This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: x1GpgOuJGhAoEB9IrS9XbzxvlA4Km3VRYakRk5Q+FYQ= Subject key identifier: 30:41:60:03:60:AE:81:96:E6:2E:4D:81:7D:D0:2E:F6:B9:1F:0A:C5 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 020B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 0200 Signing time: Fri 19 Dec 2025 01:42:59 +0000 Manifest this update: Fri 19 Dec 2025 01:42:59 +0000 Manifest next update: Fri 26 Dec 2025 01:42:59 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: RV/xI2kIJn7ttetp4qlAeRBm6w5DvCa3SqGTe0TC5Yw=) 2: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 3: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) 4: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 01:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Dec 19 01:42:59 2025 GMT Not After : Dec 26 01:42:59 2025 GMT Subject: CN=6944ada3-4352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:47:8f:bf:6e:5d:8b:c8:05:01:53:68:89:55: 71:ed:a0:9b:4f:61:a3:d6:b3:06:d6:80:0e:12:63: 59:9e:a9:d0:97:8f:ba:7c:60:56:92:3b:41:9f:62: 95:45:90:a3:0c:4f:91:31:f7:24:71:1a:11:1a:60: 8d:4a:10:c6:76:a1:7b:1a:0c:84:c2:1d:88:5c:6c: b7:2f:3b:f5:5b:be:5b:95:5a:f4:e4:e7:01:bd:67: df:7d:c3:12:ef:c9:93:f0:9f:e9:29:7a:12:fa:3b: 95:a8:c1:7c:0c:1f:af:cd:62:49:db:29:a5:79:43: 75:c0:20:cc:5f:b1:e2:98:79:64:cf:6e:8c:87:d3: a9:aa:5a:82:99:cb:0f:cb:5e:81:4e:f0:2e:2f:68: 1d:0a:cd:0c:b8:e4:d3:f3:da:c1:97:69:3e:34:d4: 66:a6:3d:e0:d3:a9:4a:54:3d:76:32:64:53:d6:e6: 1e:6a:3d:65:ad:3b:bd:b0:54:3d:c1:14:77:46:d3: 97:57:47:c2:d9:65:d8:32:02:1e:d0:3b:fc:e1:8c: 55:bb:0b:7c:d6:d9:2f:52:e5:f8:53:46:27:92:db: 64:9a:fb:d8:e2:35:0c:43:10:54:ef:90:d5:0d:d5: f8:64:24:99:5b:85:56:95:ef:ef:d4:e3:69:82:62: c6:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:41:60:03:60:AE:81:96:E6:2E:4D:81:7D:D0:2E:F6:B9:1F:0A:C5 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:06:87:a4:4e:91:1c:c7:ef:2f:26:a5:ed:f3:f7:a5:f1:e4: a2:64:4d:0f:14:2c:9d:d7:33:e2:4c:dd:c4:90:4e:1d:c1:b0: 09:5a:10:40:b1:22:97:37:bf:20:9f:9a:35:7e:42:c3:6b:b3: 4f:e6:41:8f:e0:52:40:66:91:af:26:da:2c:5a:b5:53:06:99: 21:02:7b:da:7b:0e:fc:21:9c:73:01:63:7c:a7:e7:53:b2:a8: bd:c1:cb:95:46:98:e8:a5:e1:32:9c:8a:39:38:e7:a0:bf:11: 74:15:9a:0f:bb:0b:ae:b5:79:ac:5d:7f:92:bd:1b:0b:36:f5: a1:52:60:34:b4:7e:66:f9:17:ed:65:2b:e2:a3:da:7a:c1:26: 33:00:ce:b1:de:61:f0:71:28:e6:79:d8:dd:08:7e:ca:be:6b: ee:43:56:1e:10:06:cf:8e:33:4c:70:02:f7:f4:64:9d:b8:d9: b0:12:a4:7b:fc:bf:da:3e:b6:de:f3:b4:8b:de:7f:ca:8c:ae: df:66:26:e2:a5:09:e3:77:e9:34:98:a4:98:33:51:4a:d2:d4: 23:bb:e8:f9:15:e4:e1:f0:b3:e6:64:d0:c2:bb:f8:c7:cf:c9: 72:da:33:f4:6e:22:92:6b:8f:08:38:62:f1:09:af:74:6f:c7: 04:53:c7:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUxMjE5MDE0MjU5WhcNMjUxMjI2MDE0MjU5WjAYMRYwFAYD VQQDDA02OTQ0YWRhMy00MzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4EePv25di8gFAVNoiVVx7aCbT2Gj1rMG1oAOEmNZnqnQl4+6fGBWkjtBn2KV RZCjDE+RMfckcRoRGmCNShDGdqF7GgyEwh2IXGy3Lzv1W75blVr05OcBvWfffcMS 78mT8J/pKXoS+juVqMF8DB+vzWJJ2ymleUN1wCDMX7HimHlkz26Mh9OpqlqCmcsP y16BTvAuL2gdCs0MuOTT89rBl2k+NNRmpj3g06lKVD12MmRT1uYeaj1lrTu9sFQ9 wRR3RtOXV0fC2WXYMgIe0Dv84YxVuwt81tkvUuX4U0YnkttkmvvY4jUMQxBU75DV DdX4ZCSZW4VWle/v1ONpgmLGNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBBYANg roGW5i5NgX3QLva5HwrFMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYBoekTpEcx+8vJqXt8/el8eSiZE0PFCyd1zPiTN3EkE4dwbAJWhBA sSKXN78gn5o1fkLDa7NP5kGP4FJAZpGvJtosWrVTBpkhAnvaew78IZxzAWN8p+dT sqi9wcuVRpjopeEynIo5OOegvxF0FZoPuwuutXmsXX+SvRsLNvWhUmA0tH5m+Rft ZSvio9p6wSYzAM6x3mHwcSjmedjdCH7KvmvuQ1YeEAbPjjNMcAL39GSduNmwEqR7 /L/aPrbe87SL3n/KjK7fZibipQnjd+k0mKSYM1FK0tQju+j5FeTh8LPmZNDCu/jH z8ly2jP0biKSa48IOGLxCa90b8cEU8dK -----END CERTIFICATE-----Generated at Fri Dec 19 17:45:59 2025 by rpki-client