This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft File: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft (raw, json) Hash identifier: resB9ZQo10/VCD9rYQjzaCR36VHRfyzHvxkOwFp2aMM= Subject key identifier: EA:7F:C8:4B:EE:A3:83:F8:A6:26:36:18:FC:94:84:D8:21:E2:61:04 Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 Certificate issuer: /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Certificate serial: 0C11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft Manifest number: 0C07 Signing time: Sat 20 Dec 2025 18:24:59 +0000 Manifest this update: Sat 20 Dec 2025 18:24:58 +0000 Manifest next update: Sat 27 Dec 2025 18:24:58 +0000 Files and hashes: 1: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl (hash: hLSeqotnRlaOCt79vxxM2ZrQO+AIGHuladXRLYVAp+w=) 2: 01A8B084262811EA8269E33EC4F9AE02.roa (hash: 3edR8k68PlyDLwSNioDrZi097Di1Z0qsLBIpivE7sS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 18:24:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3089 (0xc11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Validity Not Before: Dec 20 18:24:58 2025 GMT Not After : Dec 27 18:24:58 2025 GMT Subject: CN=6946e9fb-6ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1f:9b:e7:c3:fa:5d:c6:13:7a:8d:c6:0d:41: 55:79:29:82:eb:f4:20:af:7f:5b:65:24:d1:f5:96: 89:a4:d1:d2:17:61:96:92:30:a0:a9:03:15:f1:bb: 51:ac:ea:d7:01:27:39:33:aa:2a:82:76:24:0d:d9: 5c:54:3c:09:30:92:d6:6f:4b:68:41:65:54:e1:99: 94:f7:25:cd:ce:43:15:91:19:61:d3:13:1f:fd:fc: 4e:f8:37:cb:ab:0e:ca:09:48:17:db:f5:f7:3f:d4: e1:da:eb:ec:0a:ca:23:cb:cc:7a:77:4c:cf:2f:73: e5:61:c7:97:38:97:fc:56:4c:35:83:f4:82:26:ad: 40:7d:bd:ea:07:89:6a:8a:e8:3d:97:63:fd:03:1c: a8:70:bf:10:d0:46:78:39:f2:e1:f8:b4:7d:39:1e: 8c:8f:03:de:25:f9:7a:45:ee:16:e9:b3:ca:4f:40: 5f:f6:c0:5c:0a:6f:95:93:a0:76:e7:f5:aa:e2:fc: 9c:2d:de:a5:30:19:4c:68:c5:dd:c0:8e:68:4f:47: 1f:3a:eb:44:60:b9:fb:0d:0b:0a:41:f5:fb:bd:27: ef:2c:b1:96:9b:c8:60:23:f8:9f:50:00:77:e6:7a: 89:ba:a7:e7:24:8c:4b:27:04:15:7a:fb:7d:b9:b4: ca:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7F:C8:4B:EE:A3:83:F8:A6:26:36:18:FC:94:84:D8:21:E2:61:04 X509v3 Authority Key Identifier: keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:17:52:8a:86:98:73:b1:d0:6d:a4:7d:20:cf:94:ba:0a:ff: c4:3e:b9:d6:f8:49:30:e5:67:65:c4:c0:72:06:2a:e2:53:96: da:16:86:91:9c:66:10:06:da:9f:f3:39:41:7a:0c:23:c2:d7: fb:96:cb:ca:79:21:53:eb:0e:1e:c5:f5:e1:ad:a0:d9:94:c2: 4f:dc:ea:d7:1d:49:24:0f:3c:9c:15:5a:52:16:94:c9:bc:25: af:c6:65:e9:0a:4d:a2:f8:97:d7:d0:14:c2:61:74:16:77:37: 4c:79:d1:d9:10:a2:4e:0b:a5:b1:7d:95:ae:96:67:cf:23:89: 15:e2:7f:fe:e6:de:dc:dd:78:8d:06:0f:23:42:6e:a2:45:c8: 0c:30:77:f6:93:40:c9:3e:16:4f:b8:3d:16:3d:ee:05:97:66: 80:f2:22:10:fb:e4:0f:0f:07:c4:7c:b9:ce:10:aa:a0:61:b7: 23:eb:89:85:58:10:e4:16:81:de:e4:c0:26:d6:5f:19:5d:64: 83:64:02:ab:6a:85:e4:00:64:ff:2c:5f:8f:dc:42:de:21:c2: 60:0a:e5:7f:de:7c:a4:1b:79:5c:63:1e:51:5f:93:27:4e:4c: 44:92:14:17:4b:e6:7d:2d:b4:be:09:55:47:f6:d1:13:4f:f9: 1d:54:6a:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFENzMxMTAvBgNVBAUTKEY5Qjk3NTE2MUZFMkVBMzdFMEU0NjJBRDVGNUI4QTc0 MjgwMTM0RTYwHhcNMjUxMjIwMTgyNDU4WhcNMjUxMjI3MTgyNDU4WjAYMRYwFAYD VQQDDA02OTQ2ZTlmYi02YWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB+b58P6XcYTeo3GDUFVeSmC6/Qgr39bZSTR9ZaJpNHSF2GWkjCgqQMV8btR rOrXASc5M6oqgnYkDdlcVDwJMJLWb0toQWVU4ZmU9yXNzkMVkRlh0xMf/fxO+DfL qw7KCUgX2/X3P9Th2uvsCsojy8x6d0zPL3PlYceXOJf8Vkw1g/SCJq1Afb3qB4lq iug9l2P9AxyocL8Q0EZ4OfLh+LR9OR6MjwPeJfl6Re4W6bPKT0Bf9sBcCm+Vk6B2 5/Wq4vycLd6lMBlMaMXdwI5oT0cfOutEYLn7DQsKQfX7vSfvLLGWm8hgI/ifUAB3 5nqJuqfnJIxLJwQVevt9ubTK1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOp/yEvu o4P4piY2GPyUhNgh4mEEMB8GA1UdIwQYMBaAFPm5dRYf4uo34ORirV9binQoATTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQ3My81Q0M2NkJENDI2 MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZqZmc1R0t0WDF1S2RDZ0JO T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ibDFGaF9pNmpmZzVHS3RYMXVLZENnQk5PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUQ3My81Q0M2NkJENDI2MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZq Zmc1R0t0WDF1S2RDZ0JOT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVF1KKhphzsdBtpH0gz5S6Cv/EPrnW+Ekw5WdlxMByBiriU5baFoaR nGYQBtqf8zlBegwjwtf7lsvKeSFT6w4exfXhraDZlMJP3OrXHUkkDzycFVpSFpTJ vCWvxmXpCk2i+JfX0BTCYXQWdzdMedHZEKJOC6WxfZWulmfPI4kV4n/+5t7c3XiN Bg8jQm6iRcgMMHf2k0DJPhZPuD0WPe4Fl2aA8iIQ++QPDwfEfLnOEKqgYbcj64mF WBDkFoHe5MAm1l8ZXWSDZAKraoXkAGT/LF+P3ELeIcJgCuV/3nykG3lcYx5RX5Mn TkxEkhQXS+Z9LbS+CVVH9tETT/kdVGox -----END CERTIFICATE-----Generated at Mon Dec 22 12:29:18 2025 by rpki-client