This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft File: CStU0vnpbT_OHwwNuzGxuCyNLOA.mft (raw, json) Hash identifier: HjW4LDvwM6ikE67QN80l3UcqOiOm6YHyNpkTYghkPrU= Subject key identifier: A2:DC:4B:45:67:28:AE:DA:08:9A:D9:93:FA:9E:3B:7C:57:B6:DD:1F Authority key identifier: 09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 Certificate issuer: /CN=A9122EA2/serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft Manifest number: 0239 Signing time: Sun 21 Dec 2025 01:16:24 +0000 Manifest this update: Sun 21 Dec 2025 01:16:24 +0000 Manifest next update: Sun 28 Dec 2025 01:16:24 +0000 Files and hashes: 1: CStU0vnpbT_OHwwNuzGxuCyNLOA.crl (hash: t18E11e6KeuxLvRqO2hmCSr4x6HOCJ7drA3YDh0jyYc=) 2: C20F71E0992A11EEBDE4AF84C4F9AE02.roa (hash: csl85VTomjs4iPv8bKOFHRUkLivByj84d/cWaa81y8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Dec 2025 01:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EA2, serialNumber=092B54D2F9E96D3FCE1F0C0DBB31B1B82C8D2CE0 Validity Not Before: Dec 21 01:16:24 2025 GMT Not After : Dec 28 01:16:24 2025 GMT Subject: CN=69474a68-bc3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:78:07:47:e4:3b:26:81:97:58:8e:7e:1d:51: bc:cf:78:b9:bb:6e:36:7b:83:d1:8c:e9:cd:3d:6e: f3:f6:ca:1b:dd:9f:d3:30:13:a9:92:f3:ce:8b:2d: d4:1e:07:a6:e1:05:17:bd:48:04:77:2c:55:f7:58: 65:33:88:0d:d3:f2:5e:da:84:72:2c:4b:23:a0:d4: 13:09:20:04:f4:00:7c:78:f7:e8:fd:f6:90:f3:98: f6:2e:65:4b:a4:9f:59:c8:49:8a:33:64:63:5f:9a: ac:86:d0:c4:81:9a:c4:86:69:43:91:a1:9a:ff:71: b5:20:4e:d9:38:5b:fe:70:1d:78:de:ff:14:a0:90: 57:5b:c6:18:10:a5:48:79:17:fe:a3:1f:ce:f6:5d: e4:41:a2:7e:57:4a:69:6d:19:b8:38:a9:d0:ca:de: 6d:94:e1:42:8f:57:20:7f:60:7f:78:10:fa:1a:76: 56:28:15:79:cb:f0:6b:81:f5:4a:1e:3a:b9:8c:46: 38:3c:91:4f:26:8c:af:5e:73:f3:55:0f:1f:4f:af: ba:68:55:b6:db:33:17:0b:f5:f9:79:c9:f0:f0:c2: 63:fd:da:d8:92:07:4a:1b:c5:32:01:c4:1d:2e:0a: a7:4e:c6:19:bf:db:99:f3:96:9a:dc:cd:38:25:c1: 83:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DC:4B:45:67:28:AE:DA:08:9A:D9:93:FA:9E:3B:7C:57:B6:DD:1F X509v3 Authority Key Identifier: keyid:09:2B:54:D2:F9:E9:6D:3F:CE:1F:0C:0D:BB:31:B1:B8:2C:8D:2C:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CStU0vnpbT_OHwwNuzGxuCyNLOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EA2/15253414856311ED82FB102DC4F9AE02/CStU0vnpbT_OHwwNuzGxuCyNLOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:7a:2e:30:ca:8f:5b:fe:fc:db:60:62:62:47:41:58:5a:bb: 