This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft File: MxlflsRtTShdW95LCwMOODFOj8s.mft (raw, json) Hash identifier: Ax19sGPHPN862n98Wct7ThwEIcGZyg62pqBs3egDKiU= Subject key identifier: 2F:C2:E5:BE:D4:08:4F:D6:FB:08:39:75:A0:B6:23:B6:20:6C:14:E7 Authority key identifier: 33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB Certificate issuer: /CN=A9173CE6/serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft Manifest number: 06F8 Signing time: Thu 18 Dec 2025 21:27:06 +0000 Manifest this update: Thu 18 Dec 2025 21:27:05 +0000 Manifest next update: Thu 25 Dec 2025 21:27:05 +0000 Files and hashes: 1: MxlflsRtTShdW95LCwMOODFOj8s.crl (hash: xDLjz9bGORlhcP7c9JG1rJSHjmXo9O7yUY8JA0BGtuw=) 2: E99C5D78999011F09D326581C4F9AE02.roa (hash: KRc5l8wxQAY0kmCFWdslvfP8E+810yOkcCnLCwPkREQ=) 3: C4E57D9EE55A11ED98D38780C4F9AE02.roa (hash: FFJCcbR2xaawUKSL+usbkIr74Y7s8fy0PX5AM1LQSnQ=) 4: 7AC60C48CEB611ED8850A727C4F9AE02.roa (hash: Ng5tUT5XtWth/UeVCj9UP+U8A5SqwEGWBOOoygGvFMc=) 5: D9D6FFE098E311F08722B635C4F9AE02.roa (hash: 4B3XONtyer/LI/a650TjjRxsYwxE3yzyQKK0hCYJdog=) 6: 7A180DFACEB611ED8850A727C4F9AE02.roa (hash: ecb64YVTHrU3z12q4OTbq4blJYoHWP6/Sh6BnZVtvcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6, serialNumber=33195F96C46D4D285D5BDE4B0B030E38314E8FCB Validity Not Before: Dec 18 21:27:05 2025 GMT Not After : Dec 25 21:27:05 2025 GMT Subject: CN=694471aa-6b72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:48:65:f5:68:24:c5:cf:33:a8:26:a1:72:72: cd:19:a4:2f:1c:11:81:0d:0f:5c:50:8b:d9:d8:63: 8e:9a:e9:cc:00:e9:53:89:de:53:ce:81:79:37:72: a4:2a:11:af:cb:d5:9c:01:f0:14:b6:8a:e9:45:49: 0f:37:e3:97:71:55:6f:47:38:b2:07:47:a2:90:61: b6:c2:65:3b:14:b6:b4:99:97:c9:e1:0c:e4:d2:fa: 9a:52:5b:31:f1:4b:f5:27:29:a8:50:f1:c1:ea:57: 13:01:3a:18:87:18:76:6a:c6:35:09:98:58:13:41: cb:6d:2d:6f:81:2a:b3:46:43:2c:d9:1c:24:b3:a8: ca:c9:41:0d:da:b1:67:d1:2e:de:df:44:58:83:14: 5b:78:27:e3:c3:47:56:c6:6e:68:f7:40:d7:77:03: 10:80:d1:c8:28:7f:99:8e:c7:24:19:18:80:14:da: 9c:42:1b:05:78:1e:3c:4c:40:ea:39:96:36:59:b1: a0:64:1f:cf:7e:6f:d4:c8:5a:a0:4e:c2:a5:ab:bd: cf:ea:7c:ab:fd:8a:04:70:8b:78:3d:40:3d:51:18: 64:d6:c0:33:0a:9b:02:81:4e:b5:8e:f3:04:0e:71: 24:37:4b:5a:a4:b9:18:65:22:4e:3b:50:4b:9c:c4: e8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C2:E5:BE:D4:08:4F:D6:FB:08:39:75:A0:B6:23:B6:20:6C:14:E7 X509v3 Authority Key Identifier: