This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft File: aRiqcfNrBGNTplzAiXixjv-59cY.mft (raw, json) Hash identifier: DR4KvwAJNRVtYvgK5cyTpraNPNdNJYsUYZK55mIuXwc= Subject key identifier: 16:03:46:BC:71:E3:15:D0:FA:43:8E:F6:B0:6B:08:92:CC:13:71:D7 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft Manifest number: E2 Signing time: Fri 05 Dec 2025 03:44:12 +0000 Manifest this update: Fri 05 Dec 2025 03:44:12 +0000 Manifest next update: Fri 12 Dec 2025 03:44:12 +0000 Files and hashes: 1: aRiqcfNrBGNTplzAiXixjv-59cY.crl (hash: GB2p+EkArJpcYLPTZxN00H4dMslBmQy4A3pbiKF5GUo=) 2: A54CA35E853B11EFB513D149C4F9AE02.roa (hash: 2KKCuwPRzvtxCM2tfqPBKgcx+LBlA+mjEQsE3gjTcg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Dec 5 03:44:12 2025 GMT Not After : Dec 12 03:44:12 2025 GMT Subject: CN=6932550c-112a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1f:52:a1:bd:ff:f0:22:93:b2:66:ee:86:e4: 54:82:7a:11:86:0b:93:63:84:d2:d5:64:cd:76:69: 3d:34:dc:46:0e:86:14:3c:9a:8a:5b:d9:57:9f:2f: 52:5d:b1:34:e9:46:dd:54:7e:20:83:61:fd:69:53: 8a:25:3c:d4:3c:ad:dc:d8:8b:09:c0:a6:ca:4a:16: 95:b6:ff:fb:ea:e0:8f:b5:f7:9f:14:61:2d:7c:02: 0a:12:9a:a1:27:ca:a1:a5:a2:c9:26:be:92:3a:24: de:16:78:f6:7a:b9:c7:cb:70:a8:4a:54:73:5c:9d: 8d:20:6b:c7:a4:da:28:99:db:1a:72:d7:79:bb:ec: 96:23:d5:65:6c:3e:27:25:7a:ee:08:dc:2f:9c:de: 5f:d9:cb:ec:33:00:4d:a6:26:cf:88:91:28:92:a2: 2c:98:cc:55:bf:d9:19:3a:0f:bb:f4:d9:00:28:01: c1:1b:b3:b8:80:d8:79:4f:1d:54:47:e4:d6:79:d1: 20:3e:d1:d6:bb:58:8f:06:bd:e6:a0:aa:94:0f:69: 7e:bd:0c:f2:a7:6d:62:cf:f2:6a:b8:3f:e8:88:ec: c1:cb:33:96:30:2a:b7:cb:77:d3:06:22:b3:34:e6: 71:2c:aa:55:7c:00:b9:e2:0a:c2:a1:2a:77:ff:7c: 65:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:03:46:BC:71:E3:15:D0:FA:43:8E:F6:B0:6B:08:92:CC:13:71:D7 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:f0:f8:71:a1:34:19:39:36:ac:25:0d:69:ae:2f:a3:5b:26: d3:67:68:ec:bc:59:19:63:38:eb:7e:c9:14:2c:84:c4:e8:72: 59:05:02:ce:3a:f7:f6:38:ad:ec:d6:96:92:c7:6a:18:85:01: a9:7a:60:21:fd:6c:c8:0a:fd:2a:7d:18:47:15:57:63:e7:7d: 20:3c:68:d5:78:ef:f7:1e:84:9e:f2:72:2f:41:ba:a0:53:7f: 2f:7f:c1:a9:87:8e:50:d3:0f:7e:7b:de:cd:bb:56:23:08:a6: e0:9a:96:10:88:5a:03:11:85:63:10:98:2d:da:db:d4:01:b5: c6:8b:13:1d:67:92:bc:74:f9:e2:43:a4:9b:98:55:55:4c:a3: 8f:da:4c:25:b4:8b:50:9b:2d:89:0e:c9:c7:bd:ea:0f:26:9a: 72:46:cb:57:78:54:9b:3e:55:f0:f1:c8:5d:a6:59:e2:99:a3: cd:17:a9:37:3a:18:d4:13:4a:36:fe:6f:83:0d:66:44:ca:10: c4:11:d9:a0:14:bd:02:f2:6d:4e:78:0d:ab:30:51:93:4d:bc: 68:86:f9:e9:37:87:ed:ec:ae:22:ab:ab:2c:5c:de:a5:1f:ba: 5e:e3:fb:6f:8e:de:cb:b0:a6:76:ba:2d:9a:5f:22:a5:52:ba: e9:be:24:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUxMjA1MDM0NDEyWhcNMjUxMjEyMDM0NDEyWjAYMRYwFAYD VQQDEw02OTMyNTUwYy0xMTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtR9Sob3/8CKTsmbuhuRUgnoRhguTY4TS1WTNdmk9NNxGDoYUPJqKW9lXny9S XbE06UbdVH4gg2H9aVOKJTzUPK3c2IsJwKbKShaVtv/76uCPtfefFGEtfAIKEpqh J8qhpaLJJr6SOiTeFnj2ernHy3CoSlRzXJ2NIGvHpNoomdsactd5u+yWI9VlbD4n JXruCNwvnN5f2cvsMwBNpibPiJEokqIsmMxVv9kZOg+79NkAKAHBG7O4gNh5Tx1U R+TWedEgPtHWu1iPBr3moKqUD2l+vQzyp21iz/JquD/oiOzByzOWMCq3y3fTBiKz NOZxLKpVfAC54grCoSp3/3xl0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYDRrxx 4xXQ+kOO9rBrCJLME3HXMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEVFRC8zNzQwMkFERTg1M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJH TlRwbHpBaVhpeGp2LTU5Y1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDE8PhxoTQZOTasJQ1pri+jWybTZ2jsvFkZYzjrfskULITE6HJZBQLO Ovf2OK3s1paSx2oYhQGpemAh/WzICv0qfRhHFVdj530gPGjVeO/3HoSe8nIvQbqg U38vf8Gph45Q0w9+e97Nu1YjCKbgmpYQiFoDEYVjEJgt2tvUAbXGixMdZ5K8dPni Q6SbmFVVTKOP2kwltItQmy2JDsnHveoPJppyRstXeFSbPlXw8chdplnimaPNF6k3 OhjUE0o2/m+DDWZEyhDEEdmgFL0C8m1OeA2rMFGTTbxohvnpN4ft7K4iq6ssXN6l H7pe4/tvjt7LsKZ2ui2aXyKlUrrpviR7 -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:12 2025 by rpki-client