This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft File: AQMtnfw2KpWHQ-htPI0GEaatsFs.mft (raw, json) Hash identifier: MxDl9Bpmjw+TDnOiedBb51P4+3wLfxapPbrNRP/ymgo= Subject key identifier: 33:1C:07:E3:52:3D:DB:91:6B:53:D1:77:5E:8A:33:5F:FF:20:2F:7B Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0CA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft Manifest number: 0C89 Signing time: Sat 06 Dec 2025 17:51:23 +0000 Manifest this update: Sat 06 Dec 2025 17:51:23 +0000 Manifest next update: Sat 13 Dec 2025 17:51:23 +0000 Files and hashes: 1: AQMtnfw2KpWHQ-htPI0GEaatsFs.crl (hash: Ai0IaAD9JIsmwqRhn9WRGr9lkAq0f7p46lv8b7ruJuU=) 2: 2D0509BC078511ED87041524C4F9AE02.roa (hash: OhD3vjT84Ykw6Uqb+DhKbwC3X7GSCVv4M4crx5/Gxaw=) 3: 20F1E6906B8C11F0A612561BC4F9AE02.roa (hash: sNHYoYiLZid3XR7DYoExAvwJFzWoz5zJp9zNVyLdkkQ=) 4: 2BA0624C078511ED87041524C4F9AE02.roa (hash: OgDpE/kLbNvrNHxmlaFE7wjr3tmLX0c3S1JS4qIXLMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3233 (0xca1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B, serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Dec 6 17:51:23 2025 GMT Not After : Dec 13 17:51:23 2025 GMT Subject: CN=69346d1b-5ed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:68:52:65:9e:3c:19:d0:7e:d9:cf:b9:33:0a: 60:c5:61:d2:c3:70:bf:e2:05:06:f9:ce:38:0e:75: c8:fb:7a:28:5b:ea:8d:73:2e:64:c3:bc:ef:7c:f2: 90:f6:da:e5:80:bb:c5:5d:a9:ee:a0:21:dd:ef:98: ab:2d:0f:f1:7f:3c:19:aa:d4:8c:52:06:08:f0:14: 3c:4d:5d:43:fe:94:34:19:3f:f3:62:df:d4:d4:6f: ff:f1:9d:f3:6c:5e:6d:02:39:25:12:df:3f:de:1a: 28:d6:99:af:02:6e:ed:80:58:4e:8a:a5:9a:fb:61: 46:00:f3:8a:5f:04:0d:99:aa:9f:04:6d:ac:ec:60: 88:60:14:e6:ee:cf:55:b4:37:41:b7:3a:83:1f:c2: 18:a9:8b:d9:d0:e7:83:0a:da:cc:14:f0:b2:05:0a: 95:5d:0a:43:7a:f5:56:db:fc:70:53:c4:81:93:46: 96:dc:f7:38:87:d9:79:db:bd:d1:60:c9:11:27:39: b8:c8:cb:f7:17:47:e7:4e:20:8c:f7:31:f1:0b:3f: 82:d7:b5:c1:99:74:23:0c:f5:9f:bb:d4:01:5d:ab: 98:54:0f:2e:8c:a7:46:ce:f7:3d:3c:77:1a:ba:b4: ea:a0:04:af:bd:22:0f:63:4f:f4:ab:22:03:c6:27: 8d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:1C:07:E3:52:3D:DB:91:6B:53:D1:77:5E:8A:33:5F:FF:20:2F:7B X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:d7:ec:a2:8f:0d:a3:8b:ca:ed:93:9b:f2:a2:39:d0:25:17: ac:a0:0b:94:e2:95:d4:4f:d5:21:7f:e5:85:d1:09:9d:66:24: a2:be:df:67:2a:d4:bd:5a:40:6f:0a:cb:71:09:57:37:d9:3d: 9d:84:21:df:5d:ed:d7:e5:20:89:e1:48:0a:87:cc:2d:dd:41: 46:a9:53:15:e9:b2:7f:a3:20:96:d0:65:63:a9:c4:ab:bb:af: ca:aa:cb:05:b5:0b:42:a6:03:80:37:d8:64:69:13:53:fd:f1: eb:4c:5c:6b:f1:f4:73:c1:7b:09:c3:a5:be:9b:49:72:f7:56: 24:2b:29:34:f2:d4:52:1a:c2:42:9e:a3:30:ef:d4:ac:3e:72: 56:fe:3b:be:6d:64:d7:f7:47:6a:16:14:f1:e8:12:37:05:e2: a7:3a:69:68:67:75:de:f0:55:4b:44:1c:c2:30:fa:e8:d4:56: 05:ad:1f:78:d4:c7:bb:f8:0b:86:e7:d0:25:d4:76:05:41:f6: e3:e5:53:2a:e1:cf:8c:36:8a:33:45:5e:9a:54:bf:c2:ed:a3: 2f:bc:2e:5a:1f:9f:f1:2f:5d:8a:2c:78:4e:b2:bd:14:0d:0d: 69:c4:ca:dd:98:21:e1:9b:e8:cc:31:fe:96:40:77:6d:4b:25: 80:f5:4f:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjUxMjA2MTc1MTIzWhcNMjUxMjEzMTc1MTIzWjAYMRYwFAYD VQQDEw02OTM0NmQxYi01ZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WhSZZ48GdB+2c+5MwpgxWHSw3C/4gUG+c44DnXI+3ooW+qNcy5kw7zvfPKQ 9trlgLvFXanuoCHd75irLQ/xfzwZqtSMUgYI8BQ8TV1D/pQ0GT/zYt/U1G//8Z3z bF5tAjklEt8/3hoo1pmvAm7tgFhOiqWa+2FGAPOKXwQNmaqfBG2s7GCIYBTm7s9V tDdBtzqDH8IYqYvZ0OeDCtrMFPCyBQqVXQpDevVW2/xwU8SBk0aW3Pc4h9l5273R YMkRJzm4yMv3F0fnTiCM9zHxCz+C17XBmXQjDPWfu9QBXauYVA8ujKdGzvc9PHca urTqoASvvSIPY0/0qyIDxieN4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMcB+NS PduRa1PRd16KM1//IC97MB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkUyQi8yN0U3Q0FBNjBDMkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3Mktw V0hRLWh0UEkwR0VhYXRzRnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe1+yijw2ji8rtk5vyojnQJResoAuU4pXUT9Uhf+WF0QmdZiSivt9n KtS9WkBvCstxCVc32T2dhCHfXe3X5SCJ4UgKh8wt3UFGqVMV6bJ/oyCW0GVjqcSr u6/KqssFtQtCpgOAN9hkaRNT/fHrTFxr8fRzwXsJw6W+m0ly91YkKyk08tRSGsJC nqMw79SsPnJW/ju+bWTX90dqFhTx6BI3BeKnOmloZ3Xe8FVLRBzCMPro1FYFrR94 1Me7+AuG59Al1HYFQfbj5VMq4c+MNoozRV6aVL/C7aMvvC5aH5/xL12KLHhOsr0U DQ1pxMrdmCHhm+jMMf6WQHdtSyWA9U9Y -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:24 2025 by rpki-client