This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft File: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft (raw, json) Hash identifier: j5yNcJYs6W0ByV01QE4K6AsHWCilT9w/R6bZRFjaSbo= Subject key identifier: 99:21:0F:D4:77:C5:9B:08:8C:41:96:27:07:E1:A5:10:B0:A2:D4:02 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0D0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft Manifest number: 0CCC Signing time: Sat 06 Dec 2025 17:43:15 +0000 Manifest this update: Sat 06 Dec 2025 17:43:14 +0000 Manifest next update: Sat 13 Dec 2025 17:43:14 +0000 Files and hashes: 1: SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl (hash: /wx5Al/TwHnHHnnEvbT0pwB8IgduF22EiczfhqezVho=) 2: 0EF9BE4E276F11EEB328204AC4F9AE02.roa (hash: ySE2YBsbAXt0k1PEdiGam1s5GhhHLonIBlG28ashrzw=) 3: 451C283AFE4911ED9352E438C4F9AE02.roa (hash: 9xj2eLyG/tdesiN53tFy07gS2PXLIBFRo+Pfj6Aj7f4=) 4: D47B21C24FFE11EAA0E4ED42C4F9AE02.roa (hash: dJZrsN09jQhR1tV/MBGDtF9J2z2S5+/G8ySEaBQlIWI=) 5: 76BF7682061B11EAAD56521BC4F9AE02.roa (hash: 5k3lhIIOE5jK/yOHyIZ8i0wDdX2SrJVnqaK6Nl9SYpA=) 6: 430342A4C02B11EA85244830C4F9AE02.roa (hash: 0bKIGEsq8hLfPMAMaZjPiHvxpIZHU52fzssXfn7yiXU=) 7: E397AB78866F11EBA76EED3EC4F9AE02.roa (hash: DBPGuu5yRvDvP4FC/IjV2H3T+xTKFbXciVMjwanRb/4=) 8: E0848D606F7611EDB491621FC4F9AE02.roa (hash: /EuxmPPRYBaK5xLwAa5WDWDWOcYmzlBlj89Amjexk/E=) 9: CF257402276E11EEBE7B7B49C4F9AE02.roa (hash: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3341 (0xd0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5, serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Dec 6 17:43:14 2025 GMT Not After : Dec 13 17:43:14 2025 GMT Subject: CN=69346b33-7131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d7:1f:0f:ef:ab:0d:3b:fb:41:ac:05:76:dd: 36:4b:f3:9c:9c:d5:75:3d:88:4d:bc:bc:a1:ed:6c: 05:18:15:5b:f0:e9:16:de:6b:91:7a:ab:d2:d9:52: f0:72:09:f3:3b:b8:ce:52:29:c5:b2:d9:8d:61:6e: e8:58:26:83:95:4f:dc:6b:28:2f:86:72:c7:b8:cc: 34:ce:c3:fc:ee:a0:60:fc:bf:b8:3c:a3:25:3a:0b: 9d:a8:8d:59:bb:02:98:10:9a:b6:8d:c6:15:2d:ee: 15:67:05:9d:0d:c5:42:11:43:d9:b5:cb:81:12:a7: d2:bb:29:39:b4:aa:15:e1:63:17:94:4f:e1:18:93: 2a:3f:42:fb:0b:d1:3c:c1:68:2a:38:e7:b0:aa:6b: fb:5d:37:50:f3:b8:a7:6c:4d:74:5d:c6:a8:2d:32: a9:1a:f4:65:f3:e7:74:cf:a6:a6:6b:5c:67:62:75: 3c:68:1d:5e:e9:55:88:61:36:37:66:95:1c:1c:81: 6e:0f:49:d9:da:eb:6f:ba:da:d6:bd:c7:8b:b2:d5: 