This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: 0CEst4K+MytFbg7PcFrT6YXUXCVFmFqwFQ/XkYN34Rg= Subject key identifier: 54:73:BA:0B:91:51:69:A9:C4:38:AF:B4:E2:12:9B:0E:83:E2:40:E0 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 055F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 055A Signing time: Sat 06 Dec 2025 22:10:30 +0000 Manifest this update: Sat 06 Dec 2025 22:10:29 +0000 Manifest next update: Sat 13 Dec 2025 22:10:29 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: XKGU6NPUzY+1CCqzUi8laHvRUaGSU+8z/gq1nby+RMw=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PG236be1E8/bdu91IiVOrP0tedgETPtMVawr3zFO1mw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 22:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Dec 6 22:10:29 2025 GMT Not After : Dec 13 22:10:29 2025 GMT Subject: CN=6934a9d6-ba38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2a:10:5e:64:95:0b:ee:00:22:a4:58:6f:5c: 86:86:6e:47:9e:b0:cf:08:13:b5:2a:25:33:b7:f7: 5f:c4:3e:74:f0:e5:5e:60:7b:47:90:16:21:aa:da: 41:31:85:35:04:2d:09:ba:84:d3:4d:ba:4c:4c:7e: f5:de:ab:f2:0e:b5:6d:af:59:4b:9d:15:7b:ab:11: 64:41:0a:b0:25:e9:85:6a:48:54:7a:78:0c:c4:33: 9f:ca:eb:cd:5d:be:99:1c:cc:ac:0f:49:40:5e:11: 62:26:dc:c8:97:9c:6b:ee:f0:60:5c:ad:12:c3:df: 67:6d:b5:bd:95:cb:34:9f:8d:6a:50:7e:18:e9:d8: 1e:dd:41:84:25:4c:a7:09:70:d9:e0:a7:13:ef:85: 84:9e:42:99:22:eb:ee:d4:3d:e8:fd:ff:45:4d:90: 26:7c:48:0c:09:fc:49:3a:1d:4b:bd:c1:b4:32:44: b2:37:7a:a7:2a:39:da:21:25:bd:5c:dc:86:53:a4: 8a:e4:bb:93:bf:8d:0f:a5:21:fb:d4:9d:38:47:dc: 15:13:de:10:f0:85:44:3b:72:d8:bc:ac:8a:8d:db: 61:73:ae:f0:3a:22:54:be:0f:e5:5b:ac:1c:b6:88: 63:da:b8:33:5e:f4:eb:3e:28:fd:e2:d4:61:bf:1f: 76:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:73:BA:0B:91:51:69:A9:C4:38:AF:B4:E2:12:9B:0E:83:E2:40:E0 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:1d:b3:36:b1:70:c2:7e:3e:db:b1:6b:42:47:a6:09:88:fb: 91:3b:3a:43:a5:6b:e2:af:8b:9d:6b:63:20:ac:17:54:ca:c0: 3b:38:37:e9:1e:fa:db:a7:4d:e6:fa:c7:22:26:df:3a:19:e1: 85:20:ef:af:af:ac:2a:1a:49:8c:25:e4:62:99:c6:e8:9c:81: 2e:6b:7a:58:95:36:8b:4a:6d:50:a4:33:60:25:70:b6:2f:ea: ce:a9:80:6b:e6:7b:ab:6b:83:6e:a3:f6:84:d2:3c:91:5e:58: 82:f2:de:47:c6:45:e9:29:bc:e8:1d:e2:2e:68:90:43:d9:85: 69:23:d0:04:55:7f:db:d3:ed:cd:05:96:7d:52:ee:fb:39:fa: f9:db:ef:a6:ef:fd:d9:98:4a:18:84:69:24:b3:22:a2:c2:05: 77:6a:91:3f:cb:45:0f:00:0f:81:bd:4f:21:78:dd:13:8f:86: d3:38:d1:13:df:bc:77:19:38:f5:22:af:19:07:1e:a7:b5:c1: 86:c6:56:b7:9c:ea:98:12:a2:aa:ec:49:0d:5c:d2:e3:fc:62: 21:67:09:b3:77:1e:31:13:23:53:fb:16:50:89:c0:98:27:bb: 99:e0:d7:f0:4f:9f:be:9e:7b:24:be:7e:35:01:a6:a7:35:13: 62:2b:a4:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUxMjA2MjIxMDI5WhcNMjUxMjEzMjIxMDI5WjAYMRYwFAYD VQQDEw02OTM0YTlkNi1iYTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtioQXmSVC+4AIqRYb1yGhm5HnrDPCBO1KiUzt/dfxD508OVeYHtHkBYhqtpB MYU1BC0JuoTTTbpMTH713qvyDrVtr1lLnRV7qxFkQQqwJemFakhUengMxDOfyuvN Xb6ZHMysD0lAXhFiJtzIl5xr7vBgXK0Sw99nbbW9lcs0n41qUH4Y6dge3UGEJUyn CXDZ4KcT74WEnkKZIuvu1D3o/f9FTZAmfEgMCfxJOh1LvcG0MkSyN3qnKjnaISW9 XNyGU6SK5LuTv40PpSH71J04R9wVE94Q8IVEO3LYvKyKjdthc67wOiJUvg/lW6wc tohj2rgzXvTrPij94tRhvx92WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRzuguR UWmpxDivtOISmw6D4kDgMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkHbM2sXDCfj7bsWtCR6YJiPuROzpDpWvir4uda2MgrBdUysA7ODfp Hvrbp03m+sciJt86GeGFIO+vr6wqGkmMJeRimcbonIEua3pYlTaLSm1QpDNgJXC2 L+rOqYBr5nura4Nuo/aE0jyRXliC8t5HxkXpKbzoHeIuaJBD2YVpI9AEVX/b0+3N BZZ9Uu77Ofr52++m7/3ZmEoYhGkksyKiwgV3apE/y0UPAA+BvU8heN0Tj4bTONET 37x3GTj1Iq8ZBx6ntcGGxla3nOqYEqKq7EkNXNLj/GIhZwmzdx4xEyNT+xZQicCY J7uZ4NfwT5++nnskvn41AaanNRNiK6Rm -----END CERTIFICATE-----Generated at Sun Dec 7 03:39:32 2025 by rpki-client