This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: 35//746JcHBfBRPwJZXOOGr965URF6jgqv4PmzZ1gKo= Subject key identifier: B5:BC:70:17:6D:02:01:12:FD:AF:25:98:BA:BC:02:31:DD:FB:B3:2F Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 0169 Signing time: Fri 05 Dec 2025 02:07:42 +0000 Manifest this update: Fri 05 Dec 2025 02:07:42 +0000 Manifest next update: Fri 12 Dec 2025 02:07:42 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: +4aRZDiy2FcBGq7+363hR8zvSoUaZL8vIl+fpgEndZU=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 02:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Dec 5 02:07:42 2025 GMT Not After : Dec 12 02:07:42 2025 GMT Subject: CN=69323e6e-9698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:56:e5:2c:83:b9:9a:be:06:c7:ca:37:fc:2e: 12:9c:86:b7:1a:17:08:c4:30:c8:4a:24:4d:2c:1a: e1:4c:38:85:26:05:45:09:6e:f5:7e:74:61:17:46: e8:62:6c:19:10:ba:08:9c:ec:d7:a7:60:96:b6:7b: 6b:cc:8b:a1:65:d9:49:20:84:bc:1f:65:c0:e8:1f: 23:4b:14:fb:88:ea:70:4e:ea:7d:e7:16:72:e7:86: a4:0f:04:e8:da:fa:f1:89:9a:9e:b3:66:df:12:94: 7a:ec:d6:b7:c6:8e:84:fb:7d:45:3e:21:5a:87:0a: 5f:67:39:f7:3d:51:d7:09:ed:3b:13:5a:9b:1b:8b: 95:d7:c5:da:88:f9:c0:ed:8f:93:2f:d4:63:81:9a: 58:dd:ce:ea:54:91:70:4c:78:4f:96:6a:0f:03:4a: a0:cf:c8:73:6d:19:07:b0:6f:2b:c3:c8:65:0d:35: 71:57:68:84:6e:56:5f:8b:c8:b2:1a:bd:17:13:a9: c2:a4:c3:0e:4a:5d:05:b5:2c:75:7b:93:64:37:c2: bf:f0:e3:05:eb:5b:26:17:78:d6:e9:bb:4c:49:be: a6:c9:29:f5:0b:e4:e2:56:00:8d:e8:3d:b4:60:5b: 75:06:ec:81:b8:e9:ea:f9:9c:53:53:9a:cc:a5:53: 99:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:BC:70:17:6D:02:01:12:FD:AF:25:98:BA:BC:02:31:DD:FB:B3:2F X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e5:2c:b7:51:93:6b:d2:e0:0a:0c:0e:92:0d:e7:aa:65:91:92: 3d:84:d6:51:9d:f5:60:d9:0b:7a:44:5a:82:c8:11:ad:ae:0c: e0:75:84:76:bd:60:b0:61:70:8d:e5:d2:ef:23:84:52:14:3d: 79:eb:ad:c6:1f:00:bf:a0:0b:1c:84:17:57:19:4b:6f:68:29: ab:6c:85:6f:33:3a:8a:e9:e0:fe:2d:aa:bc:6b:68:77:73:a2: a9:80:e8:cb:6e:1d:03:8e:e4:5a:fc:8c:e0:28:36:a5:e2:d2: a8:68:7b:ef:80:a8:2f:b1:a8:ff:a3:d8:79:1c:b0:b2:e5:6b: 82:b7:b0:e0:52:60:80:b4:87:6f:56:e8:63:80:c8:c8:bc:02: 0e:f8:ff:1d:d7:52:bc:4c:69:69:a8:f3:44:46:ea:95:35:65: 03:53:0b:5e:32:dc:23:c6:d9:1c:2c:7e:e1:f0:30:b5:01:c0: 0f:70:1b:f0:87:1d:75:bc:f8:45:b8:e6:1a:39:d7:05:cd:26: 0e:b5:a0:f6:54:ef:0c:ef:17:5f:04:95:b1:97:64:16:31:4f: 21:0a:15:9e:f4:0c:ec:fa:f2:4f:ba:79:0c:0f:53:af:54:5d: 58:8c:b0:61:90:f6:96:bd:7d:51:4a:d7:d1:a4:48:86:64:fd: 00:44:cd:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUxMjA1MDIwNzQyWhcNMjUxMjEyMDIwNzQyWjAYMRYwFAYD VQQDEw02OTMyM2U2ZS05Njk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVblLIO5mr4Gx8o3/C4SnIa3GhcIxDDISiRNLBrhTDiFJgVFCW71fnRhF0bo YmwZELoInOzXp2CWtntrzIuhZdlJIIS8H2XA6B8jSxT7iOpwTup95xZy54akDwTo 2vrxiZqes2bfEpR67Na3xo6E+31FPiFahwpfZzn3PVHXCe07E1qbG4uV18XaiPnA 7Y+TL9RjgZpY3c7qVJFwTHhPlmoPA0qgz8hzbRkHsG8rw8hlDTVxV2iEblZfi8iy Gr0XE6nCpMMOSl0FtSx1e5NkN8K/8OMF61smF3jW6btMSb6mySn1C+TiVgCN6D20 YFt1BuyBuOnq+ZxTU5rMpVOZWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLW8cBdt AgES/a8lmLq8AjHd+7MvMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDlLLdRk2vS4AoMDpIN56plkZI9hNZRnfVg2Qt6RFqCyBGtrgzgdYR2 vWCwYXCN5dLvI4RSFD15663GHwC/oAschBdXGUtvaCmrbIVvMzqK6eD+Laq8a2h3 c6KpgOjLbh0DjuRa/IzgKDal4tKoaHvvgKgvsaj/o9h5HLCy5WuCt7DgUmCAtIdv VuhjgMjIvAIO+P8d11K8TGlpqPNERuqVNWUDUwteMtwjxtkcLH7h8DC1AcAPcBvw hx11vPhFuOYaOdcFzSYOtaD2VO8M7xdfBJWxl2QWMU8hChWe9Azs+vJPunkMD1Ov VF1YjLBhkPaWvX1RStfRpEiGZP0ARM0D -----END CERTIFICATE-----Generated at Sat Dec 6 22:02:39 2025 by rpki-client