This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: xvJB+eTT2937ExvjzDZA3k8WWGxPG3H+hOqYOU1DXyk= Subject key identifier: 8D:91:AC:9A:CF:63:46:34:3D:D7:25:D0:5A:B2:0C:7A:46:84:97:37 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0B33 Signing time: Sat 06 Dec 2025 18:33:08 +0000 Manifest this update: Sat 06 Dec 2025 18:33:07 +0000 Manifest next update: Sat 13 Dec 2025 18:33:07 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: dzmew2GJvvdmlkgIL8D4Fooh/DhumNC0B2RBhpB4PQc=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Dec 6 18:33:07 2025 GMT Not After : Dec 13 18:33:07 2025 GMT Subject: CN=693476e4-b9ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5a:51:23:eb:22:b2:90:0f:81:72:cc:2c:cc: 3d:be:86:ce:e2:77:53:b4:b2:c6:48:1d:d2:81:07: 85:cb:98:64:99:9a:10:81:85:0d:cf:2f:f6:36:d9: 4b:c0:7a:ac:0f:77:be:0d:fd:8f:dd:a6:55:13:71: ed:a8:a4:a7:af:de:fe:2c:f9:50:8f:ce:3e:d7:b9: f3:9c:9c:0b:e8:9e:f1:08:4d:2c:40:7b:2d:82:cd: ff:f2:01:4b:96:35:b1:ea:38:a2:85:d3:24:8e:84: a2:57:f1:c0:c7:90:99:3d:fd:1d:ca:fc:26:9d:0e: 56:64:ba:de:46:e9:1d:14:a5:87:84:32:14:e6:ca: d2:aa:ec:a9:7c:2f:48:ad:b9:a0:cb:bc:77:87:dd: ef:97:33:1c:aa:a0:c9:cd:76:de:36:7a:f2:15:9f: d7:81:01:5b:21:89:3e:25:bb:a7:ab:98:c4:cd:d5: d0:57:d2:ec:b2:38:7e:69:a2:16:6a:cc:44:7f:16: 5e:39:eb:66:3b:cc:31:d0:9f:51:ac:c1:47:d0:64: 0f:53:0f:76:97:c6:22:6d:6f:bc:88:97:96:ce:83: 4d:ec:b2:7e:13:ad:65:22:b8:44:b0:30:ed:c2:26: 31:4c:95:27:50:bc:8e:55:25:25:03:2f:40:b9:83: d1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:91:AC:9A:CF:63:46:34:3D:D7:25:D0:5A:B2:0C:7A:46:84:97:37 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:db:ba:2c:a2:e6:12:7c:86:98:26:9c:b4:c2:c2:83:5e:8a: ed:c9:db:bd:ef:6c:cf:2c:d5:a4:36:e3:4b:aa:3c:e9:72:66: 46:d3:9c:ef:de:3e:97:ae:19:22:e4:86:a5:38:c1:47:d4:5f: 41:18:d8:64:e6:c9:01:9a:fb:26:73:dd:0a:6e:55:ca:3d:ec: 60:40:07:cc:22:c5:df:df:6c:59:86:6a:8b:16:82:17:1b:89: 59:e5:dc:6e:e2:a3:f6:e8:c3:91:b9:73:f8:7b:3a:c9:0b:aa: 7e:29:5c:bf:38:53:5d:48:dd:43:44:7e:ce:35:c7:1e:ae:7c: d2:e0:c4:dd:3a:f1:8f:f3:23:50:d3:3e:38:bd:9f:c1:5e:69: 09:98:21:36:5d:26:c0:fe:cd:d3:01:3f:c3:aa:16:5f:ff:6a: 15:8d:52:d3:61:bf:1e:fc:c7:70:53:9c:7a:0b:8a:e8:fb:c4: 77:3d:16:85:c3:5b:ce:69:65:ce:3b:06:8e:86:e8:92:f1:86: a2:1f:0f:68:69:3d:80:7d:13:f3:f5:70:2a:32:9e:c3:cc:65: 13:3d:a4:1e:c0:0f:c5:8c:11:5f:57:cc:9e:ad:40:0b:06:b9: 94:2d:09:d3:04:87:b3:8e:75:a7:c6:95:bf:7b:ed:83:8f:c1: 6a:0d:c5:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUxMjA2MTgzMzA3WhcNMjUxMjEzMTgzMzA3WjAYMRYwFAYD VQQDEw02OTM0NzZlNC1iOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFpRI+sispAPgXLMLMw9vobO4ndTtLLGSB3SgQeFy5hkmZoQgYUNzy/2NtlL wHqsD3e+Df2P3aZVE3HtqKSnr97+LPlQj84+17nznJwL6J7xCE0sQHstgs3/8gFL ljWx6jiihdMkjoSiV/HAx5CZPf0dyvwmnQ5WZLreRukdFKWHhDIU5srSquypfC9I rbmgy7x3h93vlzMcqqDJzXbeNnryFZ/XgQFbIYk+Jbunq5jEzdXQV9Lssjh+aaIW asxEfxZeOetmO8wx0J9RrMFH0GQPUw92l8YibW+8iJeWzoNN7LJ+E61lIrhEsDDt wiYxTJUnULyOVSUlAy9AuYPRswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2RrJrP Y0Y0Pdcl0FqyDHpGhJc3MB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB727osouYSfIaYJpy0wsKDXortydu972zPLNWkNuNLqjzpcmZG05zv 3j6Xrhki5IalOMFH1F9BGNhk5skBmvsmc90KblXKPexgQAfMIsXf32xZhmqLFoIX G4lZ5dxu4qP26MORuXP4ezrJC6p+KVy/OFNdSN1DRH7ONccernzS4MTdOvGP8yNQ 0z44vZ/BXmkJmCE2XSbA/s3TAT/DqhZf/2oVjVLTYb8e/MdwU5x6C4ro+8R3PRaF w1vOaWXOOwaOhuiS8YaiHw9oaT2AfRPz9XAqMp7DzGUTPaQewA/FjBFfV8yerUAL BrmULQnTBIezjnWnxpW/e+2Dj8FqDcWc -----END CERTIFICATE-----Generated at Sun Dec 7 03:46:56 2025 by rpki-client