This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.mft File: cEw56bIwLsl6nK6Z7OeUW4Hyy-0.mft (raw, json) Hash identifier: e7TlnyAr8U7QIs/MphgzPwLEJeXyI48W9qsPpik9SfM= Subject key identifier: D4:01:B4:EB:8C:E6:6A:9A:38:C0:13:BB:99:7B:C2:31:5B:68:80:34 Authority key identifier: 70:4C:39:E9:B2:30:2E:C9:7A:9C:AE:99:EC:E7:94:5B:81:F2:CB:ED Certificate issuer: /CN=A9171996/serialNumber=704C39E9B2302EC97A9CAE99ECE7945B81F2CBED Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.mft Manifest number: 19 Signing time: Fri 05 Dec 2025 05:40:16 +0000 Manifest this update: Fri 05 Dec 2025 05:40:16 +0000 Manifest next update: Fri 12 Dec 2025 05:40:16 +0000 Files and hashes: 1: cEw56bIwLsl6nK6Z7OeUW4Hyy-0.crl (hash: k03LNLBJ3hb6JkOIw7cPe22bbcDxsioAFZYiWxMVWsI=) 2: 125C30DAAE6811F09E31E129C4F9AE02.roa (hash: AgPQ+g0vVS1AcBmkA5KDmZRoTP4TQytZY60/q5U1Jhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.crl rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171996, serialNumber=704C39E9B2302EC97A9CAE99ECE7945B81F2CBED Validity Not Before: Dec 5 05:40:16 2025 GMT Not After : Dec 12 05:40:16 2025 GMT Subject: CN=69327040-0344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:83:8a:9c:0f:55:8e:cb:64:ce:e2:b4:78:b3: dc:ea:18:28:a0:3e:c0:85:2e:35:a4:f0:d6:89:f1: 76:e8:cc:0f:98:81:52:36:fa:89:af:cc:10:40:fd: 09:b1:2a:62:5e:bc:01:47:0c:5e:c0:2f:9c:6d:a4: 6b:44:b8:1a:90:51:7f:c0:06:6c:ed:d0:c4:15:9c: da:d3:0d:a0:e9:5c:8d:7b:60:2d:86:33:21:69:e8: c2:86:1c:5d:e5:61:d4:65:66:cf:4e:c4:d7:d7:ea: 38:2b:a9:9b:2f:9e:ed:eb:48:a5:63:93:73:dc:0f: 74:b1:68:3c:73:b5:c1:80:1f:9e:8c:8a:1b:bb:05: 7b:54:87:a6:69:b8:28:ec:b0:19:28:fd:83:f2:7d: cc:97:be:d4:62:dc:0f:18:48:43:0b:5e:fe:c4:18: fe:b8:c5:be:13:87:5b:05:a8:a5:f9:49:62:99:54: f9:63:1d:d8:70:25:2e:dc:69:18:c2:c4:23:71:0a: 4b:ef:b7:e5:bb:17:19:bc:27:7d:fe:84:41:0e:d1: 8c:d9:4b:9c:1b:83:63:11:8d:d3:a0:ab:88:a1:94: 8d:3b:c0:3c:40:16:0c:6e:f8:37:13:a1:a2:7a:b0: a0:49:42:e4:58:d4:84:62:aa:8d:4e:fb:2c:24:38: b5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:01:B4:EB:8C:E6:6A:9A:38:C0:13:BB:99:7B:C2:31:5B:68:80:34 X509v3 Authority Key Identifier: keyid:70:4C:39:E9:B2:30:2E:C9:7A:9C:AE:99:EC:E7:94:5B:81:F2:CB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:13:03:73:b5:ef:04:19:32:62:34:cd:10:2f:6b:e7:93:b0: 