This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: QOh/KENIbCYlzKgXhlu1MorLQsb1fQtgZ3bccgTcAIk= Subject key identifier: 47:FB:21:0F:AB:D0:09:45:D4:2E:DD:F7:47:05:3C:5D:A6:D6:56:07 Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 75 Signing time: Fri 19 Dec 2025 05:49:03 +0000 Manifest this update: Fri 19 Dec 2025 05:49:02 +0000 Manifest next update: Fri 26 Dec 2025 05:49:02 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: FT+23bIIb2ozvXif+Xh1I7YeDc+zE0K91AH7/ZfVH7w=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 05:49:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Dec 19 05:49:02 2025 GMT Not After : Dec 26 05:49:02 2025 GMT Subject: CN=6944e74f-3e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b6:95:6f:92:a0:d7:49:83:b0:b1:9e:f5:4d: 98:e1:23:07:fb:ff:d9:ca:51:ac:8c:a2:75:6e:ff: e8:b4:5d:62:70:89:63:6c:7e:6b:1d:7f:00:ce:5a: 20:17:33:26:de:70:9d:06:a1:21:48:4f:cc:23:a9: ba:6a:e3:af:72:9b:e3:59:0b:fa:c5:eb:d9:b0:41: 52:2a:65:cd:70:6f:e5:d5:eb:bb:d6:f5:10:cb:18: 00:88:54:c9:69:7d:64:24:69:dc:c0:dd:13:1d:1e: 01:4e:da:ab:ad:d9:ff:8f:c3:1d:34:33:5b:fe:f2: 2e:81:e6:4a:4b:87:e5:94:9e:fc:b4:b2:e8:d5:2d: 2c:e4:f2:94:c8:34:c5:6a:72:8c:87:59:9c:ef:32: 6c:5a:50:0c:1e:b9:a7:67:ba:af:fe:99:55:c5:b8: e2:4b:2f:5c:c8:d9:79:48:96:40:3a:d7:46:8f:33: 04:a7:b0:26:7d:13:fd:e2:7b:5e:83:b8:de:30:f0: 9b:c7:db:b1:87:bf:1b:dc:d4:cb:c3:71:1f:e3:c2: ab:18:40:e1:7e:02:04:fc:5e:92:89:70:5c:da:f1: ef:5b:16:59:0f:8b:23:7d:c0:85:2b:74:c6:59:6b: 30:5d:cf:93:69:7f:45:c8:2c:1d:7c:95:2b:c7:f9: 68:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FB:21:0F:AB:D0:09:45:D4:2E:DD:F7:47:05:3C:5D:A6:D6:56:07 X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ef:4a:d6:d9:bc:ae:e0:34:6f:30:6e:b2:88:1a:25:59:ee: 1a:63:0e:f2:4a:17:dd:28:ee:9f:76:8f:5e:c3:d8:72:dd:0d: 23:e0:15:bc:6f:57:61:d2:9f:5a:5c:08:6c:bf:34:39:2a:e1: 93:49:da:f5:04:ff:5e:30:68:03:c6:d1:75:5d:b4:0b:36:1c: 2e:63:23:e3:c0:55:13:22:d1:ba:9c:88:bb:94:83:2b:8f:fd: bd:c3:2c:62:b0:b6:2c:56:f8:b5:f0:b1:89:45:1f:33:24:7c: 86:64:88:89:b9:a1:74:f9:1e:4b:df:76:8d:17:20:74:31:96: 3e:22:3e:32:6b:83:53:39:f2:1d:2b:fa:2a:73:f8:20:a5:d2: 95:d2:38:e9:32:e7:a8:7f:e0:2e:8b:2e:de:2c:34:19:a4:4a: 66:a8:24:bb:5f:cb:ac:b7:5b:6b:80:21:ab:55:04:3d:f7:56: c6:4b:84:f0:68:e1:58:93:d1:aa:7c:10:2a:e3:3d:38:83:ee: 38:0d:b5:e1:f3:3d:0f:b5:c1:7b:3d:af:9b:3f:cb:0e:b1:b8: d3:fc:de:48:f8:27:d8:12:df:67:a6:c4:6a:f6:bb:02:39:e6: 8f:9a:da:04:87:0b:a6:1c:cc:00:71:61:42:43:4a:60:99:c1: 73:0e:31:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTEyMTkwNTQ5MDJaFw0yNTEyMjYwNTQ5MDJaMBgxFjAUBgNV BAMMDTY5NDRlNzRmLTNlNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0tpVvkqDXSYOwsZ71TZjhIwf7/9nKUayMonVu/+i0XWJwiWNsfmsdfwDOWiAX MybecJ0GoSFIT8wjqbpq469ym+NZC/rF69mwQVIqZc1wb+XV67vW9RDLGACIVMlp fWQkadzA3RMdHgFO2qut2f+Pwx00M1v+8i6B5kpLh+WUnvy0sujVLSzk8pTINMVq coyHWZzvMmxaUAweuadnuq/+mVXFuOJLL1zI2XlIlkA610aPMwSnsCZ9E/3ie16D uN4w8JvH27GHvxvc1MvDcR/jwqsYQOF+AgT8XpKJcFza8e9bFlkPiyN9wIUrdMZZ azBdz5Npf0XILB18lSvH+WhHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUR/shD6vQ CUXULt33RwU8XabWVgcwHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAATvStbZvK7gNG8wbrKIGiVZ7hpjDvJKF90o7p92j17D2HLdDSPgFbxv V2HSn1pcCGy/NDkq4ZNJ2vUE/14waAPG0XVdtAs2HC5jI+PAVRMi0bqciLuUgyuP /b3DLGKwtixW+LXwsYlFHzMkfIZkiIm5oXT5Hkvfdo0XIHQxlj4iPjJrg1M58h0r +ipz+CCl0pXSOOky56h/4C6LLt4sNBmkSmaoJLtfy6y3W2uAIatVBD33VsZLhPBo 4ViT0ap8ECrjPTiD7jgNteHzPQ+1wXs9r5s/yw6xuNP83kj4J9gS32emxGr2uwI5 5o+a2gSHC6YczABxYUJDSmCZwXMOMXA= -----END CERTIFICATE-----Generated at Fri Dec 19 20:30:16 2025 by rpki-client