This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft File: d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft (raw, json) Hash identifier: y5QL8MGEi+IPV/kbclhHqg9S9JpCGJaw4PpWtI2hxS8= Subject key identifier: 9A:88:EC:B1:E8:B3:C5:6D:63:63:A4:4E:48:0F:13:42:1C:81:14:6F Authority key identifier: 77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 Certificate issuer: /CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft Manifest number: 016A Signing time: Tue 02 Dec 2025 22:11:30 +0000 Manifest this update: Tue 02 Dec 2025 22:11:29 +0000 Manifest next update: Tue 09 Dec 2025 22:11:29 +0000 Files and hashes: 1: d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl (hash: FUFh+XdiyzM6Sfs6ezwiH4kgMB8c1RsC9cBOWMA+Q/E=) 2: 7EE26732EB2411EEBDA7715FC4F9AE02.roa (hash: Kj01wL6hxzZNZ8dZAbJKpipOYkN2WV1ZM26ZUUjGKvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 22:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Validity Not Before: Dec 2 22:11:29 2025 GMT Not After : Dec 9 22:11:29 2025 GMT Subject: CN=692f6412-3f4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6c:01:65:11:49:3f:46:09:63:9d:16:24:db: 95:8a:03:5f:a8:5e:49:b3:56:84:e4:35:24:d9:9a: 3c:c3:3f:fc:d4:cd:32:2e:82:4c:da:e2:a8:02:4f: 17:40:04:49:e8:26:f5:ec:41:ca:8b:a8:09:89:7c: 6b:9b:11:6c:a1:3c:7d:a1:9b:f9:d3:78:7e:41:de: a9:cc:1c:07:4b:05:79:37:fd:51:3e:a3:07:64:0d: a6:83:53:31:5d:a9:74:82:c4:7c:37:01:e0:ba:d3: 20:35:f5:7b:8a:e8:94:cb:33:1b:8e:9b:7b:4b:07: 0b:05:b3:40:0b:82:59:fa:78:a3:09:32:ef:08:41: 76:b1:78:03:8b:d2:6f:97:a9:bd:11:04:56:8f:21: ca:8a:b1:a8:da:56:3e:0d:03:9f:c6:b1:02:80:d3: ee:d1:a5:59:86:07:3d:ac:ce:85:01:2b:46:72:38: 4c:b9:c4:33:a6:d1:5c:33:41:0c:00:12:c0:29:a6: 49:b4:07:11:39:51:a4:e9:71:c9:9e:b6:ba:ec:c3: f0:5f:65:f9:13:3a:ac:42:ba:fb:f5:0a:dc:10:eb: 22:7a:37:d2:65:8c:f4:9b:79:d3:3e:74:60:92:9b: 91:18:45:d9:61:41:3a:85:52:62:52:3b:c5:cb:79: 35:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:88:EC:B1:E8:B3:C5:6D:63:63:A4:4E:48:0F:13:42:1C:81:14:6F X509v3 Authority Key Identifier: keyid:77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:91:81:c5:76:79:51:9e:26:3a:d7:3a:83:7d:fe:06:aa:77: 77:84:68:40:8e:52:bf:17:3c:d6:d1:fa:59:4c:e0:e8:a3:10: 02:2e:3c:f8:36:9c:46:b1:02:6c:47:1b:24:b3:29:f5:63:d8: 97:5c:b5:22:e0:2c:b8:de:8a:17:31:18:ff:2f:c6:b2:67:2e: e7:3f:39:6a:00:6a:58:8a:ab:14:c0:cf:5a:1c:0d:b9:c4:fd: d1:90:22:85:61:f8:c3:1a:e1:8a:a6:83:2d:46:1c:27:ec:9f: 33:f3:35:7b:13:78:8c:7a:be:bc:77:c8:43:96:3e:2c:27:a9: 88:f2:d6:6c:85:58:1f:77:b7:9c:19:39:77:90:12:7b:3d:7b: d8:9e:e7:4d:bc:30:aa:aa:71:ff:35:b7:eb:fc:e4:d7:14:e4: 36:a7:36:ad:c4:9d:d8:d4:4b:92:8e:d0:ef:3d:20:5d:cb:90: 3a:72:4f:53:4d:5d:a7:ed:a7:a2:38:08:5d:8d:a2:20:34:4a: 91:64:89:2e:b5:12:36:37:25:92:98:66:fa:ec:e5:ec:a0:6c: f8:e7:4c:aa:8a:94:21:a4:ce:ff:87:d8:15:9f:d2:db:86:36: a5:7f:79:09:bb:cc:65:99:8b:d9:33:87:30:76:40:74:7b:cc: f0:81:38:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDc3RUM0ODY5MkQwNDI3MDI5NzhEQ0QwQjY4RTk0MEI4 RDc3MjNFNTIwHhcNMjUxMjAyMjIxMTI5WhcNMjUxMjA5MjIxMTI5WjAYMRYwFAYD VQQDEw02OTJmNjQxMi0zZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA02wBZRFJP0YJY50WJNuVigNfqF5Js1aE5DUk2Zo8wz/81M0yLoJM2uKoAk8X QARJ6Cb17EHKi6gJiXxrmxFsoTx9oZv503h+Qd6pzBwHSwV5N/1RPqMHZA2mg1Mx Xal0gsR8NwHgutMgNfV7iuiUyzMbjpt7SwcLBbNAC4JZ+nijCTLvCEF2sXgDi9Jv l6m9EQRWjyHKirGo2lY+DQOfxrECgNPu0aVZhgc9rM6FAStGcjhMucQzptFcM0EM ABLAKaZJtAcROVGk6XHJnra67MPwX2X5EzqsQrr79QrcEOsiejfSZYz0m3nTPnRg kpuRGEXZYUE6hVJiUjvFy3k1xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqI7LHo s8VtY2OkTkgPE0IcgRRvMB8GA1UdIwQYMBaAFHfsSGktBCcCl43NC2jpQLjXcj5S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC8yOEM2Q0NFNkE5 RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3S1hqYzBMYU9sQXVOZHlQ bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2QteElhUzBFSndLWGpjMExhT2xBdU5keVBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC8yOEM2Q0NFNkE5RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3 S1hqYzBMYU9sQXVOZHlQbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHkYHFdnlRniY61zqDff4Gqnd3hGhAjlK/FzzW0fpZTODooxACLjz4 NpxGsQJsRxsksyn1Y9iXXLUi4Cy43ooXMRj/L8ayZy7nPzlqAGpYiqsUwM9aHA25 xP3RkCKFYfjDGuGKpoMtRhwn7J8z8zV7E3iMer68d8hDlj4sJ6mI8tZshVgfd7ec GTl3kBJ7PXvYnudNvDCqqnH/Nbfr/OTXFOQ2pzatxJ3Y1EuSjtDvPSBdy5A6ck9T TV2n7aeiOAhdjaIgNEqRZIkutRI2NyWSmGb67OXsoGz450yqipQhpM7/h9gVn9Lb hjalf3kJu8xlmYvZM4cwdkB0e8zwgTgf -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:27 2025 by rpki-client