This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: SIfyZrwyfWLPkwtBhwZlATA4SlzVtp8eoCTSypGyaJs= Subject key identifier: 4C:DC:BD:7F:ED:00:98:26:01:BC:EE:F2:44:F1:5A:42:40:6D:E8:7E Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 0233 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 022F Signing time: Fri 05 Dec 2025 00:20:26 +0000 Manifest this update: Fri 05 Dec 2025 00:20:25 +0000 Manifest next update: Fri 12 Dec 2025 00:20:25 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: ph8RmseVmX5QsxUOTBra+F3ivzy6Ikg1XGMnuZEp+xI=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: VJsQOiSsJa0amQwIRBGtrMFlrR2aAJJ6yMzF4uWszlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:20:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Dec 5 00:20:25 2025 GMT Not After : Dec 12 00:20:25 2025 GMT Subject: CN=69322549-5dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:84:d7:3c:1a:0c:52:70:ce:72:3f:37:9d:7b: aa:7c:c0:7e:8e:4e:c5:7a:81:39:d9:1b:64:fe:f2: 81:b7:5f:21:d2:e3:aa:45:3a:b7:f3:87:3e:3f:cb: 76:51:ae:b1:35:d8:1e:66:0a:98:65:e6:c1:f5:bf: 50:fe:ad:89:7d:3d:b4:71:38:e4:ce:f7:26:52:8f: c8:85:54:27:33:ff:0b:9d:33:35:3d:2f:a6:42:b9: 69:49:b7:b0:a1:7f:ad:4f:4c:33:f0:b8:c4:32:92: 73:04:da:b1:bf:7b:d8:2f:21:d1:06:ba:a2:06:38: 5c:1e:07:e8:dd:fc:50:56:6d:99:c3:d5:91:34:19: 51:9d:88:d5:2b:a9:75:a3:e2:3d:d1:40:d9:02:5f: 78:34:a5:71:4a:82:78:0a:f1:96:42:16:f0:21:32: 4f:4e:f5:0c:61:ef:17:b5:6c:f5:92:8b:e1:0e:05: 8f:bd:62:b3:68:7e:bf:36:cc:04:8a:64:a0:1a:49: 23:5d:5a:b2:16:b2:d1:5d:7f:d6:5c:ff:49:2b:cf: 5f:ae:1a:f6:8d:a8:aa:15:a4:5d:2a:e4:3d:b7:85: ce:29:b4:0f:e4:72:9c:92:84:a6:58:79:21:b8:cd: f4:27:ff:66:dd:97:88:46:92:95:6d:f7:95:2d:4b: 77:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:DC:BD:7F:ED:00:98:26:01:BC:EE:F2:44:F1:5A:42:40:6D:E8:7E X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:1e:4a:f4:8f:f3:96:c9:13:1b:ba:95:2c:5f:69:81:65:ab: e7:b4:d5:51:9b:8f:8d:6b:03:a1:54:c2:e0:27:1f:93:5d:0e: 0c:42:85:a3:49:e0:2f:99:6a:bc:14:b9:b5:fa:65:8d:44:6c: dd:9b:00:7d:c0:1d:aa:b4:3c:a1:13:bd:9f:8a:45:99:21:17: 9e:30:1e:9a:03:ee:f1:2f:21:70:a6:42:e0:2f:b0:78:e7:df: 69:cd:d7:a8:b6:01:6d:26:f4:75:b7:da:8b:a8:17:c2:7d:f1: e3:29:f9:0b:51:34:0a:d8:68:37:38:d9:57:18:21:ad:1f:75: 0e:a7:2e:59:38:f6:31:bd:26:d5:95:68:84:e8:d7:3a:62:14: f1:22:14:18:7f:5e:6e:2a:12:cf:4f:da:fc:9e:a2:0e:f4:12: 1c:d2:cb:a3:a0:0b:bb:87:4d:3a:c9:b4:60:5e:db:c5:ea:1e: 00:3b:5e:60:86:f7:ae:f4:ee:47:f2:61:12:af:8a:b6:c9:e4: 99:b2:90:b6:00:80:90:78:ee:ff:ce:6c:40:20:4d:79:ca:57: 81:cb:41:06:48:14:27:5d:e3:81:2d:1c:13:74:4b:25:6a:33: 70:4c:68:41:e5:c9:d9:00:25:75:aa:0e:09:e5:4a:01:0c:71: 38:6f:d2:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUxMjA1MDAyMDI1WhcNMjUxMjEyMDAyMDI1WjAYMRYwFAYD VQQDEw02OTMyMjU0OS01ZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6YTXPBoMUnDOcj83nXuqfMB+jk7FeoE52Rtk/vKBt18h0uOqRTq384c+P8t2 Ua6xNdgeZgqYZebB9b9Q/q2JfT20cTjkzvcmUo/IhVQnM/8LnTM1PS+mQrlpSbew oX+tT0wz8LjEMpJzBNqxv3vYLyHRBrqiBjhcHgfo3fxQVm2Zw9WRNBlRnYjVK6l1 o+I90UDZAl94NKVxSoJ4CvGWQhbwITJPTvUMYe8XtWz1kovhDgWPvWKzaH6/NswE imSgGkkjXVqyFrLRXX/WXP9JK89frhr2jaiqFaRdKuQ9t4XOKbQP5HKckoSmWHkh uM30J/9m3ZeIRpKVbfeVLUt3hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzcvX/t AJgmAbzu8kTxWkJAbeh+MB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQHkr0j/OWyRMbupUsX2mBZavntNVRm4+NawOhVMLgJx+TXQ4MQoWj SeAvmWq8FLm1+mWNRGzdmwB9wB2qtDyhE72fikWZIReeMB6aA+7xLyFwpkLgL7B4 599pzdeotgFtJvR1t9qLqBfCffHjKfkLUTQK2Gg3ONlXGCGtH3UOpy5ZOPYxvSbV lWiE6Nc6YhTxIhQYf15uKhLPT9r8nqIO9BIc0sujoAu7h006ybRgXtvF6h4AO15g hveu9O5H8mESr4q2yeSZspC2AICQeO7/zmxAIE15yleBy0EGSBQnXeOBLRwTdEsl ajNwTGhB5cnZACV1qg4J5UoBDHE4b9Ko -----END CERTIFICATE-----Generated at Sat Dec 6 15:39:48 2025 by rpki-client