This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: Mlt2qqH/drweKfcynEoZcO3ztbUcvQ1VtyjvIqEluqQ= Subject key identifier: 5C:25:14:40:65:F6:BA:4C:E3:38:4A:57:92:10:6D:13:70:1D:F1:8A Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: F9 Signing time: Fri 19 Dec 2025 04:25:31 +0000 Manifest this update: Fri 19 Dec 2025 04:25:31 +0000 Manifest next update: Fri 26 Dec 2025 04:25:31 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: WJ7Q0alR1gvFLM8hHWnbAxvelhbIdFwKvb2xkiZHOh4=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: Co6tkDsI5HQErtzjpED6IOpErLBa9412vvEmJqPigVc=) 3: 43749A72824E11F0A1C4B018C4F9AE02.roa (hash: 4DEc0wbLK30W3YSB0WhzIpXuKeWb4EluJvYfPFr8RSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Dec 19 04:25:31 2025 GMT Not After : Dec 26 04:25:31 2025 GMT Subject: CN=6944d3bb-4338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e9:95:29:07:fe:54:fc:56:40:0a:7b:49:d3: 76:c8:27:3b:e2:28:27:c0:36:eb:37:a9:94:19:b8: 96:44:5e:1c:34:4e:1a:80:a9:e6:41:3d:8d:c5:c6: f4:1b:ad:6c:d3:e3:e2:ec:f9:f5:94:63:12:c3:32: 62:d0:56:e0:cd:25:0e:31:0c:fc:3c:96:98:6e:97: a1:43:12:13:c7:0d:c9:89:78:21:8f:19:14:d7:df: f8:fc:ac:f7:7f:dd:ca:b1:b6:75:70:c8:e0:78:77: 6c:e5:6a:96:e4:83:9f:85:43:15:e9:55:b4:0c:dc: 78:a5:69:e5:89:b0:9f:99:15:4e:83:25:31:0f:6c: 17:af:ed:f4:3a:c8:7d:b7:96:7a:ad:38:a4:b8:07: 84:92:8e:b3:6b:3b:b8:c0:d1:f4:91:c7:be:49:e8: 0d:0c:29:ff:e1:84:43:78:f0:23:47:69:8d:d8:64: 65:ee:99:97:49:72:b8:05:ac:9a:54:26:48:33:4a: ef:92:48:f5:d3:bc:4e:8e:fa:cc:93:fe:cf:eb:f1: bf:29:9c:e8:63:5b:36:3c:10:f9:f4:49:12:a6:22: fa:f7:45:ee:13:a1:93:cb:b9:31:4f:23:8f:31:e6: f4:b7:5b:e3:ec:f2:b8:53:62:2c:34:ba:0e:87:8b: 60:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:25:14:40:65:F6:BA:4C:E3:38:4A:57:92:10:6D:13:70:1D:F1:8A X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:14:e4:b4:b2:75:3e:b5:b5:7b:0a:e0:63:ce:90:eb:9a:24: de:39:fb:13:ce:ba:3c:94:70:cc:ed:69:08:9e:dc:fa:66:1f: 78:76:0d:6b:e2:f6:3f:49:22:a5:94:e6:59:19:82:40:7a:53: 44:1e:dd:ed:a6:1a:d6:c5:63:ff:39:b1:f4:49:1c:60:8a:02: 79:eb:26:0e:a4:39:de:bd:6c:25:80:c4:bf:65:0a:4c:1d:4c: f0:e7:a0:6d:df:87:e6:70:b2:ad:73:d6:86:f9:0f:fb:bd:b0: 87:0c:27:96:8a:b2:47:cc:a5:02:73:2c:ad:be:55:f2:89:b7: 32:93:27:77:ed:47:e2:a6:3b:ad:ad:e0:be:9a:c2:d6:d2:4f: ef:44:75:35:24:b3:0e:42:3f:fe:23:c3:ca:cd:70:ad:b4:18: 44:bf:0a:72:e8:be:3c:a1:8b:21:94:9d:d6:6d:27:c1:25:86: 60:a8:d8:3e:c1:01:c8:ca:35:d1:84:2c:ef:cb:5d:26:5c:a4: 3b:d9:52:1b:c9:02:19:6d:43:93:b0:23:57:94:50:67:6c:1b: 94:55:d5:99:4b:6a:db:21:64:d9:b6:c5:0e:00:54:ed:b4:37: 49:7c:31:07:e9:16:93:a8:8a:bd:f0:bf:ba:bf:97:77:71:56: b8:ec:0d:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUxMjE5MDQyNTMxWhcNMjUxMjI2MDQyNTMxWjAYMRYwFAYD VQQDDA02OTQ0ZDNiYi00MzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlumVKQf+VPxWQAp7SdN2yCc74ignwDbrN6mUGbiWRF4cNE4agKnmQT2Nxcb0 G61s0+Pi7Pn1lGMSwzJi0FbgzSUOMQz8PJaYbpehQxITxw3JiXghjxkU19/4/Kz3 f93KsbZ1cMjgeHds5WqW5IOfhUMV6VW0DNx4pWnlibCfmRVOgyUxD2wXr+30Osh9 t5Z6rTikuAeEko6zazu4wNH0kce+SegNDCn/4YRDePAjR2mN2GRl7pmXSXK4Baya VCZIM0rvkkj107xOjvrMk/7P6/G/KZzoY1s2PBD59EkSpiL690XuE6GTy7kxTyOP Meb0t1vj7PK4U2IsNLoOh4tgbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwlFEBl 9rpM4zhKV5IQbRNwHfGKMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgFOS0snU+tbV7CuBjzpDrmiTeOfsTzro8lHDM7WkIntz6Zh94dg1r 4vY/SSKllOZZGYJAelNEHt3tphrWxWP/ObH0SRxgigJ56yYOpDnevWwlgMS/ZQpM HUzw56Bt34fmcLKtc9aG+Q/7vbCHDCeWirJHzKUCcyytvlXyibcykyd37Ufipjut reC+msLW0k/vRHU1JLMOQj/+I8PKzXCttBhEvwpy6L48oYshlJ3WbSfBJYZgqNg+ wQHIyjXRhCzvy10mXKQ72VIbyQIZbUOTsCNXlFBnbBuUVdWZS2rbIWTZtsUOAFTt tDdJfDEH6RaTqIq98L+6v5d3cVa47A2J -----END CERTIFICATE-----Generated at Sat Dec 20 17:32:35 2025 by rpki-client