This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft File: f83sMfr6flJ9p6lwOTIED4RVgVk.mft (raw, json) Hash identifier: mY5fFZuDjg6NQRvu+9dgl0pG2Tp4Z2Y+rC7EoiWTNnY= Subject key identifier: F9:7F:F9:71:B8:06:5F:5E:81:7C:E0:9E:F7:57:DC:A8:1D:CD:91:F6 Authority key identifier: 7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59 Certificate issuer: /CN=A9179BF7/serialNumber=7FCDEC31FAFA7E527DA7A9703932040F84558159 Certificate serial: 0375 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft Manifest number: 0353 Signing time: Sun 21 Dec 2025 00:18:51 +0000 Manifest this update: Sun 21 Dec 2025 00:18:50 +0000 Manifest next update: Sun 28 Dec 2025 00:18:50 +0000 Files and hashes: 1: f83sMfr6flJ9p6lwOTIED4RVgVk.crl (hash: izNrGd/Pn0xdZoeco6LNAnaY+i6px62zDOqU8Y39l+k=) 2: 81EEF49E801711EF8566D481C4F9AE02.roa (hash: kGDq/OHD1l2DSUn6HN/fSE9IJdA1C+dG59/8ecfdLJw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.crl rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 00:18:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179BF7, serialNumber=7FCDEC31FAFA7E527DA7A9703932040F84558159 Validity Not Before: Dec 21 00:18:50 2025 GMT Not After : Dec 28 00:18:50 2025 GMT Subject: CN=69473cea-4143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:86:3c:56:36:f3:54:0c:7c:53:c2:3d:a1:55: 63:8d:8e:67:6f:3b:ba:7c:d5:f4:26:3c:56:80:b0: 59:e3:75:f0:55:8c:da:a3:b7:20:73:3b:77:95:ff: 51:19:13:f7:45:86:40:50:3b:22:53:51:4b:db:8e: d7:70:65:fa:31:d3:22:50:7a:cb:6e:5a:ba:c3:47: 68:2f:66:7d:b5:e4:5a:06:28:9a:94:32:75:3d:f7: 6c:c2:5f:ae:be:7d:22:6f:40:19:be:3c:53:da:66: 01:58:c5:8e:a5:3c:46:06:9b:1e:3c:30:19:70:a3: 13:14:1e:88:14:98:f8:65:0b:38:81:9e:0d:d3:be: c7:9d:c9:9f:a3:60:8d:b4:5f:eb:c7:ed:9c:a0:7d: 93:8b:0f:46:f5:05:31:8c:08:bf:82:6a:bd:18:43: 59:32:81:83:7f:5e:42:6a:6a:cb:54:07:ad:60:fb: 6f:ec:77:7f:11:ac:12:60:81:44:2d:6a:97:67:4a: 18:e8:b8:00:21:c5:ef:e5:ff:8e:d2:37:ae:2c:8d: f5:da:1c:26:e7:ca:1e:ea:38:db:1f:78:0d:02:c9: 66:9d:87:6a:09:c5:d3:b7:9d:6e:b7:74:5a:86:f7: 04:e6:da:63:d1:42:75:7c:a6:0d:1f:06:11:db:74: 00:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:7F:F9:71:B8:06:5F:5E:81:7C:E0:9E:F7:57:DC:A8:1D:CD:91:F6 X509v3 Authority Key Identifier: keyid:7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:cd:27:0d:59:a2:f1:e3:3e:e8:e5:04:38:4a:5d:fb:2d:7d: