This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: WzfdH3Ri1KQKUllEWqdR5RJFXZNW1UjmixvjlohLIaA= Subject key identifier: 56:32:49:EA:0D:92:B8:FE:B0:5B:E7:36:05:20:73:DC:8F:26:ED:F6 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 0522 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 0517 Signing time: Sat 20 Dec 2025 22:52:18 +0000 Manifest this update: Sat 20 Dec 2025 22:52:18 +0000 Manifest next update: Sat 27 Dec 2025 22:52:18 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: ibCJ7iJK4TzL8caTT7E1VYYbtrskG/e5sONzMExDzF4=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 22:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Dec 20 22:52:18 2025 GMT Not After : Dec 27 22:52:18 2025 GMT Subject: CN=694728a2-e42b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f6:d4:2a:1d:64:1a:0a:dc:a1:8c:47:59:d6: 56:a4:ef:0e:a9:e0:35:83:69:d9:f4:7e:62:75:5d: 18:33:91:2e:91:ca:31:9a:b8:2f:9b:4d:91:02:83: 40:87:0c:85:72:78:13:50:50:a7:2e:b3:6d:79:ac: 5f:9f:44:23:fe:d8:58:1a:02:11:3a:d0:db:41:e2: c9:e4:6f:55:41:3a:91:7c:ac:4e:6e:b8:a4:16:af: bc:4e:4b:b0:3e:07:59:c9:18:00:fb:02:8b:7a:b4: 65:d1:cc:31:f9:bf:16:f5:b8:2b:83:23:d9:70:e4: 0a:ab:15:30:d6:20:d6:47:94:ce:74:e6:b9:29:2d: 6b:55:89:f1:b0:4e:3f:7d:ff:53:d0:97:24:c5:8d: 21:df:33:2b:84:75:bf:0c:78:f7:7c:17:58:da:51: 0a:e3:96:98:da:9f:94:ab:45:53:c8:05:e7:f4:dd: 84:e7:92:f8:2d:78:96:4e:a0:f2:ee:3c:40:70:26: 0e:95:2c:cc:bd:b6:19:25:51:33:78:84:5d:ae:8f: 3b:1e:98:0d:b7:a4:c1:c7:ca:b0:04:5c:20:f4:1b: e8:d4:30:b6:95:9e:04:68:e4:a2:72:d5:00:5a:0f: d9:66:5e:7d:00:4b:e6:be:4c:da:dd:de:ca:43:8d: 48:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:32:49:EA:0D:92:B8:FE:B0:5B:E7:36:05:20:73:DC:8F:26:ED:F6 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:bf:eb:40:2b:c1:bf:84:e1:44:58:16:48:8a:55:88:ae:14: a2:19:03:c8:0a:e5:a8:6f:51:5e:ed:d2:52:cb:0b:20:ce:4f: 79:02:df:96:05:4f:dd:0a:34:ae:04:dc:53:27:65:ff:50:c7: 8d:41:a1:af:91:8e:3d:1b:97:8d:6c:94:15:0c:55:db:d1:60: 1b:c6:3f:92:89:e7:c2:8d:11:2f:dd:68:c7:b6:3e:8e:e8:e7: 8b:b4:7e:8a:2a:91:8e:ee:ab:6c:a5:67:f5:11:9f:2d:4b:a5: 7c:9d:f7:70:c4:7c:1c:69:76:50:7d:99:fb:de:51:50:59:f2: 25:8b:4a:33:03:05:98:0b:03:63:46:a9:75:6a:4b:60:84:f0: 22:95:d7:85:22:4b:16:94:53:98:72:88:10:4a:a5:09:ac:af: dc:1d:1c:99:17:65:6e:23:13:14:95:ac:3e:e0:3d:78:cc:c1: c5:11:4c:df:53:53:fa:76:3e:0a:a0:04:2c:c1:85:21:3a:9e: 3f:40:ed:66:69:0a:7b:5a:ba:42:dd:11:17:8a:9e:1b:f3:01: fd:e2:3f:3a:b7:cb:74:23:76:19:81:c5:f8:9f:b8:5f:ca:0f: d2:e5:9c:b2:5a:36:2d:f3:b4:91:2b:8e:7e:c5:73:ae:7e:82: 9f:a4:39:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUxMjIwMjI1MjE4WhcNMjUxMjI3MjI1MjE4WjAYMRYwFAYD VQQDDA02OTQ3MjhhMi1lNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvbUKh1kGgrcoYxHWdZWpO8OqeA1g2nZ9H5idV0YM5Eukcoxmrgvm02RAoNA hwyFcngTUFCnLrNteaxfn0Qj/thYGgIROtDbQeLJ5G9VQTqRfKxObrikFq+8Tkuw PgdZyRgA+wKLerRl0cwx+b8W9bgrgyPZcOQKqxUw1iDWR5TOdOa5KS1rVYnxsE4/ ff9T0JckxY0h3zMrhHW/DHj3fBdY2lEK45aY2p+Uq0VTyAXn9N2E55L4LXiWTqDy 7jxAcCYOlSzMvbYZJVEzeIRdro87HpgNt6TBx8qwBFwg9Bvo1DC2lZ4EaOSictUA Wg/ZZl59AEvmvkza3d7KQ41I4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYySeoN krj+sFvnNgUgc9yPJu32MB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMv+tAK8G/hOFEWBZIilWIrhSiGQPICuWob1Fe7dJSywsgzk95At+W BU/dCjSuBNxTJ2X/UMeNQaGvkY49G5eNbJQVDFXb0WAbxj+SiefCjREv3WjHtj6O 6OeLtH6KKpGO7qtspWf1EZ8tS6V8nfdwxHwcaXZQfZn73lFQWfIli0ozAwWYCwNj Rql1aktghPAildeFIksWlFOYcogQSqUJrK/cHRyZF2VuIxMUlaw+4D14zMHFEUzf U1P6dj4KoAQswYUhOp4/QO1maQp7WrpC3REXip4b8wH94j86t8t0I3YZgcX4n7hf yg/S5ZyyWjYt87SRK45+xXOufoKfpDmV -----END CERTIFICATE-----Generated at Sun Dec 21 22:40:48 2025 by rpki-client