This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft File: fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft (raw, json) Hash identifier: Y6E2nEivPA3r2VCyT4hWEl9RQApWV7IIHMPJ+g8nmI0= Subject key identifier: AF:AD:3B:CC:4A:73:01:83:8B:1F:84:AC:ED:7C:25:41:CD:7C:0C:0B Authority key identifier: 7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 Certificate issuer: /CN=A9187E80/serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Certificate serial: 069B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft Manifest number: 068A Signing time: Thu 18 Dec 2025 21:52:39 +0000 Manifest this update: Thu 18 Dec 2025 21:52:39 +0000 Manifest next update: Thu 25 Dec 2025 21:52:39 +0000 Files and hashes: 1: fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl (hash: L3/ESycOGjoZe6Qqa1xQxPbOOb972SRcsbbIh2W1uD4=) 2: 9F68F54067EF11F09584C157C4F9AE02.roa (hash: KQvzfFoZ8+mG1PwqX29gc/leNzp6B+eUlYg2ecJeyn4=) 3: 1B120B6E563B11EE9C93E334C4F9AE02.roa (hash: cAf8Pq1ZJkKmC+TeXFz0VwR4TUY4CLV62jWZ7ILw/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 21:52:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187E80, serialNumber=7CB0E5825101C665443F2CFAB19E84D1A7797597 Validity Not Before: Dec 18 21:52:39 2025 GMT Not After : Dec 25 21:52:39 2025 GMT Subject: CN=694477a7-9049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ed:cd:6d:84:3d:69:cf:24:a4:f8:b4:ba:6a: a9:f8:01:92:c1:02:ca:6e:16:00:1c:d3:3c:c9:74: 93:82:95:21:77:6d:1e:a3:5e:57:5a:1b:89:7b:80: 62:32:43:69:69:13:a2:bb:bb:81:c9:5e:0e:e9:fa: be:4f:c7:9f:a9:0a:ca:b8:b5:6c:8f:ba:29:b8:1a: 23:2a:f7:6f:7c:66:ea:fd:0a:dd:4f:b9:55:14:45: 62:cb:70:dd:3c:88:d8:84:f6:26:d9:2c:a2:64:bf: fb:c2:02:95:9f:64:6d:71:1a:e3:be:51:54:b2:bb: 1f:88:5a:51:b7:7c:f4:e3:c4:de:8b:0d:88:69:a9: 6d:0b:c1:b4:27:31:17:9b:cc:13:ef:9b:6e:5c:2d: 0b:11:a4:07:62:e8:ad:ba:ab:b7:ca:d6:99:55:8f: 9a:d0:95:bb:81:de:3b:7a:44:85:0b:37:6b:32:c5: 3f:2b:85:7b:da:92:a8:06:4d:97:98:49:da:59:4e: a2:9e:d7:86:09:1b:35:cb:5d:be:64:6f:6d:e2:51: f4:b9:85:3f:2d:66:5c:c4:05:2f:6e:94:e5:8a:de: 0c:d7:6e:98:2b:08:a1:e7:12:ea:a7:72:dd:61:61: 13:4b:e3:7d:a8:c9:a7:75:44:82:85:ba:ae:5a:21: a8:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:AD:3B:CC:4A:73:01:83:8B:1F:84:AC:ED:7C:25:41:CD:7C:0C:0B X509v3 Authority Key Identifier: keyid:7C:B0:E5:82:51:01:C6:65:44:3F:2C:FA:B1:9E:84:D1:A7:79:75:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fLDlglEBxmVEPyz6sZ6E0ad5dZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187E80/D278CA649E7711EB8C25DB6CC4F9AE02/fLDlglEBxmVEPyz6sZ6E0ad5dZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:58:09:2b:9b:13:be:58:a2:25:76:6f:fe:f9:95:2e:52:8b: 