This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft File: c35h2qB72DNCtgxeutSxuxm-QAM.mft (raw, json) Hash identifier: odlozSrLrTiYjjeM216iiUhMrYKZUEKfutdb9k46ATU= Subject key identifier: 57:E9:33:11:5A:10:5C:0D:F0:19:19:FF:65:1E:10:02:4D:64:54:63 Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 0A4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft Manifest number: 0A27 Signing time: Sat 06 Dec 2025 19:02:52 +0000 Manifest this update: Sat 06 Dec 2025 19:02:51 +0000 Manifest next update: Sat 13 Dec 2025 19:02:51 +0000 Files and hashes: 1: c35h2qB72DNCtgxeutSxuxm-QAM.crl (hash: jSks9/TsSSqUkcMfvwIFnRRD2Iy9OBzqMO8RdGpZNCs=) 2: 5258D3D4BCE011EFAB38225AC4F9AE02.roa (hash: 4oLW18xAlE3B8nPyqU3w32UG4L4+C+i7k1rNnlKSQ7s=) 3: 95B5855C18CE11EFBCD58454C4F9AE02.roa (hash: PcZXGp5zvO/A3lEsDn884MTZ2FtXJ7tXRCkkHLH+i5g=) 4: 981F188018CE11EFBCD58454C4F9AE02.roa (hash: 7NNAaJL+KytCopmMwh7xFBD72cI0M9FvnIHrWbUqbbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2636 (0xa4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Dec 6 19:02:51 2025 GMT Not After : Dec 13 19:02:51 2025 GMT Subject: CN=69347ddc-fc47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e4:6e:27:45:c5:f7:51:43:fb:b6:32:50:2d: 71:da:8d:4c:7c:fb:ec:41:1f:28:00:c2:73:d2:e3: b1:57:9d:c1:de:f7:c8:84:20:1b:ae:2c:d3:db:88: 31:b0:cb:81:cb:9a:e6:dc:32:b3:c7:35:2e:3e:b1: c7:d2:a7:9b:5b:95:22:1a:12:a3:a6:e3:22:1a:b5: c9:a4:34:53:21:b4:a0:dc:93:2b:60:25:c2:5f:92: 47:1d:09:08:8b:77:0a:87:75:4b:e0:46:b0:a0:73: 2f:5e:52:2a:50:93:bb:b6:2f:5c:c0:ed:4c:9a:9d: 96:4c:12:c5:a1:be:61:bc:ec:6f:99:50:3f:da:85: 09:f7:c7:3c:64:c9:00:14:ff:d2:67:72:8e:b9:57: ca:1d:5f:cd:5d:c7:1a:41:7a:21:08:2b:4a:0d:39: 43:68:2c:9f:5b:50:5c:30:4b:1f:3b:4d:f9:f4:ab: 96:c0:d3:dd:99:41:a0:25:6b:ef:02:9f:f0:b6:40: a3:52:1c:26:8c:11:9b:48:ec:8b:c6:d2:e3:a2:41: ec:39:0f:ab:55:96:75:de:69:8e:f1:44:47:04:15: f9:9f:36:de:40:ed:cd:40:cf:c6:d3:fb:e6:37:3b: 1a:3f:4e:78:39:f2:2a:c7:90:ac:10:42:55:4d:af: b8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E9:33:11:5A:10:5C:0D:F0:19:19:FF:65:1E:10:02:4D:64:54:63 X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a5:d7:8f:6c:bf:38:d3:f3:5f:0d:5c:8c:bb:0e:6f:2c:8f: 9d:15:2b:b1:67:67:00:7f:fe:ae:25:5e:30:e4:5b:1e:86:59: bc:bb:12:67:1c:f8:a2:e7:df:05:7c:31:4a:64:b2:7e:5a:94: 0b:fa:45:12:ad:f3:c5:cb:55:e3:cb:cd:ba:7d:bf:df:53:fc: 19:e2:55:29:57:3c:4b:72:f6:73:81:94:28:1f:fe:bb:b5:11: 99:a5:05:ac:a8:ee:c9:02:dd:b0:39:b1:9d:cb:0d:59:fc:64: 8a:8e:26:c0:ff:58:d7:8c:41:d0:92:61:99:28:e9:71:12:3d: f2:6d:c6:03:aa:2f:62:34:72:59:43:5d:f8:6a:d0:7e:d0:93: b6:fb:79:a1:1a:e2:89:83:78:0c:72:c7:57:8a:7f:0a:78:6e: f1:de:78:b8:6f:91:75:a5:57:d9:97:50:5e:cd:48:3f:9a:09: b5:00:29:6b:be:5d:ed:a6:08:b5:1d:e2:0e:68:79:28:cd:06: c0:a7:dd:66:dc:8f:4d:3c:f1:38:5a:62:06:42:a3:ba:9c:50: 6f:91:ec:4a:11:0b:fc:da:5a:16:c6:56:16:07:de:4e:45:02: a0:8a:12:1e:18:1e:bf:2c:89:0b:99:c7:c4:53:7b:8c:61:bb: db:53:48:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjUxMjA2MTkwMjUxWhcNMjUxMjEzMTkwMjUxWjAYMRYwFAYD VQQDEw02OTM0N2RkYy1mYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeRuJ0XF91FD+7YyUC1x2o1MfPvsQR8oAMJz0uOxV53B3vfIhCAbrizT24gx sMuBy5rm3DKzxzUuPrHH0qebW5UiGhKjpuMiGrXJpDRTIbSg3JMrYCXCX5JHHQkI i3cKh3VL4EawoHMvXlIqUJO7ti9cwO1Mmp2WTBLFob5hvOxvmVA/2oUJ98c8ZMkA FP/SZ3KOuVfKHV/NXccaQXohCCtKDTlDaCyfW1BcMEsfO0359KuWwNPdmUGgJWvv Ap/wtkCjUhwmjBGbSOyLxtLjokHsOQ+rVZZ13mmO8URHBBX5nzbeQO3NQM/G0/vm NzsaP054OfIqx5CsEEJVTa+4HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfpMxFa EFwN8BkZ/2UeEAJNZFRjMB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjQ3Qy8zQjFDREZCQzg1MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJE TkN0Z3hldXRTeHV4bS1RQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArpdePbL840/NfDVyMuw5vLI+dFSuxZ2cAf/6uJV4w5Fsehlm8uxJn HPii598FfDFKZLJ+WpQL+kUSrfPFy1Xjy826fb/fU/wZ4lUpVzxLcvZzgZQoH/67 tRGZpQWsqO7JAt2wObGdyw1Z/GSKjibA/1jXjEHQkmGZKOlxEj3ybcYDqi9iNHJZ Q134atB+0JO2+3mhGuKJg3gMcsdXin8KeG7x3ni4b5F1pVfZl1BezUg/mgm1AClr vl3tpgi1HeIOaHkozQbAp91m3I9NPPE4WmIGQqO6nFBvkexKEQv82loWxlYWB95O RQKgihIeGB6/LIkLmcfEU3uMYbvbU0g4 -----END CERTIFICATE-----Generated at Sun Dec 7 02:58:08 2025 by rpki-client