This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft File: X-MMr29aMskZ0zWqlNDnMzzQVDU.mft (raw, json) Hash identifier: 6/O4oXvbKZ6Va8hM0unw45zZ+CuZzuUJQyrSec+2trQ= Subject key identifier: A8:BA:6A:3B:01:50:3C:2B:29:BF:7A:E5:6F:35:8A:43:48:0A:87:1B Authority key identifier: 5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 Certificate issuer: /CN=A911E403/serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Certificate serial: 0848 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft Manifest number: 0836 Signing time: Thu 04 Dec 2025 19:57:21 +0000 Manifest this update: Thu 04 Dec 2025 19:57:20 +0000 Manifest next update: Thu 11 Dec 2025 19:57:20 +0000 Files and hashes: 1: X-MMr29aMskZ0zWqlNDnMzzQVDU.crl (hash: 6Ow35YjC3Kp9igU9uQ5PBFiAQSAdWWDxGXKdLPPHbTA=) 2: FE02E774CFFD11EC8CFDFF68C4F9AE02.roa (hash: 433DCsbHOeQOFPBNJfYwdTpevwJm9hk5VYfRWCXU3fI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2120 (0x848) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E403, serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Validity Not Before: Dec 4 19:57:20 2025 GMT Not After : Dec 11 19:57:20 2025 GMT Subject: CN=6931e7a0-bbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:eb:65:ea:09:7b:5d:46:19:1d:c9:ea:0b:a9: 92:d6:2a:82:44:af:8d:9a:4a:95:9b:a0:91:63:10: 2e:92:55:d2:11:49:19:7e:c8:28:cf:fb:d8:34:0c: 24:27:a8:a7:54:35:b0:1c:33:0c:d7:37:37:a3:8c: 5b:5c:8f:63:b5:b9:fa:15:14:ba:92:6f:01:1f:85: d8:62:e1:68:04:44:4d:68:35:86:2b:a7:98:e3:7f: 84:6e:1c:72:81:35:07:ec:97:04:40:2b:68:5c:ef: 19:c1:af:4c:79:93:d3:5b:6c:b2:1b:cd:cc:cc:85: 88:4d:57:09:87:a8:33:8e:eb:2e:82:26:ff:b5:ea: c0:2d:26:95:3c:86:78:0a:4c:19:9f:3c:a5:59:aa: a2:89:c5:f7:35:2b:2f:b2:d1:01:8c:fd:81:91:db: a1:71:78:b8:79:6f:90:74:23:84:f5:a7:0a:c9:38: 6a:b0:bf:50:2b:5d:7e:32:87:5f:c2:27:df:47:69: 57:c7:f0:a5:27:0c:0d:71:00:48:af:59:04:5e:37: 08:bc:77:a1:4f:a4:ac:f2:ea:3f:94:2e:83:74:53: a5:f8:23:0c:07:57:76:8c:c7:2a:bd:e3:54:56:85: 17:12:d2:52:ed:56:eb:81:a8:53:01:46:19:a9:4b: d3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:BA:6A:3B:01:50:3C:2B:29:BF:7A:E5:6F:35:8A:43:48:0A:87:1B X509v3 Authority Key Identifier: keyid:5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:5c:df:fb:a8:62:97:29:a1:4a:18:7b:84:c8:93:d6:f7:2c: 90:db:dc:1a:fa:61:47:49:f2:00:c6:ab:70:f0:0f:c9:e2:57: 69:b0:5d:cb:ad:5c:ff:4a:14:79:6b:31:9e:6b:f6:65:a1:2b: 2f:e9:ac:e0:1d:96:03:2c:bf:88:42:b4:ab:a2:f5:c0:6d:22: dd:04:10:a3:cf:93:4e:11:98:09:58:a6:d0:7f:d0:46:a6:62: 99:44:05:b6:2a:4c:80:7f:a1:3e:04:c0:7e:7e:a0:72:67:95: 8a:64:c1:df:69:2d:ac:4c:19:9f:ac:da:ad:83:33:2f:6f:45: a2:11:6a:5a:2b:b5:8c:76:17:43:09:8e:25:a3:11:99:04:72: 0d:84:0e:1a:72:56:01:b9:01:34:cb:4b:cf:a7:15:37:c7:e1: 58:b5:7d:db:bc:23:16:c2:8e:34:58:e0:d3:b0:64:8c:1f:15: fd:4d:8d:02:e9:27:d3:5d:24:fc:d8:5c:20:ac:16:cb:8e:f3: a3:a4:3d:17:2d:cd:bd:0c:47:97:0c:48:72:0c:97:cd:ab:86: 05:86:db:e6:2c:0b:56:eb:5c:a3:93:95:7e:06:a5:98:1c:a3: d3:29:b2:4b:da:b7:de:8e:37:e2:71:42:06:0b:34:14:9a:f3: 7c:de:e5:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU0MDMxMTAvBgNVBAUTKDVGRTMwQ0FGNkY1QTMyQzkxOUQzMzVBQTk0RDBFNzMz M0NEMDU0MzUwHhcNMjUxMjA0MTk1NzIwWhcNMjUxMjExMTk1NzIwWjAYMRYwFAYD VQQDEw02OTMxZTdhMC1iYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4utl6gl7XUYZHcnqC6mS1iqCRK+NmkqVm6CRYxAuklXSEUkZfsgoz/vYNAwk J6inVDWwHDMM1zc3o4xbXI9jtbn6FRS6km8BH4XYYuFoBERNaDWGK6eY43+Ebhxy gTUH7JcEQCtoXO8Zwa9MeZPTW2yyG83MzIWITVcJh6gzjusugib/terALSaVPIZ4 CkwZnzylWaqiicX3NSsvstEBjP2BkduhcXi4eW+QdCOE9acKyThqsL9QK11+Modf wiffR2lXx/ClJwwNcQBIr1kEXjcIvHehT6Ss8uo/lC6DdFOl+CMMB1d2jMcqveNU VoUXEtJS7VbrgahTAUYZqUvTOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKi6ajsB UDwrKb965W81ikNICocbMB8GA1UdIwQYMBaAFF/jDK9vWjLJGdM1qpTQ5zM80FQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTQwMy9BMUNDRUNGRUY4 QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1za1oweldxbE5Ebk16elFW RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtTU1yMjlhTXNrWjB6V3FsTkRuTXp6UVZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTQwMy9BMUNDRUNGRUY4QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1z a1oweldxbE5Ebk16elFWRFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoXN/7qGKXKaFKGHuEyJPW9yyQ29wa+mFHSfIAxqtw8A/J4ldpsF3L rVz/ShR5azGea/ZloSsv6azgHZYDLL+IQrSrovXAbSLdBBCjz5NOEZgJWKbQf9BG pmKZRAW2KkyAf6E+BMB+fqByZ5WKZMHfaS2sTBmfrNqtgzMvb0WiEWpaK7WMdhdD CY4loxGZBHINhA4aclYBuQE0y0vPpxU3x+FYtX3bvCMWwo40WODTsGSMHxX9TY0C 6SfTXST82FwgrBbLjvOjpD0XLc29DEeXDEhyDJfNq4YFhtvmLAtW61yjk5V+BqWY HKPTKbJL2rfejjficUIGCzQUmvN83uVD -----END CERTIFICATE-----Generated at Sat Dec 6 19:15:58 2025 by rpki-client