This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft File: cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft (raw, json) Hash identifier: BdgfGu5JUjlWr+53eo541AQFW9v5D5SCpMDDbsqPsR0= Subject key identifier: 37:C3:35:AC:6B:16:C0:71:F4:63:28:A0:6B:A4:76:58:3B:B0:82:49 Authority key identifier: 70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 Certificate issuer: /CN=A9130F21/serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft Manifest number: 7C Signing time: Fri 05 Dec 2025 04:41:02 +0000 Manifest this update: Fri 05 Dec 2025 04:41:01 +0000 Manifest next update: Fri 12 Dec 2025 04:41:01 +0000 Files and hashes: 1: cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl (hash: hdBPZC2O8KRUuK6uGSbkbUC3CkEzI/2aZFY4DEtTJTQ=) 2: 42CFB44C141411F0BAD16274C4F9AE02.roa (hash: SIbGv61TK6nlTBlpPzTxiHyFUxN8Qwjf/RzPAJKF8+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F21, serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Validity Not Before: Dec 5 04:41:01 2025 GMT Not After : Dec 12 04:41:01 2025 GMT Subject: CN=6932625e-1d71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:07:6d:c7:31:7f:e7:e1:e8:7d:f4:37:05:fe: 87:fa:72:ea:eb:6d:fd:3a:a1:b6:51:c2:a2:a8:82: ec:73:60:6e:81:8d:55:98:11:4e:fc:28:64:88:a8: 66:6a:37:bd:2d:04:95:26:d9:ed:13:07:15:26:04: 5c:af:8b:a0:52:5b:68:76:d0:c4:26:a9:f9:d8:b1: da:ae:f1:2a:83:a6:5c:a0:59:95:0a:74:a5:21:0f: 28:04:2a:aa:c4:d1:8d:ea:86:82:34:5a:5f:9a:37: a4:8e:4f:22:93:bc:76:fa:c7:ae:d9:f5:71:16:19: 96:9a:9a:3a:d1:27:ec:e1:10:15:49:3a:a1:97:0b: c8:09:3e:46:df:a9:e0:f8:95:08:fb:94:74:63:16: 13:d8:1f:62:f1:33:c7:dc:63:de:c6:4b:46:49:09: 3c:7b:2d:fe:1d:d7:a8:1a:a5:39:69:c8:a3:80:9c: a2:08:cd:bf:87:bb:15:cd:c0:63:b1:77:94:1a:ba: ff:54:cc:1e:9f:16:87:55:1e:44:e3:a0:be:88:4b: 0a:aa:c2:33:19:6c:b1:b8:e5:f7:5d:43:1d:75:79: 6e:8e:3f:30:3d:8e:af:50:78:ce:da:a9:a7:3b:32: 82:d7:bf:b3:81:e8:3e:c6:34:9d:ed:b5:10:05:2a: 48:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C3:35:AC:6B:16:C0:71:F4:63:28:A0:6B:A4:76:58:3B:B0:82:49 X509v3 Authority Key Identifier: keyid:70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:73:22:99:26:fe:f1:18:46:5d:d3:91:82:81:28:16:c2:12: 89:e6:90:d8:19:2e:7a:05:71:63:d5:59:f3:7c:15:61:e3:44: 9e:cc:ce:f8:ee:f1:c1:07:1a:63:a5:65:db:b2:ed:bc:ba:ae: 3c:01:74:b2:74:95:b5:3a:02:c4:82:a3:28:d7:5e:de:35:1d: 4e:20:5f:5c:55:69:51:4d:71:73:67:43:7c:4e:15:c7:b2:de: 98:a9:c3:89:8d:e7:7d:7b:06:9f:49:11:ed:9f:7f:d7:a7:2b: e9:6c:76:20:74:26:61:89:e3:d1:a0:cc:d0:d0:e3:ac:0f:c8: 0a:d4:a9:34:1c:1b:56:2f:d0:f9:f8:e3:93:15:9a:c2:40:cc: f3:02:37:fd:96:10:3c:98:19:2e:92:1f:9e:02:28:62:2b:83: 90:d5:9c:69:58:dc:1a:6b:3e:39:ad:e8:a3:a6:8c:5f:f5:09: 90:24:f8:4a:2f:c5:a7:93:45:3f:4d:ab:db:4e:39:ac:8b:39: d8:3b:57:c4:c4:41:cc:5b:b9:fa:52:8c:37:da:ce:d7:fc:38: f0:65:bf:03:ff:0a:39:25:d0:46:36:74:70:c6:1f:0b:e3:23: 8a:93:e4:c6:f3:fb:75:89:c6:54:d9:ce:9b:a8:79:ac:c8:05: c1:98:a9:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MEYyMTExMC8GA1UEBRMoNzBEMjYwMUNCMEQwRkE0RjlDNUYwRTAyODZEOEI2QUZE OTIzNUEwNjAeFw0yNTEyMDUwNDQxMDFaFw0yNTEyMTIwNDQxMDFaMBgxFjAUBgNV BAMTDTY5MzI2MjVlLTFkNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcB23HMX/n4eh99DcF/of6currbf06obZRwqKoguxzYG6BjVWYEU78KGSIqGZq N70tBJUm2e0TBxUmBFyvi6BSW2h20MQmqfnYsdqu8SqDplygWZUKdKUhDygEKqrE 0Y3qhoI0Wl+aN6SOTyKTvHb6x67Z9XEWGZaamjrRJ+zhEBVJOqGXC8gJPkbfqeD4 lQj7lHRjFhPYH2LxM8fcY97GS0ZJCTx7Lf4d16gapTlpyKOAnKIIzb+HuxXNwGOx d5Qauv9UzB6fFodVHkTjoL6ISwqqwjMZbLG45fddQx11eW6OPzA9jq9QeM7aqac7 MoLXv7OB6D7GNJ3ttRAFKkhlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN8M1rGsW wHH0Yyiga6R2WDuwgkkwHwYDVR0jBBgwFoAUcNJgHLDQ+k+cXw4Chti2r9kjWgYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwRjIxLzg1MTdGQjA4MTQx MzExRjA4RjFBMUQ3M0M0RjlBRTAyL2NOSmdITERRLWstY1h3NENodGkycjlraldn WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY05KZ0hMRFEtay1jWHc0Q2h0aTJyOWtqV2dZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMw RjIxLzg1MTdGQjA4MTQxMzExRjA4RjFBMUQ3M0M0RjlBRTAyL2NOSmdITERRLWst Y1h3NENodGkycjlraldnWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFRzIpkm/vEYRl3TkYKBKBbCEonmkNgZLnoFcWPVWfN8FWHjRJ7Mzvju 8cEHGmOlZduy7by6rjwBdLJ0lbU6AsSCoyjXXt41HU4gX1xVaVFNcXNnQ3xOFcey 3pipw4mN5317Bp9JEe2ff9enK+lsdiB0JmGJ49GgzNDQ46wPyArUqTQcG1Yv0Pn4 45MVmsJAzPMCN/2WEDyYGS6SH54CKGIrg5DVnGlY3BprPjmt6KOmjF/1CZAk+Eov xaeTRT9Nq9tOOayLOdg7V8TEQcxbufpSjDfaztf8OPBlvwP/Cjkl0EY2dHDGHwvj I4qT5Mbz+3WJxlTZzpuoeazIBcGYqZU= -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:39 2025 by rpki-client