This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft File: d9okgAToxYcr33K6wSIsfMtujjc.mft (raw, json) Hash identifier: HPwnWZPEYdI3y5Wyfo6lTk4zd+hB+gY006IyvmoN7ko= Subject key identifier: 72:57:0B:30:91:19:5F:FB:83:EB:4E:6E:0A:56:47:DD:12:3D:0A:1D Authority key identifier: 77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 Certificate issuer: /CN=A9156342/serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Certificate serial: 09D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft Manifest number: 09B9 Signing time: Thu 04 Dec 2025 19:15:13 +0000 Manifest this update: Thu 04 Dec 2025 19:15:13 +0000 Manifest next update: Thu 11 Dec 2025 19:15:13 +0000 Files and hashes: 1: d9okgAToxYcr33K6wSIsfMtujjc.crl (hash: 388ZetyRIxmYDYVYCM1YGeeRtsph58IAv3+VyVe7+E4=) 2: 3AFD491C99E611EAB3C00943C4F9AE02.roa (hash: fDQ1zYNxLplPrz4Qpls9Fd7tB57/fNGS1+72t/RyA84=) 3: 3A58D9F499E611EAB3C00943C4F9AE02.roa (hash: +eSXmzBbgmezGg93b3TG7JXzkYgFkvNOYfX8lsh6cSU=) 4: 3BABBD7699E611EAB3C00943C4F9AE02.roa (hash: hhUYjpSKNDr9BFxXK1UJmQWhlN0RGm+4+TzTlDKxlz8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2521 (0x9d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156342, serialNumber=77DA248004E8C5872BDF72BAC1222C7CCB6E8E37 Validity Not Before: Dec 4 19:15:13 2025 GMT Not After : Dec 11 19:15:13 2025 GMT Subject: CN=6931ddc1-dbf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1a:29:91:25:cf:3f:11:40:89:7e:ab:e0:f1: cd:83:c4:d7:8c:2c:5c:35:ed:22:76:00:ae:ce:a4: 35:57:b0:0e:b7:c6:ab:cc:8a:23:48:53:a5:4b:ab: 0d:ce:41:90:27:ea:2e:c4:fe:91:c1:79:d9:a7:66: 6a:ce:f8:49:1c:4a:ab:d8:d0:f7:c0:71:4d:c0:0a: fb:74:81:64:6a:35:a4:bb:dc:d4:55:74:05:0b:9f: 9b:3f:49:6e:b1:bd:29:87:84:dc:69:a2:80:6b:e6: d8:f1:8f:d8:b2:47:2b:60:6f:15:65:ea:82:e6:d6: c4:4f:42:98:31:71:9e:39:c7:13:91:24:21:e7:7a: 2e:9d:07:21:cd:ce:db:dd:99:74:57:fc:c5:54:cf: 03:a5:2c:db:dd:c0:8d:39:f4:86:ac:3c:8c:3d:d2: 2e:f6:8a:68:b3:57:20:72:78:13:ba:14:3d:8f:a2: 1d:73:25:f3:b0:c7:84:86:ff:f3:bf:13:c0:4b:e5: a4:3a:fc:eb:bf:eb:80:c4:84:69:98:4d:8c:e1:1f: 09:20:92:61:d5:04:cf:38:8a:5d:9c:71:68:42:63: a3:a3:fb:14:bb:79:36:07:ed:25:be:e2:4c:6d:5b: f9:3d:8a:07:e2:08:c5:d3:96:26:cb:7f:af:da:ea: aa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:57:0B:30:91:19:5F:FB:83:EB:4E:6E:0A:56:47:DD:12:3D:0A:1D X509v3 Authority Key Identifier: keyid:77:DA:24:80:04:E8:C5:87:2B:DF:72:BA:C1:22:2C:7C:CB:6E:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d9okgAToxYcr33K6wSIsfMtujjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156342/BDF8908099E411EA89A4C240C4F9AE02/d9okgAToxYcr33K6wSIsfMtujjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:53:91:94:75:5d:01:86:36:18:1d:d2:b3:57:16:56:e2:34: 94:ab:3d:34:40:58:71:66:1f:c5:28:f3:2e:30:d6:b5:6a:1d: 15:d6:06:6b:5d:0c:bc:45:99:64:95:dd:8c:af:79:01:cb:19: 79:ef:5d:95:a0:ea:3a:b7:35:8c:55:5d:8e:a4:f7:30:29:56: 5a:94:46:7b:46:13:1f:97:4e:cf:ba:26:27:f4:06:e5:c2:12: 0e:c5:ed:ab:7b:85:4d:54:ee:71:d0:fe:ab:6c:ab:5f:48:fa: 8e:ec:c8:91:67:bd:2d:fb:a6:19:d1:d8:f8:16:e0:f4:01:9f: 6d:8e:cd:d0:1b:1c:f1:3e:c2:4c:4b:38:2e:a9:b8:af:ab:f9: 29:3b:3c:21:b6:a7:3e:ae:a4:56:f1:6d:8a:f8:10:71:22:1d: 1d:54:7a:27:78:40:2f:de:41:5f:9e:dd:92:04:89:39:d6:f5: 01:91:a9:44:a4:37:60:e6:8c:4d:b3:f0:ac:44:9f:69:27:0f: e6:dd:d4:40:af:73:62:c7:80:9c:4e:25:fa:25:bf:9f:9a:ab: 4a:81:02:ac:d5:ab:ea:fc:9c:a2:35:ae:5a:ba:33:87:25:88: 95:54:cb:af:10:bf:08:7d:59:a7:c1:96:0d:58:99:5e:ba:ad: fb:8d:12:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzNDIxMTAvBgNVBAUTKDc3REEyNDgwMDRFOEM1ODcyQkRGNzJCQUMxMjIyQzdD Q0I2RThFMzcwHhcNMjUxMjA0MTkxNTEzWhcNMjUxMjExMTkxNTEzWjAYMRYwFAYD VQQDEw02OTMxZGRjMS1kYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xopkSXPPxFAiX6r4PHNg8TXjCxcNe0idgCuzqQ1V7AOt8arzIojSFOlS6sN zkGQJ+ouxP6RwXnZp2ZqzvhJHEqr2ND3wHFNwAr7dIFkajWku9zUVXQFC5+bP0lu sb0ph4TcaaKAa+bY8Y/YskcrYG8VZeqC5tbET0KYMXGeOccTkSQh53ounQchzc7b 3Zl0V/zFVM8DpSzb3cCNOfSGrDyMPdIu9opos1cgcngTuhQ9j6IdcyXzsMeEhv/z vxPAS+WkOvzrv+uAxIRpmE2M4R8JIJJh1QTPOIpdnHFoQmOjo/sUu3k2B+0lvuJM bVv5PYoH4gjF05Ymy3+v2uqqxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJXCzCR GV/7g+tObgpWR90SPQodMB8GA1UdIwQYMBaAFHfaJIAE6MWHK99yusEiLHzLbo43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjM0Mi9CREY4OTA4MDk5 RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZY3IzM0s2d1NJc2ZNdHVq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q5b2tnQVRveFljcjMzSzZ3U0lzZk10dWpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjM0Mi9CREY4OTA4MDk5RTQxMUVBODlBNEMyNDBDNEY5QUUwMi9kOW9rZ0FUb3hZ Y3IzM0s2d1NJc2ZNdHVqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5U5GUdV0BhjYYHdKzVxZW4jSUqz00QFhxZh/FKPMuMNa1ah0V1gZr XQy8RZlkld2Mr3kByxl5712VoOo6tzWMVV2OpPcwKVZalEZ7RhMfl07PuiYn9Abl whIOxe2re4VNVO5x0P6rbKtfSPqO7MiRZ70t+6YZ0dj4FuD0AZ9tjs3QGxzxPsJM Szguqbivq/kpOzwhtqc+rqRW8W2K+BBxIh0dVHoneEAv3kFfnt2SBIk51vUBkalE pDdg5oxNs/CsRJ9pJw/m3dRAr3Nix4CcTiX6Jb+fmqtKgQKs1avq/JyiNa5aujOH JYiVVMuvEL8IfVmnwZYNWJleuq37jRIr -----END CERTIFICATE-----Generated at Sat Dec 6 17:26:29 2025 by rpki-client