This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft File: -jVgKfx3KltDJpwxataFxLtaZW0.mft (raw, json) Hash identifier: RhSsvFbEKrbtdRU5DGEETUuaf/tk93W523USnAYMRv8= Subject key identifier: 03:20:18:C9:3F:FC:7F:BE:23:F1:16:2E:0D:D9:05:34:DA:D3:05:D8 Authority key identifier: FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D Certificate issuer: /CN=A9116B5E/serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft Manifest number: 066F Signing time: Sat 06 Dec 2025 21:28:09 +0000 Manifest this update: Sat 06 Dec 2025 21:28:08 +0000 Manifest next update: Sat 13 Dec 2025 21:28:08 +0000 Files and hashes: 1: -jVgKfx3KltDJpwxataFxLtaZW0.crl (hash: XcGURKMKPGP1bDoqLHhxidDOy/8jw/2gR65vSvjJ0DI=) 2: 93E364468FC111EFA7695485C4F9AE02.roa (hash: l40SoBbVMbccw1MSf6F6VE2N6tSNsGG3U/26S05rROc=) 3: 26C5F4148FC111EF84928A68C4F9AE02.roa (hash: WwU6SoQDG+8gwXxtD5WuoKkjOwOvaEm4Y976SHnYcTk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116B5E, serialNumber=FA356029FC772A5B43269C316AD685C4BB5A656D Validity Not Before: Dec 6 21:28:08 2025 GMT Not After : Dec 13 21:28:08 2025 GMT Subject: CN=69349fe8-76aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c3:b9:75:2b:68:b2:b3:79:58:65:59:94:af: 60:6f:f8:f5:58:8a:44:dc:5c:02:8a:6d:b2:cd:92: 93:25:ed:db:11:d8:0c:ba:a9:6a:61:d3:28:b3:0b: 35:f9:59:70:47:f0:78:40:6e:14:29:bd:14:b0:25: 71:4f:4c:8d:cd:1e:eb:ab:69:75:82:81:53:ef:06: 0c:e9:2b:a3:f0:84:bb:00:b9:f7:50:e5:f2:df:ba: a6:f6:a9:33:03:03:68:a2:09:92:62:56:35:65:73: bb:ab:56:9b:68:cf:c9:ce:37:1f:c6:bb:9a:32:e3: 61:1c:40:75:d3:69:bc:a5:3a:7b:f8:7c:1c:75:1f: c1:b0:df:b2:ff:69:19:d3:dc:21:be:f0:7e:36:87: bc:ab:ee:9e:96:db:1a:3f:db:d9:58:f2:03:4a:2f: a2:6f:5f:37:e4:49:24:b1:36:b5:4a:25:91:46:bd: d9:51:36:8b:46:76:2e:16:b0:02:93:6f:01:f5:2d: 08:b5:e0:87:64:d1:55:a8:ff:8c:5f:f9:c9:e1:5b: 72:d0:15:44:e7:e7:9a:40:61:da:99:2d:3a:37:40: 24:9f:c8:8b:16:c0:c3:c3:4b:63:91:17:83:17:77: 2f:b1:e0:14:4f:87:51:43:ba:03:b9:d2:ee:15:f4: 51:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:20:18:C9:3F:FC:7F:BE:23:F1:16:2E:0D:D9:05:34:DA:D3:05:D8 X509v3 Authority Key Identifier: keyid:FA:35:60:29:FC:77:2A:5B:43:26:9C:31:6A:D6:85:C4:BB:5A:65:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-jVgKfx3KltDJpwxataFxLtaZW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116B5E/F58C5694A6E011EBAC1DEB57C4F9AE02/-jVgKfx3KltDJpwxataFxLtaZW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:04:5e:6f:92:42:e4:ac:7f:72:bd:98:9b:5b:66:18:59:8f: 