This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: 28IpVDw7m5y2/lON9jNo4VR7TULXCB0B5UWjMjJB6Xo= Subject key identifier: 5B:9B:84:B9:29:CB:E4:52:8C:F1:97:0F:F0:DC:0E:A7:93:EA:66:4A Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: EF Signing time: Fri 05 Dec 2025 03:22:17 +0000 Manifest this update: Fri 05 Dec 2025 03:22:17 +0000 Manifest next update: Fri 12 Dec 2025 03:22:17 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: wHMQ1HzEjPMqRghBYhY9a/DemLVTmh5208AhvS/Zt2E=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:22:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Dec 5 03:22:17 2025 GMT Not After : Dec 12 03:22:17 2025 GMT Subject: CN=69324fe9-adcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4f:de:d1:6a:e3:59:71:80:41:40:40:0f:6d: 3b:47:6e:45:48:59:06:61:c7:82:9e:6c:d8:89:af: 2c:75:50:32:ed:30:69:75:39:99:a8:21:2b:3c:1c: e6:37:8c:80:35:5c:4b:0d:16:4c:22:99:54:ed:6b: 55:34:39:2f:f5:92:94:7f:12:c3:74:70:2c:7c:3e: 2d:be:28:3f:b2:8c:39:4e:d8:2a:ba:a5:e6:11:a9: f7:e9:1b:2b:3b:8e:52:5d:0b:f5:ab:25:6f:98:72: 63:10:2b:15:21:a0:1b:47:e7:f0:5f:34:b1:a6:80: 49:2d:90:b7:6f:66:f7:d0:50:f3:50:a5:25:30:55: 5c:92:00:f0:92:56:93:65:6e:f2:47:14:56:ca:57: bc:cf:b8:83:1a:c6:f0:5e:4b:91:c8:cd:f1:4f:a7: 30:8d:8e:5b:55:6c:dd:5e:77:18:1f:11:24:fd:f7: ad:a9:70:e8:cb:81:42:db:9f:8a:87:3f:4f:6b:3f: c9:bd:64:b3:5f:e6:40:0b:bc:5f:3f:14:de:06:11: 3a:1a:73:ec:5d:53:22:1e:c5:b8:8e:bb:72:19:dd: 4b:3b:97:1d:92:72:0a:b8:b6:b0:50:2b:1e:4b:bc: c3:f3:93:15:7c:3c:11:e0:f9:7d:03:9a:23:53:ad: 68:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:9B:84:B9:29:CB:E4:52:8C:F1:97:0F:F0:DC:0E:A7:93:EA:66:4A X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:52:73:93:f5:9e:a4:36:95:9a:b1:ea:b7:0e:bb:47:54:ef: 13:82:92:2f:f5:a3:4d:51:d6:12:3a:ae:38:57:cb:11:2d:41: d0:4d:1a:bf:1c:e5:87:ac:01:8c:7c:d1:51:d0:40:3e:59:c4: a7:7b:d6:d0:cc:17:01:cd:6a:f3:a0:c0:05:ca:9f:2c:70:d9: 2b:bf:f7:85:aa:a0:cb:b0:b6:e7:4b:ba:36:c7:a0:da:20:b9: 26:f9:7f:af:93:5c:be:22:f1:d6:12:9c:94:e2:2c:be:39:0a: 75:74:8e:23:5a:30:4c:6f:53:70:94:90:8a:3e:95:16:76:fe: a4:45:c4:01:37:55:4e:1d:e8:e8:24:79:11:93:b7:98:95:75: d4:e5:b6:a6:e5:5f:df:b1:d9:5a:39:9b:67:84:4f:a7:94:9b: 2e:bc:34:3e:f7:62:0a:a6:99:a5:fd:27:26:7e:50:72:c1:cb: bd:f8:8f:42:db:d9:ea:89:de:c0:3b:50:9c:a9:67:cc:d9:6a: 2d:4b:2e:e5:34:8f:93:6a:60:3a:37:6e:53:25:ec:d8:5c:6d: e0:cf:7d:41:57:ea:c2:04:e8:4e:8f:7c:e2:16:de:ae:b2:4a: 57:dc:a1:d9:d9:60:f1:a0:3b:2b:5f:1e:32:5e:16:53:76:bb: 36:05:80:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUxMjA1MDMyMjE3WhcNMjUxMjEyMDMyMjE3WjAYMRYwFAYD VQQDEw02OTMyNGZlOS1hZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzE/e0WrjWXGAQUBAD207R25FSFkGYceCnmzYia8sdVAy7TBpdTmZqCErPBzm N4yANVxLDRZMIplU7WtVNDkv9ZKUfxLDdHAsfD4tvig/sow5TtgquqXmEan36Rsr O45SXQv1qyVvmHJjECsVIaAbR+fwXzSxpoBJLZC3b2b30FDzUKUlMFVckgDwklaT ZW7yRxRWyle8z7iDGsbwXkuRyM3xT6cwjY5bVWzdXncYHxEk/fetqXDoy4FC25+K hz9Paz/JvWSzX+ZAC7xfPxTeBhE6GnPsXVMiHsW4jrtyGd1LO5cdknIKuLawUCse S7zD85MVfDwR4Pl9A5ojU61owwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFubhLkp y+RSjPGXD/DcDqeT6mZKMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFUnOT9Z6kNpWaseq3DrtHVO8TgpIv9aNNUdYSOq44V8sRLUHQTRq/ HOWHrAGMfNFR0EA+WcSne9bQzBcBzWrzoMAFyp8scNkrv/eFqqDLsLbnS7o2x6Da ILkm+X+vk1y+IvHWEpyU4iy+OQp1dI4jWjBMb1NwlJCKPpUWdv6kRcQBN1VOHejo JHkRk7eYlXXU5bam5V/fsdlaOZtnhE+nlJsuvDQ+92IKppml/ScmflBywcu9+I9C 29nqid7AO1CcqWfM2WotSy7lNI+TamA6N25TJezYXG3gz31BV+rCBOhOj3ziFt6u skpX3KHZ2WDxoDsrXx4yXhZTdrs2BYCX -----END CERTIFICATE-----Generated at Sun Dec 7 03:43:45 2025 by rpki-client