This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft File: S9XCMYZ-JzlRVcAceEizsByGBvI.mft (raw, json) Hash identifier: 0TnFZoQDOHujEg4rIz91TaV/wi4CxIxQQlxRwyieGKg= Subject key identifier: 73:66:6C:C9:15:10:A4:C1:11:DE:5A:5E:AF:9C:34:01:76:6B:9D:DC Authority key identifier: 4B:D5:C2:31:86:7E:27:39:51:55:C0:1C:78:48:B3:B0:1C:86:06:F2 Certificate issuer: /CN=A914BBE1/serialNumber=4BD5C231867E27395155C01C7848B3B01C8606F2 Certificate serial: 0439 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft Manifest number: 0434 Signing time: Thu 04 Dec 2025 22:46:53 +0000 Manifest this update: Thu 04 Dec 2025 22:46:52 +0000 Manifest next update: Thu 11 Dec 2025 22:46:52 +0000 Files and hashes: 1: S9XCMYZ-JzlRVcAceEizsByGBvI.crl (hash: bIygKoD8yY4wmwVUnJ3hHVWJtjOaAKZ+kAv39Ibq27A=) 2: 24C0E7A684C911EC8CE1246BC4F9AE02.roa (hash: /ks11M81kp4oGi/uf6+uil4xz+jgg1PhbFjvxN9fgAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.crl rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BBE1, serialNumber=4BD5C231867E27395155C01C7848B3B01C8606F2 Validity Not Before: Dec 4 22:46:52 2025 GMT Not After : Dec 11 22:46:52 2025 GMT Subject: CN=69320f5c-541c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7b:4f:68:4c:66:69:b1:48:03:a1:b2:a2:b7: f1:73:0f:db:0d:0b:d1:20:6b:30:1a:e9:49:38:e0: 5c:87:8b:d1:44:a4:ea:7a:13:dc:c5:13:84:e3:f1: c0:fe:fd:a3:4f:51:b1:d9:0f:c2:70:95:e5:93:4e: d5:60:f3:81:da:5d:5e:ef:e5:d7:12:a6:a6:d8:0f: e5:1a:4a:ca:ef:f3:19:9b:55:80:18:09:85:6a:e5: 16:4a:5d:88:27:84:e8:32:06:bc:7d:23:b4:74:52: 49:af:eb:13:e4:05:a2:8e:45:37:6b:4e:6c:e7:42: ab:33:ff:13:ce:11:ae:c9:87:82:93:68:67:4a:0e: 1d:16:23:a2:5d:64:52:f0:c2:21:a9:e1:f7:2f:8c: d2:9b:28:af:15:60:1f:8d:82:24:42:2c:45:54:be: 0b:b7:f3:ae:8d:a9:7c:51:af:6d:4d:85:a1:b9:9f: 37:2c:ad:6c:68:18:2b:87:7e:0a:fb:43:fa:63:ff: 1d:2c:1e:05:df:34:94:d8:78:49:76:3e:fb:15:bc: 3c:bd:4b:38:a5:5c:f0:05:ee:55:14:7b:00:65:66: 8a:a4:b9:f6:69:81:f2:5d:30:b4:e1:ff:c5:3d:5f: 0d:b2:9f:10:da:4b:a7:a9:4c:69:05:dd:54:d5:d3: b0:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:66:6C:C9:15:10:A4:C1:11:DE:5A:5E:AF:9C:34:01:76:6B:9D:DC X509v3 Authority Key Identifier: keyid:4B:D5:C2:31:86:7E:27:39:51:55:C0:1C:78:48:B3:B0:1C:86:06:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:d6:8c:7c:d8:a8:ba:6b:b3:21:00:0a:07:dd:87:75:5a:8e: 