This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: xH/SVgohu4QpzLFoRRzuGhAOUIBVyeGrHt/qd4d0KeE= Subject key identifier: 1A:8D:29:E0:7A:22:6E:7E:FD:57:7A:43:8F:1C:89:70:D9:88:01:A1 Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 7A Signing time: Mon 29 Dec 2025 05:47:14 +0000 Manifest this update: Mon 29 Dec 2025 05:47:14 +0000 Manifest next update: Mon 05 Jan 2026 05:47:14 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: F3Vocr+vEZz9Cy4OV5kIVDEEpDTA9+h8bNj6amlGe+A=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 Jan 2026 05:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Dec 29 05:47:14 2025 GMT Not After : Jan 5 05:47:14 2026 GMT Subject: CN=695215e2-42b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f6:46:ae:f5:41:1e:c5:4e:a1:27:75:9a:e7: c9:47:91:83:c6:2b:5d:b9:88:48:75:8f:46:bd:a4: b3:b4:30:72:cd:1b:43:e0:af:6a:ad:2c:d9:58:13: 4d:4d:bf:18:04:a0:88:3c:3a:10:e3:81:8c:45:c7: f5:85:07:8c:8f:3c:7d:1f:80:d7:60:6b:9e:86:7c: e5:b5:b3:3f:5b:34:bb:a0:0d:ba:8c:cb:b2:b8:78: 2d:89:06:e1:34:fc:7a:40:c4:cd:3a:5a:f1:2c:e7: 33:80:53:a6:af:58:eb:3d:f9:bb:0a:0c:06:0a:08: bc:87:cb:e2:32:3c:c6:31:44:90:5c:31:b4:ed:e3: 0a:90:4b:71:b5:c8:11:43:47:6f:59:50:4e:12:fd: 48:98:d1:c4:76:3b:24:f7:9a:d4:63:0a:64:27:ca: 52:73:ac:de:a0:ad:dd:40:ad:47:43:a3:6d:5b:3c: a7:81:37:7e:29:03:69:7e:53:8e:11:c7:d3:18:a5: f5:15:7f:75:d9:85:e1:92:fe:b9:15:5c:91:a9:6e: bd:19:b1:56:43:cd:07:ac:a7:97:1d:c0:45:d6:df: b2:42:eb:b8:d0:ef:b8:79:32:3a:78:db:ee:02:73: a9:32:54:9f:ce:bb:f7:db:4a:c1:ad:e8:e0:55:ec: 8c:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:8D:29:E0:7A:22:6E:7E:FD:57:7A:43:8F:1C:89:70:D9:88:01:A1 X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:d8:df:e7:15:ad:8f:ad:b3:0f:4c:2d:9e:62:7b:13:73:dd: 91:1a:dc:24:8f:6c:9f:36:9e:46:d2:00:a8:ee:89:23:fc:a7: 1c:36:c3:38:e0:47:3f:cc:c9:e5:ce:ac:3a:1f:aa:0c:ed:3d: 4e:3a:2a:e7:b5:0f:65:10:0f:ea:37:07:a7:17:65:53:8b:96: 23:6d:b5:24:72:09:fd:05:20:af:82:23:e5:87:0c:db:8d:9e: 24:08:1d:62:58:e2:ab:8b:7a:11:b8:70:c6:76:63:4f:b2:a5: 4a:54:b5:40:de:00:70:41:9e:9d:9d:d6:e5:78:ff:5f:49:09: 40:e7:5c:d1:18:55:1b:49:0d:d1:21:84:03:00:24:69:ca:c8: a3:1f:5a:07:b9:45:91:a8:12:66:91:be:84:e5:b4:02:95:c4: c9:3d:83:0e:20:32:b9:4a:47:2a:e8:00:89:05:fb:5d:e2:a2: fd:cf:ce:45:3b:3a:75:d7:ee:98:54:4d:9c:b3:d0:2e:67:ca: c2:82:ab:c5:5c:e2:41:94:f9:6d:cf:ac:0b:cf:ef:8d:18:96: 2b:e2:ea:99:c1:f3:e2:66:2c:30:3a:fc:00:0f:d4:c8:d8:06: 53:69:ee:a5:dd:79:21:de:d2:95:ce:6d:db:4e:a2:b3:58:6d: 27:4d:01:45 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTEyMjkwNTQ3MTRaFw0yNjAxMDUwNTQ3MTRaMBgxFjAUBgNV BAMMDTY5NTIxNWUyLTQyYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC89kau9UEexU6hJ3Wa58lHkYPGK125iEh1j0a9pLO0MHLNG0Pgr2qtLNlYE01N vxgEoIg8OhDjgYxFx/WFB4yPPH0fgNdga56GfOW1sz9bNLugDbqMy7K4eC2JBuE0 /HpAxM06WvEs5zOAU6avWOs9+bsKDAYKCLyHy+IyPMYxRJBcMbTt4wqQS3G1yBFD R29ZUE4S/UiY0cR2OyT3mtRjCmQnylJzrN6grd1ArUdDo21bPKeBN34pA2l+U44R x9MYpfUVf3XZheGS/rkVXJGpbr0ZsVZDzQesp5cdwEXW37JC67jQ77h5Mjp42+4C c6kyVJ/Ou/fbSsGt6OBV7IyvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGo0p4Hoi bn79V3pDjxyJcNmIAaEwHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADvY3+cVrY+tsw9MLZ5iexNz3ZEa3CSPbJ82nkbSAKjuiSP8pxw2wzjg Rz/MyeXOrDofqgztPU46Kue1D2UQD+o3B6cXZVOLliNttSRyCf0FIK+CI+WHDNuN niQIHWJY4quLehG4cMZ2Y0+ypUpUtUDeAHBBnp2d1uV4/19JCUDnXNEYVRtJDdEh hAMAJGnKyKMfWge5RZGoEmaRvoTltAKVxMk9gw4gMrlKRyroAIkF+13iov3PzkU7 OnXX7phUTZyz0C5nysKCq8Vc4kGU+W3PrAvP740Ylivi6pnB8+JmLDA6/AAP1MjY BlNp7qXdeSHe0pXObdtOorNYbSdNAUU= -----END CERTIFICATE-----Generated at Wed Dec 31 00:02:36 2025 by rpki-client