This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft File: 6tgeRb5BR2cpw1YqNG-29i_IH70.mft (raw, json) Hash identifier: xPHC0rzDPR63NLBnznxAB6Mlspri5q/NmM6NdTuqevk= Subject key identifier: 4F:4A:EA:43:91:10:5D:7C:9E:94:B5:35:BE:F8:8D:F3:13:60:AF:91 Authority key identifier: EA:D8:1E:45:BE:41:47:67:29:C3:56:2A:34:6F:B6:F6:2F:C8:1F:BD Certificate issuer: /CN=A9119624/serialNumber=EAD81E45BE41476729C3562A346FB6F62FC81FBD Certificate serial: 0DAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tgeRb5BR2cpw1YqNG-29i_IH70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft Manifest number: 0DA3 Signing time: Sat 06 Dec 2025 17:20:20 +0000 Manifest this update: Sat 06 Dec 2025 17:20:20 +0000 Manifest next update: Sat 13 Dec 2025 17:20:20 +0000 Files and hashes: 1: 6tgeRb5BR2cpw1YqNG-29i_IH70.crl (hash: sru90x7JqIMqT5+H8xtjTUZRlyjU5tV34VJZhoH+YuI=) 2: 0FA62A50214011EA90EFFE63C4F9AE02.roa (hash: ea5pQ154Qvp0SJ7Us+DBRZX79LxrjMjlZoLuAw0uaMY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.crl rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tgeRb5BR2cpw1YqNG-29i_IH70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3501 (0xdad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=EAD81E45BE41476729C3562A346FB6F62FC81FBD Validity Not Before: Dec 6 17:20:20 2025 GMT Not After : Dec 13 17:20:20 2025 GMT Subject: CN=693465d4-3430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:23:ce:5c:c4:b1:20:ce:f0:4c:75:f7:36:ac: a8:e5:37:d1:e5:e0:25:7b:4a:eb:4a:18:1f:c8:16: 99:ca:34:5f:a9:11:40:77:eb:0a:aa:5c:34:6e:fe: 99:1c:f7:0a:ba:45:0e:50:86:27:df:f1:0b:96:24: 4b:54:99:81:1c:6c:43:3c:a6:12:15:9f:d3:ce:c6: 08:3d:d5:99:c7:fe:dd:e6:59:44:0e:0c:be:98:66: 5d:c5:50:a5:57:02:45:b3:b4:39:01:73:1d:18:5e: a9:ec:2b:8e:86:ce:b6:fe:cd:b2:a5:07:11:05:f0: c2:71:87:e5:36:e9:43:3e:a8:6d:fa:b0:35:32:ae: d4:00:75:56:13:a6:2b:d7:28:30:7a:cd:55:12:f4: 7c:00:78:03:d5:4e:ed:0d:1c:48:2b:c6:16:42:e8: bb:99:83:08:0d:b4:3d:6b:82:5d:6f:d7:bb:db:4c: 61:50:56:a2:46:7e:82:ef:ea:92:71:9b:f1:ff:3e: 4a:ee:78:75:ea:70:a3:3d:08:bf:bd:51:36:c0:6a: 2c:9b:a2:df:2d:7f:85:37:86:ef:f0:c5:52:4e:d4: e6:32:19:70:56:2e:f5:66:b6:56:d3:6a:4a:3d:c2: d4:2e:43:5b:f4:77:bf:70:92:6c:2c:8d:0b:79:00: f5:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:4A:EA:43:91:10:5D:7C:9E:94:B5:35:BE:F8:8D:F3:13:60:AF:91 X509v3 Authority Key Identifier: keyid:EA:D8:1E:45:BE:41:47:67:29:C3:56:2A:34:6F:B6:F6:2F:C8:1F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tgeRb5BR2cpw1YqNG-29i_IH70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/3D4A5A84D44D11E9A383A35BC4F9AE02/6tgeRb5BR2cpw1YqNG-29i_IH70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:09:b7:66:48:39:33:24:30:5d:4b:5a:14:07:5e:d8:45:a5: 6a:b1:2d:f4:24:f7:ed:c0:5a:68:e5:03:9d:e4:ed:b2:ae:7c: ac:c4:bb:c2:53:81:63:bd:f3:82:d0:79:ce:f1:7b:83:e2:42: 26:bd:55:eb:67:05:0e:92:3d:06:4c:c7:3d:a9:eb:11:e8:1f: 84:4e:7b:75:44:d0:97:d7:42:47:a1:16:86:4f:20:b1:ff:13: a0:4f:b8:e7:87:13:ea:f9:f8:9a:7d:51:03:d4:db:a2:81:39: 91:a6:16:f3:e1:01:43:ab:f6:3d:9c:73:0f:09:c6:d2:ee:ba: f7:05:dc:61:ce:96:75:21:af:09:c8:c1:d7:6a:df:a5:f8:cc: ad:de:bb:dc:52:43:8c:8b:79:95:2d:fe:b5:89:57:7f:2a:ed: da:62:f2:91:f1:d2:84:53:11:dc:8d:7a:e9:24:e9:e4:41:8c: 29:e8:71:9c:16:42:20:08:55:7b:95:d5:08:0e:25:46:b7:5e: 0a:ca:5f:79:6e:5f:06:53:38:f8:28:08:23:0a:d6:72:4b:23: c0:38:86:e6:10:ab:7b:6f:19:34:e5:2b:3e:85:0d:84:4e:9c: 61:c1:a8:d0:38:ea:a0:12:0f:65:41:98:42:c0:5d:84:af:77: 5f:4c:ec:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEVBRDgxRTQ1QkU0MTQ3NjcyOUMzNTYyQTM0NkZCNkY2 MkZDODFGQkQwHhcNMjUxMjA2MTcyMDIwWhcNMjUxMjEzMTcyMDIwWjAYMRYwFAYD VQQDEw02OTM0NjVkNC0zNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2SPOXMSxIM7wTHX3Nqyo5TfR5eAle0rrShgfyBaZyjRfqRFAd+sKqlw0bv6Z HPcKukUOUIYn3/ELliRLVJmBHGxDPKYSFZ/TzsYIPdWZx/7d5llEDgy+mGZdxVCl VwJFs7Q5AXMdGF6p7CuOhs62/s2ypQcRBfDCcYflNulDPqht+rA1Mq7UAHVWE6Yr 1ygwes1VEvR8AHgD1U7tDRxIK8YWQui7mYMIDbQ9a4Jdb9e720xhUFaiRn6C7+qS cZvx/z5K7nh16nCjPQi/vVE2wGosm6LfLX+FN4bv8MVSTtTmMhlwVi71ZrZW02pK PcLULkNb9He/cJJsLI0LeQD1jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9K6kOR EF18npS1Nb74jfMTYK+RMB8GA1UdIwQYMBaAFOrYHkW+QUdnKcNWKjRvtvYvyB+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC8zRDRBNUE4NEQ0 NEQxMUU5QTM4M0EzNUJDNEY5QUUwMi82dGdlUmI1QlIyY3B3MVlxTkctMjlpX0lI NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ0Z2VSYjVCUjJjcHcxWXFORy0yOWlfSUg3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTYyNC8zRDRBNUE4NEQ0NEQxMUU5QTM4M0EzNUJDNEY5QUUwMi82dGdlUmI1QlIy Y3B3MVlxTkctMjlpX0lINzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBACbdmSDkzJDBdS1oUB17YRaVqsS30JPftwFpo5QOd5O2yrnysxLvC U4FjvfOC0HnO8XuD4kImvVXrZwUOkj0GTMc9qesR6B+ETnt1RNCX10JHoRaGTyCx /xOgT7jnhxPq+fiafVED1NuigTmRphbz4QFDq/Y9nHMPCcbS7rr3BdxhzpZ1Ia8J yMHXat+l+Myt3rvcUkOMi3mVLf61iVd/Ku3aYvKR8dKEUxHcjXrpJOnkQYwp6HGc FkIgCFV7ldUIDiVGt14Kyl95bl8GUzj4KAgjCtZySyPAOIbmEKt7bxk05Ss+hQ2E TpxhwajQOOqgEg9lQZhCwF2Er3dfTOyp -----END CERTIFICATE-----Generated at Sun Dec 7 06:08:29 2025 by rpki-client