60:3f:95:df:7a:72:4b:6b:e1:4a:89:28:27:f1:e8:a2:3d:9d: aa:75:87:21:dd:18:d0:11:3b:6a:b2:fb:7a:1d:d9:79:c7:88: 24:9f:7e:8a:d6:f7:41:55:5b:d5:fb:f7:d8:dd:11:c9:a8:c5: 6f:ad:ec:cc:de:51:5b:43:4f:e4:f7:f8:8b:b3:af:11:b4:31: dc:f8:7c:47:3f:71:54:d6:c8:cf:07:dc:ca:d4:c5:88:6b:dd: d3:72:9b:ec:cf:eb:91:db:ed:7d:f3:dc:21:c7:2d:77:62:dd: c0:af:a1:62:03:1c:3a:01:bc:56:cf:1b:95:28:f0:74:60:57: b5:01:9b:d5:58:ff:e2:72:1b:cb:f4:51:bf:79:b4:a2:67:ad: 8b:14:f4:27:cf:7a:c5:0e:55:38:df:33:40:0e:dc:47:63:67: 5c:a2:fc:89:6b:76:1f:67:d9:90:e3:b7:1c:20:a0:9d:a2:22: 03:50:aa:26:23:2d:50:27:6c:4c:4b:15:75:2a:dc:0b:97:ae: fb:8f:3d:f1:59:97:cb:d6:6c:04:46:54:1d:ab:03:c1:33:6e: 75:b2:f9:f6:ae:ea:55:c9:cb:fe:8d:29:4d:ab:c6:b7:93:8d: c2:c3:18:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdFODAxMTAvBgNVBAUTKDdDQjBFNTgyNTEwMUM2NjU0NDNGMkNGQUIxOUU4NEQx QTc3OTc1OTcwHhcNMjUxMjE4MjE1MjM5WhcNMjUxMjI1MjE1MjM5WjAYMRYwFAYD VQQDDA02OTQ0NzdhNy05MDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAru3NbYQ9ac8kpPi0umqp+AGSwQLKbhYAHNM8yXSTgpUhd20eo15XWhuJe4Bi MkNpaROiu7uByV4O6fq+T8efqQrKuLVsj7opuBojKvdvfGbq/QrdT7lVFEViy3Dd PIjYhPYm2SyiZL/7wgKVn2RtcRrjvlFUsrsfiFpRt3z048Teiw2IaaltC8G0JzEX m8wT75tuXC0LEaQHYuituqu3ytaZVY+a0JW7gd47ekSFCzdrMsU/K4V72pKoBk2X mEnaWU6inteGCRs1y12+ZG9t4lH0uYU/LWZcxAUvbpTlit4M126YKwih5xLqp3Ld YWETS+N9qMmndUSChbquWiGobQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+tO8xK cwGDix+ErO18JUHNfAwLMB8GA1UdIwQYMBaAFHyw5YJRAcZlRD8s+rGehNGneXWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0U4MC9EMjc4Q0E2NDlF NzcxMUVCOEMyNURCNkNDNEY5QUUwMi9mTERsZ2xFQnhtVkVQeXo2c1o2RTBhZDVk WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZMRGxnbEVCeG1WRVB5ejZzWjZFMGFkNWRaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 N0U4MC9EMjc4Q0E2NDlFNzcxMUVCOEMyNURCNkNDNEY5QUUwMi9mTERsZ2xFQnht VkVQeXo2c1o2RTBhZDVkWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4WAkrmxO+WKIldm/++ZUuUotgP5XfenJLa+FKiSgn8eiiPZ2qdYch 3RjQETtqsvt6Hdl5x4gkn36K1vdBVVvV+/fY3RHJqMVvrezM3lFbQ0/k9/iLs68R tDHc+HxHP3FU1sjPB9zK1MWIa93Tcpvsz+uR2+1989whxy13Yt3Ar6FiAxw6AbxW zxuVKPB0YFe1AZvVWP/ichvL9FG/ebSiZ62LFPQnz3rFDlU43zNADtxHY2dcovyJ a3YfZ9mQ47ccIKCdoiIDUKomIy1QJ2xMSxV1KtwLl677jz3xWZfL1mwERlQdqwPB M251svn2rupVycv+jSlNq8a3k43Cwxj3 -----END CERTIFICATE-----Generated at Fri Dec 19 21:55:44 2025 by rpki-client