This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft File: bOLX0NlZgNdDytSEhphI26Elwps.mft (raw, json) Hash identifier: 05RmjqJ6EC/M5wPPJkohXGwnoT1Oh8I2ATN/u0HlUFM= Subject key identifier: 1A:11:CA:9B:BC:19:BB:94:04:F0:CB:79:C9:09:82:0A:DD:5E:00:2C Authority key identifier: 6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B Certificate issuer: /CN=A9120E98/serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Certificate serial: 0198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft Manifest number: 0192 Signing time: Fri 05 Dec 2025 01:44:11 +0000 Manifest this update: Fri 05 Dec 2025 01:44:11 +0000 Manifest next update: Fri 12 Dec 2025 01:44:11 +0000 Files and hashes: 1: bOLX0NlZgNdDytSEhphI26Elwps.crl (hash: YU1PcNMwc+wYiEsw016Pdx92R0z91FG7sk9lB25cCTY=) 2: 36F3B6A86E5411EEAA31F87AC4F9AE02.roa (hash: sGfgOeU/fHIH2HrB1IOWJi3rlZbzHtByfN0MLcFepBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E98, serialNumber=6CE2D7D0D95980D743CAD484869848DBA125C29B Validity Not Before: Dec 5 01:44:11 2025 GMT Not After : Dec 12 01:44:11 2025 GMT Subject: CN=693238eb-d870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4d:e0:39:82:a4:0a:64:3b:f1:af:94:ea:ec: e6:9c:c7:a6:e3:6e:65:ab:d4:b1:48:0e:54:59:1f: 8a:44:09:9e:af:17:18:f7:4d:eb:ab:d8:38:0e:14: d4:89:07:3e:a6:46:b6:cd:45:49:6f:b2:ff:b9:bd: d9:89:60:9b:64:f9:4c:df:7f:83:6a:18:35:6c:4b: 2c:5f:b9:80:c5:e5:34:0a:d2:09:18:a0:78:d2:b9: 0e:d7:e3:b2:17:fb:f4:e8:6d:cc:dd:25:cc:cb:d8: 75:31:c3:fd:71:2c:b6:08:f6:80:3a:24:f1:df:a8: 2a:23:2b:46:1b:dd:d4:ea:36:ba:e7:b0:9a:b8:b6: 89:73:cd:19:ce:f7:3d:3e:47:83:2b:9a:b9:00:eb: b3:f8:bb:19:18:9e:da:3b:42:1e:e6:82:00:5e:1b: da:8c:86:8a:73:fd:99:07:e5:81:fb:5f:b3:6a:11: f6:8f:cf:ec:86:fb:4a:1c:51:8a:80:6f:53:15:c6: 6e:fb:fb:b8:39:44:ca:e3:be:f2:cf:9b:03:c1:70: 64:2a:bd:e5:6c:a8:e7:7d:c5:74:4b:a8:13:72:a4: e3:1b:32:ad:6c:4d:73:e7:00:e3:f1:e9:9b:02:d9: 7e:15:e6:fc:05:0c:3d:d4:c5:8e:8b:be:d4:04:33: a6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:11:CA:9B:BC:19:BB:94:04:F0:CB:79:C9:09:82:0A:DD:5E:00:2C X509v3 Authority Key Identifier: keyid:6C:E2:D7:D0:D9:59:80:D7:43:CA:D4:84:86:98:48:DB:A1:25:C2:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOLX0NlZgNdDytSEhphI26Elwps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E98/74FD5E826E5311EE9B917E79C4F9AE02/bOLX0NlZgNdDytSEhphI26Elwps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:5a:fd:4f:50:a4:d2:ea:a3:ae:b5:01:0f:d4:34:e5:4a:7d: