This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: 0hagiZEWBXSuFg71ukldwvJhHNI6IYKCGdcUu1Oct+c= Subject key identifier: 55:7B:E5:E8:25:90:64:49:AD:43:9A:A3:8C:F6:1A:7C:12:0C:66:C8 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B58 Signing time: Thu 04 Dec 2025 18:32:07 +0000 Manifest this update: Thu 04 Dec 2025 18:32:06 +0000 Manifest next update: Thu 11 Dec 2025 18:32:06 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: 9zFuGAVtayBB/ePCsB/zM8Zx/avFUFcmYBiOr0AAqco=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: MFAkJWqLTCFjc2AZoDqXIN5GFKdjipOlXptUILZsE5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2912 (0xb60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Dec 4 18:32:06 2025 GMT Not After : Dec 11 18:32:06 2025 GMT Subject: CN=6931d3a6-2c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:48:1d:86:6e:7f:12:24:6f:19:3c:6f:0f:72: 0a:67:23:ba:63:5a:69:de:8a:4e:34:88:4f:c2:d9: c7:7a:b6:e8:cf:96:1c:d0:75:29:a1:9c:48:05:d6: 1d:e0:ca:64:31:67:a0:b9:ce:3e:1e:4f:ce:12:84: d3:94:c9:ea:d1:54:b0:16:d4:f5:7b:3e:93:ec:3b: 99:19:4b:74:e0:7c:1e:94:c9:39:02:3b:95:99:5b: ec:e9:66:fb:49:78:96:26:ba:bf:79:f0:2d:55:e3: bf:0d:03:25:e6:46:79:39:a9:7d:94:00:79:5f:b4: b1:d6:c3:f7:30:0e:e5:d0:d9:28:f3:21:ba:f4:17: 63:e3:e6:c1:e3:05:e3:01:5a:21:7f:8b:9b:ee:17: 8e:bf:6c:cd:7d:22:0c:88:2f:9c:5a:8d:d6:ec:b3: e7:d9:ee:0f:c2:51:cf:5f:77:58:31:90:70:b7:ca: ed:5d:7f:de:2a:f6:fa:e3:ba:dd:7d:11:56:dc:89: 94:29:6e:66:be:7c:5f:ce:a8:f9:b0:df:1e:10:5e: 52:a1:3a:36:59:40:d5:ec:c8:22:af:90:5b:24:4a: 40:12:b5:bd:3e:2a:92:af:dc:3f:9d:ea:c5:13:f2: 89:02:ef:55:27:85:df:6e:3d:e7:c6:e7:a9:87:b5: f9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:7B:E5:E8:25:90:64:49:AD:43:9A:A3:8C:F6:1A:7C:12:0C:66:C8 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:f8:71:a7:f0:5f:ce:1a:f4:fd:a8:ba:b0:a8:c4:ec:c0:92: f0:e9:74:88:42:f5:27:45:a8:5a:bc:c3:48:4f:40:d2:42:c2: f8:24:9d:8b:f2:ea:15:70:8f:40:b8:13:01:3c:cd:1b:da:a4: c7:b6:34:a9:fe:a0:39:19:71:5e:10:19:50:8a:bf:f1:76:35: ee:a2:fc:e2:f9:d1:29:ea:09:2b:da:9f:81:45:b2:01:48:3b: 58:b2:34:71:2f:6a:3c:20:ef:e2:d9:e3:10:21:b2:2f:86:59: 15:49:b3:cd:71:bf:37:98:15:07:03:d2:25:77:54:02:41:27: f0:a8:9d:19:b7:3f:a7:0a:dc:3f:e9:69:66:f3:17:05:0f:17: cb:68:b8:0a:31:a1:b7:ea:0f:24:6e:36:bd:67:d7:06:ab:ce: 9b:af:5c:8c:4e:11:71:e3:c0:92:55:5a:a6:39:0d:a8:97:16: 0e:d6:43:ab:ed:07:ed:cc:03:ce:30:ee:07:b2:cc:4b:35:27: f3:2f:96:11:2e:64:f6:42:c0:31:bd:01:a9:82:0d:23:98:32: eb:0d:45:2f:09:76:ad:65:b4:0b:19:5e:c1:c7:ae:32:75:11: 6b:d6:e4:06:3a:87:23:41:47:41:c5:8d:45:29:22:2a:73:97: 5c:15:e5:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUxMjA0MTgzMjA2WhcNMjUxMjExMTgzMjA2WjAYMRYwFAYD VQQDEw02OTMxZDNhNi0yYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0gdhm5/EiRvGTxvD3IKZyO6Y1pp3opONIhPwtnHerboz5Yc0HUpoZxIBdYd 4MpkMWeguc4+Hk/OEoTTlMnq0VSwFtT1ez6T7DuZGUt04HwelMk5AjuVmVvs6Wb7 SXiWJrq/efAtVeO/DQMl5kZ5Oal9lAB5X7Sx1sP3MA7l0Nko8yG69Bdj4+bB4wXj AVohf4ub7heOv2zNfSIMiC+cWo3W7LPn2e4PwlHPX3dYMZBwt8rtXX/eKvb647rd fRFW3ImUKW5mvnxfzqj5sN8eEF5SoTo2WUDV7Mgir5BbJEpAErW9PiqSr9w/nerF E/KJAu9VJ4Xfbj3nxueph7X5WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFV75egl kGRJrUOao4z2GnwSDGbIMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0+HGn8F/OGvT9qLqwqMTswJLw6XSIQvUnRahavMNIT0DSQsL4JJ2L 8uoVcI9AuBMBPM0b2qTHtjSp/qA5GXFeEBlQir/xdjXuovzi+dEp6gkr2p+BRbIB SDtYsjRxL2o8IO/i2eMQIbIvhlkVSbPNcb83mBUHA9Ild1QCQSfwqJ0Ztz+nCtw/ 6Wlm8xcFDxfLaLgKMaG36g8kbja9Z9cGq86br1yMThFx48CSVVqmOQ2olxYO1kOr 7QftzAPOMO4HssxLNSfzL5YRLmT2QsAxvQGpgg0jmDLrDUUvCXatZbQLGV7Bx64y dRFr1uQGOocjQUdBxY1FKSIqc5dcFeVh -----END CERTIFICATE-----Generated at Sat Dec 6 16:10:37 2025 by rpki-client