OUdWMk45dDZmblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvWUIJq6cFXfNtb4FeaagkQrDjagclYoxlGVcaeMuK94pbXjyRmdmc hG7DhaD+tvY6kY8QcFr/+1Lyopo9C7uTN9MStKwHW8K5fYGYS1LMTtW8ahFlCttq i93C+XJIrITXSLvoZJRpMcRxQrAETzQrnEQm0t/569qCi9r+1/fZAq/W9pyNtIqZ DsX1/+5RzGfzcmbzCUN/FLd46ybWrAluENJ/0g8niHZNoPLfaNG422t3yVw7EPdI TeypmFINVNLfZM2O1PhaPV6fzEpTOCkgjGx3a640q8rAsD9TKph0qKmeS+3RVJ2z s17UL4Jv1SyRIooeI7J1lqpinp3TaSJf -----END CERTIFICATE-----Generated at Mon Dec 29 00:48:09 2025 by rpki-client