This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft File: -xaxnfv3ymrECmtqNT94V4kX4P0.mft (raw, json) Hash identifier: GX48f5IHRerYz76Db01PHKvYabNkeP7eRFRRkYi5sZM= Subject key identifier: FD:CE:B9:E3:CF:81:16:AC:F4:AA:EB:71:46:77:6B:BC:35:79:A7:D7 Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft Manifest number: 01D8 Signing time: Fri 05 Dec 2025 01:02:27 +0000 Manifest this update: Fri 05 Dec 2025 01:02:27 +0000 Manifest next update: Fri 12 Dec 2025 01:02:26 +0000 Files and hashes: 1: -xaxnfv3ymrECmtqNT94V4kX4P0.crl (hash: 13qRbs2pKeQZhnY9Y3C3Cy4z5GIgLsnutkJBNMsD/R4=) 2: DFC662EC415B11EE9E83852AC4F9AE02.roa (hash: JQglPoDIL3Eq1y2JiUK8F3q2nUek/I2P1c153lPMYTA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4, serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: Dec 5 01:02:27 2025 GMT Not After : Dec 12 01:02:26 2025 GMT Subject: CN=69322f23-e971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:53:e9:aa:26:dc:b5:23:cd:d5:e4:ff:58:58: 75:93:74:59:32:13:81:6f:1c:8c:6e:35:c1:28:92: 76:01:23:5d:11:42:27:c7:b8:f9:0f:a0:c7:50:23: 9a:92:88:74:7e:f7:84:ad:29:78:23:93:9d:0b:e2: fd:66:54:f4:4c:b0:a4:f3:e9:35:ff:05:8b:67:70: c6:5a:b1:27:48:48:9c:83:4c:24:b7:fc:94:b9:a3: 22:e7:1e:40:84:0c:0d:88:a7:c6:f7:77:1d:6f:26: 66:49:2c:73:8a:79:07:89:35:94:a0:5f:a0:7c:a1: 91:ae:85:5e:0e:ee:6e:b8:51:ba:0c:b0:0f:81:b6: b3:6a:2d:16:aa:45:8c:92:c1:29:08:0a:6b:12:29: b8:f9:ac:14:d3:05:37:49:8c:87:55:12:6e:25:1a: be:72:30:85:fd:04:11:6a:cf:61:f0:29:36:d6:17: 69:49:d4:85:fa:4d:43:d7:9e:4e:cb:60:54:11:60: 1e:56:75:e4:33:0c:08:00:4f:0f:27:50:cb:1b:cf: 48:a9:83:20:6c:ff:48:1c:79:d2:d0:f8:d0:5f:d6: 79:4f:8b:ee:c1:f6:61:05:49:41:4f:1e:c4:83:df: a7:94:8e:f5:72:2e:f5:0f:11:58:84:63:b1:d6:2a: 8e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:CE:B9:E3:CF:81:16:AC:F4:AA:EB:71:46:77:6B:BC:35:79:A7:D7 X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:f5:67:1e:3b:cf:51:c6:c6:de:0e:61:5c:23:73:b8:d9:b7: bc:2d:23:59:7a:d9:39:d4:4b:20:0b:f6:a0:e3:8d:46:82:02: b7:b9:df:31:cb:e0:47:f5:4f:4d:a8:5f:c5:f5:0d:c4:d6:1e: 1b:d3:82:0d:6a:cc:92:5a:09:df:f7:ae:f7:ec:f3:a5:6c:5f: d6:9e:09:89:3f:dd:e6:ba:3e:06:f2:4f:b1:45:cd:29:6a:03: 3b:fd:ea:b3:b9:66:65:c5:93:4c:ab:e9:76:6b:b9:f6:fc:c1: c3:88:ab:6b:14:6c:9d:15:b8:82:ca:73:1f:0e:39:61:58:e7: 60:97:ef:90:7d:63:87:d9:45:2e:12:4a:3c:45:f5:e1:ea:12: 98:f8:9d:e7:3e:2c:04:cf:d8:51:5c:a6:37:df:ba:95:12:da: ce:7f:d8:1c:58:17:3a:1a:a0:30:6c:d4:a0:b5:ae:3c:3c:b8: b7:03:ad:67:49:a0:6e:5c:af:a1:98:7b:31:58:61:e7:82:ea: fc:23:7d:74:00:86:2b:ff:0f:04:50:ae:33:1a:33:b9:31:82: 8d:f4:74:e4:0d:d0:49:ae:78:63:c2:b8:34:12:2c:63:98:81: 32:cb:03:6b:0c:89:1f:83:d6:a4:39:0b:ac:ae:04:05:f3:04: 19:e4:44:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjUxMjA1MDEwMjI3WhcNMjUxMjEyMDEwMjI2WjAYMRYwFAYD VQQDEw02OTMyMmYyMy1lOTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlVPpqibctSPN1eT/WFh1k3RZMhOBbxyMbjXBKJJ2ASNdEUInx7j5D6DHUCOa koh0fveErSl4I5OdC+L9ZlT0TLCk8+k1/wWLZ3DGWrEnSEicg0wkt/yUuaMi5x5A hAwNiKfG93cdbyZmSSxzinkHiTWUoF+gfKGRroVeDu5uuFG6DLAPgbazai0WqkWM ksEpCAprEim4+awU0wU3SYyHVRJuJRq+cjCF/QQRas9h8Ck21hdpSdSF+k1D155O y2BUEWAeVnXkMwwIAE8PJ1DLG89IqYMgbP9IHHnS0PjQX9Z5T4vuwfZhBUlBTx7E g9+nlI71ci71DxFYhGOx1iqOnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3OuePP gRas9KrrcUZ3a7w1eafXMB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkNCNC8yQTg0RDFEOEZEQzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3lt ckVDbXRxTlQ5NFY0a1g0UDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh9WceO89RxsbeDmFcI3O42be8LSNZetk51EsgC/ag441GggK3ud8x y+BH9U9NqF/F9Q3E1h4b04INasySWgnf96737POlbF/WngmJP93muj4G8k+xRc0p agM7/eqzuWZlxZNMq+l2a7n2/MHDiKtrFGydFbiCynMfDjlhWOdgl++QfWOH2UUu Eko8RfXh6hKY+J3nPiwEz9hRXKY337qVEtrOf9gcWBc6GqAwbNSgta48PLi3A61n SaBuXK+hmHsxWGHngur8I310AIYr/w8EUK4zGjO5MYKN9HTkDdBJrnhjwrg0Eixj mIEyywNrDIkfg9akOQusrgQF8wQZ5ES/ -----END CERTIFICATE-----Generated at Sat Dec 6 13:35:17 2025 by rpki-client