keyid:33:19:5F:96:C4:6D:4D:28:5D:5B:DE:4B:0B:03:0E:38:31:4E:8F:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxlflsRtTShdW95LCwMOODFOj8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/0E8E27807BD011EB85A66980C4F9AE02/MxlflsRtTShdW95LCwMOODFOj8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:89:79:ba:7a:ca:12:75:b0:ac:3b:ef:24:a0:89:7a:f0:0c: f9:cd:f7:6e:8f:19:0b:7d:21:58:32:c6:72:e4:5f:60:04:3e: e9:97:41:0a:9e:1d:6d:5c:3c:da:59:ca:b4:32:b2:1b:0e:de: 84:f6:97:b1:c0:6f:73:d4:21:6a:76:ea:39:7f:08:5c:81:8d: 73:20:2a:34:d9:6e:43:c3:ed:7e:fa:d0:09:14:d0:38:dd:38: 2e:4d:0c:18:63:b3:32:f1:40:45:3c:1d:3d:cf:18:60:92:e9: 41:d7:90:ba:e0:0b:64:fa:08:9d:4e:74:64:55:02:e0:6b:c7: c5:e0:40:2b:2a:ef:b5:d8:ec:a3:75:41:94:04:1a:27:8c:e8: a2:ed:90:2b:97:b7:7f:69:26:8a:d1:1c:b0:a7:86:eb:90:bc: 44:14:6e:0b:df:5a:a1:30:65:e9:c2:bc:fd:a2:74:94:e7:20: 98:68:ae:ef:4a:71:ce:8b:f6:05:a7:8d:d4:5e:91:d3:96:c4: 42:ef:f5:0d:f9:0a:18:97:93:85:c0:41:0c:62:4c:65:b4:bd: 23:13:ef:f2:7b:9b:b0:90:51:6a:d8:14:9b:eb:0d:82:58:7a: b4:fb:00:33:0a:01:7f:d1:1c:1c:69:01:88:8b:d5:20:02:eb: 04:aa:01:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDMzMTk1Rjk2QzQ2RDREMjg1RDVCREU0QjBCMDMwRTM4 MzE0RThGQ0IwHhcNMjUxMjE4MjEyNzA1WhcNMjUxMjI1MjEyNzA1WjAYMRYwFAYD VQQDDA02OTQ0NzFhYS02YjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2khl9Wgkxc8zqCahcnLNGaQvHBGBDQ9cUIvZ2GOOmunMAOlTid5TzoF5N3Kk KhGvy9WcAfAUtorpRUkPN+OXcVVvRziyB0eikGG2wmU7FLa0mZfJ4Qzk0vqaUlsx 8Uv1JymoUPHB6lcTAToYhxh2asY1CZhYE0HLbS1vgSqzRkMs2Rwks6jKyUEN2rFn 0S7e30RYgxRbeCfjw0dWxm5o90DXdwMQgNHIKH+ZjsckGRiAFNqcQhsFeB48TEDq OZY2WbGgZB/Pfm/UyFqgTsKlq73P6nyr/YoEcIt4PUA9URhk1sAzCpsCgU61jvME DnEkN0tapLkYZSJOO1BLnMToXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/C5b7U CE/W+wg5daC2I7YgbBTnMB8GA1UdIwQYMBaAFDMZX5bEbU0oXVveSwsDDjgxTo/L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wRThFMjc4MDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9NeGxmbHNSdFRTaGRXOTVMQ3dNT09ERk9q OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014bGZsc1J0VFNoZFc5NUxDd01PT0RGT2o4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wRThFMjc4MDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9NeGxmbHNSdFRT aGRXOTVMQ3dNT09ERk9qOHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdiXm6esoSdbCsO+8koIl68Az5zfdujxkLfSFYMsZy5F9gBD7pl0EK nh1tXDzaWcq0MrIbDt6E9pexwG9z1CFqduo5fwhcgY1zICo02W5Dw+1++tAJFNA4 3TguTQwYY7My8UBFPB09zxhgkulB15C64Atk+gidTnRkVQLga8fF4EArKu+12Oyj dUGUBBonjOii7ZArl7d/aSaK0Rywp4brkLxEFG4L31qhMGXpwrz9onSU5yCYaK7v SnHOi/YFp43UXpHTlsRC7/UN+QoYl5OFwEEMYkxltL0jE+/ye5uwkFFq2BSb6w2C WHq0+wAzCgF/0RwcaQGIi9UgAusEqgHR -----END CERTIFICATE-----Generated at Sat Dec 20 15:29:40 2025 by rpki-client