This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft File: w7rY8KXaBY6fklA30EqnHJKLoXM.mft (raw, json) Hash identifier: SuYxxdS7agBN5oqv07GESzVHdesJL9x7saxkn9Nb7jk= Subject key identifier: 45:5E:EF:11:39:ED:12:AF:DA:82:12:85:59:C7:0A:7D:24:33:FE:05 Authority key identifier: C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 Certificate issuer: /CN=A9189265/serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Certificate serial: 1A2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft Manifest number: 1A20 Signing time: Thu 18 Dec 2025 16:15:09 +0000 Manifest this update: Thu 18 Dec 2025 16:15:09 +0000 Manifest next update: Thu 25 Dec 2025 16:15:09 +0000 Files and hashes: 1: w7rY8KXaBY6fklA30EqnHJKLoXM.crl (hash: /JPlzymGJGKi7in7vBWajndEkzUL7K8dFM9GoCvzDqs=) 2: 885DA760AA8811E799348329C4F9AE02.roa (hash: QtE9Adpom4Nm5iw3CCvblvKPpzJSJvhQFoud1x1FLEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 16:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6699 (0x1a2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189265, serialNumber=C3BAD8F0A5DA058E9F925037D04AA71C928BA173 Validity Not Before: Dec 18 16:15:09 2025 GMT Not After : Dec 25 16:15:09 2025 GMT Subject: CN=6944288d-5b10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:97:e4:2f:a0:11:ce:fb:1d:e2:bd:66:f1:84: fa:a4:0c:a1:b1:f0:93:4b:6a:f0:54:0f:1c:51:18: d1:10:6a:fb:98:a2:b0:0c:b1:d7:d8:a7:e6:c4:a7: d6:8c:6f:d7:ce:87:0f:f0:e3:86:57:b9:a8:f9:e2: 06:eb:a3:c3:1e:b5:5f:33:4f:06:52:e2:0e:47:16: 32:ca:48:ea:84:6b:b6:b0:8c:60:87:2e:ff:7d:29: bc:09:22:c6:f3:52:f1:d3:8a:e3:da:d2:1c:a2:3d: 91:34:de:eb:ed:ac:a5:08:fc:cb:ea:ff:9c:d7:b1: 4b:5e:c8:20:7f:c9:e6:45:90:81:5d:c5:3a:a9:6d: 10:7b:7e:9f:2f:89:9a:a5:e5:24:e0:ec:44:55:7c: 0d:68:97:bf:6b:62:c3:6a:16:32:a2:c1:c7:a2:f7: aa:de:c9:36:49:92:ff:a0:5d:86:53:06:5e:88:b7: 7a:68:36:6d:c6:55:01:e4:bd:85:b3:2d:f0:a4:2a: 88:f6:fb:84:0c:b6:ac:ff:0a:49:56:fa:6c:48:41: 1f:bf:49:ba:10:ad:0b:0c:bd:d4:d6:aa:47:20:9d: bb:60:00:3c:f7:63:f2:dd:1a:7e:e1:9c:e9:fe:eb: 49:2a:48:a6:4d:1c:0e:bb:d8:60:36:da:31:c0:f2: b3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:5E:EF:11:39:ED:12:AF:DA:82:12:85:59:C7:0A:7D:24:33:FE:05 X509v3 Authority Key Identifier: keyid:C3:BA:D8:F0:A5:DA:05:8E:9F:92:50:37:D0:4A:A7:1C:92:8B:A1:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w7rY8KXaBY6fklA30EqnHJKLoXM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189265/D8B4B61E602211E7B96FC264C4F9AE02/w7rY8KXaBY6fklA30EqnHJKLoXM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:f4:f4:03:db:07:71:13:a4:a3:5c:b4:29:ea:16:ae:59:58: f2:71:ad:42:e7:5f:8d:b2:98:7a:18:e9:d5:a8:4b:5b:2e:31: 65:80:30:54:db:7f:42:2e:99:7d:67:b5:21:ec:da:68:57:65: ce:0e:ff:74:b0:d8:9b:7d:1c:47:4d:93:9f:62:90:fa:4c:ac: fa:9b:28:c5:69:fb:ef:68:53:57:12:17:c9:99:af:6c:ad:99: 91:bc:37:c6:fc:ee:74:18:5f:14:2b:e7:e2:1a:aa:44:12:5c: 70:c6:b5:20:c7:d7:7a:cf:9a:8f:b0:40:01:87:4b:9d:78:3f: 58:c0:5e:09:71:40:35:ef:57:bc:7f:6b:f0:4b:d9:a7:e5:29: 23:09:f6:99:a6:37:9e:53:85:b4:b5:a4:1c:21:82:99:80:22: 7e:b1:ab:da:8a:76:1c:7f:c5:72:24:c2:5b:c5:86:b5:40:d1: 5d:20:2b:5c:50:64:75:96:9f:a4:3c:dd:8e:aa:ab:72:bb:3c: 5d:e1:10:df:a0:be:c0:29:66:56:a8:9c:79:35:28:8a:17:70: fe:59:c3:29:5a:ad:9d:0b:b1:f1:b3:e1:70:4b:bf:78:0c:b5: e2:c2:bd:78:19:95:8e:88:a6:6b:0b:59:73:5a:63:d2:22:90: 08:91:b8:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyNjUxMTAvBgNVBAUTKEMzQkFEOEYwQTVEQTA1OEU5RjkyNTAzN0QwNEFBNzFD OTI4QkExNzMwHhcNMjUxMjE4MTYxNTA5WhcNMjUxMjI1MTYxNTA5WjAYMRYwFAYD VQQDDA02OTQ0Mjg4ZC01YjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZfkL6ARzvsd4r1m8YT6pAyhsfCTS2rwVA8cURjREGr7mKKwDLHX2KfmxKfW jG/XzocP8OOGV7mo+eIG66PDHrVfM08GUuIORxYyykjqhGu2sIxghy7/fSm8CSLG 81Lx04rj2tIcoj2RNN7r7aylCPzL6v+c17FLXsggf8nmRZCBXcU6qW0Qe36fL4ma peUk4OxEVXwNaJe/a2LDahYyosHHoveq3sk2SZL/oF2GUwZeiLd6aDZtxlUB5L2F sy3wpCqI9vuEDLas/wpJVvpsSEEfv0m6EK0LDL3U1qpHIJ27YAA892Py3Rp+4Zzp /utJKkimTRwOu9hgNtoxwPKzCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVe7xE5 7RKv2oIShVnHCn0kM/4FMB8GA1UdIwQYMBaAFMO62PCl2gWOn5JQN9BKpxySi6Fz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTI2NS9EOEI0QjYxRTYw MjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZNmZrbEEzMEVxbkhKS0xv WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c3clk4S1hhQlk2ZmtsQTMwRXFuSEpLTG9YTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTI2NS9EOEI0QjYxRTYwMjIxMUU3Qjk2RkMyNjRDNEY5QUUwMi93N3JZOEtYYUJZ NmZrbEEzMEVxbkhKS0xvWE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg9PQD2wdxE6SjXLQp6hauWVjyca1C51+Nsph6GOnVqEtbLjFlgDBU 239CLpl9Z7Uh7NpoV2XODv90sNibfRxHTZOfYpD6TKz6myjFafvvaFNXEhfJma9s rZmRvDfG/O50GF8UK+fiGqpEElxwxrUgx9d6z5qPsEABh0udeD9YwF4JcUA171e8 f2vwS9mn5SkjCfaZpjeeU4W0taQcIYKZgCJ+savainYcf8VyJMJbxYa1QNFdICtc UGR1lp+kPN2Oqqtyuzxd4RDfoL7AKWZWqJx5NSiKF3D+WcMpWq2dC7Hxs+FwS794 DLXiwr14GZWOiKZrC1lzWmPSIpAIkbjN -----END CERTIFICATE-----Generated at Fri Dec 19 23:59:12 2025 by rpki-client