This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft File: xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft (raw, json) Hash identifier: vU0WSIuXLSNbjMLNe4ptoqNhHQ1w8gAutYyFhgXiqQw= Subject key identifier: 8A:FF:C2:87:C0:80:F4:0A:BA:80:3F:63:E5:DA:97:2A:A6:1D:21:0B Authority key identifier: C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E Certificate issuer: /CN=A9125C22/serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Certificate serial: 06CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft Manifest number: 06C9 Signing time: Thu 04 Dec 2025 20:57:43 +0000 Manifest this update: Thu 04 Dec 2025 20:57:42 +0000 Manifest next update: Thu 11 Dec 2025 20:57:42 +0000 Files and hashes: 1: xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl (hash: +LzfEn0qgKrrxxauvP5/wTjinWDWiOB9+5ZQWO4pIck=) 2: 485D694A454911EEB8718378C4F9AE02.roa (hash: 8goNJpX3SWLmR+a+Wvt1jnrzs1RIuPAmcWPIzJu1GEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C22, serialNumber=C70B4E047CAA737724B89D584DB5C0C1A858D28E Validity Not Before: Dec 4 20:57:42 2025 GMT Not After : Dec 11 20:57:42 2025 GMT Subject: CN=6931f5c6-7cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:38:c7:a3:aa:f4:0c:fa:5e:dd:aa:78:e7:17: 72:08:22:93:ed:3d:63:6b:c7:0a:59:17:07:f5:dc: 8f:c3:9b:ba:5d:7e:98:42:ab:d7:32:3f:18:5d:0c: 43:31:50:2c:e7:b7:0b:d3:42:9a:0e:e7:62:dc:ef: ca:c6:78:a0:f5:4f:f4:34:05:39:3c:59:0c:de:7a: f2:9d:eb:d5:bd:44:4c:ea:47:07:3f:1d:47:83:b6: 13:7d:41:3a:50:a2:cd:55:5c:20:e3:53:3a:1c:d0: 59:63:e7:a8:7c:07:c4:19:04:69:35:93:3e:0e:36: 02:39:9e:c0:72:2a:fd:09:ae:1b:7d:04:08:5c:35: 32:92:14:6b:b7:11:f6:59:51:5d:41:8e:c9:77:67: f9:1b:fb:b6:91:d9:7e:59:a1:69:7f:72:55:41:9a: cb:18:5d:2b:dd:e8:71:ea:c1:1d:9f:b4:ad:8d:d2: d5:5d:d6:18:cf:0e:0d:ff:b6:fc:01:7f:97:a0:16: 45:e4:43:ca:2e:51:9c:67:2e:25:67:1a:c7:a2:2a: 7a:56:7c:be:a7:a3:94:f5:73:bc:14:56:d1:85:38: 36:48:95:ba:03:ea:41:a8:01:8a:63:ba:5e:57:8e: 10:3e:ce:d8:e0:bb:6e:4a:cf:27:3f:cb:7b:e1:2c: 14:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FF:C2:87:C0:80:F4:0A:BA:80:3F:63:E5:DA:97:2A:A6:1D:21:0B X509v3 Authority Key Identifier: keyid:C7:0B:4E:04:7C:AA:73:77:24:B8:9D:58:4D:B5:C0:C1:A8:58:D2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xwtOBHyqc3ckuJ1YTbXAwahY0o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C22/FACCBC5C7FAD11EB977B5335C4F9AE02/xwtOBHyqc3ckuJ1YTbXAwahY0o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:77:9f:69:89:b6:b2:44:51:07:e2:de:d8:cd:8d:b3:e3:98: 