9a:0a:41:95:dc:f9:a0:3c:90:2e:6b:49:08:6d:74:a5:5e:73: 39:6a:39:6d:54:40:31:fb:2e:c5:cd:b1:4d:a8:23:de:a9:b1: f0:46:73:96:27:c5:9e:11:24:74:d2:e4:c9:ad:c1:f6:82:89: c7:e7:06:f1:79:1f:3f:94:1b:41:65:54:a5:f8:91:76:69:c1: dd:0a:30:d1:2d:55:23:9b:ca:c4:5b:5f:da:f2:75:e9:16:cd: 8d:f3:a6:31:25:6f:47:15:cc:fd:70:63:10:59:10:fa:c5:92: 25:64:60:30:e5:48:17:eb:9a:42:61:b1:b0:ba:fa:71:be:7e: 62:a5:f3:58:85:20:24:a5:62:6d:b9:79:ca:eb:27:f1:d2:72: be:bb:1f:aa:33:d0:1f:60:1e:62:3d:db:54:dd:fe:af:dd:64: be:ee:71:c4:7d:4c:2d:86:08:07:e3:dd:2d:74:2b:18:61:66: 7d:7c:3d:2a:29:2e:ba:ed:fe:0a:1a:8a:87:83:87:53:c5:5d: f2:6f:89:21:81:65:23:b1:ac:96:40:bf:35:aa:fa:f7:21:0d: 0d:89:2d:58:2c:6f:71:a0:ff:f1:47:df:52:a0:2d:7e:30:db: c9:9e:ce:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCNUUxMTAvBgNVBAUTKEZBMzU2MDI5RkM3NzJBNUI0MzI2OUMzMTZBRDY4NUM0 QkI1QTY1NkQwHhcNMjUxMjA2MjEyODA4WhcNMjUxMjEzMjEyODA4WjAYMRYwFAYD VQQDEw02OTM0OWZlOC03NmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcO5dStosrN5WGVZlK9gb/j1WIpE3FwCim2yzZKTJe3bEdgMuqlqYdMosws1 +VlwR/B4QG4UKb0UsCVxT0yNzR7rq2l1goFT7wYM6Suj8IS7ALn3UOXy37qm9qkz AwNoogmSYlY1ZXO7q1abaM/JzjcfxruaMuNhHEB102m8pTp7+HwcdR/BsN+y/2kZ 09whvvB+Noe8q+6eltsaP9vZWPIDSi+ib1835EkksTa1SiWRRr3ZUTaLRnYuFrAC k28B9S0IteCHZNFVqP+MX/nJ4Vty0BVE5+eaQGHamS06N0Akn8iLFsDDw0tjkReD F3cvseAUT4dRQ7oDudLuFfRRKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAMgGMk/ /H++I/EWLg3ZBTTa0wXYMB8GA1UdIwQYMBaAFPo1YCn8dypbQyacMWrWhcS7WmVt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkI1RS9GNThDNTY5NEE2 RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0tsdERKcHd4YXRhRnhMdGFa VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1qVmdLZngzS2x0REpwd3hhdGFGeEx0YVpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkI1RS9GNThDNTY5NEE2RTAxMUVCQUMxREVCNTdDNEY5QUUwMi8talZnS2Z4M0ts dERKcHd4YXRhRnhMdGFaVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvBF5vkkLkrH9yvZibW2YYWY+aCkGV3PmgPJAua0kIbXSlXnM5ajlt VEAx+y7FzbFNqCPeqbHwRnOWJ8WeESR00uTJrcH2gonH5wbxeR8/lBtBZVSl+JF2 acHdCjDRLVUjm8rEW1/a8nXpFs2N86YxJW9HFcz9cGMQWRD6xZIlZGAw5UgX65pC YbGwuvpxvn5ipfNYhSAkpWJtuXnK6yfx0nK+ux+qM9AfYB5iPdtU3f6v3WS+7nHE fUwthggH490tdCsYYWZ9fD0qKS667f4KGoqHg4dTxV3yb4khgWUjsayWQL81qvr3 IQ0NiS1YLG9xoP/xR99SoC1+MNvJns6m -----END CERTIFICATE-----Generated at Sun Dec 7 06:06:11 2025 by rpki-client