b6:b1:83:2c:ef:b8:74:e2:26:96:3c:a4:65:72:4a:d8:3f:51: df:c0:23:b5:0d:6d:98:ab:c2:08:f3:70:ef:c6:43:2d:a7:9e: c5:2a:e7:6f:86:04:1d:03:86:32:21:9c:75:f1:f6:34:f0:db: 6d:e8:7d:33:3d:58:9c:6a:15:ae:3f:b8:55:76:bf:c6:03:d1: 80:1a:b1:11:7b:5d:84:a1:8d:c0:73:5e:79:15:d2:88:55:01: b6:be:4c:62:28:87:ec:ab:76:43:6d:9f:7f:5c:b2:1b:45:b5: 32:c2:65:a6:2f:9d:74:55:3b:51:f9:8c:49:cb:21:98:f7:06: 70:1d:13:f0:6b:74:a4:58:c3:91:c9:e7:71:84:21:ae:5f:bf: 3e:a7:d2:43:87:10:a6:65:5f:32:5d:9a:52:80:c6:e0:f0:5d: 62:56:b4:89:f2:aa:cc:45:f7:87:25:d1:d3:13:09:18:1a:54: eb:e4:77:d6:7e:6e:8f:60:0d:9b:47:a8:a3:3b:85:41:34:5f: de:75:bd:7c:6b:62:96:49:ed:99:cb:28:a2:ef:2d:f8:80:c9: c7:69:69:77:d4:b7:2a:3b:81:f8:d4:7b:3c:bd:9d:a1:70:c7: 36:74:27:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFOTgxMTAvBgNVBAUTKDZDRTJEN0QwRDk1OTgwRDc0M0NBRDQ4NDg2OTg0OERC QTEyNUMyOUIwHhcNMjUxMjA1MDE0NDExWhcNMjUxMjEyMDE0NDExWjAYMRYwFAYD VQQDEw02OTMyMzhlYi1kODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApk3gOYKkCmQ78a+U6uzmnMem425lq9SxSA5UWR+KRAmerxcY903rq9g4DhTU iQc+pka2zUVJb7L/ub3ZiWCbZPlM33+Dahg1bEssX7mAxeU0CtIJGKB40rkO1+Oy F/v06G3M3SXMy9h1McP9cSy2CPaAOiTx36gqIytGG93U6ja657CauLaJc80Zzvc9 PkeDK5q5AOuz+LsZGJ7aO0Ie5oIAXhvajIaKc/2ZB+WB+1+zahH2j8/shvtKHFGK gG9TFcZu+/u4OUTK477yz5sDwXBkKr3lbKjnfcV0S6gTcqTjGzKtbE1z5wDj8emb Atl+Feb8BQw91MWOi77UBDOmOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBoRypu8 GbuUBPDLeckJggrdXgAsMB8GA1UdIwQYMBaAFGzi19DZWYDXQ8rUhIaYSNuhJcKb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEU5OC83NEZENUU4MjZF NTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdOZER5dFNFaHBoSTI2RWx3 cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPTFgwTmxaZ05kRHl0U0VocGhJMjZFbHdwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEU5OC83NEZENUU4MjZFNTMxMUVFOUI5MTdFNzlDNEY5QUUwMi9iT0xYME5sWmdO ZER5dFNFaHBoSTI2RWx3cHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuWv1PUKTS6qOutQEP1DTlSn22sYMs77h04iaWPKRlckrYP1HfwCO1 DW2Yq8II83DvxkMtp57FKudvhgQdA4YyIZx18fY08Ntt6H0zPVicahWuP7hVdr/G A9GAGrERe12EoY3Ac155FdKIVQG2vkxiKIfsq3ZDbZ9/XLIbRbUywmWmL510VTtR +YxJyyGY9wZwHRPwa3SkWMORyedxhCGuX78+p9JDhxCmZV8yXZpSgMbg8F1iVrSJ 8qrMRfeHJdHTEwkYGlTr5HfWfm6PYA2bR6ijO4VBNF/edb18a2KWSe2Zyyii7y34 gMnHaWl31LcqO4H41Hs8vZ2hcMc2dCcR -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:12 2025 by rpki-client