This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: KRILBNww6svYbQO36IwXD3RZXVQFq9yKqRB3zQKRP6Q= Subject key identifier: 19:A0:4F:49:2A:B4:9F:F5:37:83:69:2E:63:BE:57:BC:98:EC:AF:BB Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 0533 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 052D Signing time: Sat 06 Dec 2025 19:00:10 +0000 Manifest this update: Sat 06 Dec 2025 19:00:09 +0000 Manifest next update: Sat 13 Dec 2025 19:00:09 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: ByIVhngmBSd4zmNgOQhL82hVOSrqEWyEfQnHdcANWVc=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:00:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1331 (0x533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Dec 6 19:00:09 2025 GMT Not After : Dec 13 19:00:09 2025 GMT Subject: CN=69347d39-c8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:50:a0:e2:22:30:7a:5e:e5:d8:b3:7e:39:2a: 11:a5:40:91:d1:f0:aa:b8:e0:28:af:d0:a8:14:07: ce:5b:e1:d6:86:b8:dc:2d:fa:eb:e9:b3:35:dd:ea: fe:35:b4:79:ed:98:03:34:2d:da:44:28:51:ac:db: a9:d2:e3:39:a7:d0:d8:33:05:2d:94:f6:67:53:88: 5b:8b:49:1a:ad:2a:14:24:12:9b:5c:e2:1d:f2:f7: 09:65:61:7a:80:7c:7a:ff:88:99:1e:76:85:2d:f5: 95:ba:80:a8:ba:b4:38:43:9d:1f:86:5b:c3:b9:8e: 43:ed:5b:a5:59:9a:14:bf:8f:8b:17:27:6d:47:64: 65:24:1a:b5:cf:ee:6e:4b:76:4f:44:ee:b1:a4:5c: 08:fa:95:ff:64:57:28:25:7f:1d:05:0e:28:51:a8: 52:d4:88:45:58:8a:83:dc:3c:33:ef:bf:bd:59:0a: 0d:cf:9c:dd:73:62:f5:99:bc:10:4d:5f:11:d5:ad: 52:d3:94:fb:04:0a:a6:49:d5:74:b9:c3:86:9e:9f: a0:80:af:8c:99:3d:81:b5:e1:2c:21:42:bc:28:48: ed:8b:36:0f:76:13:d3:e8:bf:b7:5d:cd:83:0d:db: 2d:8f:d2:4c:98:8a:12:02:de:40:2b:a5:f2:5b:62: 04:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:A0:4F:49:2A:B4:9F:F5:37:83:69:2E:63:BE:57:BC:98:EC:AF:BB X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:6e:2b:cb:c3:bb:70:08:a7:06:a6:0a:d3:0c:67:6f:64:60: 40:59:e8:a1:92:f5:29:d2:1f:c1:b7:84:d0:f3:c4:3d:cd:da: c8:52:f0:f0:71:9b:1f:90:d9:7c:16:e1:93:c5:fe:bb:9a:e2: 3a:61:4a:79:56:b0:28:93:9f:fd:79:e2:de:23:6a:7b:c7:36: f0:5e:16:b1:d9:a2:2c:b7:7f:2f:94:39:3e:9a:19:83:35:87: a5:9d:90:51:38:90:60:20:99:dd:cc:a1:58:51:fa:29:ab:97: 1e:66:33:de:5b:34:a7:ae:5f:52:60:ba:b4:56:eb:35:8f:67: 79:95:e8:d1:7d:ee:70:5f:b9:f5:7c:62:1c:b3:d4:ea:d3:92: 3d:5c:75:16:6c:dd:45:bf:13:9a:2f:9d:44:9e:d1:16:dd:f7: f6:bf:69:89:ab:c9:a2:47:55:c1:b7:bb:63:cf:c1:32:08:3c: 39:7a:26:96:87:5f:1b:8d:ac:02:54:bb:aa:08:c1:c9:86:b4: b3:35:ab:61:c9:49:3b:30:e3:cd:42:26:c9:14:15:b1:f9:88: 6f:88:00:f5:c4:f6:05:85:b3:a3:92:1b:1c:42:c2:3f:f4:b6: 20:02:ba:1e:15:85:6d:bb:81:e7:d0:8c:31:f2:8e:50:a7:13: 88:15:ae:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUxMjA2MTkwMDA5WhcNMjUxMjEzMTkwMDA5WjAYMRYwFAYD VQQDEw02OTM0N2QzOS1jOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21Cg4iIwel7l2LN+OSoRpUCR0fCquOAor9CoFAfOW+HWhrjcLfrr6bM13er+ NbR57ZgDNC3aRChRrNup0uM5p9DYMwUtlPZnU4hbi0karSoUJBKbXOId8vcJZWF6 gHx6/4iZHnaFLfWVuoCourQ4Q50fhlvDuY5D7VulWZoUv4+LFydtR2RlJBq1z+5u S3ZPRO6xpFwI+pX/ZFcoJX8dBQ4oUahS1IhFWIqD3Dwz77+9WQoNz5zdc2L1mbwQ TV8R1a1S05T7BAqmSdV0ucOGnp+ggK+MmT2BteEsIUK8KEjtizYPdhPT6L+3Xc2D Ddstj9JMmIoSAt5AK6XyW2IErQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBmgT0kq tJ/1N4NpLmO+V7yY7K+7MB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBybivLw7twCKcGpgrTDGdvZGBAWeihkvUp0h/Bt4TQ88Q9zdrIUvDw cZsfkNl8FuGTxf67muI6YUp5VrAok5/9eeLeI2p7xzbwXhax2aIst38vlDk+mhmD NYelnZBROJBgIJndzKFYUfopq5ceZjPeWzSnrl9SYLq0Vus1j2d5lejRfe5wX7n1 fGIcs9Tq05I9XHUWbN1FvxOaL51EntEW3ff2v2mJq8miR1XBt7tjz8EyCDw5eiaW h18bjawCVLuqCMHJhrSzNathyUk7MOPNQibJFBWx+YhviAD1xPYFhbOjkhscQsI/ 9LYgAroeFYVtu4Hn0Iwx8o5QpxOIFa7n -----END CERTIFICATE-----Generated at Sun Dec 7 07:27:25 2025 by rpki-client