This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft File: AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft (raw, json) Hash identifier: kSIdHYmsD6uIqzAHYwZ1GbonYP8MTwiVEj1M6R92mG4= Subject key identifier: 6E:68:D0:1A:30:54:11:28:15:F7:2A:43:BE:F2:FA:0E:E8:B6:ED:56 Authority key identifier: 00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 Certificate issuer: /CN=A9170DF0/serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Certificate serial: 01B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft Manifest number: 01B3 Signing time: Fri 05 Dec 2025 01:22:32 +0000 Manifest this update: Fri 05 Dec 2025 01:22:31 +0000 Manifest next update: Fri 12 Dec 2025 01:22:31 +0000 Files and hashes: 1: AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl (hash: QOvFHA/2COOlmeJDtEtgPZllOeRZc0liNxq9fcR4uXo=) 2: B022AC18368811EEB1BFE56AC4F9AE02.roa (hash: Zg2pOaZOOb5sHUdXJNoHkdhEmOD4YyAjMP6N4/VUVYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DF0, serialNumber=0008E2EEBE6C55F2594949A477F8677BFF4A7FE4 Validity Not Before: Dec 5 01:22:31 2025 GMT Not After : Dec 12 01:22:31 2025 GMT Subject: CN=693233d7-6aa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:af:6e:a8:1f:e8:7a:75:07:36:94:75:f7:31: 46:9c:d5:63:b4:ef:6d:3b:db:64:09:3f:16:1e:97: 13:91:27:56:a9:01:e5:81:dc:f5:bc:3e:27:94:7f: f8:ea:2e:63:26:76:3a:7a:c9:43:af:14:a7:86:8d: 06:59:1e:f7:db:dc:3e:df:b7:36:91:3a:2b:93:01: 1c:aa:3c:db:a2:ee:cd:a9:e2:14:75:27:e6:43:04: 67:33:b3:44:23:2f:b8:eb:7c:95:2f:d1:37:36:2e: 22:e1:b6:6a:7a:66:ae:d6:d5:04:32:5c:ac:80:4b: f0:03:69:76:da:67:37:54:c4:e9:2e:d5:dd:96:98: 12:fb:81:d7:c8:94:fe:8e:19:22:d3:63:65:73:ff: a2:8f:b4:15:08:c9:1b:56:37:c5:fe:6c:9c:fc:ef: b0:15:8b:45:c9:97:9d:d7:04:87:ff:af:4e:2a:40: 0e:cd:68:f2:f0:0d:11:ac:ef:19:6a:36:73:6c:19: 69:4f:69:a7:0a:84:cb:75:19:c9:f7:55:9f:ae:d1: dd:97:17:ca:ac:08:7d:b2:26:31:9e:2b:2c:19:be: 4e:73:a3:10:70:9b:e3:7d:d0:55:e4:a4:9d:54:26: fb:e1:6e:b4:41:72:23:d4:d7:40:35:64:80:2a:b0: a6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:68:D0:1A:30:54:11:28:15:F7:2A:43:BE:F2:FA:0E:E8:B6:ED:56 X509v3 Authority Key Identifier: keyid:00:08:E2:EE:BE:6C:55:F2:59:49:49:A4:77:F8:67:7B:FF:4A:7F:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AAji7r5sVfJZSUmkd_hne_9Kf-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DF0/5DEFACF0364411EEACE5C72EC4F9AE02/AAji7r5sVfJZSUmkd_hne_9Kf-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:2f:43:e7:09:5e:05:b1:a1:1b:88:96:e6:fc:06:71:78:4b: 