This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: bPhHBiicjVK/TqelqJ7jtOzslrPWL50/0VLnRPfwnEI= Subject key identifier: 6D:D6:3B:74:F4:05:F8:18:EF:DC:8E:60:ED:C9:FF:68:F1:ED:16:B3 Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 06CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 06BC Signing time: Tue 16 Dec 2025 21:43:11 +0000 Manifest this update: Tue 16 Dec 2025 21:43:10 +0000 Manifest next update: Tue 23 Dec 2025 21:43:10 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: uCd5mB2KZlu5LMK8a1iVL6pkKSPurHJVrlsZItDT3MA=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 21:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Dec 16 21:43:10 2025 GMT Not After : Dec 23 21:43:10 2025 GMT Subject: CN=6941d26f-2a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:21:b9:91:58:2a:fd:1d:97:9e:f0:84:3a: e4:14:3f:8a:7a:a6:5f:ab:c1:4b:be:0b:1a:aa:22: 72:f3:71:20:4c:27:57:4b:f5:69:2b:23:b0:c7:83: e2:98:6d:2e:9d:60:09:c3:d5:66:b3:aa:ea:7c:05: 03:25:ee:2e:70:f9:29:62:1b:65:f1:c5:c0:43:6c: bf:8f:32:0e:8b:82:e1:f9:4e:3f:08:af:65:47:96: 7b:db:6c:5a:0e:75:5b:56:c9:f1:01:24:58:2a:b2: 38:75:a2:91:97:45:ab:f8:31:4e:4f:df:cc:44:1a: 4c:6c:d8:ec:c4:d9:9c:e8:19:e4:38:b2:9a:27:3c: ca:ca:52:97:6e:65:39:f3:14:5d:ca:f4:d9:31:1e: 7a:73:ab:05:ec:88:e8:08:fa:8c:76:62:36:8b:9c: f4:8e:fe:3b:a1:0f:e4:79:9d:c2:2f:b8:78:47:61: b6:cd:cb:f3:e7:e0:05:eb:9d:3f:e0:9b:39:17:86: 74:d7:1e:75:17:94:04:8a:b2:e0:5d:d4:84:5c:e5: cb:e1:ce:0e:c8:d2:25:ab:a9:50:c9:62:f1:b3:63: 63:55:0c:e7:b4:8e:fd:27:ae:c7:92:b1:0d:97:44: 6b:1b:4f:e4:78:ec:8e:e3:b5:8b:07:cc:c3:3c:aa: b2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D6:3B:74:F4:05:F8:18:EF:DC:8E:60:ED:C9:FF:68:F1:ED:16:B3 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:0a:1a:d6:39:a5:0f:ab:f0:28:e6:4a:dd:bd:2f:cd:ea:b1: 97:4d:71:7b:6a:03:a3:ff:64:7f:c4:d4:6f:25:f7:94:1e:de: 39:ef:1f:35:17:5b:a0:f7:ca:c1:f9:09:84:9f:3e:22:05:fb: f4:b1:4d:9b:cc:2e:6a:44:e6:aa:de:1d:59:39:51:23:a3:82: e6:4c:a5:0d:1c:97:7e:60:ce:10:e7:a3:3c:bb:ac:05:a5:45: d2:93:11:4d:f3:80:65:be:25:3e:ed:27:64:a7:5f:ee:c1:9d: 5f:ec:4e:96:2e:38:17:3a:65:69:eb:07:16:50:59:14:1f:0c: ed:1e:f5:19:25:d4:90:84:2c:c0:26:62:44:c8:ee:0f:80:1b: 2f:63:4e:40:95:8b:7f:fc:6d:9f:75:b5:b3:f3:a7:ba:c0:11: 30:44:34:a4:d5:ef:75:49:11:d6:ff:28:94:9d:80:dd:51:6d: 2b:04:d9:e5:c8:a6:6d:37:d7:f9:22:71:25:f2:9c:8d:15:30: b7:aa:6f:fd:10:b5:68:97:79:ec:d0:22:48:58:f9:ee:ea:d0: 16:b7:58:15:79:e0:1a:ec:9a:3d:9c:f3:94:cd:c9:0d:0d:49: b7:b3:57:15:f3:82:a4:8c:9f:ad:49:96:ba:9a:f0:77:d1:a3: fc:34:7e:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUxMjE2MjE0MzEwWhcNMjUxMjIzMjE0MzEwWjAYMRYwFAYD VQQDDA02OTQxZDI2Zi0yYTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHghuZFYKv0dl57whDrkFD+KeqZfq8FLvgsaqiJy83EgTCdXS/VpKyOwx4Pi mG0unWAJw9Vms6rqfAUDJe4ucPkpYhtl8cXAQ2y/jzIOi4Lh+U4/CK9lR5Z722xa DnVbVsnxASRYKrI4daKRl0Wr+DFOT9/MRBpMbNjsxNmc6BnkOLKaJzzKylKXbmU5 8xRdyvTZMR56c6sF7IjoCPqMdmI2i5z0jv47oQ/keZ3CL7h4R2G2zcvz5+AF650/ 4Js5F4Z01x51F5QEirLgXdSEXOXL4c4OyNIlq6lQyWLxs2NjVQzntI79J67HkrEN l0RrG0/keOyO47WLB8zDPKqyCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3WO3T0 BfgY79yOYO3J/2jx7RazMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ChrWOaUPq/Ao5krdvS/N6rGXTXF7agOj/2R/xNRvJfeUHt457x81 F1ug98rB+QmEnz4iBfv0sU2bzC5qROaq3h1ZOVEjo4LmTKUNHJd+YM4Q56M8u6wF pUXSkxFN84BlviU+7Sdkp1/uwZ1f7E6WLjgXOmVp6wcWUFkUHwztHvUZJdSQhCzA JmJEyO4PgBsvY05AlYt//G2fdbWz86e6wBEwRDSk1e91SRHW/yiUnYDdUW0rBNnl yKZtN9f5InEl8pyNFTC3qm/9ELVol3ns0CJIWPnu6tAWt1gVeeAa7Jo9nPOUzckN DUm3s1cV84KkjJ+tSZa6mvB30aP8NH6w -----END CERTIFICATE-----Generated at Thu Dec 18 20:34:14 2025 by rpki-client