This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: e5MF5WGmPtKANnr1Gw8m4NwmRvmccv/riCO3ZQ7AWxo= Subject key identifier: B4:1A:79:CD:F2:47:12:37:45:D9:54:88:5E:0D:28:74:96:D3:C1:64 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 04CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 04C9 Signing time: Thu 04 Dec 2025 22:23:07 +0000 Manifest this update: Thu 04 Dec 2025 22:23:07 +0000 Manifest next update: Thu 11 Dec 2025 22:23:07 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: ll1BgQbgQvI+SnIGLAfmeJb2OKSLFT7T0gxeBOuUbtE=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:23:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1231 (0x4cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Dec 4 22:23:07 2025 GMT Not After : Dec 11 22:23:07 2025 GMT Subject: CN=693209cb-e0e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c1:e5:42:ac:12:ea:91:f0:41:93:f3:6f:fa: e7:14:79:00:86:1c:31:38:20:c1:cf:fd:b4:1a:1a: b1:90:6b:de:7d:1a:e4:98:d8:ce:26:46:c3:29:5b: 6e:bd:69:1c:7e:7d:28:2f:5b:59:c1:2b:18:e7:06: e9:71:3d:b1:e4:18:71:16:f2:40:53:59:d8:8d:20: bc:07:c6:ad:b7:b3:d3:4f:f0:78:70:84:42:e1:51: 82:e6:7e:38:05:1d:cb:87:73:fb:15:f6:5a:71:67: 69:e0:54:d2:99:88:1b:17:e5:ef:5c:38:1c:fd:c8: 3d:52:06:2f:16:f0:a1:9a:79:74:6d:c9:7c:92:cd: 39:ad:a1:d6:d2:e0:bf:fe:32:3c:52:99:4e:88:03: e2:83:c2:33:ea:8e:15:d8:e8:11:b2:1f:39:44:07: 99:b9:9c:73:81:94:fa:30:86:8b:b2:87:a6:6f:b9: f3:1a:ea:66:93:78:4d:14:31:62:7c:a9:81:08:94: 58:42:08:60:dc:de:55:3e:29:ed:59:25:18:f1:2d: 88:f0:82:51:85:14:17:d1:a5:ad:e0:c9:e9:b7:e1: 95:d8:ed:18:1b:c5:55:fc:87:48:7b:a0:f1:3b:a1: 05:13:26:35:b4:3e:91:1f:e4:e1:a6:2b:79:2d:35: d5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1A:79:CD:F2:47:12:37:45:D9:54:88:5E:0D:28:74:96:D3:C1:64 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:d6:2a:35:71:62:a9:e2:ec:17:a6:b6:57:6c:12:84:98:d6: cb:6f:19:26:8a:25:96:c2:67:da:a9:7f:21:08:dc:dc:d1:d7: 45:12:37:ba:8d:b3:49:e3:9c:69:9e:6b:95:d9:51:d6:a5:86: bc:d0:31:e2:67:96:9b:13:03:8c:d6:01:b3:80:f2:e8:dd:16: 46:48:3c:f6:84:7b:43:ad:93:d6:49:8b:35:e0:5b:79:41:a2: 77:af:a9:8c:05:cd:28:bc:20:60:0b:10:02:8b:d1:fc:13:4c: 5d:e6:69:20:ba:87:d3:2d:d3:c2:8d:25:42:53:f1:3e:af:ce: 7c:7e:87:e2:38:e7:3a:f9:13:34:f7:5f:de:a8:18:f4:b9:8f: 36:ac:28:4f:a3:a3:49:94:5f:65:4a:eb:8f:ee:81:1c:65:ec: 81:3f:ce:32:7c:f4:f0:37:86:5b:ed:88:e5:2b:c9:e4:e1:6c: 70:49:99:05:31:f2:b4:11:3c:ff:0d:a8:00:99:4d:f8:27:02: ca:d9:e6:11:8c:17:de:64:11:c9:00:ba:33:26:03:c0:a2:38: fa:09:1e:38:23:7c:42:bd:58:08:4e:b0:8e:5e:0b:b2:df:b9: d5:99:41:9b:3a:fd:44:75:99:a7:4d:2a:de:0b:46:cf:76:3f: 00:61:09:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUxMjA0MjIyMzA3WhcNMjUxMjExMjIyMzA3WjAYMRYwFAYD VQQDEw02OTMyMDljYi1lMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnsHlQqwS6pHwQZPzb/rnFHkAhhwxOCDBz/20GhqxkGvefRrkmNjOJkbDKVtu vWkcfn0oL1tZwSsY5wbpcT2x5BhxFvJAU1nYjSC8B8att7PTT/B4cIRC4VGC5n44 BR3Lh3P7FfZacWdp4FTSmYgbF+XvXDgc/cg9UgYvFvChmnl0bcl8ks05raHW0uC/ /jI8UplOiAPig8Iz6o4V2OgRsh85RAeZuZxzgZT6MIaLsoemb7nzGupmk3hNFDFi fKmBCJRYQghg3N5VPintWSUY8S2I8IJRhRQX0aWt4Mnpt+GV2O0YG8VV/IdIe6Dx O6EFEyY1tD6RH+Thpit5LTXVYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLQaec3y RxI3RdlUiF4NKHSW08FkMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP1io1cWKp4uwXprZXbBKEmNbLbxkmiiWWwmfaqX8hCNzc0ddFEje6 jbNJ45xpnmuV2VHWpYa80DHiZ5abEwOM1gGzgPLo3RZGSDz2hHtDrZPWSYs14Ft5 QaJ3r6mMBc0ovCBgCxACi9H8E0xd5mkguofTLdPCjSVCU/E+r858fofiOOc6+RM0 91/eqBj0uY82rChPo6NJlF9lSuuP7oEcZeyBP84yfPTwN4Zb7YjlK8nk4WxwSZkF MfK0ETz/DagAmU34JwLK2eYRjBfeZBHJALozJgPAojj6CR44I3xCvVgITrCOXguy 37nVmUGbOv1EdZmnTSreC0bPdj8AYQlS -----END CERTIFICATE-----Generated at Sat Dec 6 23:36:08 2025 by rpki-client