This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: TN8iu0SjmZWMk7Afwyb3vgAEUKZL4Ynam4N4pnDRkqI= Subject key identifier: 25:EB:2F:49:0E:D2:09:E2:7E:76:55:31:A6:EB:2D:99:CA:10:F2:2B Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: C5 Signing time: Fri 19 Dec 2025 04:58:36 +0000 Manifest this update: Fri 19 Dec 2025 04:58:35 +0000 Manifest next update: Fri 26 Dec 2025 04:58:35 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: lUnwxJFFeHnqrzkj/DVQvImXcNbGgZuyxGdCx2NA4GM=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 04:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Dec 19 04:58:35 2025 GMT Not After : Dec 26 04:58:35 2025 GMT Subject: CN=6944db7c-304a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d7:1c:d1:a2:26:74:95:34:e4:df:45:83:5f: e5:64:2e:cc:d6:f9:25:d5:af:be:4a:91:bf:68:a0: ab:b1:8b:e6:dc:4c:15:54:21:7f:57:62:ec:74:62: 3e:a5:e4:ce:9e:98:af:12:a9:c5:4c:69:6a:7c:3f: 15:be:0e:d7:94:fb:46:eb:19:c8:31:61:40:88:9a: 48:64:8d:eb:42:c2:de:2f:9b:05:4f:84:05:6d:a7: bc:69:56:02:d3:bb:e0:73:80:d8:57:9c:7b:0b:bb: 4a:2d:7a:0b:3e:c6:28:ab:f3:b7:f3:eb:f6:91:28: 02:2c:a9:97:10:41:45:43:97:f8:1a:d7:8e:ec:1d: 6c:8c:73:6d:16:23:3f:12:19:f3:8f:94:d7:9c:91: 0b:4d:83:3d:25:26:c7:af:28:48:87:67:12:d6:62: 1e:cb:65:e6:a3:95:a9:07:0a:84:df:ad:d0:a7:84: bf:74:62:e2:8a:79:b0:75:16:77:25:70:d0:8f:4e: 33:19:54:02:09:57:a9:9d:61:19:30:3d:b2:50:3d: 59:04:b0:75:98:dc:9d:c7:11:17:76:ab:fe:d0:f4: 82:50:40:3e:53:9c:2d:1f:a0:37:d3:34:8d:6d:72: 55:09:15:d2:b6:4b:10:a6:00:a4:15:ef:a6:21:4a: 6c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:EB:2F:49:0E:D2:09:E2:7E:76:55:31:A6:EB:2D:99:CA:10:F2:2B X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:e0:6b:ec:02:23:77:96:37:62:7d:bb:f8:5c:7b:1c:8c:12: 0d:4d:c6:36:c9:14:f0:3b:5a:7b:02:2f:a9:10:32:1f:4e:b5: 47:0e:a2:3a:07:f5:a9:93:98:6d:80:f6:44:76:cc:ae:22:71: 2f:95:31:53:0f:87:84:6d:b3:d8:07:dd:a7:da:59:26:35:b6: a1:e3:bb:d8:88:0d:68:da:73:79:51:55:d1:67:8d:14:b4:a5: 60:97:60:3a:bc:65:ec:39:c4:2f:03:38:6e:c5:9c:09:c0:37: 24:ce:35:40:cb:26:00:fe:42:98:69:98:7c:c7:e4:de:85:65: e3:82:21:01:40:1c:38:ce:dc:e5:0b:df:42:b0:f4:64:66:17: de:12:54:41:dd:d5:18:e2:01:ee:72:4d:f6:95:e8:11:29:3d: 02:eb:4f:e4:f6:9b:c2:77:0d:ec:15:f7:4b:83:82:35:22:7c: 90:51:08:dc:10:93:85:9b:85:78:a2:6d:6c:d2:11:50:8d:8e: ba:81:ad:ed:55:52:40:8d:0c:2a:1c:52:be:40:f2:ab:f3:5d: ad:b9:aa:99:a3:5a:5b:1a:42:a0:dd:ae:7c:9b:dc:51:1f:2c: c8:f8:10:e1:c1:28:7a:b0:19:94:13:ad:5e:c6:20:52:dc:bf: e9:fa:8e:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjUxMjE5MDQ1ODM1WhcNMjUxMjI2MDQ1ODM1WjAYMRYwFAYD VQQDDA02OTQ0ZGI3Yy0zMDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tcc0aImdJU05N9Fg1/lZC7M1vkl1a++SpG/aKCrsYvm3EwVVCF/V2LsdGI+ peTOnpivEqnFTGlqfD8Vvg7XlPtG6xnIMWFAiJpIZI3rQsLeL5sFT4QFbae8aVYC 07vgc4DYV5x7C7tKLXoLPsYoq/O38+v2kSgCLKmXEEFFQ5f4GteO7B1sjHNtFiM/ Ehnzj5TXnJELTYM9JSbHryhIh2cS1mIey2Xmo5WpBwqE363Qp4S/dGLiinmwdRZ3 JXDQj04zGVQCCVepnWEZMD2yUD1ZBLB1mNydxxEXdqv+0PSCUEA+U5wtH6A30zSN bXJVCRXStksQpgCkFe+mIUps0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXrL0kO 0gnifnZVMabrLZnKEPIrMB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy4GvsAiN3ljdifbv4XHscjBINTcY2yRTwO1p7Ai+pEDIfTrVHDqI6 B/Wpk5htgPZEdsyuInEvlTFTD4eEbbPYB92n2lkmNbah47vYiA1o2nN5UVXRZ40U tKVgl2A6vGXsOcQvAzhuxZwJwDckzjVAyyYA/kKYaZh8x+TehWXjgiEBQBw4ztzl C99CsPRkZhfeElRB3dUY4gHuck32legRKT0C60/k9pvCdw3sFfdLg4I1InyQUQjc EJOFm4V4om1s0hFQjY66ga3tVVJAjQwqHFK+QPKr812tuaqZo1pbGkKg3a58m9xR HyzI+BDhwSh6sBmUE61exiBS3L/p+o6N -----END CERTIFICATE-----Generated at Fri Dec 19 19:54:32 2025 by rpki-client