This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft File: aFlbmOTCezC6ozHOqscmF2fLkus.mft (raw, json) Hash identifier: tsLarMFAPn5oq9md59Yv9xVptCwHv1nva2A6Cfj8YwQ= Subject key identifier: 88:FD:3B:50:E9:3A:B9:B8:7D:F3:5A:9A:EE:CE:98:4D:0E:6A:8B:2C Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 06C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft Manifest number: 06B6 Signing time: Thu 04 Dec 2025 21:04:50 +0000 Manifest this update: Thu 04 Dec 2025 21:04:49 +0000 Manifest next update: Thu 11 Dec 2025 21:04:49 +0000 Files and hashes: 1: aFlbmOTCezC6ozHOqscmF2fLkus.crl (hash: k9gicQ2sdovSR51f5k0hKZLNVZvIX/PQwr2zhgQemZo=) 2: 8D20F290411811ECA0929516C4F9AE02.roa (hash: RzJGgawBbn3xUezpVG2c9suPVgigMwJa0fSwMeigVU8=) 3: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (hash: dsN/B56rqWk3m7WjQOyUkNCCDpI9L9GI0dqzzx2vJVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2, serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Dec 4 21:04:49 2025 GMT Not After : Dec 11 21:04:49 2025 GMT Subject: CN=6931f772-ad7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9f:f7:96:e2:8d:55:5a:7a:d0:9e:c0:21:f1: 37:23:3d:3f:35:64:98:22:ed:73:63:24:51:c7:97: f4:6b:91:21:7c:a1:95:81:3d:92:25:7b:cf:3c:ad: 04:af:f9:a6:f7:b4:e0:0f:59:8d:a7:be:18:3b:53: b9:a0:fd:64:ce:ef:0c:50:6c:08:25:d4:85:eb:5e: f3:b7:03:b0:d3:79:8b:70:f9:e5:0e:2e:70:c0:01: 41:8c:87:6c:d9:2e:1f:9e:b6:04:72:06:d7:f6:fb: 63:2f:48:4b:7f:8b:87:15:35:cf:b1:bc:9f:fb:a1: 55:28:08:06:3a:84:75:b4:1b:99:d1:15:ed:0e:16: 7d:75:22:a5:91:e2:41:9b:64:27:23:15:b0:4e:ac: ae:7e:5e:69:d2:10:6b:96:bd:7f:e4:06:61:03:57: 1e:62:68:02:3c:bc:c6:f9:2a:9e:e9:7c:ba:ce:1b: ca:3c:6b:64:c1:57:86:07:38:bb:7e:a9:e8:93:e4: 4d:5f:d5:08:fc:26:3e:d4:dc:58:85:a6:e9:c5:d2: 79:10:67:9c:51:fb:f1:da:96:d5:17:03:a6:68:50: 81:74:6b:79:bf:a7:19:33:3f:50:98:8c:6f:5a:bc: 59:de:42:10:7f:56:cc:13:e2:ab:fc:e0:a8:8f:19: d6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FD:3B:50:E9:3A:B9:B8:7D:F3:5A:9A:EE:CE:98:4D:0E:6A:8B:2C X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:7f:7d:68:b2:73:29:95:85:1d:e4:bb:2b:dc:e0:ac:3e:3e: a5:35:36:34:12:ea:3e:d4:9e:d8:67:d8:eb:4e:f9:4c:60:d7: 7d:f8:07:e8:b4:32:f2:0e:5a:1e:d9:e3:e6:bc:a8:8b:2d:0a: 45:54:92:bc:fd:4c:c3:34:01:50:a1:ad:89:e3:9a:c7:58:13: 25:d0:9e:53:4d:05:5b:f4:95:a6:69:77:44:cf:87:b6:2c:fa: 7f:a9:c6:8c:b3:a0:d1:1a:09:82:82:37:e3:68:96:7b:78:3c: 28:77:21:51:aa:d2:d9:e4:c1:71:c2:11:2a:27:3f:61:b9:83: 8a:ee:d9:65:25:61:bd:a7:a3:ce:7a:19:12:d1:50:76:b4:6d: 4a:f4:f2:ed:b9:61:86:57:25:b7:07:0c:6c:27:74:c2:88:2a: 2c:bf:dd:4a:d2:b0:cd:fc:46:c2:13:b6:cf:2e:0a:46:b2:b3: 47:5d:25:d2:89:5a:1b:5e:ae:44:d8:02:b6:45:8c:ec:01:98: 7b:64:cd:2b:24:f6:75:4f:4d:da:30:ad:3e:30:b8:00:14:42: c6:a8:3f:c0:b5:51:bc:a3:a1:8b:c6:0b:03:a1:9f:10:85:87: 89:27:ea:fa:ce:04:1e:46:c7:68:c4:64:d6:fc:72:c1:70:9d: 76:7d:13:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjUxMjA0MjEwNDQ5WhcNMjUxMjExMjEwNDQ5WjAYMRYwFAYD VQQDEw02OTMxZjc3Mi1hZDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5/3luKNVVp60J7AIfE3Iz0/NWSYIu1zYyRRx5f0a5EhfKGVgT2SJXvPPK0E r/mm97TgD1mNp74YO1O5oP1kzu8MUGwIJdSF617ztwOw03mLcPnlDi5wwAFBjIds 2S4fnrYEcgbX9vtjL0hLf4uHFTXPsbyf+6FVKAgGOoR1tBuZ0RXtDhZ9dSKlkeJB m2QnIxWwTqyufl5p0hBrlr1/5AZhA1ceYmgCPLzG+Sqe6Xy6zhvKPGtkwVeGBzi7 fqnok+RNX9UI/CY+1NxYhabpxdJ5EGecUfvx2pbVFwOmaFCBdGt5v6cZMz9QmIxv WrxZ3kIQf1bME+Kr/OCojxnWPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIj9O1Dp Orm4ffNamu7OmE0OaossMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUFFMi84QUI4QzE4QTg3QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6 QzZvekhPcXNjbUYyZkxrdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACf31osnMplYUd5Lsr3OCsPj6lNTY0Euo+1J7YZ9jrTvlMYNd9+Afo tDLyDloe2ePmvKiLLQpFVJK8/UzDNAFQoa2J45rHWBMl0J5TTQVb9JWmaXdEz4e2 LPp/qcaMs6DRGgmCgjfjaJZ7eDwodyFRqtLZ5MFxwhEqJz9huYOK7tllJWG9p6PO ehkS0VB2tG1K9PLtuWGGVyW3BwxsJ3TCiCosv91K0rDN/EbCE7bPLgpGsrNHXSXS iVobXq5E2AK2RYzsAZh7ZM0rJPZ1T03aMK0+MLgAFELGqD/AtVG8o6GLxgsDoZ8Q hYeJJ+r6zgQeRsdoxGTW/HLBcJ12fRNB -----END CERTIFICATE-----Generated at Sat Dec 6 13:07:37 2025 by rpki-client