This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: xh4Jws7rOY2TDDebgQgBUoOwdEDk7dtMwqbRz09NufY= Subject key identifier: 19:24:5D:BB:CD:4D:54:DD:B7:C6:B5:70:5C:29:F0:9B:ED:58:55:E5 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0843 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0832 Signing time: Wed 10 Dec 2025 19:45:10 +0000 Manifest this update: Wed 10 Dec 2025 19:45:10 +0000 Manifest next update: Wed 17 Dec 2025 19:45:09 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: cfNWNs+F6YkYEDsGF6wercbl4+DdlduMXuDbxSZWC2Y=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 19:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2115 (0x843) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Dec 10 19:45:10 2025 GMT Not After : Dec 17 19:45:09 2025 GMT Subject: CN=6939cdc6-a9ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8c:d7:d5:62:a5:71:f5:86:de:96:6a:40:b4: 74:2b:fd:e2:93:98:43:bb:a0:e2:d6:98:2a:db:a4: 8c:26:4e:4e:f7:0b:b6:6d:ce:f2:2c:68:6f:9d:3d: 33:f2:7c:25:0a:8c:ce:0d:dc:d4:23:82:a7:24:f0: 92:4a:91:89:64:bb:dd:98:b8:4b:43:aa:6e:b5:4d: 92:d7:cd:17:6e:b1:7f:fc:2b:11:51:a0:28:11:4a: e1:0d:ce:dd:b7:d5:58:83:e2:72:82:7a:63:13:00: 08:48:7e:cb:29:8b:fc:24:b7:1a:bf:8a:2d:01:34: b3:21:1d:d2:93:f9:8a:b3:a0:f0:9e:3a:33:03:57: f2:b2:9c:7b:a4:32:f4:4d:65:13:ff:f4:4e:28:3d: 4f:bf:e2:49:1f:fd:62:f4:e9:6d:2e:1c:af:a2:c8: aa:4f:12:a4:b3:6c:3d:d9:cf:c1:19:21:11:f5:71: 7d:38:95:2e:09:42:5e:80:25:2b:b6:22:c3:8e:92: 57:38:ce:a4:bf:17:4f:df:ca:13:84:39:08:8e:b8: ac:c6:cd:46:f3:ea:82:37:f2:54:a9:97:4f:a0:4a: 34:f1:8a:fb:e2:53:78:4d:97:4a:92:18:b7:49:ee: e7:75:6a:83:cf:06:60:2d:71:56:23:d0:90:08:c6: fb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:24:5D:BB:CD:4D:54:DD:B7:C6:B5:70:5C:29:F0:9B:ED:58:55:E5 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:95:72:65:6c:90:b1:1d:f8:cf:2e:8d:a9:30:b1:e5:76:a5: 75:7a:2e:f9:5e:53:b7:fe:d5:c1:64:dc:7d:4d:ba:00:e4:f4: d5:b1:16:99:4a:73:23:6f:fa:be:ef:51:25:be:05:c2:12:fb: 60:59:49:52:6e:77:6d:0c:4a:35:29:31:e2:c4:73:c9:70:29: aa:57:97:8c:fa:b6:d8:74:6a:48:9a:ed:12:e9:91:9d:30:bf: 4d:d4:81:47:34:02:95:2d:e8:76:3e:60:83:d4:48:29:ce:e7: 9b:cb:da:b0:34:d8:32:55:b2:37:8e:51:5d:fa:84:fb:94:d4: a2:93:c8:e7:36:c7:f9:4d:b7:e7:55:a9:2f:4c:04:6d:3e:2a: 10:8b:86:a3:7a:57:a8:a0:15:8d:8b:22:a4:42:42:0b:70:49: 0b:13:95:a1:f1:df:f6:d3:65:7d:4b:a7:a6:bf:6e:21:d7:a0: 88:d6:bb:37:42:07:5b:22:d9:4f:86:dd:a2:ee:cc:66:60:1a: b3:00:bb:be:e2:21:ea:20:70:7c:c2:58:ae:b6:79:ba:d1:2c: ba:6d:b9:38:90:7d:42:27:29:12:59:1b:5c:7c:42:86:b2:fe: 22:58:b5:52:92:36:19:09:18:f1:48:45:ed:e3:0e:46:fb:2f: c5:88:d3:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUxMjEwMTk0NTEwWhcNMjUxMjE3MTk0NTA5WjAYMRYwFAYD VQQDEw02OTM5Y2RjNi1hOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyozX1WKlcfWG3pZqQLR0K/3ik5hDu6Di1pgq26SMJk5O9wu2bc7yLGhvnT0z 8nwlCozODdzUI4KnJPCSSpGJZLvdmLhLQ6putU2S180XbrF//CsRUaAoEUrhDc7d t9VYg+JygnpjEwAISH7LKYv8JLcav4otATSzIR3Sk/mKs6DwnjozA1fyspx7pDL0 TWUT//ROKD1Pv+JJH/1i9OltLhyvosiqTxKks2w92c/BGSER9XF9OJUuCUJegCUr tiLDjpJXOM6kvxdP38oThDkIjrisxs1G8+qCN/JUqZdPoEo08Yr74lN4TZdKkhi3 Se7ndWqDzwZgLXFWI9CQCMb7nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkkXbvN TVTdt8a1cFwp8JvtWFXlMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAglXJlbJCxHfjPLo2pMLHldqV1ei75XlO3/tXBZNx9TboA5PTVsRaZ SnMjb/q+71ElvgXCEvtgWUlSbndtDEo1KTHixHPJcCmqV5eM+rbYdGpImu0S6ZGd ML9N1IFHNAKVLeh2PmCD1Egpzueby9qwNNgyVbI3jlFd+oT7lNSik8jnNsf5Tbfn VakvTARtPioQi4ajeleooBWNiyKkQkILcEkLE5Wh8d/202V9S6emv24h16CI1rs3 QgdbItlPht2i7sxmYBqzALu+4iHqIHB8wliutnm60Sy6bbk4kH1CJykSWRtcfEKG sv4iWLVSkjYZCRjxSEXt4w5G+y/FiNMV -----END CERTIFICATE-----Generated at Fri Dec 12 08:01:06 2025 by rpki-client