This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft File: CKORxrOJyBDpW8YTnOyynV05WMQ.mft (raw, json) Hash identifier: pdZ+GjLuGgH/JE/yIJ8Rsl0qWUvBH3rv3sfmTt1H2NQ= Subject key identifier: 16:5A:21:E2:9F:11:B2:4E:D7:00:1D:21:58:70:95:AF:5A:AB:15:D3 Authority key identifier: 08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 Certificate issuer: /CN=A9145E09/serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft Manifest number: 84 Signing time: Fri 05 Dec 2025 04:36:57 +0000 Manifest this update: Fri 05 Dec 2025 04:36:57 +0000 Manifest next update: Fri 12 Dec 2025 04:36:57 +0000 Files and hashes: 1: CKORxrOJyBDpW8YTnOyynV05WMQ.crl (hash: 1jaSBXsWfVy/icR6yQ3LFaTFxGl9vSbSaY1CshCmv7I=) 2: EE04266A08C811F09F9B7B57C4F9AE02.roa (hash: lfdyi++bWKTqNq0AntGKkt45cnrhAjp+IKIVrz1KfzY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=08A391C6B389C810E95BC6139CECB29D5D3958C4 Validity Not Before: Dec 5 04:36:57 2025 GMT Not After : Dec 12 04:36:57 2025 GMT Subject: CN=69326169-62af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ef:65:67:df:07:9a:0d:90:90:54:05:70:60: ac:8b:5f:d4:2a:f5:3f:5b:59:81:03:6b:4e:8d:75: 4f:53:0e:e9:dc:66:f9:77:c6:06:3b:ce:bf:c9:c7: b7:a7:c1:0b:11:5f:bd:dd:6d:b7:50:f3:24:e5:64: eb:1a:22:11:8d:fe:e0:a6:69:2f:93:cf:61:dd:7b: 49:cd:38:fa:d5:6d:7e:2e:d0:90:50:d9:2a:fa:6e: 2b:ee:a7:ab:2a:dd:f0:be:e1:46:9a:e8:54:4b:ba: 0f:36:ba:aa:53:79:49:a4:1e:7d:a2:c3:19:99:70: 92:80:1a:64:da:67:fc:3d:1f:f2:ca:0b:84:a0:b2: 4d:45:f3:e5:d6:11:db:16:20:92:f1:30:3f:39:f5: 5e:26:5b:15:d4:42:37:8c:41:b5:d2:2b:41:b8:5b: 7c:b7:36:c6:17:7e:dc:57:b6:fb:aa:87:8f:18:9a: 8a:cc:7a:52:7f:12:0c:de:07:ef:05:be:3c:64:e5: 22:61:56:01:4c:52:93:44:2f:15:0f:07:e6:65:e9: 18:7e:06:cf:f5:3d:6f:c6:fa:40:38:01:74:d5:69: 56:e9:27:79:c4:63:d9:85:06:da:de:92:b4:c9:3b: a5:22:d5:90:81:9b:0b:c3:cd:8d:5d:ba:32:01:8b: 48:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5A:21:E2:9F:11:B2:4E:D7:00:1D:21:58:70:95:AF:5A:AB:15:D3 X509v3 Authority Key Identifier: keyid:08:A3:91:C6:B3:89:C8:10:E9:5B:C6:13:9C:EC:B2:9D:5D:39:58:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CKORxrOJyBDpW8YTnOyynV05WMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/87055B3208C811F0A0D34E56C4F9AE02/CKORxrOJyBDpW8YTnOyynV05WMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ad:31:c2:39:1d:55:6c:88:34:4f:44:d7:1e:35:b6:df:3f: 