This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: j4kZzzORKT8cKO+sgiF3IvUEHvno7h/Mr/lvR/sJglg= Subject key identifier: B5:8B:CF:BC:B7:FD:AB:4E:7E:C8:E7:89:99:7B:F6:6C:4D:09:23:B0 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: BE Signing time: Fri 05 Dec 2025 03:56:37 +0000 Manifest this update: Fri 05 Dec 2025 03:56:37 +0000 Manifest next update: Fri 12 Dec 2025 03:56:37 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: baoRINHDNg81h1VXJlaGQb+QVHsBXXOj7/30EUVG7/M=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Dec 5 03:56:37 2025 GMT Not After : Dec 12 03:56:37 2025 GMT Subject: CN=693257f5-dc02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cc:34:0c:1d:2e:bb:96:a0:47:86:1b:1e:59: 5e:e3:75:28:89:6e:38:ab:78:5b:d4:0e:5e:f2:54: bb:e5:9f:a8:34:87:fa:e2:b2:6e:3d:99:35:6f:73: e8:bf:1a:88:ef:cd:c8:1e:6c:63:ff:da:c2:96:6f: 4b:6c:db:9e:d3:fb:b7:bc:6f:35:c3:83:89:64:e5: cb:76:80:84:a6:57:e7:22:65:a2:34:24:4f:26:f8: 6b:29:91:3d:77:ff:e0:2b:91:12:54:8b:d5:1d:49: 85:af:eb:04:73:a3:cf:94:58:14:2a:c2:3e:41:37: b7:52:6d:1e:e5:20:ad:84:9f:7a:d4:3d:c0:f4:0d: d3:d3:90:8b:65:ab:e5:3d:94:6e:fd:0d:cd:02:77: 47:b3:e8:0f:02:7a:80:14:4b:e5:65:8f:10:86:5a: cc:85:09:96:d5:25:53:5e:7a:cf:4e:5d:e1:ef:b1: b9:46:d0:23:ff:36:31:10:40:26:f2:80:ad:be:e6: 4c:99:96:52:bc:79:11:a0:80:53:b3:36:90:1f:70: 82:08:30:50:da:25:66:c1:45:1a:2c:de:50:5e:67: 6e:29:72:54:6e:81:1b:a2:88:be:2b:7c:f7:76:40: b5:56:6b:47:db:f5:01:27:58:4c:8f:11:70:02:b4: e9:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:8B:CF:BC:B7:FD:AB:4E:7E:C8:E7:89:99:7B:F6:6C:4D:09:23:B0 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d5:18:ec:fd:57:92:6f:6b:d0:a1:06:3f:d6:92:5c:0b:16: 6d:14:31:4c:d4:53:e1:03:f4:a7:26:7e:f5:0d:03:18:17:e1: eb:79:2c:01:ca:bd:ea:ed:f5:12:bf:48:55:98:c1:49:88:bb: 9d:68:06:92:39:b7:0a:46:da:6f:8f:b1:f6:6d:96:6d:06:55: b2:3b:a0:de:97:e9:cc:d7:ef:15:d1:b3:fa:22:8c:94:4a:64: 3e:38:a3:80:70:79:0a:ca:1e:04:b6:6a:6c:57:fe:d3:64:2c: 97:4a:f9:34:50:70:58:dc:d2:86:49:8e:83:c2:cc:ec:e1:da: ba:eb:58:96:01:f8:9f:fa:92:ba:1c:da:e1:70:15:84:77:40: f0:62:fb:a6:67:15:5f:56:bf:42:2f:b7:27:0d:70:0f:7e:9c: 50:f9:90:cc:0e:02:4b:bd:84:e7:e5:eb:8b:48:0b:12:19:39: f8:9a:d1:0e:1e:34:d6:29:00:64:ac:c5:bf:10:f0:32:3f:83: a0:79:ee:c7:ec:d6:39:fa:23:9d:14:e7:e4:7c:d3:f3:e6:ab: d5:d2:07:e6:f1:27:81:5f:a6:3e:23:12:c7:67:46:0e:4b:21: e3:b4:a6:7f:36:6f:58:1b:95:71:fd:e8:01:92:3f:f2:b8:8f: 6b:c0:11:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjUxMjA1MDM1NjM3WhcNMjUxMjEyMDM1NjM3WjAYMRYwFAYD VQQDEw02OTMyNTdmNS1kYzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysw0DB0uu5agR4YbHlle43UoiW44q3hb1A5e8lS75Z+oNIf64rJuPZk1b3Po vxqI783IHmxj/9rClm9LbNue0/u3vG81w4OJZOXLdoCEplfnImWiNCRPJvhrKZE9 d//gK5ESVIvVHUmFr+sEc6PPlFgUKsI+QTe3Um0e5SCthJ961D3A9A3T05CLZavl PZRu/Q3NAndHs+gPAnqAFEvlZY8QhlrMhQmW1SVTXnrPTl3h77G5RtAj/zYxEEAm 8oCtvuZMmZZSvHkRoIBTszaQH3CCCDBQ2iVmwUUaLN5QXmduKXJUboEbooi+K3z3 dkC1VmtH2/UBJ1hMjxFwArTpOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWLz7y3 /atOfsjniZl79mxNCSOwMB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ1Rjs/VeSb2vQoQY/1pJcCxZtFDFM1FPhA/SnJn71DQMYF+HreSwB yr3q7fUSv0hVmMFJiLudaAaSObcKRtpvj7H2bZZtBlWyO6Del+nM1+8V0bP6IoyU SmQ+OKOAcHkKyh4EtmpsV/7TZCyXSvk0UHBY3NKGSY6Dwszs4dq661iWAfif+pK6 HNrhcBWEd0DwYvumZxVfVr9CL7cnDXAPfpxQ+ZDMDgJLvYTn5euLSAsSGTn4mtEO HjTWKQBkrMW/EPAyP4Ogee7H7NY5+iOdFOfkfNPz5qvV0gfm8SeBX6Y+IxLHZ0YO SyHjtKZ/Nm9YG5Vx/egBkj/yuI9rwBHq -----END CERTIFICATE-----Generated at Sat Dec 6 21:25:10 2025 by rpki-client