This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: OapLRHny0URRTvIQePpz8KA24I+H6nc3smOVyCEcFSs= Subject key identifier: 8A:92:82:A6:0D:C5:AC:3B:12:63:E6:A5:D6:BA:C3:8F:29:E3:3D:50 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 04B2 Signing time: Wed 10 Dec 2025 16:34:13 +0000 Manifest this update: Wed 10 Dec 2025 16:34:13 +0000 Manifest next update: Wed 17 Dec 2025 16:34:13 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: m93TFHqOmJKGKRJ1oUyziOVEImT4B7/GSIkQw5ClnDQ=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: BSTa7sI/Wxp7paF8iFEhYcOXczYzjvqpGs3tFatgPsE=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: TLiIvWlCkSUznKaCtTmASc45uAF4Q8KIvn7LhcKxI18=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HMDK7qPjAO3ncQEJzX6SKnODDt4e7glxidti8sfhV1k=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Z/SQA8GAHBj69mDXnfsLMK8qu+tlZ5LxlzdXDGduFGo=) 7: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: AfGxVPGE0X5aiSEnPrV13VcxuUAvslUoJjsgWW+PD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 16:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Dec 10 16:34:13 2025 GMT Not After : Dec 17 16:34:13 2025 GMT Subject: CN=6939a105-695f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:42:d2:60:15:55:63:4f:56:09:18:9e:0b:19: c9:03:e5:bc:cd:1f:09:c5:d0:dc:94:1a:ef:ce:24: 9e:58:1a:1d:3a:f4:4a:7d:5c:f4:90:1f:ea:45:4d: 4d:57:fe:da:b1:78:0c:54:6b:b5:0e:a4:ee:02:99: 39:0c:ef:b3:a0:0f:d7:fa:d0:54:58:bf:78:71:e6: 40:fd:00:25:30:89:b2:51:c0:56:17:52:be:5c:10: 56:6b:17:bc:e7:e6:bc:7a:89:05:ba:74:d3:85:bb: 33:76:ca:05:33:3c:6f:ec:7b:9a:d4:f6:31:00:8a: 4a:39:41:4d:ad:1c:ec:fd:35:96:0c:76:ca:3a:78: c0:ae:0e:2a:bf:16:bf:dd:f4:88:51:2e:a8:f3:8a: 37:36:b8:1d:af:ce:74:10:b9:73:b1:f3:a8:8e:8a: d4:41:6f:f3:b7:57:6b:e1:2f:39:c6:89:ab:12:58: 4d:70:54:71:77:a4:88:e0:ed:39:9c:99:f9:e7:00: 85:87:51:6e:9e:d2:cd:3c:40:9c:c0:4a:7d:f8:19: 5b:56:82:b3:ae:02:36:51:1c:cb:b8:2f:79:f8:e5: b1:e8:4a:7a:e9:eb:66:a7:de:9b:7b:0d:28:85:16: 45:07:70:c7:60:cf:14:1f:9e:e7:16:ee:ab:13:59: 24:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:92:82:A6:0D:C5:AC:3B:12:63:E6:A5:D6:BA:C3:8F:29:E3:3D:50 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:f0:cf:bf:19:e2:3d:09:06:d0:d8:36:d0:2d:87:ce:ef:a1: 6a:58:69:be:10:7e:52:e1:1e:ac:69:36:01:c7:81:c2:9d:05: 1e:01:da:96:4b:17:87:4f:c4:ed:47:20:8c:f4:91:32:cd:c1: 0a:8f:10:14:f3:bf:b3:ac:1a:4c:44:d7:0f:5c:c7:5f:74:b2: 35:0d:41:1b:9c:85:55:8b:e1:08:38:cb:97:e5:b0:72:0b:66: 8f:38:a9:e0:7d:35:b7:1c:a1:95:79:99:bd:c3:e7:04:a4:38: 28:17:3d:06:f5:e2:75:aa:b3:6f:2b:a4:7d:a4:e2:00:35:7e: ad:8d:47:01:66:ee:e0:30:ca:a2:86:e4:42:81:47:d2:71:bd: 9e:ab:15:67:54:36:4c:03:22:24:a4:a8:b9:97:d8:bd:a6:4b: 91:ee:13:94:d7:97:3f:b2:a6:92:47:72:2b:b9:8b:f1:6e:87: 26:ef:57:fd:aa:64:2a:ad:a0:0f:8f:de:17:73:c8:5c:62:55: f7:8b:ce:4a:45:b0:94:77:60:7d:dd:16:f8:71:22:8e:99:a0: c4:e2:46:3d:ab:85:18:7f:81:a5:b3:35:6a:8f:88:2d:66:3d: 78:00:7e:2d:31:96:da:86:51:19:96:47:b2:9e:7a:5b:de:4a: f9:c9:b5:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUxMjEwMTYzNDEzWhcNMjUxMjE3MTYzNDEzWjAYMRYwFAYD VQQDEw02OTM5YTEwNS02OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsULSYBVVY09WCRieCxnJA+W8zR8JxdDclBrvziSeWBodOvRKfVz0kB/qRU1N V/7asXgMVGu1DqTuApk5DO+zoA/X+tBUWL94ceZA/QAlMImyUcBWF1K+XBBWaxe8 5+a8eokFunTThbszdsoFMzxv7Hua1PYxAIpKOUFNrRzs/TWWDHbKOnjArg4qvxa/ 3fSIUS6o84o3Nrgdr850ELlzsfOojorUQW/zt1dr4S85xomrElhNcFRxd6SI4O05 nJn55wCFh1FuntLNPECcwEp9+BlbVoKzrgI2URzLuC95+OWx6Ep66etmp96bew0o hRZFB3DHYM8UH57nFu6rE1kk+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqSgqYN xaw7EmPmpda6w48p4z1QMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBK8M+/GeI9CQbQ2DbQLYfO76FqWGm+EH5S4R6saTYBx4HCnQUeAdqW SxeHT8TtRyCM9JEyzcEKjxAU87+zrBpMRNcPXMdfdLI1DUEbnIVVi+EIOMuX5bBy C2aPOKngfTW3HKGVeZm9w+cEpDgoFz0G9eJ1qrNvK6R9pOIANX6tjUcBZu7gMMqi huRCgUfScb2eqxVnVDZMAyIkpKi5l9i9pkuR7hOU15c/sqaSR3IruYvxbocm71f9 qmQqraAPj94Xc8hcYlX3i85KRbCUd2B93Rb4cSKOmaDE4kY9q4UYf4GlszVqj4gt Zj14AH4tMZbahlEZlkeynnpb3kr5ybWa -----END CERTIFICATE-----Generated at Wed Dec 10 23:27:36 2025 by rpki-client