This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: 0U5DN5t5f7dNv4ge3duuVKl1GZJqMIPKxXuiWRvkk44= Subject key identifier: 7F:DF:73:A6:35:54:89:1A:60:3A:DA:12:6F:69:A8:9D:CB:97:FC:BF Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: B0 Signing time: Tue 02 Dec 2025 21:48:21 +0000 Manifest this update: Tue 02 Dec 2025 21:48:21 +0000 Manifest next update: Tue 09 Dec 2025 21:48:21 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: ivdNIN0u75ly+dGa9omHjP2ZyWWQm7w/gxUIxBksx/U=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: OViblnR/lHFk4KXUmFXJa3gycbDpdzSeFdas4fvP/W4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 21:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Dec 2 21:48:21 2025 GMT Not After : Dec 9 21:48:21 2025 GMT Subject: CN=692f5ea5-70bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:10:62:1e:28:4f:ff:dc:ff:aa:0c:9b:53:42: 8d:10:c6:52:3d:8d:b1:c7:3f:3b:82:ea:15:67:ba: cc:57:6a:85:9b:99:72:db:cf:c7:9c:c7:3c:e9:fe: 82:2f:87:be:ca:1a:d3:24:ee:65:49:32:b9:25:45: 31:15:2f:32:3b:74:98:07:ae:a7:eb:9b:5d:e3:2b: 4e:26:fb:a4:96:42:29:d5:e4:99:95:da:13:9f:41: 83:1f:73:66:d8:6e:ee:29:9d:51:22:f7:37:5b:2d: 58:c6:38:00:f2:46:48:01:cc:4f:e4:26:d6:20:f7: 89:9f:54:88:c1:ac:e4:1a:75:0c:ea:7c:fb:7c:17: e3:42:70:42:81:14:59:67:ec:2e:be:55:4a:65:e7: 69:af:33:b9:e8:9f:a3:52:5b:0d:40:5a:0c:24:84: 46:a8:cb:03:ee:87:d4:f1:f0:48:0c:8e:4a:13:f4: 2e:7e:c4:4c:b4:7e:2d:d2:7c:30:51:6e:2b:08:63: 40:97:a0:88:54:0c:bd:cb:a7:0e:88:d8:40:66:f0: 34:aa:af:db:e5:b2:3e:6c:21:01:71:bf:c1:f2:6b: 35:0e:1d:fb:af:30:14:af:ed:8c:d0:08:69:41:ba: 0d:06:cf:cb:66:73:75:b3:76:dc:4e:e3:93:5b:b2: 8b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:DF:73:A6:35:54:89:1A:60:3A:DA:12:6F:69:A8:9D:CB:97:FC:BF X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b1:26:c3:15:da:c9:8e:02:6f:56:9f:14:4a:96:29:65:43: c6:4a:c5:5e:8b:c1:d3:21:f7:65:e7:61:66:e8:3a:db:90:9b: 9a:bc:1d:71:6a:b9:ab:c9:0d:f2:7a:66:66:cf:69:98:61:6e: 1c:a0:4f:27:92:e0:4f:f1:59:63:26:b3:de:e4:00:02:ea:da: 29:d7:c4:92:38:81:10:9f:2b:9c:f2:d5:44:fc:cb:82:53:b7: ea:a5:8f:13:7a:1e:c0:ac:90:3c:f6:d9:61:7a:f9:31:fc:2d: 2e:43:cc:77:7d:04:cc:75:a4:76:ff:8c:e8:a3:2e:a7:c4:e4: 93:b8:6c:c8:27:dc:d0:2d:01:32:d5:48:ba:19:62:ec:e9:32: 3b:f5:cf:67:7d:0a:c7:97:58:12:67:a8:e3:7e:ec:91:2d:4c: 8a:df:e2:5a:63:61:e4:a7:22:e2:d0:7d:c8:50:2a:62:e0:ff: 6d:fe:8e:9f:bc:53:db:39:2e:4c:6b:c0:44:e6:b5:9e:dc:a1: 60:81:ed:42:05:02:f7:3b:45:d5:45:4a:41:19:2f:ae:db:06: e1:f4:e2:1a:1a:55:a0:6f:b0:94:14:07:63:cf:9b:f1:b5:bc: f9:69:74:b7:fc:72:19:52:66:1e:59:9e:30:71:fa:b2:d7:19: 30:5f:68:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKDY4NDEzRDQxRjYwMDVFMDMxNkUwRTI1NzZGMjI2QzIx ODhBQTE1NkYwHhcNMjUxMjAyMjE0ODIxWhcNMjUxMjA5MjE0ODIxWjAYMRYwFAYD VQQDEw02OTJmNWVhNS03MGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBBiHihP/9z/qgybU0KNEMZSPY2xxz87guoVZ7rMV2qFm5ly28/HnMc86f6C L4e+yhrTJO5lSTK5JUUxFS8yO3SYB66n65td4ytOJvuklkIp1eSZldoTn0GDH3Nm 2G7uKZ1RIvc3Wy1YxjgA8kZIAcxP5CbWIPeJn1SIwazkGnUM6nz7fBfjQnBCgRRZ Z+wuvlVKZedprzO56J+jUlsNQFoMJIRGqMsD7ofU8fBIDI5KE/QufsRMtH4t0nww UW4rCGNAl6CIVAy9y6cOiNhAZvA0qq/b5bI+bCEBcb/B8ms1Dh37rzAUr+2M0Ahp QboNBs/LZnN1s3bcTuOTW7KLWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/fc6Y1 VIkaYDraEm9pqJ3Ll/y/MB8GA1UdIwQYMBaAFGhBPUH2AF4DFuDiV28ibCGIqhVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi9GNjk5RTM1NENG MTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhnTVc0T0pYYnlKc0lZaXFG VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi9GNjk5RTM1NENGMTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhn TVc0T0pYYnlKc0lZaXFGVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdsSbDFdrJjgJvVp8USpYpZUPGSsVei8HTIfdl52Fm6DrbkJuavB1x armryQ3yemZmz2mYYW4coE8nkuBP8VljJrPe5AAC6top18SSOIEQnyuc8tVE/MuC U7fqpY8Teh7ArJA89tlhevkx/C0uQ8x3fQTMdaR2/4zooy6nxOSTuGzIJ9zQLQEy 1Ui6GWLs6TI79c9nfQrHl1gSZ6jjfuyRLUyK3+JaY2HkpyLi0H3IUCpi4P9t/o6f vFPbOS5Ma8BE5rWe3KFgge1CBQL3O0XVRUpBGS+u2wbh9OIaGlWgb7CUFAdjz5vx tbz5aXS3/HIZUmYeWZ4wcfqy1xkwX2j4 -----END CERTIFICATE-----Generated at Wed Dec 3 15:32:32 2025 by rpki-client