This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: CfWuVV0D8YtncmgkRdVAeEvwtSDLPUiv1DCwmxGNwQI= Subject key identifier: 3F:68:A9:EF:8B:64:C1:F2:49:DB:93:4E:91:28:AD:95:E2:1B:97:F2 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 1940 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 192E Signing time: Sun 28 Dec 2025 16:13:11 +0000 Manifest this update: Sun 28 Dec 2025 16:13:11 +0000 Manifest next update: Sun 04 Jan 2026 16:13:11 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: zrdti61CPFpFL0M3fQFHZBxi8wBHKoehsZ2Kc9E+nCg=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: LY7vLpDfVXZjs8mY5Lmcq8YY4mbx+XwbeXcZe9sNvfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 Jan 2026 16:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6464 (0x1940) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Dec 28 16:13:11 2025 GMT Not After : Jan 4 16:13:11 2026 GMT Subject: CN=69515717-f76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d2:98:f0:e4:94:62:95:9c:2e:36:3d:d7:b8: 92:37:44:f2:4a:57:2b:87:94:b0:c3:22:b8:b0:ec: c3:34:47:5e:78:b5:bf:72:ae:02:4b:99:34:20:36: ae:41:cc:88:5a:4b:46:40:6d:49:ef:86:03:d9:ae: 05:a8:04:e5:6d:7b:e5:c1:d8:8d:af:e3:aa:04:7d: 8b:c5:af:ff:54:92:4c:07:21:09:aa:d3:32:d9:41: fc:07:e4:98:7b:39:3e:23:ae:cd:26:fb:cf:ce:9f: b6:e9:93:7d:9f:7c:c5:9b:42:f7:7f:04:ac:7a:4d: f7:07:f3:ca:3c:88:22:b7:2c:d4:7e:f5:d5:fc:3d: 19:29:07:87:37:41:a3:bd:b0:e2:62:fc:df:23:99: ba:3c:fe:35:3e:fe:c7:07:e9:6c:16:69:ff:fb:22: 47:0f:96:1b:33:46:f2:86:35:27:6b:48:71:21:c3: 88:7e:8d:57:c9:60:5d:e9:03:ee:2a:c7:f4:b5:ac: 0d:ca:c2:01:85:48:c5:97:da:0e:26:ff:b8:4b:13: ef:7d:81:e8:88:c6:5e:ec:19:47:56:bd:65:12:be: e4:46:c5:ef:5c:30:10:cb:b4:6f:3d:70:55:ad:9e: 68:2c:a0:b2:31:10:40:4c:72:c2:f6:a3:0e:a3:06: b0:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:68:A9:EF:8B:64:C1:F2:49:DB:93:4E:91:28:AD:95:E2:1B:97:F2 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:e5:ab:54:ba:77:a6:7e:c5:f2:71:f7:e5:4a:d1:06:0d:e1: cd:1c:4c:25:0e:b6:c1:5e:30:c2:58:91:7a:06:96:27:a9:3e: 7f:ad:06:b2:80:6c:e7:24:a1:79:c2:e3:1b:6b:c9:86:78:cb: ec:ef:dd:57:47:73:f8:04:b8:47:eb:2d:b7:6c:73:a1:85:48: 24:b5:75:92:17:3c:c7:40:7a:df:cb:cc:9d:12:aa:b5:ea:11: d8:bd:21:b9:6f:c1:2b:bf:2a:16:8e:4c:42:6d:a5:54:11:60: 78:c8:23:9a:84:35:4b:c9:44:58:42:97:e4:d2:43:a3:cb:d3: 09:6e:ef:ed:3e:5a:64:d5:9a:53:8d:d2:31:9d:0d:ab:79:84: d3:9d:f1:1b:d0:f5:fd:06:dd:c8:71:92:bc:30:e1:77:b0:cb: 98:e0:ff:67:bd:3c:8b:62:f5:ed:f5:36:79:9f:a0:7c:d4:16: d7:18:97:af:ed:c0:22:a2:0b:a0:da:ca:29:27:62:3a:bc:b3: d4:43:41:ba:52:5b:ae:eb:3a:8b:ae:94:3a:21:6d:e4:a5:2d: b7:37:f8:c0:1b:d7:b3:3d:ba:b5:29:78:65:da:47:2a:a7:0e: b4:c8:37:01:c3:8a:52:43:c5:ef:f0:22:ff:c2:82:fa:b7:28: 57:53:7d:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUxMjI4MTYxMzExWhcNMjYwMTA0MTYxMzExWjAYMRYwFAYD VQQDDA02OTUxNTcxNy1mNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9KY8OSUYpWcLjY917iSN0TySlcrh5SwwyK4sOzDNEdeeLW/cq4CS5k0IDau QcyIWktGQG1J74YD2a4FqATlbXvlwdiNr+OqBH2Lxa//VJJMByEJqtMy2UH8B+SY ezk+I67NJvvPzp+26ZN9n3zFm0L3fwSsek33B/PKPIgityzUfvXV/D0ZKQeHN0Gj vbDiYvzfI5m6PP41Pv7HB+lsFmn/+yJHD5YbM0byhjUna0hxIcOIfo1XyWBd6QPu Ksf0tawNysIBhUjFl9oOJv+4SxPvfYHoiMZe7BlHVr1lEr7kRsXvXDAQy7RvPXBV rZ5oLKCyMRBATHLC9qMOowawDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9oqe+L ZMHySduTTpEorZXiG5fyMB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS5atUunemfsXycfflStEGDeHNHEwlDrbBXjDCWJF6BpYnqT5/rQay gGznJKF5wuMba8mGeMvs791XR3P4BLhH6y23bHOhhUgktXWSFzzHQHrfy8ydEqq1 6hHYvSG5b8ErvyoWjkxCbaVUEWB4yCOahDVLyURYQpfk0kOjy9MJbu/tPlpk1ZpT jdIxnQ2reYTTnfEb0PX9Bt3IcZK8MOF3sMuY4P9nvTyLYvXt9TZ5n6B81BbXGJev 7cAiogug2sopJ2I6vLPUQ0G6Uluu6zqLrpQ6IW3kpS23N/jAG9ezPbq1KXhl2kcq pw60yDcBw4pSQ8Xv8CL/woL6tyhXU31Q -----END CERTIFICATE-----Generated at Tue Dec 30 00:09:58 2025 by rpki-client