This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: J3R/dy99qggc2hVrnI2P7o/0gFfQEbcLHKI5bg7CJ9U= Subject key identifier: C7:49:13:1E:FF:D0:E7:28:87:D4:1B:2D:65:CF:73:A3:F0:96:DF:C2 Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: B1 Signing time: Thu 04 Dec 2025 21:31:09 +0000 Manifest this update: Thu 04 Dec 2025 21:31:08 +0000 Manifest next update: Thu 11 Dec 2025 21:31:08 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: iyrSPcR0QBmzqNEqUT87ddQaYR/+dD/MX7e8MViLFEk=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: OViblnR/lHFk4KXUmFXJa3gycbDpdzSeFdas4fvP/W4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Dec 4 21:31:08 2025 GMT Not After : Dec 11 21:31:08 2025 GMT Subject: CN=6931fd9d-7340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:8a:86:f0:b5:de:02:2e:6c:ee:65:df:f5:f1: 6c:0e:04:0d:f2:3f:53:94:0c:22:2e:6d:f2:d6:c9: be:d7:a9:35:92:84:fd:c4:d0:97:d6:eb:7f:a6:aa: 57:17:e6:4a:98:84:2e:91:a3:1f:ef:f0:27:6e:83: 1c:c5:dc:7b:29:c0:bc:26:e9:89:a2:ea:5b:38:d8: e1:29:bb:da:f5:cd:f6:34:6b:e5:99:3d:94:de:8c: b6:ed:04:64:f1:e2:ed:76:27:6f:47:60:8c:0d:79: 15:2a:4f:47:8c:65:10:df:a5:6d:4f:0c:05:a7:f9: 74:17:39:c5:c5:18:65:9c:16:cf:4a:e1:91:a6:1d: e6:30:8d:cd:46:70:e9:eb:b6:27:3b:fa:19:5e:51: c3:fa:7d:75:fe:b7:4b:4c:26:cc:aa:28:d6:6b:87: b9:4f:62:0a:48:d2:82:1c:62:ab:bd:1e:96:1b:fc: 6b:de:a3:67:d0:87:5a:dd:68:78:68:c3:76:b6:b9: af:07:8b:0e:ad:dc:57:b2:5e:16:d7:8a:cf:b6:e4: be:e9:dd:4d:83:72:0b:2c:7c:73:01:a7:df:dd:d8: 73:a1:57:e7:e5:86:5d:19:42:1b:3b:9e:db:4a:b9: 6c:36:67:12:93:da:b4:92:8d:d7:21:71:cb:6a:46: 0a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:49:13:1E:FF:D0:E7:28:87:D4:1B:2D:65:CF:73:A3:F0:96:DF:C2 X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:24:c7:68:18:2a:1c:35:db:4b:21:55:39:91:5a:40:0e:b2: aa:78:ae:56:d8:18:02:0e:78:25:29:4b:3f:8c:c4:ca:91:4a: b7:6a:25:06:46:3a:63:e2:18:72:b6:b2:00:79:89:bb:97:9e: 0b:17:b8:cb:b2:51:00:b9:df:9c:ea:82:05:37:2a:56:89:3e: 85:0a:74:6b:a2:18:a3:08:23:e3:55:81:2a:e4:a3:fb:49:bc: b7:cd:90:96:ab:a2:f2:ce:5a:f7:47:ba:0c:d2:a2:a4:7b:e8: 9f:56:ca:fb:f1:cb:2e:e0:62:ea:11:20:b2:46:c6:42:a4:30: cb:d6:1f:5c:11:51:3f:6e:0c:a3:c7:47:ce:8b:a8:02:15:d6: 4d:60:80:88:fa:c8:db:81:ce:6f:e9:29:e4:7a:17:be:00:b1: 67:72:36:36:f6:6c:6a:a3:a8:5b:49:6f:06:db:32:97:38:f9: 0c:0d:51:af:cd:3c:48:eb:c4:e8:16:2c:ae:b7:21:76:74:c8: 97:16:c9:ae:8c:c5:ab:cb:de:23:35:ad:09:37:93:bf:19:eb: 63:04:b9:d1:21:2a:4b:57:91:e2:8a:7f:89:6b:5c:a8:6a:a4: 58:47:b8:cf:d9:4b:62:8e:97:29:0a:48:20:3b:60:a8:1f:0c: 06:8f:ed:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKDY4NDEzRDQxRjYwMDVFMDMxNkUwRTI1NzZGMjI2QzIx ODhBQTE1NkYwHhcNMjUxMjA0MjEzMTA4WhcNMjUxMjExMjEzMTA4WjAYMRYwFAYD VQQDEw02OTMxZmQ5ZC03MzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YqG8LXeAi5s7mXf9fFsDgQN8j9TlAwiLm3y1sm+16k1koT9xNCX1ut/pqpX F+ZKmIQukaMf7/AnboMcxdx7KcC8JumJoupbONjhKbva9c32NGvlmT2U3oy27QRk 8eLtdidvR2CMDXkVKk9HjGUQ36VtTwwFp/l0FznFxRhlnBbPSuGRph3mMI3NRnDp 67YnO/oZXlHD+n11/rdLTCbMqijWa4e5T2IKSNKCHGKrvR6WG/xr3qNn0Ida3Wh4 aMN2trmvB4sOrdxXsl4W14rPtuS+6d1Ng3ILLHxzAaff3dhzoVfn5YZdGUIbO57b SrlsNmcSk9q0ko3XIXHLakYKlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdJEx7/ 0Ocoh9QbLWXPc6Pwlt/CMB8GA1UdIwQYMBaAFGhBPUH2AF4DFuDiV28ibCGIqhVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi9GNjk5RTM1NENG MTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhnTVc0T0pYYnlKc0lZaXFG VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi9GNjk5RTM1NENGMTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhn TVc0T0pYYnlKc0lZaXFGVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUJMdoGCocNdtLIVU5kVpADrKqeK5W2BgCDnglKUs/jMTKkUq3aiUG Rjpj4hhytrIAeYm7l54LF7jLslEAud+c6oIFNypWiT6FCnRrohijCCPjVYEq5KP7 Sby3zZCWq6Lyzlr3R7oM0qKke+ifVsr78csu4GLqESCyRsZCpDDL1h9cEVE/bgyj x0fOi6gCFdZNYICI+sjbgc5v6Snkehe+ALFncjY29mxqo6hbSW8G2zKXOPkMDVGv zTxI68ToFiyutyF2dMiXFsmujMWry94jNa0JN5O/GetjBLnRISpLV5Hiin+Ja1yo aqRYR7jP2UtijpcpCkggO2CoHwwGj+3F -----END CERTIFICATE-----Generated at Sat Dec 6 22:18:57 2025 by rpki-client