46:25:10:d8:72:f7:d0:c9:b4:67:ad:7a:76:51:82:41:5d:bb: 76:43:54:cc:2f:ab:e7:fe:01:eb:85:50:7d:cd:bf:97:00:f4: 82:37:87:3e:29:05:0c:28:6d:cf:92:5c:46:09:44:22:06:0d: 70:68:ab:d0:c4:fe:a9:b0:d1:e6:dc:87:e4:f4:30:2a:12:63: 24:eb:62:d3:ed:c6:c8:0a:80:c6:5f:f8:db:a8:aa:28:d5:9f: 37:6d:6f:69:4b:10:8b:54:87:da:ca:35:20:f5:a7:d7:83:0a: e1:ab:b1:18:8c:ce:c5:14:64:35:19:8f:04:c0:b7:11:63:48: 69:f9:6d:45:5c:97:29:d8:d0:50:af:cf:bf:65:1c:39:a8:53: 77:50:50:4a:65:62:ee:e5:65:93:f1:e2:48:0f:51:6f:09:1a: d2:1e:4b:48:e3:2d:0d:bf:6b:89:59:4d:fc:4f:c6:c1:d7:99: e4:47:5e:64:51:a8:62:99:f2:02:05:10:d0:9d:5d:2d:cf:4a: b8:0c:51:7a:2c:c5:79:fd:20:1f:28:6d:ac:aa:f4:00:b3:ce: 3c:a2:a6:05:30:c4:1d:5f:0e:7b:45:3d:ca:b9:04:21:23:99: 2f:05:4c:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJCRTExMTAvBgNVBAUTKDRCRDVDMjMxODY3RTI3Mzk1MTU1QzAxQzc4NDhCM0Iw MUM4NjA2RjIwHhcNMjUxMjA0MjI0NjUyWhcNMjUxMjExMjI0NjUyWjAYMRYwFAYD VQQDEw02OTMyMGY1Yy01NDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHtPaExmabFIA6Gyorfxcw/bDQvRIGswGulJOOBch4vRRKTqehPcxROE4/HA /v2jT1Gx2Q/CcJXlk07VYPOB2l1e7+XXEqam2A/lGkrK7/MZm1WAGAmFauUWSl2I J4ToMga8fSO0dFJJr+sT5AWijkU3a05s50KrM/8TzhGuyYeCk2hnSg4dFiOiXWRS 8MIhqeH3L4zSmyivFWAfjYIkQixFVL4Lt/Oujal8Ua9tTYWhuZ83LK1saBgrh34K +0P6Y/8dLB4F3zSU2HhJdj77Fbw8vUs4pVzwBe5VFHsAZWaKpLn2aYHyXTC04f/F PV8Nsp8Q2kunqUxpBd1U1dOwWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNmbMkV EKTBEd5aXq+cNAF2a53cMB8GA1UdIwQYMBaAFEvVwjGGfic5UVXAHHhIs7Achgby MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkJFMS85RTY2MDM0Qzg0 QzUxMUVDQTk4NjE1NjRDNEY5QUUwMi9TOVhDTVlaLUp6bFJWY0FjZUVpenNCeUdC dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M5WENNWVotSnpsUlZjQWNlRWl6c0J5R0J2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkJFMS85RTY2MDM0Qzg0QzUxMUVDQTk4NjE1NjRDNEY5QUUwMi9TOVhDTVlaLUp6 bFJWY0FjZUVpenNCeUdCdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS1ox82Ki6a7MhAAoH3Yd1Wo5GJRDYcvfQybRnrXp2UYJBXbt2Q1TM L6vn/gHrhVB9zb+XAPSCN4c+KQUMKG3PklxGCUQiBg1waKvQxP6psNHm3Ifk9DAq EmMk62LT7cbICoDGX/jbqKoo1Z83bW9pSxCLVIfayjUg9afXgwrhq7EYjM7FFGQ1 GY8EwLcRY0hp+W1FXJcp2NBQr8+/ZRw5qFN3UFBKZWLu5WWT8eJID1FvCRrSHktI 4y0Nv2uJWU38T8bB15nkR15kUahimfICBRDQnV0tz0q4DFF6LMV5/SAfKG2sqvQA s848oqYFMMQdXw57RT3KuQQhI5kvBUzB -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:45 2025 by rpki-client