This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: Erke+C/b4c92SIIX/wIUFsS+b0rES/clFXT2aYOmbdg= Subject key identifier: 43:BC:20:C8:3A:43:DF:B2:4C:6A:B1:97:A7:4A:6A:91:75:B3:96:D2 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: 85 Signing time: Wed 03 Dec 2025 04:55:57 +0000 Manifest this update: Wed 03 Dec 2025 04:55:57 +0000 Manifest next update: Wed 10 Dec 2025 04:55:57 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: 2SRMliNUZL0g04D9yUkbKpV50s2H6Pv9oCF5iEXH68c=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Dec 3 04:55:57 2025 GMT Not After : Dec 10 04:55:57 2025 GMT Subject: CN=692fc2dd-7a17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8c:20:54:b1:64:57:71:bc:e1:ec:23:5a:8b: 34:67:29:dd:ce:a0:fa:21:f5:f2:87:3e:e0:9b:7f: 78:6f:11:44:bf:be:72:2b:f3:1c:17:4e:67:30:14: 18:8b:36:63:66:4a:d4:89:bb:9a:77:33:08:c8:60: d1:61:4d:b9:ed:3e:19:cf:33:e1:3c:6e:48:fe:0b: 8e:23:c4:bc:7b:0b:60:e3:2b:d1:12:e1:89:30:75: 6d:f6:7b:c9:25:26:1b:37:69:d1:66:62:5d:79:8d: e8:e6:b5:4f:9b:22:c2:a3:39:9d:93:65:71:4c:d7: cf:d7:f0:c3:37:2a:94:d1:39:56:26:8d:f0:c3:b9: 6a:4c:98:6c:bd:54:c7:d8:58:2d:e8:6d:4c:46:09: 3d:e4:06:9a:05:57:bb:3a:35:15:6a:83:d2:78:7d: da:08:dd:bd:df:06:d0:7a:b7:02:2b:f0:f7:12:01: 6a:7c:60:b1:b1:0b:32:2e:67:0d:7e:da:53:bf:85: f2:8d:03:d1:fa:2a:b0:c1:ff:29:5d:c4:f8:fe:56: 80:f2:3c:a6:ef:5a:08:27:73:2e:a4:43:c1:c5:e7: 16:92:58:9f:31:97:0e:19:66:20:b8:1a:61:5e:b7: 17:e7:81:0e:66:22:b5:d1:39:87:54:36:06:e6:ae: 6d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BC:20:C8:3A:43:DF:B2:4C:6A:B1:97:A7:4A:6A:91:75:B3:96:D2 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:17:30:c3:ed:63:02:61:0b:bd:86:43:da:6b:8d:1b:e6:4d: e4:04:da:d5:26:de:d5:9b:83:fd:92:4f:77:00:96:9f:d8:b8: a9:1d:44:35:f0:cd:42:d1:5e:6e:b4:58:0b:6b:72:50:36:7f: 07:63:94:3e:0f:c3:c4:ae:2b:e1:60:f4:a6:1e:c2:fc:09:ab: 22:a0:8b:15:0c:61:da:eb:2d:45:ff:cd:cb:35:ca:63:43:73: 7e:d2:88:5d:e6:9c:c9:71:8d:a8:95:1b:23:74:6d:ea:8b:3f: 03:9e:0f:bd:18:89:95:77:e9:1f:66:b6:4c:cb:e3:fe:25:5f: f3:b5:65:e9:1d:94:45:9e:46:b3:52:80:e9:a2:84:d2:d7:a6: c7:db:9c:86:85:af:9c:2a:8f:0b:d6:8f:b1:bd:9c:b2:2d:af: 60:95:13:52:a8:53:56:d6:cc:32:32:a7:57:d1:ef:b0:cf:0b: 89:6e:1b:d2:be:08:55:5f:5a:e9:cf:0b:0a:11:97:21:06:07: 91:dc:b5:7b:51:59:a1:96:68:08:23:1f:6c:5e:e7:c2:88:27: a9:ca:6b:37:7c:fd:f7:b9:01:df:19:95:72:04:c7:e3:19:1b: d2:4f:13:f0:a3:e7:64:66:e3:ad:07:7c:0f:cf:90:5f:e0:2b: 9b:85:3e:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKEIwMzQxQzM0M0ZFMTUyNUY3NkM5Mjk5NjEwQ0EwRTc4 RTkzRTg3QzMwHhcNMjUxMjAzMDQ1NTU3WhcNMjUxMjEwMDQ1NTU3WjAYMRYwFAYD VQQDEw02OTJmYzJkZC03YTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzowgVLFkV3G84ewjWos0ZyndzqD6IfXyhz7gm394bxFEv75yK/McF05nMBQY izZjZkrUibuadzMIyGDRYU257T4ZzzPhPG5I/guOI8S8ewtg4yvREuGJMHVt9nvJ JSYbN2nRZmJdeY3o5rVPmyLCozmdk2VxTNfP1/DDNyqU0TlWJo3ww7lqTJhsvVTH 2Fgt6G1MRgk95AaaBVe7OjUVaoPSeH3aCN293wbQercCK/D3EgFqfGCxsQsyLmcN ftpTv4XyjQPR+iqwwf8pXcT4/laA8jym71oIJ3MupEPBxecWklifMZcOGWYguBph XrcX54EOZiK10TmHVDYG5q5tnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEO8IMg6 Q9+yTGqxl6dKapF1s5bSMB8GA1UdIwQYMBaAFLA0HDQ/4VJfdskplhDKDnjpPofD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80MkZDM0Q4QTA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVsOTJ5U21XRU1vT2VPay1o OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZCQS80MkZDM0Q4QTA0OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVs OTJ5U21XRU1vT2VPay1oOE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYFzDD7WMCYQu9hkPaa40b5k3kBNrVJt7Vm4P9kk93AJaf2LipHUQ1 8M1C0V5utFgLa3JQNn8HY5Q+D8PErivhYPSmHsL8CasioIsVDGHa6y1F/83LNcpj Q3N+0ohd5pzJcY2olRsjdG3qiz8Dng+9GImVd+kfZrZMy+P+JV/ztWXpHZRFnkaz UoDpooTS16bH25yGha+cKo8L1o+xvZyyLa9glRNSqFNW1swyMqdX0e+wzwuJbhvS vghVX1rpzwsKEZchBgeR3LV7UVmhlmgIIx9sXufCiCepyms3fP33uQHfGZVyBMfj GRvSTxPwo+dkZuOtB3wPz5Bf4CubhT7O -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:36 2025 by rpki-client