This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: kPsnTVJIkv+h5V0YQpwZfBNmU6DgyOjuWPHLe7xANUo= Subject key identifier: 0B:EE:27:B8:34:8A:7C:07:83:A2:C5:0A:4D:AC:3E:29:6D:06:18:4E Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0C75 Signing time: Fri 26 Dec 2025 18:09:47 +0000 Manifest this update: Fri 26 Dec 2025 18:09:47 +0000 Manifest next update: Fri 02 Jan 2026 18:09:47 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: oLl44whn1r64YKhHwxoVaRKm299vnHUXdfjCGbTDFgM=) 2: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: B9PgWoUF+TKonGl7pCL92WHmVPwhmrPhSj6ll1DGQwA=) 3: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: JvXhjoE9cUV4jCMwgWZkjIHHf+CaNT0a6L5+glk4qjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 Jan 2026 18:09:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3222 (0xc96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Dec 26 18:09:47 2025 GMT Not After : Jan 2 18:09:47 2026 GMT Subject: CN=694ecf6b-86d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:66:c4:f2:35:7d:79:a5:52:0a:40:c6:70:db: 1a:45:d1:a4:93:9d:44:7d:55:af:a4:65:26:cd:51: d7:1a:75:e9:e2:bc:89:a0:6d:c0:aa:5f:fa:2c:3a: 4d:db:d9:d4:4f:7c:34:0d:97:4e:3e:9b:a7:e2:8a: 89:c5:f4:b5:50:09:af:64:2e:93:53:17:1f:cd:ad: 39:fe:53:57:bc:8c:77:58:9c:08:16:b7:5e:e1:03: 20:b2:fd:5a:93:27:32:5f:88:f3:5b:55:e6:f0:8e: 90:39:5b:0d:40:e0:76:79:6d:9a:0c:ce:fe:d9:ba: c4:e7:86:ac:3f:5b:ac:21:ca:df:65:c2:6a:27:7c: da:18:06:91:a4:29:48:01:61:97:3a:d8:02:8b:0c: ac:2e:af:0b:44:36:09:11:83:ab:e0:07:71:14:05: 8a:38:8f:9a:36:fa:f2:2e:47:a4:2b:94:7d:b9:a0: 54:fd:17:2c:63:c7:df:bf:9a:0d:dc:f1:76:4b:d8: 44:6e:d5:a4:36:c0:0f:df:91:0f:75:39:3b:49:2b: 04:e7:1f:63:03:e3:eb:c4:8c:df:4a:05:eb:ca:d7: 21:81:be:49:26:de:c7:53:64:ad:c4:5c:b6:77:06: 49:98:23:88:19:8c:a8:26:f6:6b:2b:c8:31:6d:68: 34:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EE:27:B8:34:8A:7C:07:83:A2:C5:0A:4D:AC:3E:29:6D:06:18:4E X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:51:d1:3f:0b:fd:82:39:fd:1f:04:a6:3e:f5:42:dc:70:61: a0:ca:8d:5c:99:fa:86:c0:af:b3:11:b3:7b:49:9b:0c:c1:55: 0d:11:22:00:4d:44:3c:27:4e:fb:9b:07:63:8d:f0:e2:25:71: 0d:45:de:75:0b:69:a3:d8:f5:3b:54:7e:b1:ff:a2:77:b5:49: 39:fe:e4:6a:e9:6d:45:7c:9f:a9:a3:a8:c9:39:42:30:d5:82: e8:ca:d1:0c:c7:e0:84:bc:90:ff:ee:59:24:5a:e6:5e:1e:3d: 1c:a5:52:43:07:87:66:0a:3c:4e:50:49:c7:2b:15:80:b0:57: 45:f4:02:97:c3:5b:3a:4b:e4:bf:41:3c:14:55:ac:78:45:7a: 77:15:e3:30:5d:be:c3:47:ed:5d:e7:bc:c4:4f:d9:72:64:fa: d3:e2:51:ef:5b:59:5f:c8:8e:c2:4b:11:c0:d7:07:fe:22:65: 0b:40:3e:85:13:e9:69:7c:b8:1a:c7:41:ee:a6:4d:09:26:9c: 4d:f4:83:78:56:89:d6:c8:85:f5:29:1e:18:f4:1d:4d:52:5e: 4a:2b:49:5d:df:a6:17:b3:ee:4e:83:11:50:74:43:20:dd:50: 4e:30:c0:33:ae:a4:de:fe:9a:4e:d8:62:11:12:58:f6:d0:4a: 7e:fd:99:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUxMjI2MTgwOTQ3WhcNMjYwMTAyMTgwOTQ3WjAYMRYwFAYD VQQDDA02OTRlY2Y2Yi04NmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmbE8jV9eaVSCkDGcNsaRdGkk51EfVWvpGUmzVHXGnXp4ryJoG3Aql/6LDpN 29nUT3w0DZdOPpun4oqJxfS1UAmvZC6TUxcfza05/lNXvIx3WJwIFrde4QMgsv1a kycyX4jzW1Xm8I6QOVsNQOB2eW2aDM7+2brE54asP1usIcrfZcJqJ3zaGAaRpClI AWGXOtgCiwysLq8LRDYJEYOr4AdxFAWKOI+aNvryLkekK5R9uaBU/RcsY8ffv5oN 3PF2S9hEbtWkNsAP35EPdTk7SSsE5x9jA+PrxIzfSgXrytchgb5JJt7HU2StxFy2 dwZJmCOIGYyoJvZrK8gxbWg0ZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvuJ7g0 inwHg6LFCk2sPiltBhhOMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgUdE/C/2COf0fBKY+9ULccGGgyo1cmfqGwK+zEbN7SZsMwVUNESIA TUQ8J077mwdjjfDiJXENRd51C2mj2PU7VH6x/6J3tUk5/uRq6W1FfJ+po6jJOUIw 1YLoytEMx+CEvJD/7lkkWuZeHj0cpVJDB4dmCjxOUEnHKxWAsFdF9AKXw1s6S+S/ QTwUVax4RXp3FeMwXb7DR+1d57zET9lyZPrT4lHvW1lfyI7CSxHA1wf+ImULQD6F E+lpfLgax0Hupk0JJpxN9IN4VonWyIX1KR4Y9B1NUl5KK0ld36YXs+5OgxFQdEMg 3VBOMMAzrqTe/ppO2GIRElj20Ep+/Zm/ -----END CERTIFICATE-----Generated at Sun Dec 28 00:02:11 2025 by rpki-client