This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft File: CkIqY5fY62yzV3UpfOtVpeGP4eI.mft (raw, json) Hash identifier: aSDtlWFnC0q+YRR6PLvhgphTht2pYnBkptpk4798obo= Subject key identifier: 61:DE:7B:18:6B:BD:F8:90:D0:FB:0E:34:CE:2D:24:12:23:A9:71:B4 Authority key identifier: 0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 Certificate issuer: /CN=A9176AFD/serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Certificate serial: 1935 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft Manifest number: 1923 Signing time: Sat 06 Dec 2025 16:04:10 +0000 Manifest this update: Sat 06 Dec 2025 16:04:09 +0000 Manifest next update: Sat 13 Dec 2025 16:04:09 +0000 Files and hashes: 1: CkIqY5fY62yzV3UpfOtVpeGP4eI.crl (hash: t4fjD19wFM3LywcM+MAxKY/sc3sdlTFV9AYXWpTHu0c=) 2: D6D99A3EBE3711EDA6617C5DC4F9AE02.roa (hash: LY7vLpDfVXZjs8mY5Lmcq8YY4mbx+XwbeXcZe9sNvfM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6453 (0x1935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176AFD, serialNumber=0A422A6397D8EB6CB35775297CEB55A5E18FE1E2 Validity Not Before: Dec 6 16:04:09 2025 GMT Not After : Dec 13 16:04:09 2025 GMT Subject: CN=693453fa-80ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:26:e3:3d:cd:54:a0:28:4b:20:64:b3:b1:f3: be:6e:87:5a:eb:8c:a6:4d:b4:5a:ab:48:48:8f:be: 98:43:10:f8:70:f5:0b:69:2a:c2:0b:9e:a9:34:42: 9b:ab:bc:15:34:99:8e:6a:21:72:69:85:22:b3:7b: 6b:a8:b7:23:67:9f:fe:cd:c6:d3:c6:f2:07:7f:bb: 0e:1c:b8:3c:2c:71:18:29:7e:bf:ea:d7:dc:e7:39: d0:75:67:65:d1:5b:00:e7:57:6d:94:88:bc:fa:39: 32:99:f9:48:ce:6b:6b:2a:2d:5f:d5:cf:dc:b0:cd: 0b:95:26:f2:c9:ab:7c:76:0c:34:23:1d:3b:68:24: 3a:dd:5a:14:0c:9d:fb:b2:ed:0b:55:0c:82:67:22: 4f:a4:d8:54:44:2b:6a:1b:56:b2:f5:ba:71:a4:c5: dd:eb:a7:56:b2:4b:97:a0:82:02:89:49:74:9a:6d: 44:fe:09:40:a2:e0:e3:b3:4e:0d:89:10:ff:9e:c5: 76:57:2d:53:e7:9e:b0:85:14:59:5c:9d:a9:cc:f1: 16:52:41:55:a7:ea:3f:b1:2f:28:f4:fe:2c:a2:94: 6e:e0:ff:49:7b:ff:6f:60:d1:73:b2:66:72:d8:90: 35:f0:a0:cb:55:d0:da:0d:b1:99:80:01:6f:bc:85: df:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DE:7B:18:6B:BD:F8:90:D0:FB:0E:34:CE:2D:24:12:23:A9:71:B4 X509v3 Authority Key Identifier: keyid:0A:42:2A:63:97:D8:EB:6C:B3:57:75:29:7C:EB:55:A5:E1:8F:E1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkIqY5fY62yzV3UpfOtVpeGP4eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176AFD/5BB2230A92F811E784CA0E5CC4F9AE02/CkIqY5fY62yzV3UpfOtVpeGP4eI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a1:b7:84:7c:84:97:74:df:6b:45:3d:3c:39:ab:ed:67:bd: 