This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft File: kIoYD5SUlgetwBExSb6IKuqo6I8.mft (raw, json) Hash identifier: hlABbk+1ZXoe7YgifFq9ZMd/lkTbWXHWpnUmsMW6lqw= Subject key identifier: 02:A2:16:1E:24:CE:F6:F5:1C:C9:2B:85:CA:3A:24:65:97:F9:8C:47 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft Manifest number: 01FA Signing time: Sun 07 Dec 2025 01:03:56 +0000 Manifest this update: Sun 07 Dec 2025 01:03:55 +0000 Manifest next update: Sun 14 Dec 2025 01:03:55 +0000 Files and hashes: 1: kIoYD5SUlgetwBExSb6IKuqo6I8.crl (hash: YL7NVyWgVdDAGzLxwuKi3ifV5N0HqTINCc3CZLZ3RJM=) 2: E8B2BE5ADBCE11EFA9FC2C0EC4F9AE02.roa (hash: q+zKhGyTkhD9t3RA2sk/l2Z7I4u1fYSlG/t4K9NE2MA=) 3: CC0BA4E0E17F11EFA4CE224CC4F9AE02.roa (hash: 2muYFP9e+zpeHJKxcDs7l8Ftqcg1X7boruyyCY1igvQ=) 4: 9BE6554CB72411EF98F7D577C4F9AE02.roa (hash: fA1bLFIYT/o1YfhIaSWGb0FrTvcVU+WRusOC3nOK6Gk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Dec 2025 00:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Dec 7 01:03:55 2025 GMT Not After : Dec 14 01:03:55 2025 GMT Subject: CN=6934d27c-9d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ee:23:97:2e:d3:3e:85:25:69:a5:bc:0a:56: f7:0a:d8:1d:15:0d:70:73:f4:6a:a9:c0:90:85:a7: b1:f8:ab:b9:45:b5:f3:09:0a:f0:47:e8:14:f8:c8: e7:f5:6a:b5:16:b4:5c:2b:ee:0f:10:0b:92:e2:ce: de:a9:b5:b5:74:74:f8:af:95:3b:63:cb:33:bd:f7: 29:d2:9c:b5:19:d6:bb:f6:ff:9a:37:92:94:34:09: 73:27:9b:f6:bd:ef:cc:e2:fd:65:0a:ec:55:ee:3c: 3f:3a:6e:e3:20:4a:76:2f:ce:d2:2a:b9:67:9f:25: a1:f2:67:93:10:77:cf:56:18:d4:87:a9:60:36:ce: 96:7b:82:b4:c3:21:67:a4:45:99:58:27:8c:63:29: 8d:23:7f:10:a5:21:59:f6:d1:48:f3:3f:e4:12:c8: ac:20:50:53:ec:44:0f:ce:d5:51:d9:43:e9:5a:41: 89:93:75:76:f7:38:9f:30:1a:66:39:76:b0:93:df: 63:65:c1:ea:91:80:7c:31:75:7a:29:33:b2:9b:c4: 29:7f:ac:b8:a7:35:9b:81:78:d9:38:61:6c:4b:5d: de:93:e8:48:67:c9:7c:d7:c5:30:59:f8:93:70:06: d6:2e:99:b7:a6:c6:e6:38:bd:c1:3b:e0:fa:af:e3: 91:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A2:16:1E:24:CE:F6:F5:1C:C9:2B:85:CA:3A:24:65:97:F9:8C:47 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:84:8f:88:e1:b6:0e:0e:0f:de:87:9d:4d:df:27:1f:24:d8: de:92:6d:23:2f:e5:76:a7:3f:53:60:7a:1c:e6:7a:35:78:63: 49:64:9b:a7:8e:48:0a:95:e1:48:b4:aa:47:cf:31:75:2a:e2: 98:05:62:15:8d:f9:b3:9b:0e:8f:d9:fd:bb:cc:6b:b8:ac:8e: 2a:0c:5f:64:76:84:01:0d:ca:7a:0e:70:3c:7b:ce:2f:ad:19: 15:e9:8c:d2:7a:18:dc:72:b7:32:f9:dc:67:5b:c1:94:9f:a5: da:73:3a:02:45:97:53:9a:5d:29:1e:aa:d6:a2:7e:17:51:45: 4c:f5:c7:48:d1:dc:f5:8c:b7:d3:14:ad:54:ad:ab:c2:54:fa: d8:de:82:c1:77:ba:d6:40:ad:13:11:2b:6c:db:e6:73:a4:e1: c2:2f:8c:ea:c1:9f:84:ac:ac:a8:6d:fe:7d:93:e9:31:a6:a6: 9f:18:7b:3a:8b:b5:11:23:20:bb:b1:80:c8:e8:3c:ea:8c:cf: b2:59:cc:a4:e9:27:55:e2:88:bb:30:93:49:dd:25:d3:91:40: fe:ff:7e:29:f7:11:af:95:83:14:25:47:59:a1:bd:70:bd:52: 9a:1e:d0:f4:21:5d:ef:7e:1a:e2:ae:42:3b:65:7c:c1:63:83: 74:3b:8f:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjUxMjA3MDEwMzU1WhcNMjUxMjE0MDEwMzU1WjAYMRYwFAYD VQQDEw02OTM0ZDI3Yy05ZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArO4jly7TPoUlaaW8Clb3CtgdFQ1wc/RqqcCQhaex+Ku5RbXzCQrwR+gU+Mjn 9Wq1FrRcK+4PEAuS4s7eqbW1dHT4r5U7Y8szvfcp0py1Gda79v+aN5KUNAlzJ5v2 ve/M4v1lCuxV7jw/Om7jIEp2L87SKrlnnyWh8meTEHfPVhjUh6lgNs6We4K0wyFn pEWZWCeMYymNI38QpSFZ9tFI8z/kEsisIFBT7EQPztVR2UPpWkGJk3V29zifMBpm OXawk99jZcHqkYB8MXV6KTOym8Qpf6y4pzWbgXjZOGFsS13ek+hIZ8l818UwWfiT cAbWLpm3psbmOL3BO+D6r+ORmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKiFh4k zvb1HMkrhco6JGWX+YxHMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0M2My80RDExMzE5Q0Q4NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxn ZXR3QkV4U2I2SUt1cW82STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXhI+I4bYODg/eh51N3ycfJNjekm0jL+V2pz9TYHoc5no1eGNJZJun jkgKleFItKpHzzF1KuKYBWIVjfmzmw6P2f27zGu4rI4qDF9kdoQBDcp6DnA8e84v rRkV6YzSehjccrcy+dxnW8GUn6XaczoCRZdTml0pHqrWon4XUUVM9cdI0dz1jLfT FK1UravCVPrY3oLBd7rWQK0TESts2+ZzpOHCL4zqwZ+ErKyobf59k+kxpqafGHs6 i7URIyC7sYDI6DzqjM+yWcyk6SdV4oi7MJNJ3SXTkUD+/34p9xGvlYMUJUdZob1w vVKaHtD0IV3vfhrirkI7ZXzBY4N0O49c -----END CERTIFICATE-----Generated at Sun Dec 7 03:44:56 2025 by rpki-client