This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: rM7dag+mS9pxdJzjapc/88mwlZFaxTYJvWkrZj+JHwI= Subject key identifier: BA:D3:47:08:ED:55:B9:6C:88:5D:42:23:7C:CC:12:89:A5:83:B7:95 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 79 Signing time: Fri 05 Dec 2025 04:43:47 +0000 Manifest this update: Fri 05 Dec 2025 04:43:46 +0000 Manifest next update: Fri 12 Dec 2025 04:43:46 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: cWAu6JN3ekolqY841KmfyJUGfodJX/wlz6dIDHWoGKg=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: Dec 5 04:43:46 2025 GMT Not After : Dec 12 04:43:46 2025 GMT Subject: CN=69326303-d940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:92:37:1f:be:0e:95:20:37:8c:78:33:19:08: d2:84:2c:07:f4:11:67:ca:2f:43:11:60:b0:aa:c1: 40:24:53:33:3b:41:93:1a:21:4d:0b:ad:25:85:42: 9c:a4:ac:1c:75:ce:9f:de:1f:d0:11:b1:9a:cd:96: bc:59:24:22:30:3c:f5:f7:dc:4e:40:d5:86:87:4e: a3:4b:5c:8c:ce:df:f0:ef:07:70:4a:26:d3:30:6d: 9b:de:11:dc:49:9d:ff:f9:bc:0a:2c:59:e8:3d:eb: 63:a5:a3:d8:15:c8:02:cc:ab:dd:bf:8f:45:cc:96: 20:e5:88:de:2d:1b:e5:73:27:71:da:d7:fd:9e:89: 82:6c:6a:fc:27:b1:1c:7c:4b:9d:a5:8d:cf:62:ed: 15:fe:17:e5:1c:c2:46:6f:df:d2:d9:70:c6:63:f8: cc:82:77:19:95:f7:6c:b3:0d:b3:68:65:18:d3:54: f6:d9:9f:d7:33:1d:a1:86:f4:6d:ed:ca:1f:6f:38: 18:ab:20:c1:53:cd:69:5d:ab:56:22:7b:85:9d:8c: e3:ab:b5:19:fd:ad:f9:c9:2a:0b:37:f4:e3:ff:41: 5d:5c:20:e7:e4:dc:60:22:0f:fa:4c:4f:f4:6f:a7: 61:c3:9d:a2:96:96:1d:ad:92:b8:a5:51:ca:39:35: 7d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D3:47:08:ED:55:B9:6C:88:5D:42:23:7C:CC:12:89:A5:83:B7:95 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:84:3c:08:b7:ee:fa:a4:47:94:4d:e6:e2:ee:93:f3:f1:84: 1a:b4:f7:23:54:d3:99:6c:31:46:41:aa:94:cc:f8:ea:88:de: f6:2a:9f:48:9c:01:b6:5f:d3:5f:76:cc:70:c7:2d:4b:5c:d0: ea:17:23:02:69:58:15:af:6a:d9:e3:b2:16:3f:ef:77:78:26: 1c:60:a2:8e:13:ed:6e:7f:fa:2f:f8:bd:91:33:7d:5d:96:bf: 19:02:58:0b:0d:a0:38:89:9c:9a:db:cf:51:27:25:8f:ce:98: d9:0b:ce:ab:5c:cd:db:e8:0b:0e:35:d4:cb:03:ef:d2:34:d6: 47:ad:59:18:04:62:69:92:dc:d1:e3:10:b9:82:d8:a3:2c:16: df:6e:80:1d:95:09:21:bc:a3:36:52:bf:8d:1b:3c:0b:44:15: 8c:c2:0a:67:3c:c1:1e:d5:15:d2:52:6b:55:2d:b2:54:86:6a: 32:ee:dc:6b:88:61:80:b5:fc:c8:b6:d1:6a:51:7d:3d:55:af: 6d:c8:81:01:51:64:9b:ee:06:d4:6e:58:f5:92:8d:d2:df:5c: 3d:04:d8:1a:07:46:f0:f3:6e:34:14:c4:23:4e:da:b8:0a:b1: f8:3b:a7:3d:fa:c5:92:cf:08:5f:2d:cb:7c:4f:0c:44:9c:47: b9:b7:43:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTEyMDUwNDQzNDZaFw0yNTEyMTIwNDQzNDZaMBgxFjAUBgNV BAMTDTY5MzI2MzAzLWQ5NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrkjcfvg6VIDeMeDMZCNKELAf0EWfKL0MRYLCqwUAkUzM7QZMaIU0LrSWFQpyk rBx1zp/eH9ARsZrNlrxZJCIwPPX33E5A1YaHTqNLXIzO3/DvB3BKJtMwbZveEdxJ nf/5vAosWeg962Olo9gVyALMq92/j0XMliDliN4tG+VzJ3Ha1/2eiYJsavwnsRx8 S52ljc9i7RX+F+UcwkZv39LZcMZj+MyCdxmV92yzDbNoZRjTVPbZn9czHaGG9G3t yh9vOBirIMFTzWldq1Yie4WdjOOrtRn9rfnJKgs39OP/QV1cIOfk3GAiD/pMT/Rv p2HDnaKWlh2tkrilUco5NX0fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUutNHCO1V uWyIXUIjfMwSiaWDt5UwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADuEPAi37vqkR5RN5uLuk/PxhBq09yNU05lsMUZBqpTM+OqI3vYqn0ic AbZf0192zHDHLUtc0OoXIwJpWBWvatnjshY/73d4Jhxgoo4T7W5/+i/4vZEzfV2W vxkCWAsNoDiJnJrbz1EnJY/OmNkLzqtczdvoCw411MsD79I01ketWRgEYmmS3NHj ELmC2KMsFt9ugB2VCSG8ozZSv40bPAtEFYzCCmc8wR7VFdJSa1UtslSGajLu3GuI YYC1/Mi20WpRfT1Vr23IgQFRZJvuBtRuWPWSjdLfXD0E2BoHRvDzbjQUxCNO2rgK sfg7pz36xZLPCF8ty3xPDEScR7m3Q4A= -----END CERTIFICATE-----Generated at Sat Dec 6 22:07:25 2025 by rpki-client