6f:61:11:d2:42:71:f7:66:f5:da:72:8b:6a:7f:4b: bf:d9:b0:2b:ec:60:e7:9a:9c:5f:c2:8f:fb:83:05: 69:8e:51:8f:76:87:89:9e:86:96:83:b3:af:39:01: eb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:21:0F:D4:77:C5:9B:08:8C:41:96:27:07:E1:A5:10:B0:A2:D4:02 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:7b:4f:13:14:40:42:09:14:1d:ed:c7:63:dc:b9:c8:b3:f5: bb:3a:e4:b7:dc:5c:c8:31:13:f0:02:7c:3b:03:b1:38:fc:74: ac:c4:10:cf:36:79:b6:05:0e:3b:3a:bd:a0:5b:71:15:b0:a0: bc:68:28:fb:b9:a3:00:3a:a6:c2:11:f8:d8:e8:d6:1d:29:76: a6:17:e2:f7:d9:1a:bf:bd:d2:6f:40:62:6b:74:26:7b:67:fd: 30:b6:2c:b0:a0:1e:00:17:f8:c0:1b:2f:82:49:71:6c:4e:06: 75:73:26:46:8e:30:3f:4b:17:76:b3:e4:61:1a:e9:cf:f8:ff: 13:64:0b:3f:b1:28:80:f9:e5:9f:a5:c4:9f:3d:1d:1b:5d:89: 97:2a:82:c8:28:eb:02:ef:63:b0:7c:4d:df:59:c2:40:fb:01: 1b:47:bd:ff:59:d1:d7:47:e3:d8:f7:4a:1c:fc:7e:f1:22:15: e7:8b:5b:c6:ce:0b:79:35:6d:7a:ad:7d:97:fc:25:83:7f:a9: 0a:0b:f4:06:1a:8f:cb:fc:0d:dc:05:0f:00:ca:ef:36:b0:03: 21:27:bc:31:61:2d:58:31:bb:20:1a:d7:64:c2:ac:3d:8b:13: 74:1f:5f:45:56:ec:e5:bb:69:6e:0a:e8:44:35:df:da:af:f4: 71:66:04:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUxMjA2MTc0MzE0WhcNMjUxMjEzMTc0MzE0WjAYMRYwFAYD VQQDEw02OTM0NmIzMy03MTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdcfD++rDTv7QawFdt02S/OcnNV1PYhNvLyh7WwFGBVb8OkW3muReqvS2VLw cgnzO7jOUinFstmNYW7oWCaDlU/caygvhnLHuMw0zsP87qBg/L+4PKMlOgudqI1Z uwKYEJq2jcYVLe4VZwWdDcVCEUPZtcuBEqfSuyk5tKoV4WMXlE/hGJMqP0L7C9E8 wWgqOOewqmv7XTdQ87inbE10XcaoLTKpGvRl8+d0z6ama1xnYnU8aB1e6VWIYTY3 ZpUcHIFuD0nZ2utvutrWvceLstVvYRHSQnH3ZvXacotqf0u/2bAr7GDnmpxfwo/7 gwVpjlGPdoeJnoaWg7OvOQHrywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkhD9R3 xZsIjEGWJwfhpRCwotQCMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NEVCNS9BRkVBMjlDMjA2MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1w SWJobVpPTUx4WHdnN1JxTVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqe08TFEBCCRQd7cdj3LnIs/W7OuS33FzIMRPwAnw7A7E4/HSsxBDP Nnm2BQ47Or2gW3EVsKC8aCj7uaMAOqbCEfjY6NYdKXamF+L32Rq/vdJvQGJrdCZ7 Z/0wtiywoB4AF/jAGy+CSXFsTgZ1cyZGjjA/Sxd2s+RhGunP+P8TZAs/sSiA+eWf pcSfPR0bXYmXKoLIKOsC72OwfE3fWcJA+wEbR73/WdHXR+PY90oc/H7xIhXni1vG zgt5NW16rX2X/CWDf6kKC/QGGo/L/A3cBQ8Ayu82sAMhJ7wxYS1YMbsgGtdkwqw9 ixN0H19FVuzlu2luCuhENd/ar/RxZgSy -----END CERTIFICATE-----Generated at Sun Dec 7 02:01:38 2025 by rpki-client