ff:99:37:dd:d4:cb:56:7f:01:79:df:21:90:1c:ea:dc:c9:a2: 6f:28:dd:16:a3:3b:e0:d2:9a:86:c3:32:50:5a:21:41:27:3e: 86:a9:72:c5:c4:f2:bc:59:82:b4:74:b6:dd:c5:2c:04:a5:16: 59:74:99:5d:fd:0f:23:24:66:b3:86:d7:c9:12:55:56:41:52: 15:bc:1b:21:9b:97:22:07:57:aa:38:0c:58:ec:85:bb:3d:6b: ac:b9:76:62:56:06:01:9f:d5:67:9e:ce:52:fd:93:00:99:36: c8:ef:78:c2:58:3a:6e:65:58:43:09:e6:48:8b:e4:b4:bc:2f: 20:5c:ed:41:03:e9:d1:7e:a3:f4:f7:10:6d:0c:b0:52:5a:57: 16:1b:6f:d3:73:c9:df:2b:cf:86:7a:4a:9a:f2:7a:0f:06:fb: 5b:3a:f3:77:e0:03:33:5d:44:e2:74:7c:33:75:cd:c1:28:c1: 46:b3:51:96:8b:1d:8a:15:12:6d:41:65:48:1d:eb:60:5b:56: 2f:11:4e:5c:31:b8:82:bf:7a:a1:ad:0b:b5:96:7e:6e:a5:a6: fa:bf:1d:4c:39:77:ff:36:23:bd:b6:86:99:61:ba:2e:f1:7c: fe:6c:15:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCRjcxMTAvBgNVBAUTKDdGQ0RFQzMxRkFGQTdFNTI3REE3QTk3MDM5MzIwNDBG ODQ1NTgxNTkwHhcNMjUxMjIxMDAxODUwWhcNMjUxMjI4MDAxODUwWjAYMRYwFAYD VQQDDA02OTQ3M2NlYS00MTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIY8VjbzVAx8U8I9oVVjjY5nbzu6fNX0JjxWgLBZ43XwVYzao7cgczt3lf9R GRP3RYZAUDsiU1FL247XcGX6MdMiUHrLblq6w0doL2Z9teRaBiialDJ1Pfdswl+u vn0ib0AZvjxT2mYBWMWOpTxGBpsePDAZcKMTFB6IFJj4ZQs4gZ4N077Hncmfo2CN tF/rx+2coH2Tiw9G9QUxjAi/gmq9GENZMoGDf15CamrLVAetYPtv7Hd/EawSYIFE LWqXZ0oY6LgAIcXv5f+O0jeuLI312hwm58oe6jjbH3gNAslmnYdqCcXTt51ut3Ra hvcE5tpj0UJ1fKYNHwYR23QA/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPl/+XG4 Bl9egXzgnvdX3KgdzZH2MB8GA1UdIwQYMBaAFH/N7DH6+n5SfaepcDkyBA+EVYFZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUJGNy80QjY2RjEyQ0Yy QzcxMUVDOEI4MTk2ODdDNEY5QUUwMi9mODNzTWZyNmZsSjlwNmx3T1RJRUQ0UlZn VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y4M3NNZnI2ZmxKOXA2bHdPVElFRDRSVmdWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUJGNy80QjY2RjEyQ0YyQzcxMUVDOEI4MTk2ODdDNEY5QUUwMi9mODNzTWZyNmZs SjlwNmx3T1RJRUQ0UlZnVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkzScNWaLx4z7o5QQ4Sl37LX3/mTfd1MtWfwF53yGQHOrcyaJvKN0W ozvg0pqGwzJQWiFBJz6GqXLFxPK8WYK0dLbdxSwEpRZZdJld/Q8jJGazhtfJElVW QVIVvBshm5ciB1eqOAxY7IW7PWusuXZiVgYBn9Vnns5S/ZMAmTbI73jCWDpuZVhD CeZIi+S0vC8gXO1BA+nRfqP09xBtDLBSWlcWG2/Tc8nfK8+Gekqa8noPBvtbOvN3 4AMzXUTidHwzdc3BKMFGs1GWix2KFRJtQWVIHetgW1YvEU5cMbiCv3qhrQu1ln5u pab6vx1MOXf/NiO9toaZYbou8Xz+bBU8 -----END CERTIFICATE-----Generated at Sun Dec 21 12:16:09 2025 by rpki-client