7f:91:8e:57:18:05:79:38:59:4f:c2:f6:5f:e6:2b:da:8d:8e: 2f:46:74:3e:93:6f:20:14:ad:0f:e5:22:f3:f0:a1:56:67:e8: 74:62:5d:04:1e:08:ca:60:e6:f7:2a:62:09:4c:cb:72:85:6e: b6:b1:ef:3a:b4:2a:62:45:95:79:82:e0:d9:89:eb:d6:36:e7: 68:f9:f1:28:a7:54:56:29:74:23:cd:ef:da:ae:76:1f:f9:3e: ac:f0:b8:30:a8:d1:bd:ba:0f:3b:3b:d4:3e:c3:fa:c6:89:63: a4:e1:b6:51:fa:da:e8:64:92:41:b7:3d:d1:cf:71:88:7c:74: 50:64:38:2e:b9:94:b7:2c:99:3c:11:2b:3d:6e:59:f5:34:bb: 50:fa:a2:95:67:4a:0e:38:f9:46:93:13:3d:50:82:92:8e:98: be:92:53:13:76:ef:08:6a:00:d4:46:68:f4:f3:61:15:83:9f: 72:38:5d:7d:40:b1:48:a6:60:cd:8a:af:ae:23:be:97:2f:2b: 86:75:47:33:df:05:b7:48:e7:99:35:9a:dc:03:e5:17:00:1b: 83:e4:fd:14:fd:de:69:07:6e:03:f4:06:57:75:a2:a2:20:c1: 95:cc:a1:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTk5NjExMC8GA1UEBRMoNzA0QzM5RTlCMjMwMkVDOTdBOUNBRTk5RUNFNzk0NUI4 MUYyQ0JFRDAeFw0yNTEyMDUwNTQwMTZaFw0yNTEyMTIwNTQwMTZaMBgxFjAUBgNV BAMTDTY5MzI3MDQwLTAzNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvg4qcD1WOy2TO4rR4s9zqGCigPsCFLjWk8NaJ8XbozA+YgVI2+omvzBBA/Qmx KmJevAFHDF7AL5xtpGtEuBqQUX/ABmzt0MQVnNrTDaDpXI17YC2GMyFp6MKGHF3l YdRlZs9OxNfX6jgrqZsvnu3rSKVjk3PcD3SxaDxztcGAH56Mihu7BXtUh6ZpuCjs sBko/YPyfcyXvtRi3A8YSEMLXv7EGP64xb4Th1sFqKX5SWKZVPljHdhwJS7caRjC xCNxCkvvt+W7Fxm8J33+hEEO0YzZS5wbg2MRjdOgq4ihlI07wDxAFgxu+DcToaJ6 sKBJQuRY1IRiqo1O+ywkOLWRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1AG064zm apo4wBO7mXvCMVtogDQwHwYDVR0jBBgwFoAUcEw56bIwLsl6nK6Z7OeUW4Hyy+0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxOTk2L0FGN0Y0RDZDQUU2 NzExRjBCNTM0RjYyNkM0RjlBRTAyL2NFdzU2Ykl3THNsNm5LNlo3T2VVVzRIeXkt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY0V3NTZiSXdMc2w2bks2WjdPZVVXNEh5eS0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcx OTk2L0FGN0Y0RDZDQUU2NzExRjBCNTM0RjYyNkM0RjlBRTAyL2NFdzU2Ykl3THNs Nm5LNlo3T2VVVzRIeXktMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFsTA3O17wQZMmI0zRAva+eTsH+RjlcYBXk4WU/C9l/mK9qNji9GdD6T byAUrQ/lIvPwoVZn6HRiXQQeCMpg5vcqYglMy3KFbrax7zq0KmJFlXmC4NmJ69Y2 52j58SinVFYpdCPN79qudh/5PqzwuDCo0b26Dzs71D7D+saJY6ThtlH62uhkkkG3 PdHPcYh8dFBkOC65lLcsmTwRKz1uWfU0u1D6opVnSg44+UaTEz1QgpKOmL6SUxN2 7whqANRGaPTzYRWDn3I4XX1AsUimYM2Kr64jvpcvK4Z1RzPfBbdI55k1mtwD5RcA G4Pk/RT93mkHbgP0Bld1oqIgwZXMoY0= -----END CERTIFICATE-----Generated at Sun Dec 7 01:13:53 2025 by rpki-client