This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft File: xVGHsAsaczdfhFaIX2oQfuHZNc8.mft (raw, json) Hash identifier: 0DE4Mb1uhioL2xLdumhkQtKLDKMrLAAYw2pmdUH7t7w= Subject key identifier: 01:3A:C1:24:4C:47:7C:DE:51:C7:E9:3F:98:20:09:AA:D5:A7:A5:FE Authority key identifier: C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF Certificate issuer: /CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft Manifest number: 014A Signing time: Fri 19 Dec 2025 03:30:10 +0000 Manifest this update: Fri 19 Dec 2025 03:30:10 +0000 Manifest next update: Fri 26 Dec 2025 03:30:10 +0000 Files and hashes: 1: xVGHsAsaczdfhFaIX2oQfuHZNc8.crl (hash: rzJOQksCofqblL67KNrUpqD1Z+gIH2CAYZjeTG/moXk=) 2: EF1E7F70E82411EE9005BA2DC4F9AE02.roa (hash: EKYVn1LnE/qYTW245x3NVrE53P336TlJMyIXtYLhWG4=) 3: C9FDEC12E82411EE81065223C4F9AE02.roa (hash: AhOHyTR8Y1BKmfRUj0AuSJ2KJPys3xbmw5f4K4GCzjI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 03:30:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173B29, serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Validity Not Before: Dec 19 03:30:10 2025 GMT Not After : Dec 26 03:30:10 2025 GMT Subject: CN=6944c6c2-d3d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:16:3a:6c:a6:6b:96:8b:c5:0d:2d:71:16:7c: 3d:4f:95:22:ab:ec:bc:73:b1:c3:ba:7a:c7:96:28: 7a:3d:ef:83:ec:85:8c:74:bb:d6:db:9e:95:44:f2: ae:a7:e2:cb:5d:de:3d:f5:72:55:c9:c0:69:21:4e: 34:82:7a:27:88:ca:3e:9f:07:d9:f2:e9:6d:8b:a5: 36:64:18:72:cc:86:32:55:5f:3c:f7:d8:a8:41:90: 38:4a:44:2c:f6:1c:39:b1:bb:d3:ef:e7:2b:9e:66: 4d:cb:77:c9:83:9d:07:b8:1a:3d:d6:57:7c:60:19: 05:4f:26:9d:1f:b4:bd:7b:6f:ad:b6:69:72:65:28: 67:a1:c3:92:11:dc:bc:8c:17:59:e0:40:df:9b:1f: 15:af:1a:8f:2a:b4:74:a8:cd:1e:d4:4b:da:2e:0c: 08:f4:97:41:0f:17:09:24:9d:41:3a:54:88:87:38: f0:02:c3:62:4c:86:e8:8c:8a:6f:da:e2:93:14:38: ba:c8:8d:c7:f7:bb:d9:24:e0:d5:d2:a5:92:7c:42: 1a:ce:f6:1f:97:eb:b2:ae:0b:88:c5:09:4b:ac:bd: c8:57:e1:99:e8:93:19:8b:9b:9f:e1:d0:60:ba:05: 11:14:84:c0:53:b2:91:db:f3:48:7d:8c:8e:06:71: f4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3A:C1:24:4C:47:7C:DE:51:C7:E9:3F:98:20:09:AA:D5:A7:A5:FE X509v3 Authority Key Identifier: keyid:C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:81:c5:a6:af:54:d9:76:29:07:0c:bc:18:da:0d:38:3a:4f: f9:9b:e4:31:19:e2:89:6f:13:1f:16:4f:d8:e7:07:88:eb:04: 30:c5:24:96:0c:5f:90:89:01:ee:ad:88:15:24:5e:fa:78:2b: 80:81:20:63:0c:54:2a:d3:d3:70:e6:fd:2d:33:38:84:cc:b9: c2:1b:3a:b2:ae:83:11:ac:cb:ed:5c:d4:78:97:32:db:02:4f: d7:f3:e2:b8:91:20:48:4a:5d:0f:fb:3a:34:bf:8c:98:70:fa: f5:cc:0b:7a:27:1d:88:8c:fa:36:ba:b0:f5:6d:67:df:e8:68: 1d:db:1a:95:0c:3a:22:a7:84:b4:17:dc:0a:59:59:2e:8f:60: 44:de:8b:18:3f:2c:cd:a0:04:8e:9f:17:9d:67:13:b0:e5:22: e3:64:00:9c:19:ed:31:e3:f3:37:a8:f1:af:2a:a7:ca:72:f3: 96:f4:7f:c4:33:74:21:39:28:db:d5:9a:7a:8b:75:5b:97:4e: 92:72:6d:91:a0:b4:cf:db:83:72:f6:29:e5:f9:fe:a2:53:fa: b5:e2:30:76:af:97:23:ac:e4:08:62:6d:3b:7b:88:55:6a:be: bc:07:3a:7a:45:a2:22:74:11:01:27:be:7a:7d:28:82:83:61: 7a:d9:50:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCMjkxMTAvBgNVBAUTKEM1NTE4N0IwMEIxQTczMzc1Rjg0NTY4ODVGNkExMDdF RTFEOTM1Q0YwHhcNMjUxMjE5MDMzMDEwWhcNMjUxMjI2MDMzMDEwWjAYMRYwFAYD VQQDDA02OTQ0YzZjMi1kM2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkhY6bKZrlovFDS1xFnw9T5Uiq+y8c7HDunrHlih6Pe+D7IWMdLvW256VRPKu p+LLXd499XJVycBpIU40gnoniMo+nwfZ8ulti6U2ZBhyzIYyVV8899ioQZA4SkQs 9hw5sbvT7+crnmZNy3fJg50HuBo91ld8YBkFTyadH7S9e2+ttmlyZShnocOSEdy8 jBdZ4EDfmx8VrxqPKrR0qM0e1EvaLgwI9JdBDxcJJJ1BOlSIhzjwAsNiTIbojIpv 2uKTFDi6yI3H97vZJODV0qWSfEIazvYfl+uyrguIxQlLrL3IV+GZ6JMZi5uf4dBg ugURFITAU7KR2/NIfYyOBnH04wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE6wSRM R3zeUcfpP5ggCarVp6X+MB8GA1UdIwQYMBaAFMVRh7ALGnM3X4RWiF9qEH7h2TXP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0IyOS82MTdFOTQ0OEU4 MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6ZGZoRmFJWDJvUWZ1SFpO YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWR0hzQXNhY3pkZmhGYUlYMm9RZnVIWk5jOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0IyOS82MTdFOTQ0OEU4MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi94VkdIc0FzYWN6 ZGZoRmFJWDJvUWZ1SFpOYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAygcWmr1TZdikHDLwY2g04Ok/5m+QxGeKJbxMfFk/Y5weI6wQwxSSW DF+QiQHurYgVJF76eCuAgSBjDFQq09Nw5v0tMziEzLnCGzqyroMRrMvtXNR4lzLb Ak/X8+K4kSBISl0P+zo0v4yYcPr1zAt6Jx2IjPo2urD1bWff6Ggd2xqVDDoip4S0 F9wKWVkuj2BE3osYPyzNoASOnxedZxOw5SLjZACcGe0x4/M3qPGvKqfKcvOW9H/E M3QhOSjb1Zp6i3Vbl06Scm2RoLTP24Ny9inl+f6iU/q14jB2r5cjrOQIYm07e4hV ar68Bzp6RaIidBEBJ756fSiCg2F62VDE -----END CERTIFICATE-----Generated at Sat Dec 20 03:32:50 2025 by rpki-client