35:ec:3a:59:a9:50:54:2b:de:42:87:bb:83:77:f5:ce:30:fc: 9d:f9:2d:0f:6c:f2:50:3d:c5:a0:26:0f:a5:16:d5:e2:9e:a4: a8:cf:31:cc:d1:8f:c2:32:ff:9f:59:72:78:19:9f:2e:fa:9f: 2c:e2:13:5b:21:b7:3e:f2:e1:4a:71:52:09:e8:d8:5a:48:6d: 68:23:24:d5:d3:08:05:77:d7:d7:61:59:64:9b:35:fa:ab:db: 88:69:88:ac:f7:0f:3e:3d:6e:6e:85:7f:a5:b6:29:80:be:b0: ca:18:ad:a6:49:f6:af:77:a4:03:d2:27:27:d0:63:72:9d:fb: 96:57:1c:cf:26:59:d3:e3:38:a8:21:a4:ee:34:fb:e6:8c:a8: 8a:e5:42:b5:c4:7b:90:78:60:4d:94:16:fe:d3:40:c4:bc:40: e6:75:99:bc:9e:f2:c9:4f:ea:20:b1:20:40:ea:4c:4c:40:b3: 1e:9e:87:fc:e0:63:36:b9:75:3a:45:da:a3:7e:ad:de:43:43: c7:fb:6f:65:2d:11:13:1d:ba:c5:64:57:59:5e:fb:0e:18:02: 57:ee:ac:ba:cf:2f:bf:3e:f3:61:99:03:69:6e:45:7b:33:6a: 87:cc:65:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVFMDkxMTAvBgNVBAUTKDA4QTM5MUM2QjM4OUM4MTBFOTVCQzYxMzlDRUNCMjlE NUQzOTU4QzQwHhcNMjUxMjA1MDQzNjU3WhcNMjUxMjEyMDQzNjU3WjAYMRYwFAYD VQQDEw02OTMyNjE2OS02MmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAye9lZ98Hmg2QkFQFcGCsi1/UKvU/W1mBA2tOjXVPUw7p3Gb5d8YGO86/yce3 p8ELEV+93W23UPMk5WTrGiIRjf7gpmkvk89h3XtJzTj61W1+LtCQUNkq+m4r7qer Kt3wvuFGmuhUS7oPNrqqU3lJpB59osMZmXCSgBpk2mf8PR/yyguEoLJNRfPl1hHb FiCS8TA/OfVeJlsV1EI3jEG10itBuFt8tzbGF37cV7b7qoePGJqKzHpSfxIM3gfv Bb48ZOUiYVYBTFKTRC8VDwfmZekYfgbP9T1vxvpAOAF01WlW6Sd5xGPZhQba3pK0 yTulItWQgZsLw82NXboyAYtIMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZaIeKf EbJO1wAdIVhwla9aqxXTMB8GA1UdIwQYMBaAFAijkcazicgQ6VvGE5zssp1dOVjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUUwOS84NzA1NUIzMjA4 QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlCRHBXOFlUbk95eW5WMDVX TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NLT1J4ck9KeUJEcFc4WVRuT3l5blYwNVdNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUUwOS84NzA1NUIzMjA4QzgxMUYwQTBEMzRFNTZDNEY5QUUwMi9DS09SeHJPSnlC RHBXOFlUbk95eW5WMDVXTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGrTHCOR1VbIg0T0TXHjW23z817DpZqVBUK95Ch7uDd/XOMPyd+S0P bPJQPcWgJg+lFtXinqSozzHM0Y/CMv+fWXJ4GZ8u+p8s4hNbIbc+8uFKcVIJ6Nha SG1oIyTV0wgFd9fXYVlkmzX6q9uIaYis9w8+PW5uhX+ltimAvrDKGK2mSfavd6QD 0icn0GNynfuWVxzPJlnT4zioIaTuNPvmjKiK5UK1xHuQeGBNlBb+00DEvEDmdZm8 nvLJT+ogsSBA6kxMQLMenof84GM2uXU6Rdqjfq3eQ0PH+29lLRETHbrFZFdZXvsO GAJX7qy6zy+/PvNhmQNpbkV7M2qHzGVZ -----END CERTIFICATE-----Generated at Sun Dec 7 02:33:20 2025 by rpki-client