This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft File: FTyY0zE8xk7bmuFaujtUPkgEWZA.mft (raw, json) Hash identifier: gidDqBsxuXMRIvuIy3gpQ/P3AhIyGjQ5HCh0eSGGlAk= Subject key identifier: D0:B7:C3:2D:FE:FF:7B:78:ED:81:FB:9E:59:96:CC:3A:92:E7:AE:A4 Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft Manifest number: 86 Signing time: Fri 05 Dec 2025 04:34:50 +0000 Manifest this update: Fri 05 Dec 2025 04:34:49 +0000 Manifest next update: Fri 12 Dec 2025 04:34:49 +0000 Files and hashes: 1: FTyY0zE8xk7bmuFaujtUPkgEWZA.crl (hash: Wm4LUzLMZN9XgFJhWP2smsI4j8PTZq/X4ew7L0ayFwA=) 2: F552E6BA05A111F082D17325C4F9AE02.roa (hash: IboM73984syJmuqfIfDKvmHL/HfnKXEhHqhYyaPXIGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Dec 5 04:34:49 2025 GMT Not After : Dec 12 04:34:49 2025 GMT Subject: CN=693260e9-d1e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:6d:53:6f:1c:5c:8a:c8:a5:b2:98:b7:79: 36:c3:9a:32:90:cc:86:75:df:4d:fe:a3:3f:ad:5b: a5:56:fd:9c:1b:e6:33:e9:68:1c:55:55:1a:d7:36: 96:8d:9b:ab:a7:3d:4c:8f:0b:5d:ad:f8:c2:de:25: ab:ae:2d:c3:7d:05:9c:3e:40:21:c7:78:18:ce:8d: f0:3f:42:f8:b6:ed:f4:c7:b9:fc:e2:6d:20:c5:80: 9d:88:21:37:74:18:28:6f:7f:df:d7:f9:75:3b:9d: 34:22:41:47:11:cc:0c:b9:75:d2:30:f8:f2:f2:aa: b1:e9:c9:c3:e5:0d:02:b6:a1:c9:b4:10:f6:47:f6: 5c:f1:ce:b6:b5:30:b3:a3:6f:ec:d9:cc:75:29:22: d7:3d:5c:fe:b6:51:f1:e8:dc:50:05:fc:3a:82:81: ec:c0:be:e3:06:19:67:8d:45:15:5a:a3:ac:f9:73: 41:88:d8:92:52:bc:09:b2:24:3e:45:b1:a1:cf:11: 02:d6:30:5e:d0:43:67:24:1d:63:c2:c3:1b:df:4f: 2a:cf:b3:47:16:1f:ff:54:16:9c:55:45:37:84:0f: 42:9a:45:7b:01:8c:d4:e2:b7:1d:1c:89:b2:5c:98: 21:6b:87:32:04:a7:9f:3e:f3:b3:cb:73:e8:cf:e4: 8d:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B7:C3:2D:FE:FF:7B:78:ED:81:FB:9E:59:96:CC:3A:92:E7:AE:A4 X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:3e:46:11:14:1c:bc:9c:8f:8f:c7:57:61:da:9f:94:4a:76: 23:6e:6d:13:f3:f0:35:aa:5a:15:c4:f5:b2:ee:04:0f:5d:1f: ff:3e:34:40:35:fc:05:d3:9c:14:cc:d6:7b:5c:ee:e2:33:97: ff:bd:1e:2b:28:5d:e0:59:ca:c0:2f:d1:1d:2a:ce:cb:f8:ed: b3:f9:9a:83:b9:df:5c:40:1c:a7:74:76:a6:1f:9a:ee:a1:08: e3:0c:9a:ff:f2:14:eb:8c:58:77:d3:2b:c9:36:1d:5a:cc:f1: b2:c6:db:6b:2e:ee:7b:e7:18:b4:e6:3e:be:ba:fe:54:ec:7e: 5d:79:2c:9d:b5:2a:de:19:dd:49:00:4c:f7:7a:64:d9:1a:46: ec:a0:45:b3:52:1e:55:6a:60:94:46:ed:67:8b:85:ba:85:10: 37:84:e2:e5:cc:68:51:12:71:da:1c:09:a6:e7:87:db:e1:c9: 9b:d3:27:8a:a3:9f:41:ef:77:48:cd:0e:e8:f0:87:39:62:44: 49:20:dd:0b:1e:10:ab:47:f5:ec:c3:3d:ec:da:03:c6:ec:ea: d2:c4:aa:c7:38:10:5d:a0:45:df:03:79:fb:fc:08:63:f2:ce: 52:a0:58:88:a8:ef:18:c6:51:49:b6:b7:9c:20:87:f3:06:56: 29:41:78:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKDE1M0M5OEQzMzEzQ0M2NEVEQjlBRTE1QUJBM0I1NDNF NDgwNDU5OTAwHhcNMjUxMjA1MDQzNDQ5WhcNMjUxMjEyMDQzNDQ5WjAYMRYwFAYD VQQDEw02OTMyNjBlOS1kMWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKltU28cXIrIpbKYt3k2w5oykMyGdd9N/qM/rVulVv2cG+Yz6WgcVVUa1zaW jZurpz1MjwtdrfjC3iWrri3DfQWcPkAhx3gYzo3wP0L4tu30x7n84m0gxYCdiCE3 dBgob3/f1/l1O500IkFHEcwMuXXSMPjy8qqx6cnD5Q0CtqHJtBD2R/Zc8c62tTCz o2/s2cx1KSLXPVz+tlHx6NxQBfw6goHswL7jBhlnjUUVWqOs+XNBiNiSUrwJsiQ+ RbGhzxEC1jBe0ENnJB1jwsMb308qz7NHFh//VBacVUU3hA9CmkV7AYzU4rcdHImy XJgha4cyBKefPvOzy3Poz+SNxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNC3wy3+ /3t47YH7nlmWzDqS566kMB8GA1UdIwQYMBaAFBU8mNMxPMZO25rhWro7VD5IBFmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80QjZFMDBGQzA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9GVHlZMHpFOHhrN2JtdUZhdWp0VVBrZ0VX WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVdaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZCQS80QjZFMDBGQzA0OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9GVHlZMHpFOHhr N2JtdUZhdWp0VVBrZ0VXWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVPkYRFBy8nI+Px1dh2p+USnYjbm0T8/A1qloVxPWy7gQPXR//PjRA NfwF05wUzNZ7XO7iM5f/vR4rKF3gWcrAL9EdKs7L+O2z+ZqDud9cQByndHamH5ru oQjjDJr/8hTrjFh30yvJNh1azPGyxttrLu575xi05j6+uv5U7H5deSydtSreGd1J AEz3emTZGkbsoEWzUh5VamCURu1ni4W6hRA3hOLlzGhREnHaHAmm54fb4cmb0yeK o59B73dIzQ7o8Ic5YkRJIN0LHhCrR/Xswz3s2gPG7OrSxKrHOBBdoEXfA3n7/Ahj 8s5SoFiIqO8YxlFJtrecIIfzBlYpQXi3 -----END CERTIFICATE-----Generated at Sun Dec 7 04:18:02 2025 by rpki-client