This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: o2IjfIgFv/yXm4svlmjKXgw7ZQlsDSjqAuOpFCSXljs= Subject key identifier: 9D:EE:42:5C:70:03:0C:2A:CA:78:58:ED:7A:E6:29:72:EF:36:83:C0 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: 0119 Signing time: Fri 05 Dec 2025 02:52:29 +0000 Manifest this update: Fri 05 Dec 2025 02:52:28 +0000 Manifest next update: Fri 12 Dec 2025 02:52:28 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: dU6DfD3GjF18Cd4d64B13JOodHtbu3Fz3KU7VNRSlAc=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Dec 5 02:52:28 2025 GMT Not After : Dec 12 02:52:28 2025 GMT Subject: CN=693248ec-2858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:51:a4:5d:17:43:d9:a4:55:66:4c:83:48:04: 0e:49:7c:6a:5e:dc:af:62:78:dc:8a:65:5d:35:27: 14:0c:b0:fd:b8:45:1d:80:cb:3a:72:98:29:54:22: 47:cb:e3:f7:a3:0e:60:46:00:10:6a:24:52:ad:80: 00:b3:c0:ea:1c:ff:b5:e6:1b:1b:91:bf:f2:34:db: 68:bd:28:9a:24:c7:f4:7d:bf:82:7a:79:76:3b:eb: fc:37:bb:1a:9d:21:d3:44:1a:3b:8a:e1:ad:da:12: 4c:3f:08:54:36:ee:73:49:d0:d4:b4:07:89:4a:1f: a9:2a:2e:43:2d:4b:78:aa:bc:17:b1:1b:f1:72:18: 86:86:20:0e:65:10:e8:d1:7a:ae:f7:64:10:71:b3: 6b:2c:4f:37:18:1d:ea:b3:20:f9:b7:a8:ee:ae:8a: 0f:14:ae:08:32:2f:fd:44:d4:3d:15:d0:ac:05:4a: 26:5f:90:85:c7:7e:0b:a1:bd:d3:c0:d7:78:42:64: 15:c4:a4:cd:d1:63:7d:a3:cf:f7:4a:93:13:ee:49: 74:e9:58:9b:a5:9f:18:eb:fe:00:2c:1d:6a:03:d5: d0:97:e3:5c:26:d0:b2:02:b0:ff:66:f5:fe:a1:41: e8:b7:1a:0d:e0:71:83:32:51:83:50:17:c0:5a:64: 4b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:EE:42:5C:70:03:0C:2A:CA:78:58:ED:7A:E6:29:72:EF:36:83:C0 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:46:ad:c1:74:98:05:44:78:b5:47:06:5c:12:5e:52:31:2f: d6:b2:7a:d0:62:fb:22:42:d7:fd:ab:07:f8:5f:56:72:ff:3a: d7:05:9e:4b:ff:4d:4d:2a:ed:cd:0a:71:1d:ab:61:05:82:41: ff:34:66:d7:9b:84:32:0e:e9:f4:99:3c:84:99:c0:93:0a:e8: 49:65:2c:4f:02:a6:d9:44:97:2b:60:6b:e2:72:6c:75:98:7c: de:5f:d0:09:b3:a4:ed:1a:2a:6b:64:a3:74:f2:7f:7c:80:51: c3:e1:bc:05:25:07:d0:f4:dc:bf:d8:51:99:1e:dd:a9:b0:74: 09:c3:46:21:71:5e:e6:a8:2c:e9:a9:ad:9f:99:82:b0:1a:ee: 90:36:87:e0:d1:b1:54:0d:5f:fc:88:dd:c2:9c:69:85:13:dc: c6:79:08:45:bb:36:21:ce:62:28:6c:9f:46:a4:39:32:c2:32: f9:3d:31:59:33:ff:fe:87:3b:35:2e:84:f7:b4:eb:cb:9d:75: 6d:18:98:11:be:f8:9a:8a:31:63:76:96:c2:bc:d3:ad:de:92: 77:fb:6a:71:4f:52:6d:a5:53:be:79:6b:a6:ed:4a:75:d0:9f: 89:eb:87:0d:a3:8c:87:d2:c1:45:37:6d:75:e2:43:0d:de:2c: 73:b1:6e:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUxMjA1MDI1MjI4WhcNMjUxMjEyMDI1MjI4WjAYMRYwFAYD VQQDEw02OTMyNDhlYy0yODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFGkXRdD2aRVZkyDSAQOSXxqXtyvYnjcimVdNScUDLD9uEUdgMs6cpgpVCJH y+P3ow5gRgAQaiRSrYAAs8DqHP+15hsbkb/yNNtovSiaJMf0fb+Cenl2O+v8N7sa nSHTRBo7iuGt2hJMPwhUNu5zSdDUtAeJSh+pKi5DLUt4qrwXsRvxchiGhiAOZRDo 0Xqu92QQcbNrLE83GB3qsyD5t6jurooPFK4IMi/9RNQ9FdCsBUomX5CFx34Lob3T wNd4QmQVxKTN0WN9o8/3SpMT7kl06VibpZ8Y6/4ALB1qA9XQl+NcJtCyArD/ZvX+ oUHotxoN4HGDMlGDUBfAWmRLiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3uQlxw AwwqynhY7XrmKXLvNoPAMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcRq3BdJgFRHi1RwZcEl5SMS/WsnrQYvsiQtf9qwf4X1Zy/zrXBZ5L /01NKu3NCnEdq2EFgkH/NGbXm4QyDun0mTyEmcCTCuhJZSxPAqbZRJcrYGvicmx1 mHzeX9AJs6TtGiprZKN08n98gFHD4bwFJQfQ9Ny/2FGZHt2psHQJw0YhcV7mqCzp qa2fmYKwGu6QNofg0bFUDV/8iN3CnGmFE9zGeQhFuzYhzmIobJ9GpDkywjL5PTFZ M//+hzs1LoT3tOvLnXVtGJgRvviaijFjdpbCvNOt3pJ3+2pxT1JtpVO+eWum7Up1 0J+J64cNo4yH0sFFN2114kMN3ixzsW4L -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:02 2025 by rpki-client