06:59:34:df:3f:1a:d1:ff:98:ae:53:4f:1b:0d:ac:69:1b:a3: 43:fe:07:d9:36:8c:d5:d2:25:96:c0:27:e7:fb:45:c6:41:04: a9:d1:ef:98:95:59:53:49:7c:de:8d:e7:27:75:4a:ee:9f:6d: e7:3b:05:7a:38:c2:2f:0c:9f:01:cd:5d:83:2d:8a:21:e8:fe: cf:83:9f:81:48:a7:01:7a:5d:16:26:45:02:05:ed:1b:c7:1b: 76:15:1e:b5:6f:3d:28:df:e1:18:07:a3:a0:6a:ce:3a:c6:53: 67:27:cf:8d:40:ce:be:a8:7e:ef:0f:fd:31:0f:db:fe:4c:d6: 53:45:4a:2c:bf:8b:2f:fc:ad:04:c8:33:52:d3:bb:60:e6:fc: 34:a6:29:8e:63:a1:e6:52:ae:6b:1d:a4:e3:34:c1:8f:e9:25: 4d:dd:37:9c:6e:4a:b6:9f:91:48:af:df:3c:d3:e1:ba:49:54: f3:85:48:03:00:93:35:6b:a5:01:97:3c:66:a5:29:39:52:5e: 57:72:d0:9a:16:62:49:98:a6:41:7d:fd:5b:dd:13:aa:0c:30: 1b:d1:ff:6d:16:f2:98:ef:71:07:04:6d:56:ee:e0:f1:66:8b: 0b:e0:e9:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERjAxMTAvBgNVBAUTKDAwMDhFMkVFQkU2QzU1RjI1OTQ5NDlBNDc3Rjg2NzdC RkY0QTdGRTQwHhcNMjUxMjA1MDEyMjMxWhcNMjUxMjEyMDEyMjMxWjAYMRYwFAYD VQQDEw02OTMyMzNkNy02YWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr69uqB/oenUHNpR19zFGnNVjtO9tO9tkCT8WHpcTkSdWqQHlgdz1vD4nlH/4 6i5jJnY6eslDrxSnho0GWR7329w+37c2kTorkwEcqjzbou7NqeIUdSfmQwRnM7NE Iy+463yVL9E3Ni4i4bZqemau1tUEMlysgEvwA2l22mc3VMTpLtXdlpgS+4HXyJT+ jhki02Nlc/+ij7QVCMkbVjfF/myc/O+wFYtFyZed1wSH/69OKkAOzWjy8A0RrO8Z ajZzbBlpT2mnCoTLdRnJ91WfrtHdlxfKrAh9siYxnissGb5Oc6MQcJvjfdBV5KSd VCb74W60QXIj1NdANWSAKrCm+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5o0Bow VBEoFfcqQ77y+g7otu1WMB8GA1UdIwQYMBaAFAAI4u6+bFXyWUlJpHf4Z3v/Sn/k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MERGMC81REVGQUNGMDM2 NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1ZmSlpTVW1rZF9obmVfOUtm LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0FBamk3cjVzVmZKWlNVbWtkX2huZV85S2YtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MERGMC81REVGQUNGMDM2NDQxMUVFQUNFNUM3MkVDNEY5QUUwMi9BQWppN3I1c1Zm SlpTVW1rZF9obmVfOUtmLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0L0PnCV4FsaEbiJbm/AZxeEsGWTTfPxrR/5iuU08bDaxpG6ND/gfZ NozV0iWWwCfn+0XGQQSp0e+YlVlTSXzejecndUrun23nOwV6OMIvDJ8BzV2DLYoh 6P7Pg5+BSKcBel0WJkUCBe0bxxt2FR61bz0o3+EYB6Ogas46xlNnJ8+NQM6+qH7v D/0xD9v+TNZTRUosv4sv/K0EyDNS07tg5vw0pimOY6HmUq5rHaTjNMGP6SVN3Tec bkq2n5FIr9880+G6SVTzhUgDAJM1a6UBlzxmpSk5Ul5XctCaFmJJmKZBff1b3ROq DDAb0f9tFvKY73EHBG1W7uDxZosL4Ony -----END CERTIFICATE-----Generated at Sat Dec 6 22:28:47 2025 by rpki-client