This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: mvff0MtlfAWvkJKPRWE3rf1NXKbtvJjHheuY1CBDimo= Subject key identifier: 0C:7D:7B:8F:EB:0E:A2:D1:73:60:03:D0:B2:C5:14:4E:2A:0B:17:3E Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0CD2 Signing time: Thu 18 Dec 2025 18:05:31 +0000 Manifest this update: Thu 18 Dec 2025 18:05:30 +0000 Manifest next update: Thu 25 Dec 2025 18:05:30 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: 2lZaG3HuA9aNUkQIy06TQQERiYtALnmZ3G/FLmlYdpo=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 4: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 5: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 6: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 7: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 8: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) 9: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3347 (0xd13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Dec 18 18:05:30 2025 GMT Not After : Dec 25 18:05:30 2025 GMT Subject: CN=6944426b-f419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:03:d8:c2:2a:bc:eb:8f:e1:e2:15:b1:ac:36: 35:11:fb:8d:e6:12:6e:9f:f8:f4:f2:08:f4:52:1a: 70:c8:78:92:e1:0a:7d:ef:9c:8a:23:88:02:d2:d7: 63:18:6d:36:1e:ec:94:de:94:a7:43:dd:09:8a:e2: 7b:6d:46:8e:85:e9:34:54:c9:fc:41:3a:55:27:e4: 1b:8a:08:0f:99:16:01:ab:dd:c1:09:0b:27:fb:39: 32:e2:7b:b3:45:31:cd:52:d8:f0:11:32:13:93:47: e7:2b:ed:93:91:20:f9:40:de:90:c4:ba:79:a6:96: e5:5d:31:c3:ce:63:b1:82:21:f0:6d:7b:34:56:83: d1:1a:ff:ef:4f:2a:f1:7d:11:fd:f4:34:a5:14:fb: 01:fa:d6:4c:45:0a:17:cb:af:e0:57:0a:41:92:02: 07:b4:9d:00:55:e6:8a:6b:00:ae:61:b7:ad:fa:68: 1d:99:61:45:07:f0:43:41:5c:95:b8:56:4b:b1:03: 3c:93:63:8f:3e:3d:95:43:61:a6:4b:02:8e:07:6e: be:bd:1f:ec:47:fb:ee:1d:8f:72:5c:73:ca:08:0e: 27:ff:16:68:37:13:6f:49:0b:ad:5d:0a:aa:9c:75: df:d9:da:9a:cf:78:71:0f:c4:4b:38:d7:8e:42:6a: 9c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:7D:7B:8F:EB:0E:A2:D1:73:60:03:D0:B2:C5:14:4E:2A:0B:17:3E X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:4b:5a:3c:7d:4c:e2:9d:38:6c:32:9e:ec:b3:6c:48:43:8c: cc:8f:d8:e7:01:9b:00:4a:4d:9c:b7:f0:0a:04:1f:1a:dd:32: f8:12:f3:31:c1:64:f4:19:6a:79:73:62:8c:55:59:3d:d6:76: 9d:35:ba:d5:e0:7a:ac:06:d3:c1:60:de:9e:5b:9c:07:56:ac: d4:91:94:a8:a3:2c:ec:97:2d:41:43:98:45:8a:e4:03:12:ff: a4:b0:70:84:2d:c9:26:bb:49:ea:97:60:aa:e8:be:5c:06:d5: 90:00:5a:f6:30:6e:ed:85:88:34:56:ef:0c:9a:17:14:41:d8: 30:48:e7:3b:1d:b4:7f:fd:c5:43:6a:6c:9f:f6:8a:6a:b4:08: 9f:f6:ea:f4:5e:15:14:22:87:d2:57:cc:05:99:52:fc:11:b4: c4:86:63:94:d1:bf:9c:7b:e6:f5:57:19:2e:5a:11:f5:84:99: 0c:2b:11:9b:ad:a8:3e:a8:75:34:eb:fa:bb:d1:e4:db:76:03: 84:85:24:f7:e4:da:99:d3:39:b4:6b:f0:bf:22:f4:1e:85:c0: 9b:37:d6:21:9e:c0:fe:92:a4:86:58:bf:ec:84:6f:47:58:06: fb:fd:ce:77:69:3c:28:27:6d:e8:1a:c8:f7:0e:26:da:84:57: ec:09:6c:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUxMjE4MTgwNTMwWhcNMjUxMjI1MTgwNTMwWjAYMRYwFAYD VQQDDA02OTQ0NDI2Yi1mNDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAngPYwiq864/h4hWxrDY1EfuN5hJun/j08gj0UhpwyHiS4Qp975yKI4gC0tdj GG02HuyU3pSnQ90JiuJ7bUaOhek0VMn8QTpVJ+QbiggPmRYBq93BCQsn+zky4nuz RTHNUtjwETITk0fnK+2TkSD5QN6QxLp5ppblXTHDzmOxgiHwbXs0VoPRGv/vTyrx fRH99DSlFPsB+tZMRQoXy6/gVwpBkgIHtJ0AVeaKawCuYbet+mgdmWFFB/BDQVyV uFZLsQM8k2OPPj2VQ2GmSwKOB26+vR/sR/vuHY9yXHPKCA4n/xZoNxNvSQutXQqq nHXf2dqaz3hxD8RLONeOQmqcawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAx9e4/r DqLRc2AD0LLFFE4qCxc+MB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDS1o8fUzinThsMp7ss2xIQ4zMj9jnAZsASk2ct/AKBB8a3TL4EvMx wWT0GWp5c2KMVVk91nadNbrV4HqsBtPBYN6eW5wHVqzUkZSooyzsly1BQ5hFiuQD Ev+ksHCELckmu0nql2Cq6L5cBtWQAFr2MG7thYg0Vu8MmhcUQdgwSOc7HbR//cVD amyf9opqtAif9ur0XhUUIofSV8wFmVL8EbTEhmOU0b+ce+b1VxkuWhH1hJkMKxGb rag+qHU06/q70eTbdgOEhST35NqZ0zm0a/C/IvQehcCbN9YhnsD+kqSGWL/shG9H WAb7/c53aTwoJ23oGsj3DibahFfsCWwo -----END CERTIFICATE-----Generated at Sat Dec 20 19:05:40 2025 by rpki-client