6e:f5:4a:f4:b8:82:31:8c:83:5f:1e:ea:ea:9c:3a:35:c4:03: 68:ad:0d:c5:c7:57:b8:38:38:e5:33:c5:bf:2e:de:7b:25:c5: 2b:ea:43:c4:f9:98:5b:94:f4:7a:e4:96:da:6f:8c:4c:63:2b: f3:d8:08:d2:3a:42:af:77:87:c7:b1:48:6a:5e:54:0f:4d:e3: f6:16:2c:90:b5:5d:48:44:32:36:b0:35:5d:15:bf:39:c1:30: 38:f8:78:53:82:74:15:dd:38:03:12:ab:04:83:fa:ff:37:c2: 41:99:bf:42:67:45:67:ef:59:db:d5:b8:5c:df:09:3b:7b:79: 48:a8:79:d9:0f:b9:9e:7b:7c:1f:25:1a:f2:cb:33:bb:8f:5d: a1:cf:06:b6:f5:82:8c:bb:80:1c:f9:71:d7:9d:81:eb:d7:fe: bb:ba:fa:b3:b1:5e:d8:ec:38:ae:07:50:08:a5:bc:db:3c:17: 5b:6f:0d:2e:d1:1c:2a:16:35:41:81:30:81:45:e5:64:7e:4e: b8:26:01:6a:f0:b2:67:64:b6:79:95:40:b4:fa:b5:f3:3b:cb: 04:26:1e:fb:59:7f:23:f7:60:37:19:48:94:78:a3:cf:08:ad: c7:d4:f9:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMjIxMTAvBgNVBAUTKEM3MEI0RTA0N0NBQTczNzcyNEI4OUQ1ODREQjVDMEMx QTg1OEQyOEUwHhcNMjUxMjA0MjA1NzQyWhcNMjUxMjExMjA1NzQyWjAYMRYwFAYD VQQDEw02OTMxZjVjNi03Y2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzjHo6r0DPpe3ap45xdyCCKT7T1ja8cKWRcH9dyPw5u6XX6YQqvXMj8YXQxD MVAs57cL00KaDudi3O/Kxnig9U/0NAU5PFkM3nrynevVvURM6kcHPx1Hg7YTfUE6 UKLNVVwg41M6HNBZY+eofAfEGQRpNZM+DjYCOZ7Acir9Ca4bfQQIXDUykhRrtxH2 WVFdQY7Jd2f5G/u2kdl+WaFpf3JVQZrLGF0r3ehx6sEdn7StjdLVXdYYzw4N/7b8 AX+XoBZF5EPKLlGcZy4lZxrHoip6Vny+p6OU9XO8FFbRhTg2SJW6A+pBqAGKY7pe V44QPs7Y4LtuSs8nP8t74SwU7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIr/wofA gPQKuoA/Y+XalyqmHSELMB8GA1UdIwQYMBaAFMcLTgR8qnN3JLidWE21wMGoWNKO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMyMi9GQUNDQkM1QzdG QUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMzY2t1SjFZVGJYQXdhaFkw bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h3dE9CSHlxYzNja3VKMVlUYlhBd2FoWTBvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMyMi9GQUNDQkM1QzdGQUQxMUVCOTc3QjUzMzVDNEY5QUUwMi94d3RPQkh5cWMz Y2t1SjFZVGJYQXdhaFkwbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgd59pibayRFEH4t7YzY2z45hu9Ur0uIIxjINfHurqnDo1xANorQ3F x1e4ODjlM8W/Lt57JcUr6kPE+ZhblPR65Jbab4xMYyvz2AjSOkKvd4fHsUhqXlQP TeP2FiyQtV1IRDI2sDVdFb85wTA4+HhTgnQV3TgDEqsEg/r/N8JBmb9CZ0Vn71nb 1bhc3wk7e3lIqHnZD7mee3wfJRryyzO7j12hzwa29YKMu4Ac+XHXnYHr1/67uvqz sV7Y7DiuB1AIpbzbPBdbbw0u0RwqFjVBgTCBReVkfk64JgFq8LJnZLZ5lUC0+rXz O8sEJh77WX8j92A3GUiUeKPPCK3H1PkB -----END CERTIFICATE-----Generated at Sat Dec 6 22:27:52 2025 by rpki-client