5b:7a:36:0e:0a:b9:eb:4a:6b:3e:43:40:da:57:40:2f:f6:1f: 11:12:cf:b0:85:84:56:55:a5:75:ee:6d:c6:cd:5b:25:27:2e: 37:09:5a:a8:61:ad:67:3d:0d:08:21:31:62:8a:a5:41:25:24: 9c:e4:e8:4b:d0:e9:99:81:f9:22:df:67:ba:1f:c6:0e:b2:c8: 2b:af:ae:5e:8f:b8:a9:b3:4c:60:07:92:d6:e7:c7:cd:b1:43: e9:91:6d:47:69:10:9d:04:95:bf:48:f5:05:58:a9:58:4c:81: 51:59:29:ab:33:fe:ed:60:5c:5f:96:a7:5d:6c:03:f9:d9:a0: b9:0e:39:4a:72:15:dd:5f:a6:62:41:c5:0c:10:60:b6:cd:01: 57:b2:5c:6d:1d:49:ac:c2:29:27:c4:1f:89:9f:b5:13:84:c0: 92:d2:30:83:d6:61:6d:45:27:be:7a:5d:ca:33:90:fc:da:ed: b2:24:9c:8b:7b:7d:e0:1b:89:69:ca:1c:02:29:da:93:2a:c5: 74:13:b3:e6:7e:9f:fb:2d:a8:0e:a4:bb:9c:2b:16:4b:4f:6a: 12:40:94:97:2b:51:f5:7b:67:66:cf:45:ca:fa:0c:ae:c0:2f: 01:58:b3:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZBRkQxMTAvBgNVBAUTKDBBNDIyQTYzOTdEOEVCNkNCMzU3NzUyOTdDRUI1NUE1 RTE4RkUxRTIwHhcNMjUxMjA2MTYwNDA5WhcNMjUxMjEzMTYwNDA5WjAYMRYwFAYD VQQDEw02OTM0NTNmYS04MGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCbjPc1UoChLIGSzsfO+boda64ymTbRaq0hIj76YQxD4cPULaSrCC56pNEKb q7wVNJmOaiFyaYUis3trqLcjZ5/+zcbTxvIHf7sOHLg8LHEYKX6/6tfc5znQdWdl 0VsA51dtlIi8+jkymflIzmtrKi1f1c/csM0LlSbyyat8dgw0Ix07aCQ63VoUDJ37 su0LVQyCZyJPpNhURCtqG1ay9bpxpMXd66dWskuXoIICiUl0mm1E/glAouDjs04N iRD/nsV2Vy1T556whRRZXJ2pzPEWUkFVp+o/sS8o9P4sopRu4P9Je/9vYNFzsmZy 2JA18KDLVdDaDbGZgAFvvIXf8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHeexhr vfiQ0PsONM4tJBIjqXG0MB8GA1UdIwQYMBaAFApCKmOX2Otss1d1KXzrVaXhj+Hi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkFGRC81QkIyMjMwQTky RjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYyeXpWM1VwZk90VnBlR1A0 ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrSXFZNWZZNjJ5elYzVXBmT3RWcGVHUDRlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkFGRC81QkIyMjMwQTkyRjgxMUU3ODRDQTBFNUNDNEY5QUUwMi9Da0lxWTVmWTYy eXpWM1VwZk90VnBlR1A0ZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUobeEfISXdN9rRT08OavtZ71bejYOCrnrSms+Q0DaV0Av9h8REs+w hYRWVaV17m3GzVslJy43CVqoYa1nPQ0IITFiiqVBJSSc5OhL0OmZgfki32e6H8YO ssgrr65ej7ips0xgB5LW58fNsUPpkW1HaRCdBJW/SPUFWKlYTIFRWSmrM/7tYFxf lqddbAP52aC5DjlKchXdX6ZiQcUMEGC2zQFXslxtHUmswiknxB+Jn7UThMCS0jCD 1mFtRSe+el3KM5D82u2yJJyLe33gG4lpyhwCKdqTKsV0E7Pmfp/7LagOpLucKxZL T2oSQJSXK1H1e2dmz0XK+gyuwC8BWLNY -----END CERTIFICATE-----Generated at Sun Dec 7 07:25:47 2025 by rpki-client