This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: bKJNesXBuKbU3H1UF0V/ncTNLr/v5NheNdjL9QECCGw= Subject key identifier: 3D:B0:36:E6:3D:C0:7B:C4:35:1B:D3:C6:2D:D7:18:96:18:0F:7B:65 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1C05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BF3 Signing time: Thu 04 Dec 2025 15:58:24 +0000 Manifest this update: Thu 04 Dec 2025 15:58:24 +0000 Manifest next update: Thu 11 Dec 2025 15:58:24 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: 4Q9HEph1h9T4rdd/EeJhc/JruuknVrL4hHvxKPe3w1Q=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 15:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7173 (0x1c05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Dec 4 15:58:24 2025 GMT Not After : Dec 11 15:58:24 2025 GMT Subject: CN=6931afa0-97f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e4:32:c2:c0:41:49:86:e7:fd:2e:96:9b:9c: f9:15:82:70:27:ea:23:58:04:0e:f9:02:0e:07:68: 97:a8:8f:ba:d5:0d:2e:12:44:42:06:ab:ad:93:c5: 8a:49:a5:a8:fa:99:d2:69:bb:db:7c:dd:66:37:7c: 72:40:a4:b4:31:be:0e:a5:00:da:8b:29:74:55:79: 13:45:ee:ce:86:94:06:b8:d5:c3:33:17:29:5d:a8: fb:71:03:76:0c:ec:15:c6:36:da:45:dd:0f:b7:5e: 49:5c:0e:b4:2b:28:7e:14:d5:c9:1b:51:4f:0d:67: d6:48:0d:6a:7d:24:9e:d1:3f:26:42:98:c6:78:64: b5:cd:10:65:fc:89:66:6b:4c:50:4e:e4:03:a0:26: 9a:29:36:b8:9a:fa:0f:99:bb:2b:f0:73:3c:ca:9d: 5b:fa:ef:de:88:3f:48:e4:a5:83:bf:a4:97:a9:93: 9c:25:75:e0:5b:46:b7:25:59:59:2b:c5:6e:fd:03: d8:95:94:2f:49:aa:82:34:d2:be:4a:b5:a8:e8:ac: 5f:a4:59:02:19:0a:0f:5c:9a:05:64:c9:23:a1:23: f2:45:e7:5d:cf:3a:b0:ab:42:4d:b3:af:b5:d7:dc: ae:cf:d1:5f:28:9d:0f:08:08:1f:f6:38:00:21:05: e6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B0:36:E6:3D:C0:7B:C4:35:1B:D3:C6:2D:D7:18:96:18:0F:7B:65 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:92:1b:14:ce:57:75:74:79:34:ed:1a:3f:83:05:a7:33:11: 44:c5:c8:cb:a9:42:d5:9a:65:14:59:4e:e5:ed:a3:60:98:ee: 50:15:45:6d:61:e2:1d:12:0d:73:9a:31:36:0e:0d:36:9c:af: d9:51:2f:90:80:1f:bf:67:39:78:24:96:54:b4:f1:a9:b0:26: be:5a:9c:1d:e0:68:fb:60:b3:4d:80:03:77:33:d2:3b:99:38: bb:47:de:ca:b4:63:8b:54:b6:69:0f:39:3f:5c:f9:d3:25:03: 9b:6c:e1:94:d3:9b:dd:67:8a:73:90:26:35:9b:40:56:fb:5e: 94:2f:bc:46:77:70:c4:87:2f:e2:95:a5:f8:bb:05:2c:1a:1a: 31:1f:ff:7e:48:0d:60:52:38:22:39:11:0c:53:69:13:eb:99: fc:68:f6:61:25:cb:00:be:a3:b7:4a:16:4a:93:db:91:8b:d4: 3c:b2:a7:ef:f4:60:22:73:65:a9:ee:ca:86:99:74:96:17:35: 4d:c2:9a:1d:f4:9c:00:6f:09:32:e4:c2:64:2f:b7:2c:52:fe: 30:c7:56:fb:75:d3:88:29:37:79:e6:55:aa:c0:f9:33:03:1f: 0a:8a:36:a0:b1:c1:0b:09:2f:f7:a3:09:2e:45:95:cd:95:b6: 88:49:57:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUxMjA0MTU1ODI0WhcNMjUxMjExMTU1ODI0WjAYMRYwFAYD VQQDEw02OTMxYWZhMC05N2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuQywsBBSYbn/S6Wm5z5FYJwJ+ojWAQO+QIOB2iXqI+61Q0uEkRCBqutk8WK SaWo+pnSabvbfN1mN3xyQKS0Mb4OpQDaiyl0VXkTRe7OhpQGuNXDMxcpXaj7cQN2 DOwVxjbaRd0Pt15JXA60Kyh+FNXJG1FPDWfWSA1qfSSe0T8mQpjGeGS1zRBl/Ilm a0xQTuQDoCaaKTa4mvoPmbsr8HM8yp1b+u/eiD9I5KWDv6SXqZOcJXXgW0a3JVlZ K8Vu/QPYlZQvSaqCNNK+SrWo6KxfpFkCGQoPXJoFZMkjoSPyReddzzqwq0JNs6+1 19yuz9FfKJ0PCAgf9jgAIQXm1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2wNuY9 wHvENRvTxi3XGJYYD3tlMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLkhsUzld1dHk07Ro/gwWnMxFExcjLqULVmmUUWU7l7aNgmO5QFUVt YeIdEg1zmjE2Dg02nK/ZUS+QgB+/Zzl4JJZUtPGpsCa+Wpwd4Gj7YLNNgAN3M9I7 mTi7R97KtGOLVLZpDzk/XPnTJQObbOGU05vdZ4pzkCY1m0BW+16UL7xGd3DEhy/i laX4uwUsGhoxH/9+SA1gUjgiOREMU2kT65n8aPZhJcsAvqO3ShZKk9uRi9Q8sqfv 9GAic2Wp7sqGmXSWFzVNwpod9JwAbwky5MJkL7csUv4wx1b7ddOIKTd55lWqwPkz Ax8KijagscELCS/3owkuRZXNlbaISVcL -----END CERTIFICATE-----Generated at Sat Dec 6 11:20:48 2025 by rpki-client