This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: DH/Qg8IFN/oMR5aIy66u4DZ0UhAQgx8vnlhoHqPpcOE= Subject key identifier: 55:7A:21:FE:71:13:B7:67:7D:38:D5:8F:AB:7D:55:0F:13:54:96:D7 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 0201 Signing time: Sun 07 Dec 2025 00:56:02 +0000 Manifest this update: Sun 07 Dec 2025 00:56:01 +0000 Manifest next update: Sun 14 Dec 2025 00:56:01 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: PcE2ejNBly/NMavn7TxIRgoioldjn9ZRKvelDbozMAE=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:56:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Dec 7 00:56:01 2025 GMT Not After : Dec 14 00:56:01 2025 GMT Subject: CN=6934d0a2-2d20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7c:a2:34:6c:0d:89:9f:17:2e:b2:e4:d1:4e: 22:7b:87:da:58:ed:dd:53:54:7e:99:65:87:58:08: 07:e5:aa:fd:0e:75:ea:0e:fc:82:91:37:bd:19:56: 3f:f9:f2:83:13:16:4f:6f:99:70:04:7a:16:9e:bc: 3c:5e:b7:22:28:b2:d0:6e:20:a6:40:cc:08:2d:60: 12:23:78:c4:71:dd:10:df:61:18:1c:e7:53:a7:b7: 77:03:0c:13:66:17:d9:02:ab:0b:e1:35:2b:5c:d0: 86:dd:94:cb:07:e9:6f:4a:c0:13:2b:94:d2:94:79: 20:03:5a:8f:7d:2e:94:50:6e:9b:7f:f5:62:e7:14: d0:09:f9:d9:48:65:c5:05:ea:fc:a9:23:2f:b6:b2: 3d:9e:00:04:4c:b2:9a:32:6a:bd:68:69:44:7f:68: 62:55:f6:91:db:3d:92:01:d9:ad:d2:d1:1d:a4:47: 0a:e5:f8:21:91:46:de:a6:33:f4:1a:b5:b2:95:21: 5e:6b:5d:af:b9:56:45:a3:06:b8:47:0c:28:37:d9: e6:b0:b1:94:b4:1a:e7:e0:47:6e:5f:f7:64:c9:7f: 67:95:3b:5a:88:d5:d7:32:78:1d:5f:b8:c5:64:0f: 6a:35:14:c9:7a:e4:0c:c5:1f:f7:87:a7:67:05:ff: 9a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7A:21:FE:71:13:B7:67:7D:38:D5:8F:AB:7D:55:0F:13:54:96:D7 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:ad:f3:63:4e:d7:a4:f5:a5:4d:71:09:ac:6a:aa:f4:5c:09: 7b:f2:cf:4f:5a:50:5c:d5:7b:03:6a:a0:fe:51:f9:7b:f6:46: 6c:d2:b9:60:36:40:ca:f1:dc:b6:51:47:f9:e4:74:e8:1f:84: 3b:44:1f:94:fa:2d:53:f1:ca:3e:cd:fc:9e:cf:ac:50:c0:3a: 3b:ce:cc:9d:f0:37:a0:d9:9b:8d:43:a4:b9:d4:81:87:ee:e8: d1:a2:31:14:b6:b6:16:45:fe:07:27:95:e6:b8:75:4f:d6:69: 09:81:6b:cd:c8:f6:ef:54:8d:af:ff:f6:47:01:04:03:58:46: 57:b1:46:53:92:85:3e:6f:93:e6:6f:fe:8c:55:b0:04:d8:e3: ad:7c:12:ae:0d:02:a3:0b:52:76:8c:c4:e4:cc:78:eb:bc:2b: 1e:3c:e9:c1:d1:c2:bb:43:d2:16:74:5e:a2:f6:2d:e6:c2:c8: d1:6c:41:25:cf:fd:25:81:36:90:83:a6:50:f1:5c:4e:b8:e6: 4c:8f:44:03:b3:88:8f:d4:05:18:a4:a1:22:49:68:72:8a:82: 70:76:15:f2:91:9a:ac:03:ea:9a:88:bb:7e:14:82:0c:64:bf: c7:c1:0c:91:fb:d0:63:40:a8:21:5c:1d:39:a2:b5:bd:63:43: 71:f5:35:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUxMjA3MDA1NjAxWhcNMjUxMjE0MDA1NjAxWjAYMRYwFAYD VQQDEw02OTM0ZDBhMi0yZDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXyiNGwNiZ8XLrLk0U4ie4faWO3dU1R+mWWHWAgH5ar9DnXqDvyCkTe9GVY/ +fKDExZPb5lwBHoWnrw8XrciKLLQbiCmQMwILWASI3jEcd0Q32EYHOdTp7d3AwwT ZhfZAqsL4TUrXNCG3ZTLB+lvSsATK5TSlHkgA1qPfS6UUG6bf/Vi5xTQCfnZSGXF Ber8qSMvtrI9ngAETLKaMmq9aGlEf2hiVfaR2z2SAdmt0tEdpEcK5fghkUbepjP0 GrWylSFea12vuVZFowa4RwwoN9nmsLGUtBrn4EduX/dkyX9nlTtaiNXXMngdX7jF ZA9qNRTJeuQMxR/3h6dnBf+aZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFV6If5x E7dnfTjVj6t9VQ8TVJbXMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYrfNjTtek9aVNcQmsaqr0XAl78s9PWlBc1XsDaqD+Ufl79kZs0rlg NkDK8dy2UUf55HToH4Q7RB+U+i1T8co+zfyez6xQwDo7zsyd8Deg2ZuNQ6S51IGH 7ujRojEUtrYWRf4HJ5XmuHVP1mkJgWvNyPbvVI2v//ZHAQQDWEZXsUZTkoU+b5Pm b/6MVbAE2OOtfBKuDQKjC1J2jMTkzHjrvCsePOnB0cK7Q9IWdF6i9i3mwsjRbEEl z/0lgTaQg6ZQ8VxOuOZMj0QDs4iP1AUYpKEiSWhyioJwdhXykZqsA+qaiLt+FIIM ZL/HwQyR+9BjQKghXB05orW9Y0Nx9TXi -----END CERTIFICATE-----Generated at Sun Dec 7 06:19:15 2025 by rpki-client