This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: 1IjUr33wUmngVzle1w14Z2/70QdFWMgJQjDhw4/IJTU= Subject key identifier: 62:25:D9:0A:54:D1:A1:4E:60:05:65:C1:BA:F0:67:3B:89:31:E0:D8 Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: C2 Signing time: Wed 03 Dec 2025 04:34:22 +0000 Manifest this update: Wed 03 Dec 2025 04:34:22 +0000 Manifest next update: Wed 10 Dec 2025 04:34:22 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: 4AnGpODsoZiqczioexVeOHNq/yvAfhW0rE/WVsA2O4Y=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: u84W1M8BSH4Fa+WJxMh9/IQCwGN476f0YWGryaIG1g4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 04:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Dec 3 04:34:22 2025 GMT Not After : Dec 10 04:34:22 2025 GMT Subject: CN=692fbdce-1c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ea:ea:9b:bf:1a:58:16:1b:8d:07:7a:da:c7: ab:a1:3a:f9:04:0f:02:59:a6:03:80:5e:2d:b9:00: b2:32:4b:9e:89:a4:31:cf:57:3f:46:58:32:d8:6e: c9:06:dc:a5:8b:39:74:62:0e:57:82:4d:d4:1e:05: ca:f4:09:72:a8:25:b1:36:0b:ee:0d:3d:e1:3b:d4: 8f:cc:1d:7e:3b:33:72:b3:38:25:6f:38:1d:29:20: 6b:e1:28:97:2a:9f:d6:63:0e:76:6c:0f:a4:bc:1c: 4d:fc:63:c0:88:d0:62:81:29:22:47:2d:11:6e:69: 0c:1c:dd:ca:a3:df:23:73:75:91:ae:2c:77:da:0b: 06:26:49:8b:21:77:7e:e5:5e:97:e5:25:1f:55:e8: 2b:25:dc:ed:3e:4a:51:ea:51:03:b3:9a:83:18:38: 65:49:dd:3d:40:c0:24:0f:b8:ee:68:30:03:87:a3: 8c:36:f1:71:4b:21:90:e6:80:8f:b5:a2:bc:78:29: ff:42:e6:9a:66:7e:d4:8a:3a:a5:b8:47:8f:b9:44: 7f:0d:a4:30:6f:7d:f6:f3:6c:e1:f4:94:51:f7:f8: 4e:25:40:d5:2b:75:a1:d7:1b:3a:fb:1c:37:66:21: 40:1a:7a:39:0c:64:ec:50:a1:6b:7c:6a:89:6c:c1: a3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:25:D9:0A:54:D1:A1:4E:60:05:65:C1:BA:F0:67:3B:89:31:E0:D8 X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:43:5c:f9:e7:7b:36:6d:79:0a:cf:05:f0:e6:59:98:35:ce: 93:c5:fc:22:0e:79:66:22:54:51:50:29:ec:d6:c9:e3:9d:f5: 53:9d:e3:24:59:f2:30:c1:03:c8:e5:99:94:f7:c2:1b:87:66: 59:50:62:b9:10:24:22:ff:7e:64:6e:39:14:2a:12:b3:2a:45: 6b:b3:ff:1d:23:3f:4c:ba:a6:51:6b:73:19:cc:06:d0:ed:8e: 33:2b:1f:da:8e:65:eb:43:08:04:a3:39:5c:43:5f:d5:fa:8b: 98:2a:e3:e4:42:09:a9:8b:e4:de:f2:8d:c1:b5:77:a0:51:20: 83:33:8e:43:89:2e:42:b1:0d:c1:4f:cc:0a:6f:0f:bf:7d:c0: 2c:da:78:99:38:e4:5d:0a:8e:cd:f0:39:35:6d:b9:83:33:b5: 41:f3:28:ee:13:8f:50:20:b7:8b:67:02:f8:e4:fe:2a:21:39: 0c:c3:77:5c:0d:7d:21:47:af:b5:ee:43:81:d6:45:ca:f9:9f: a6:48:e5:24:25:3b:1c:e4:8a:8e:60:ba:73:f8:54:7c:74:d2: 76:cd:fa:1b:52:96:05:4b:6e:cf:eb:01:83:bd:f1:75:2c:be: 07:81:14:b4:42:8c:61:44:11:72:18:c1:9e:44:41:9a:6f:32: a9:c9:9f:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEFENTQ1RDI1MDRGRTFERTkyQUUxNzY2REY0NjU3NjM3 REI3QTdFNzUwHhcNMjUxMjAzMDQzNDIyWhcNMjUxMjEwMDQzNDIyWjAYMRYwFAYD VQQDEw02OTJmYmRjZS0xYzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+rqm78aWBYbjQd62seroTr5BA8CWaYDgF4tuQCyMkueiaQxz1c/Rlgy2G7J Btylizl0Yg5Xgk3UHgXK9AlyqCWxNgvuDT3hO9SPzB1+OzNyszglbzgdKSBr4SiX Kp/WYw52bA+kvBxN/GPAiNBigSkiRy0RbmkMHN3Ko98jc3WRrix32gsGJkmLIXd+ 5V6X5SUfVegrJdztPkpR6lEDs5qDGDhlSd09QMAkD7juaDADh6OMNvFxSyGQ5oCP taK8eCn/QuaaZn7UijqluEePuUR/DaQwb33282zh9JRR9/hOJUDVK3Wh1xs6+xw3 ZiFAGno5DGTsUKFrfGqJbMGjGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGIl2QpU 0aFOYAVlwbrwZzuJMeDYMB8GA1UdIwQYMBaAFK1UXSUE/h3pKuF2bfRldjfben51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FNTM5Q0RBMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhla3E0WFp0OUdWMk45dDZm blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FNTM5Q0RBMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhl a3E0WFp0OUdWMk45dDZmblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmQ1z553s2bXkKzwXw5lmYNc6TxfwiDnlmIlRRUCns1snjnfVTneMk WfIwwQPI5ZmU98Ibh2ZZUGK5ECQi/35kbjkUKhKzKkVrs/8dIz9MuqZRa3MZzAbQ 7Y4zKx/ajmXrQwgEozlcQ1/V+ouYKuPkQgmpi+Te8o3BtXegUSCDM45DiS5CsQ3B T8wKbw+/fcAs2niZOORdCo7N8Dk1bbmDM7VB8yjuE49QILeLZwL45P4qITkMw3dc DX0hR6+17kOB1kXK+Z+mSOUkJTsc5IqOYLpz+FR8dNJ2zfobUpYFS27P6wGDvfF1 LL4HgRS0QoxhRBFyGMGeREGabzKpyZ9G -----END CERTIFICATE-----Generated at Wed Dec 3 13:58:02 2025 by rpki-client