This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft File: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft (raw, json) Hash identifier: t6mXfNXZ1RYsPNhgr2DvVtsNaLQKynO90DQwVbskfLY= Subject key identifier: 2E:52:27:FF:94:26:3B:49:61:81:96:58:09:E2:46:AB:C8:A0:49:82 Authority key identifier: EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 Certificate issuer: /CN=A9164B0A/serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft Manifest number: 0129 Signing time: Fri 05 Dec 2025 02:46:18 +0000 Manifest this update: Fri 05 Dec 2025 02:46:17 +0000 Manifest next update: Fri 12 Dec 2025 02:46:17 +0000 Files and hashes: 1: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl (hash: bc3ZNgx2sGuHL+q9nY3UmSKvMGTwKx39+xzagYMj2Ng=) 2: 0913CC14A59911EFBA373D1BC4F9AE02.roa (hash: CwXxvQd82DMK841MpqVGbyP5fEoZfjolyFEgUa5vlRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B0A, serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Validity Not Before: Dec 5 02:46:17 2025 GMT Not After : Dec 12 02:46:17 2025 GMT Subject: CN=6932477a-5904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:73:f5:64:32:31:4a:0c:b1:98:31:40:e6:a5: b4:6a:3f:7e:81:ed:90:7a:4a:82:46:a4:66:40:04: e1:c9:a8:c9:97:8b:a3:54:47:73:56:f9:0a:85:7b: c2:1c:cb:3c:86:c9:b8:ba:60:6e:82:17:88:d1:b6: 26:35:4e:e8:43:c1:a9:04:ee:2c:73:42:cf:1c:8d: 7d:04:92:0c:3d:5e:2a:a0:d7:bf:db:a6:d1:70:76: e6:26:53:fa:b1:70:25:42:3d:0e:9e:90:24:0f:5d: f9:63:8c:6a:30:05:10:86:7f:5f:f2:65:a6:c6:24: b9:61:93:36:96:ea:ea:01:90:46:42:21:06:6c:88: 62:e7:a1:51:bd:cf:e9:78:77:ae:40:a1:ca:24:40: 61:f3:5e:64:1e:25:b5:79:aa:4f:78:bf:c0:a6:3d: 61:bb:84:01:15:a5:98:e2:b0:29:7f:30:b3:77:f8: 97:c7:61:64:43:17:76:e5:3e:75:7b:30:3a:86:53: d3:b0:eb:d5:f8:be:c7:97:10:f0:d3:25:c7:c8:72: 19:6d:4b:53:d5:59:44:06:b0:b1:1f:89:b0:78:b4: fe:eb:af:48:63:a1:43:8b:39:0c:5c:fb:d8:71:f7: d7:73:94:35:b4:fe:31:8e:18:11:e2:66:77:5d:a9: 10:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:52:27:FF:94:26:3B:49:61:81:96:58:09:E2:46:AB:C8:A0:49:82 X509v3 Authority Key Identifier: keyid:EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:12:98:79:94:ab:74:0a:b2:6e:fd:a2:26:cf:bc:01:0b:d4: 85:4b:4e:56:33:c0:fb:ba:a6:84:2a:2a:d9:f1:9c:03:e8:48: b4:33:58:9f:6e:be:b3:c3:9e:69:8c:6b:0f:72:d4:3c:6d:0c: 8c:cd:03:b2:63:f6:60:6e:47:66:66:1d:4a:cf:5e:e7:c2:1d: 77:f1:dd:49:17:6c:90:0c:7d:d4:7b:92:ae:fd:b9:aa:a0:6d: d0:ee:96:ef:f7:7a:e2:18:73:07:55:e3:92:20:4c:0b:ed:79: c8:20:b7:e9:d1:06:ac:1d:dd:6f:d6:f8:2f:bf:01:cc:8a:42: 90:b3:07:ab:65:d0:8b:79:9b:a6:e5:7c:b9:c2:1f:f7:f3:70: 3e:7c:f9:25:06:de:af:99:cd:38:7e:47:6c:85:dd:05:46:59: 50:d5:c7:8a:fd:c6:7f:dd:14:5c:ed:65:a4:12:dd:16:25:da: 92:19:99:8c:71:1a:dd:39:55:bf:64:2e:5a:fa:ab:2a:54:ff: 94:cc:0e:22:46:5a:be:30:0c:47:72:91:b6:9a:d2:82:87:46: ce:f9:b8:7b:36:69:c8:3c:8d:8e:93:7f:b1:74:e1:e0:67:8d: 8d:94:d2:27:4d:67:42:5f:c6:2a:3f:21:08:dd:a2:5b:c6:af: ad:c3:11:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCMEExMTAvBgNVBAUTKEVFNEIwNTYxODQzN0YxOTQ4RDkyOTlGOEE0RjkyOUMx ODdEOTdGMzMwHhcNMjUxMjA1MDI0NjE3WhcNMjUxMjEyMDI0NjE3WjAYMRYwFAYD VQQDEw02OTMyNDc3YS01OTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73P1ZDIxSgyxmDFA5qW0aj9+ge2QekqCRqRmQAThyajJl4ujVEdzVvkKhXvC HMs8hsm4umBugheI0bYmNU7oQ8GpBO4sc0LPHI19BJIMPV4qoNe/26bRcHbmJlP6 sXAlQj0OnpAkD135Y4xqMAUQhn9f8mWmxiS5YZM2lurqAZBGQiEGbIhi56FRvc/p eHeuQKHKJEBh815kHiW1eapPeL/Apj1hu4QBFaWY4rApfzCzd/iXx2FkQxd25T51 ezA6hlPTsOvV+L7HlxDw0yXHyHIZbUtT1VlEBrCxH4mweLT+669IY6FDizkMXPvY cffXc5Q1tP4xjhgR4mZ3XakQ/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5SJ/+U JjtJYYGWWAniRqvIoEmCMB8GA1UdIwQYMBaAFO5LBWGEN/GUjZKZ+KT5KcGH2X8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEIwQS80Q0YwRjcwODEy OTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzhaU05rcG40cFBrcHdZZlpm ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdrc0ZZWVEzOFpTTmtwbjRwUGtwd1lmWmZ6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEIwQS80Q0YwRjcwODEyOTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzha U05rcG40cFBrcHdZZlpmek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOEph5lKt0CrJu/aImz7wBC9SFS05WM8D7uqaEKirZ8ZwD6Ei0M1if br6zw55pjGsPctQ8bQyMzQOyY/ZgbkdmZh1Kz17nwh138d1JF2yQDH3Ue5Ku/bmq oG3Q7pbv93riGHMHVeOSIEwL7XnIILfp0QasHd1v1vgvvwHMikKQswerZdCLeZum 5Xy5wh/383A+fPklBt6vmc04fkdshd0FRllQ1ceK/cZ/3RRc7WWkEt0WJdqSGZmM cRrdOVW/ZC5a+qsqVP+UzA4iRlq+MAxHcpG2mtKCh0bO+bh7NmnIPI2Ok3+xdOHg Z42NlNInTWdCX8YqPyEI3aJbxq+twxGF -----END CERTIFICATE-----Generated at Sat Dec 6 23:23:56 2025 by rpki-client