96:ff:e3:1c:71:3c:85:44:42:b0:6c:95:c6:ef:a8:6e:67:e5: 24:7f:e5:3c:9a:9a:94:73:98:44:f6:7f:82:cf:02:47:84:ea: a3:9e:27:d9:5f:16:04:58:3f:97:e6:c5:aa:d9:2c:81:37:f9: 28:35:31:32:7f:2a:e6:6a:e7:5e:9f:ee:59:99:5f:60:a2:4b: 03:f6:51:82:9e:58:e6:8b:2f:64:c8:7b:e4:27:23:e1:b6:6e: cb:4e:0f:ff:40:c2:84:c8:64:f2:07:16:25:c4:e8:bd:30:f1: bf:e9:49:9f:55:39:da:40:66:d8:12:34:09:54:2d:05:5d:2f: 67:33:d8:5a:44:23:49:b7:35:03:27:22:b2:e4:23:78:f4:bd: 2e:49:4e:6b:67:cd:80:34:cb:e8:f8:f5:c1:14:c3:83:3f:62: 7c:ae:57:33:d7:78:ae:24:7e:14:7e:08:92:cb:22:3a:fa:ae: f6:c8:82:36:cb:b9:7d:08:17:49:a7:29:00:04:87:29:61:6b: 5a:89:e0:fb:89:d9:30:31:b3:30:a6:70:dc:a7:26:87:f2:cb: 41:9a:16:07:35:68:75:3f:42:8d:77:85:e7:dc:e7:e9:ad:18: 64:2a:15:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQTIxMTAvBgNVBAUTKDA5MkI1NEQyRjlFOTZEM0ZDRTFGMEMwREJCMzFCMUI4 MkM4RDJDRTAwHhcNMjUxMjIxMDExNjI0WhcNMjUxMjI4MDExNjI0WjAYMRYwFAYD VQQDDA02OTQ3NGE2OC1iYzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3gHR+Q7JoGXWI5+HVG8z3i5u242e4PRjOnNPW7z9sob3Z/TMBOpkvPOiy3U Hgem4QUXvUgEdyxV91hlM4gN0/Je2oRyLEsjoNQTCSAE9AB8ePfo/faQ85j2LmVL pJ9ZyEmKM2RjX5qshtDEgZrEhmlDkaGa/3G1IE7ZOFv+cB143v8UoJBXW8YYEKVI eRf+ox/O9l3kQaJ+V0ppbRm4OKnQyt5tlOFCj1cgf2B/eBD6GnZWKBV5y/BrgfVK Hjq5jEY4PJFPJoyvXnPzVQ8fT6+6aFW22zMXC/X5ecnw8MJj/drYkgdKG8UyAcQd LgqnTsYZv9uZ85aa3M04JcGDmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLcS0Vn KK7aCJrZk/qeO3xXtt0fMB8GA1UdIwQYMBaAFAkrVNL56W0/zh8MDbsxsbgsjSzg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVBMi8xNTI1MzQxNDg1 NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJUX09Id3dOdXpHeHVDeU5M T0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NTdFUwdm5wYlRfT0h3d051ekd4dUN5TkxPQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkVBMi8xNTI1MzQxNDg1NjMxMUVEODJGQjEwMkRDNEY5QUUwMi9DU3RVMHZucGJU X09Id3dOdXpHeHVDeU5MT0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfei4wyo9b/vzbYGJiR0FYWruW/+MccTyFREKwbJXG76huZ+Ukf+U8 mpqUc5hE9n+CzwJHhOqjnifZXxYEWD+X5sWq2SyBN/koNTEyfyrmauden+5ZmV9g oksD9lGCnljmiy9kyHvkJyPhtm7LTg//QMKEyGTyBxYlxOi9MPG/6UmfVTnaQGbY EjQJVC0FXS9nM9haRCNJtzUDJyKy5CN49L0uSU5rZ82ANMvo+PXBFMODP2J8rlcz 13iuJH4UfgiSyyI6+q72yII2y7l9CBdJpykABIcpYWtaieD7idkwMbMwpnDcpyaH 8stBmhYHNWh1P0KNd4Xn3OfprRhkKhUH -----END CERTIFICATE-----Generated at Sun Dec 21 21:50:56 2025 by rpki-client