This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft File: W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft (raw, json) Hash identifier: rzrEKg3QCMp+NeI+X0E8wAzrQxK+TdPUAxIUtfFfjVE= Subject key identifier: 6C:CE:DE:3B:CA:B0:21:4D:6C:1B:06:88:0E:31:D5:0B:79:29:7A:C3 Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft Manifest number: 0137 Signing time: Wed 03 Dec 2025 02:56:13 +0000 Manifest this update: Wed 03 Dec 2025 02:56:12 +0000 Manifest next update: Wed 10 Dec 2025 02:56:12 +0000 Files and hashes: 1: W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl (hash: /BF95zD6IVjR3PGvgJZ81SoadK91pZy0kbtDPQQQrP8=) 2: FD990E7AF0B311EE9923BC84C4F9AE02.roa (hash: XWibtqlVyPdPRt9izLBx3ZYroA9isT1xxkvokh85YPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 02:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Dec 3 02:56:12 2025 GMT Not After : Dec 10 02:56:12 2025 GMT Subject: CN=692fa6cc-f65f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:55:ae:c7:bd:bb:e5:99:a5:b4:05:97:bd:d3: c7:b9:1c:f4:a1:0a:96:54:42:46:4a:89:57:f4:e8: cf:44:5a:ed:c3:08:84:28:d7:9a:e1:55:f0:47:93: 69:08:48:36:ef:31:b2:6b:8f:ae:f1:f7:a0:2f:94: 71:0d:dd:c7:c3:49:f8:02:7a:45:df:42:da:81:ab: 6a:9b:e3:b9:8e:ed:5e:fd:22:66:b2:42:bd:95:b4: f9:0b:6a:79:10:37:3b:03:fe:9d:ea:b3:16:7e:ce: a3:a2:f1:81:ac:97:f5:92:f0:bf:1b:55:27:64:fa: aa:c8:c5:64:cd:dc:15:d1:2b:c5:cc:06:fc:55:b0: d0:11:4d:e6:61:d2:c1:18:cf:5e:f8:ab:b6:9b:f4: 97:2b:a9:fb:26:af:a8:ec:55:f5:b3:85:a7:c5:59: aa:5c:71:61:64:74:b8:be:bd:91:cd:55:29:c8:47: c3:e9:b7:eb:27:3e:85:f2:7b:33:83:23:8c:3d:6e: a3:5e:ae:7b:98:73:9e:45:5a:e7:13:67:e4:57:f4: 2a:ea:9f:a3:f4:89:70:ed:d7:bc:7b:17:f7:81:86: ed:bb:1a:12:00:57:5d:da:cd:5a:e2:76:e6:b9:47: 9e:00:9b:6a:62:74:e3:58:63:90:2c:a2:ad:80:f9: ee:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CE:DE:3B:CA:B0:21:4D:6C:1B:06:88:0E:31:D5:0B:79:29:7A:C3 X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f0:7f:f2:fc:da:9d:96:d2:58:ee:9e:9d:38:5b:61:b1:77: 20:5c:81:7f:00:bf:4e:27:cd:78:19:11:04:0c:da:19:d8:62: 56:32:57:51:a2:b8:d2:29:be:7c:8f:83:6e:da:10:49:33:96: f8:41:af:5a:04:1e:13:f2:e6:9f:80:47:09:ae:4c:1b:e3:f5: c9:b4:bc:d9:8a:f5:5a:66:70:1e:b4:82:fc:f2:ce:35:3a:a7: 9c:e5:80:e1:00:c8:53:c5:d6:3c:6f:25:3b:49:14:4b:20:ae: 62:e2:96:c5:9d:ac:56:14:01:08:04:02:50:12:75:67:b8:69: 4a:09:a2:29:ce:2c:e5:80:c5:24:d5:1f:b2:6e:92:f6:b8:2f: 22:22:f4:9d:39:55:69:44:ff:69:65:5d:56:f4:30:4d:5f:cd: 11:df:84:d6:6a:4f:2d:bf:16:37:0d:40:99:44:16:1d:89:67: 61:e9:ec:8b:77:ae:e5:ee:85:4e:3b:8e:50:3a:d1:76:f2:b7: 08:40:c4:9a:b7:50:37:b6:21:6f:2d:2e:af:e3:e0:ab:b0:c6: 44:27:b5:09:2d:46:25:53:d7:fe:f2:c2:fb:39:74:9c:48:b7: ff:78:54:3b:cf:4d:3b:b9:b1:61:87:be:f5:98:2c:4e:47:4f: 14:5e:cb:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDVCQzQ5NEU4OUQwQTQxNTVCNTUyNTM2M0QxMjM1QzVF REMwRkRFMkYwHhcNMjUxMjAzMDI1NjEyWhcNMjUxMjEwMDI1NjEyWjAYMRYwFAYD VQQDEw02OTJmYTZjYy1mNjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVWux7275ZmltAWXvdPHuRz0oQqWVEJGSolX9OjPRFrtwwiEKNea4VXwR5Np CEg27zGya4+u8fegL5RxDd3Hw0n4AnpF30Lagatqm+O5ju1e/SJmskK9lbT5C2p5 EDc7A/6d6rMWfs6jovGBrJf1kvC/G1UnZPqqyMVkzdwV0SvFzAb8VbDQEU3mYdLB GM9e+Ku2m/SXK6n7Jq+o7FX1s4WnxVmqXHFhZHS4vr2RzVUpyEfD6bfrJz6F8nsz gyOMPW6jXq57mHOeRVrnE2fkV/Qq6p+j9Ilw7de8exf3gYbtuxoSAFdd2s1a4nbm uUeeAJtqYnTjWGOQLKKtgPnu/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzO3jvK sCFNbBsGiA4x1Qt5KXrDMB8GA1UdIwQYMBaAFFvElOidCkFVtVJTY9EjXF7cD94v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9BOEMyNTFFQUYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FWVzFVbE5qMFNOY1h0d1Az aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9BOEMyNTFFQUYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FW VzFVbE5qMFNOY1h0d1AzaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA28H/y/NqdltJY7p6dOFthsXcgXIF/AL9OJ814GREEDNoZ2GJWMldR orjSKb58j4Nu2hBJM5b4Qa9aBB4T8uafgEcJrkwb4/XJtLzZivVaZnAetIL88s41 Oqec5YDhAMhTxdY8byU7SRRLIK5i4pbFnaxWFAEIBAJQEnVnuGlKCaIpzizlgMUk 1R+ybpL2uC8iIvSdOVVpRP9pZV1W9DBNX80R34TWak8tvxY3DUCZRBYdiWdh6eyL d67l7oVOO45QOtF28rcIQMSat1A3tiFvLS6v4+CrsMZEJ7UJLUYlU9f+8sL7OXSc SLf/eFQ7z007ubFhh771mCxOR08UXssh -----END CERTIFICATE-----Generated at Wed Dec 3 16:22:49 2025 by rpki-client