This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft File: cnOFPaBj78uOxUSwMg1acHuUwIk.mft (raw, json) Hash identifier: lv/P9gKVO+2g5HETJtl8rIFb3Y4JDWfWM+3cA8BCTqc= Subject key identifier: 77:A1:2F:24:AC:24:26:C3:CF:35:CE:57:47:4B:75:33:5D:90:46:8B Authority key identifier: 72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 Certificate issuer: /CN=A9163824/serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Certificate serial: 077B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft Manifest number: 2DC7 Signing time: Sat 06 Dec 2025 15:27:39 +0000 Manifest this update: Sat 06 Dec 2025 15:27:39 +0000 Manifest next update: Sat 13 Dec 2025 15:27:39 +0000 Files and hashes: 1: cnOFPaBj78uOxUSwMg1acHuUwIk.crl (hash: kqiE9Kc0MbwMDM21PQxl0hICCorTkbyetRN+87hckDg=) 2: 4BB610C2E16511EC8EDF6621C4F9AE02.roa (hash: ekyxreCpgMcKP34usIZn12GGqR3mbNPPXZzJX4hQpac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163824, serialNumber=7273853DA063EFCB8EC544B0320D5A707B94C089 Validity Not Before: Dec 6 15:27:39 2025 GMT Not After : Dec 13 15:27:39 2025 GMT Subject: CN=69344b6b-3da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:f9:a7:cc:d4:0f:03:17:f6:e4:2e:90:40:d5: ab:d5:72:70:a0:a6:98:c7:20:d6:a6:18:11:a9:67: 1b:f6:29:7e:39:fb:91:17:a9:fb:f8:14:bd:91:a2: 16:1f:e6:4a:65:10:6c:a6:b9:1b:d8:cb:43:02:99: 64:fd:71:f4:8d:5d:2b:a8:ca:db:e3:20:72:0c:50: 5d:58:58:ac:d2:e1:80:23:20:75:56:ec:50:4c:bd: d8:bc:29:cd:a3:fe:07:34:d9:ac:7a:c6:39:74:d3: 8a:db:8c:88:82:f0:8f:15:d8:ae:71:ff:ea:33:6d: e2:fc:e9:f0:5c:81:89:3a:08:62:69:ae:66:e8:01: be:3b:22:c6:40:0e:dd:4c:f5:65:be:ba:78:13:69: 1d:e9:58:92:92:c8:b6:9e:8b:93:81:53:be:26:78: ea:0c:b5:a4:d1:24:01:8e:9d:b4:aa:00:a2:a0:da: 7a:fe:f0:d5:9c:6b:74:36:eb:cb:18:24:85:29:91: ba:6f:3b:14:84:5f:b1:42:8d:05:80:a1:44:50:16: 54:16:8e:a8:1f:89:5b:54:c8:88:75:a0:02:b9:f2: 82:1c:f1:d3:21:e4:0e:2a:90:2a:40:6d:8a:85:37: c1:fa:dd:ce:b6:54:0f:7f:f1:94:f5:0a:58:f2:09: 89:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A1:2F:24:AC:24:26:C3:CF:35:CE:57:47:4B:75:33:5D:90:46:8B X509v3 Authority Key Identifier: keyid:72:73:85:3D:A0:63:EF:CB:8E:C5:44:B0:32:0D:5A:70:7B:94:C0:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cnOFPaBj78uOxUSwMg1acHuUwIk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163824/BA0EFE52FD2511E49D93273BC4F9AE02/cnOFPaBj78uOxUSwMg1acHuUwIk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:7c:0e:99:db:bc:3c:00:c9:94:fe:2b:03:3f:8d:6b:c9:31: 