This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: sgglgguPxQ/EQre5QXEKKP2C58OH98Kg6HZcAdwvsdY= Subject key identifier: 7F:8B:05:FB:B6:ED:EE:0B:4F:C5:DA:60:EA:C5:29:D6:49:14:17:C8 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 01FC Signing time: Fri 05 Dec 2025 00:45:46 +0000 Manifest this update: Fri 05 Dec 2025 00:45:45 +0000 Manifest next update: Fri 12 Dec 2025 00:45:45 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: dq2CkuRla67rzfhM0f1wowmM7PjZnzzENd32oMgKk44=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Dec 5 00:45:45 2025 GMT Not After : Dec 12 00:45:45 2025 GMT Subject: CN=69322b3a-bd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:92:31:8c:8e:24:81:00:ed:0c:a7:4d:9c:f2: 64:e1:f6:40:ef:55:56:89:a9:64:f5:7f:be:5f:84: f7:d8:b1:27:3d:a9:aa:75:8b:6f:2a:76:b9:89:89: f2:93:ec:2a:3c:55:84:bf:f7:6d:92:95:cd:85:61: 9f:e5:30:07:b9:e9:99:57:63:1e:45:f3:4b:d4:b0: 71:a9:6e:13:47:40:c2:a5:7b:3a:25:0f:cf:b0:ab: 2a:cd:83:25:ce:19:ed:67:37:cf:77:2b:05:94:58: b2:2e:80:be:29:67:b6:43:cb:b5:7b:2c:6c:f7:e9: 35:2b:3d:a8:a8:3b:c1:1c:bf:dc:68:8f:eb:46:af: c9:82:ed:c6:d2:c1:49:26:ab:c1:bc:88:d4:d6:55: 4b:11:53:97:27:a0:c3:ac:38:3c:75:71:b6:7c:9f: ae:b6:66:41:13:00:91:25:7e:e0:80:ba:fa:f6:fe: 8e:2a:19:7e:35:21:48:5c:8d:f9:3a:b9:50:a2:fb: a8:f2:1b:a0:95:af:4e:27:c2:04:42:06:99:33:b1: 26:ce:9f:65:60:32:f9:33:3d:91:5c:9d:60:55:e0: c9:e0:0a:da:45:f7:2c:80:db:4d:73:f0:34:f6:b5: f5:79:88:fc:03:51:5f:c0:ef:cd:4b:93:dc:5a:5b: ff:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8B:05:FB:B6:ED:EE:0B:4F:C5:DA:60:EA:C5:29:D6:49:14:17:C8 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:ee:b8:aa:bc:66:3e:a7:ab:39:f6:30:6c:3d:1b:bf:6d:0f: 68:8c:74:cd:0f:0b:7f:c6:f3:56:ff:33:d1:2d:02:3b:9a:42: f4:00:a4:d2:9f:fa:5a:5a:eb:7f:fa:5e:67:ab:bd:9b:6d:c6: bd:9b:d2:fe:de:eb:81:79:63:c0:fc:90:58:d4:58:b3:c8:69: b2:ac:95:2a:5c:93:e3:9f:ba:9a:8d:26:77:5a:d0:93:59:ed: ee:66:e4:d5:9e:8d:94:d1:10:67:44:4b:76:3c:98:72:63:d4: 0a:ee:0b:4d:21:04:2e:5b:9b:49:1f:76:63:4a:d0:27:43:b5: ec:5e:ad:67:55:6d:de:22:c5:95:9e:f5:f7:88:ab:93:d7:4c: 75:f6:ce:b9:79:24:58:3e:8d:22:54:d9:1c:88:8a:9b:f5:2e: f6:3a:4a:5f:53:16:c5:b1:64:74:ba:a5:fd:e6:a6:a1:07:c7: 16:f7:95:bd:f8:cf:83:91:7f:58:0a:39:c7:02:4c:3b:03:01: a5:d4:a2:a8:83:9d:52:f0:76:a5:7b:11:1b:52:f9:cc:6b:dc: 3c:73:5a:b5:c6:bf:3b:b3:59:28:95:ca:4c:c8:19:ec:ef:d8: c1:36:77:fe:94:00:b2:fb:57:00:70:84:74:bd:74:3a:64:29: 6c:fe:d2:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUxMjA1MDA0NTQ1WhcNMjUxMjEyMDA0NTQ1WjAYMRYwFAYD VQQDEw02OTMyMmIzYS1iZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpIxjI4kgQDtDKdNnPJk4fZA71VWialk9X++X4T32LEnPamqdYtvKna5iYny k+wqPFWEv/dtkpXNhWGf5TAHuemZV2MeRfNL1LBxqW4TR0DCpXs6JQ/PsKsqzYMl zhntZzfPdysFlFiyLoC+KWe2Q8u1eyxs9+k1Kz2oqDvBHL/caI/rRq/Jgu3G0sFJ JqvBvIjU1lVLEVOXJ6DDrDg8dXG2fJ+utmZBEwCRJX7ggLr69v6OKhl+NSFIXI35 OrlQovuo8hugla9OJ8IEQgaZM7Emzp9lYDL5Mz2RXJ1gVeDJ4AraRfcsgNtNc/A0 9rX1eYj8A1FfwO/NS5PcWlv//QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+LBfu2 7e4LT8XaYOrFKdZJFBfIMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy7riqvGY+p6s59jBsPRu/bQ9ojHTNDwt/xvNW/zPRLQI7mkL0AKTS n/paWut/+l5nq72bbca9m9L+3uuBeWPA/JBY1FizyGmyrJUqXJPjn7qajSZ3WtCT We3uZuTVno2U0RBnREt2PJhyY9QK7gtNIQQuW5tJH3ZjStAnQ7XsXq1nVW3eIsWV nvX3iKuT10x19s65eSRYPo0iVNkciIqb9S72OkpfUxbFsWR0uqX95qahB8cW95W9 +M+DkX9YCjnHAkw7AwGl1KKog51S8HalexEbUvnMa9w8c1q1xr87s1kolcpMyBns 79jBNnf+lACy+1cAcIR0vXQ6ZCls/tLe -----END CERTIFICATE-----Generated at Sun Dec 7 00:58:03 2025 by rpki-client