This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: fIUH66MP5ObOmZARh/DP70brlaX1r27pfK2+8I0Mg34= Subject key identifier: 3E:7C:9F:85:FC:CE:3C:53:3D:B1:78:F7:C7:E9:AD:A6:41:F7:E1:3B Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0CD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0CBE Signing time: Thu 18 Dec 2025 18:06:05 +0000 Manifest this update: Thu 18 Dec 2025 18:06:05 +0000 Manifest next update: Thu 25 Dec 2025 18:06:05 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: TxcF1ul/RZanMXXmiqjnhP0KrF2Olqub/ZmZ/i6OUe4=) 2: 38360112C3EB11F080C9980DC4F9AE02.roa (hash: XqYyZyrqJ9BamfB85dIngxi60ilbd+EHlah+RvSpOvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 18:06:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3288 (0xcd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Dec 18 18:06:05 2025 GMT Not After : Dec 25 18:06:05 2025 GMT Subject: CN=6944428d-17bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:57:b3:82:8b:38:0e:56:cf:56:3c:a4:ce:0d: a0:f6:26:03:a6:bd:0b:5b:bb:95:cf:84:4e:4a:70: 35:2a:e6:02:77:53:58:51:48:c6:b0:40:87:b3:ab: 6c:40:0f:56:b6:ad:f5:08:1d:b4:12:e4:06:bb:01: 88:90:34:7e:d4:33:1f:d9:a7:9e:b0:31:ec:08:75: 55:67:23:57:cb:21:96:a4:4d:f6:a2:53:22:74:28: 31:eb:f8:b9:bc:3f:05:28:55:e5:29:50:82:cf:37: b2:2e:3c:b6:5c:95:c0:40:bf:60:6f:62:8b:74:04: 3b:b9:d4:0f:73:e1:95:dd:09:c5:e9:18:0a:49:48: c2:3c:2f:da:7d:41:08:d3:f2:59:6e:c8:8e:0e:e4: b7:69:37:3d:a7:82:16:b1:8b:20:a1:8b:ac:51:b3: 61:63:b7:8c:ab:f8:23:d0:13:25:36:d8:37:5a:6c: 31:3f:2a:21:02:a1:bb:af:1e:3c:31:ad:3c:8a:44: 0b:c7:20:7e:96:be:01:23:ba:90:23:43:78:71:d7: cd:80:5c:0d:7f:86:ad:eb:ba:1d:7a:5e:a1:d1:49: be:bc:5b:60:71:e5:ce:0e:7e:f0:26:bd:62:48:dc: 00:c0:c1:78:7d:44:a0:1f:fe:64:51:d9:09:6a:c3: e4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7C:9F:85:FC:CE:3C:53:3D:B1:78:F7:C7:E9:AD:A6:41:F7:E1:3B X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0f:aa:fc:7e:93:cd:be:4c:37:8e:46:61:ba:65:9f:37:4a: ee:53:c7:41:77:75:b8:86:29:d2:04:01:d9:ee:e7:8e:65:d6: 42:ad:55:82:77:92:ea:8e:2e:07:e5:17:a4:20:f5:6d:e1:38: f9:a7:7b:09:c9:58:c1:cc:56:07:50:88:f0:cf:4f:57:5b:03: b5:61:12:ab:28:7c:1d:30:c7:ef:e6:62:1b:f9:ca:ab:be:fd: fe:ad:b3:31:06:7b:fd:c2:77:13:4d:16:84:b0:fa:ae:bc:dd: 32:37:3d:1c:dc:6a:2a:58:44:db:93:d5:b5:10:78:6e:7c:ae: bc:47:52:13:75:a9:21:7b:0f:37:c2:83:42:94:4b:27:c3:1b: eb:d7:a5:99:e6:f7:6b:91:6a:5b:fb:40:96:51:a9:2b:3c:37: e8:84:18:fa:6e:03:1d:54:1a:1b:6d:07:0f:ad:9e:db:5d:a9: 1c:ca:08:8f:00:f1:06:93:55:61:ee:8e:bc:6e:3e:cb:5b:04: 80:38:4e:48:ba:b3:6a:71:4d:c5:0b:17:cb:bc:08:46:20:c9: 35:f5:02:9f:60:00:01:ad:50:18:3d:14:ff:eb:a2:66:d8:19: 64:79:66:d6:2d:8c:3b:e2:c1:69:28:66:45:6c:64:85:9f:6c: bc:d9:74:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUxMjE4MTgwNjA1WhcNMjUxMjI1MTgwNjA1WjAYMRYwFAYD VQQDDA02OTQ0NDI4ZC0xN2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51ezgos4DlbPVjykzg2g9iYDpr0LW7uVz4ROSnA1KuYCd1NYUUjGsECHs6ts QA9Wtq31CB20EuQGuwGIkDR+1DMf2aeesDHsCHVVZyNXyyGWpE32olMidCgx6/i5 vD8FKFXlKVCCzzeyLjy2XJXAQL9gb2KLdAQ7udQPc+GV3QnF6RgKSUjCPC/afUEI 0/JZbsiODuS3aTc9p4IWsYsgoYusUbNhY7eMq/gj0BMlNtg3WmwxPyohAqG7rx48 Ma08ikQLxyB+lr4BI7qQI0N4cdfNgFwNf4at67odel6h0Um+vFtgceXODn7wJr1i SNwAwMF4fUSgH/5kUdkJasPkxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD58n4X8 zjxTPbF498fpraZB9+E7MB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOD6r8fpPNvkw3jkZhumWfN0ruU8dBd3W4hinSBAHZ7ueOZdZCrVWC d5Lqji4H5RekIPVt4Tj5p3sJyVjBzFYHUIjwz09XWwO1YRKrKHwdMMfv5mIb+cqr vv3+rbMxBnv9wncTTRaEsPquvN0yNz0c3GoqWETbk9W1EHhufK68R1ITdakhew83 woNClEsnwxvr16WZ5vdrkWpb+0CWUakrPDfohBj6bgMdVBobbQcPrZ7bXakcygiP APEGk1Vh7o68bj7LWwSAOE5IurNqcU3FCxfLvAhGIMk19QKfYAABrVAYPRT/66Jm 2BlkeWbWLYw74sFpKGZFbGSFn2y82XSE -----END CERTIFICATE-----Generated at Sat Dec 20 05:14:58 2025 by rpki-client