89:77:07:7a:e9:9c:45:d4:78:9a:f1:f4:6a:cc:b6:ba:69:dd: c1:4a:ea:bf:f1:f9:03:50:8c:c0:e0:66:c2:c3:db:6f:7f:fd: 59:81:db:99:58:12:08:86:dc:d5:7a:20:cd:92:2d:98:14:4c: 7e:ea:bd:ed:0d:58:66:ae:6a:e3:68:8c:38:e6:0b:83:5e:3d: 24:c3:de:26:8a:cc:42:0c:13:af:e6:7d:ac:a0:63:cc:0a:f2: 2a:9c:a8:ee:a0:f6:61:cd:67:44:61:cc:48:59:af:ad:05:85: ff:29:91:61:19:49:53:e9:a4:94:9f:2c:8f:65:2e:6d:ff:0f: 1b:b6:56:7d:fc:c4:35:b6:c7:94:fd:e6:f4:e9:f5:38:92:68: 80:d1:a4:fb:2e:4e:eb:d9:c6:04:8b:dc:03:fc:1c:f8:5f:47: 42:f0:42:95:44:85:f2:7d:f5:a0:0d:00:3b:64:c3:1c:27:3e: e0:5c:44:38:3b:01:bd:93:3f:cf:b4:69:44:09:b1:be:49:4f: 11:44:fe:da:fe:a5:6c:43:ab:04:a3:78:7f:b7:c8:ff:0d:31: 37:09:ca:90:c4:bf:d0:f2:00:43:e1:34:29:cd:ea:77:07:b5: ca:34:e8:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4MjQxMTAvBgNVBAUTKDcyNzM4NTNEQTA2M0VGQ0I4RUM1NDRCMDMyMEQ1QTcw N0I5NEMwODkwHhcNMjUxMjA2MTUyNzM5WhcNMjUxMjEzMTUyNzM5WjAYMRYwFAYD VQQDEw02OTM0NGI2Yi0zZGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlvmnzNQPAxf25C6QQNWr1XJwoKaYxyDWphgRqWcb9il+OfuRF6n7+BS9kaIW H+ZKZRBsprkb2MtDAplk/XH0jV0rqMrb4yByDFBdWFis0uGAIyB1VuxQTL3YvCnN o/4HNNmsesY5dNOK24yIgvCPFdiucf/qM23i/OnwXIGJOghiaa5m6AG+OyLGQA7d TPVlvrp4E2kd6ViSksi2nouTgVO+JnjqDLWk0SQBjp20qgCioNp6/vDVnGt0NuvL GCSFKZG6bzsUhF+xQo0FgKFEUBZUFo6oH4lbVMiIdaACufKCHPHTIeQOKpAqQG2K hTfB+t3OtlQPf/GU9QpY8gmJAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHehLySs JCbDzzXOV0dLdTNdkEaLMB8GA1UdIwQYMBaAFHJzhT2gY+/LjsVEsDINWnB7lMCJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzgyNC9CQTBFRkU1MkZE MjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4dU94VVN3TWcxYWNIdVV3 SWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuT0ZQYUJqNzh1T3hVU3dNZzFhY0h1VXdJay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzgyNC9CQTBFRkU1MkZEMjUxMUU0OUQ5MzI3M0JDNEY5QUUwMi9jbk9GUGFCajc4 dU94VVN3TWcxYWNIdVV3SWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKfA6Z27w8AMmU/isDP41ryTGJdwd66ZxF1Hia8fRqzLa6ad3BSuq/ 8fkDUIzA4GbCw9tvf/1ZgduZWBIIhtzVeiDNki2YFEx+6r3tDVhmrmrjaIw45guD Xj0kw94misxCDBOv5n2soGPMCvIqnKjuoPZhzWdEYcxIWa+tBYX/KZFhGUlT6aSU nyyPZS5t/w8btlZ9/MQ1tseU/eb06fU4kmiA0aT7Lk7r2cYEi9wD/Bz4X0dC8EKV RIXyffWgDQA7ZMMcJz7gXEQ4OwG9kz/PtGlECbG+SU8RRP7a/qVsQ6sEo3h/t8j/ DTE3CcqQxL/Q8gBD4TQpzep3B7XKNOgh -----END CERTIFICATE-----Generated at Sun Dec 7 03:38:49 2025 by rpki-client