This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft File: giq84EQXvhV7KDO6OwIw3iOEwkA.mft (raw, json) Hash identifier: /DvYUNTyJVczi3/48h3XvhNi2Nl5j736W+Zf+2+kOBE= Subject key identifier: 67:6E:03:B5:97:FD:0C:9E:81:EB:3C:D7:37:AB:75:AA:47:74:F1:94 Authority key identifier: 82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 Certificate issuer: /CN=A911FCC1/serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Certificate serial: 0BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft Manifest number: 0BBD Signing time: Sat 06 Dec 2025 18:14:01 +0000 Manifest this update: Sat 06 Dec 2025 18:14:00 +0000 Manifest next update: Sat 13 Dec 2025 18:14:00 +0000 Files and hashes: 1: giq84EQXvhV7KDO6OwIw3iOEwkA.crl (hash: W9m9PqD2aSEV6p1FYSUhsX2AJjAa/jwTVCg7EEVXG5E=) 2: BFB35A9831E011EA91E99C3CC4F9AE02.roa (hash: BaHDfNkjZ1fMZBSLRiFXON3hK0vL1pU4sF4hs/DbBBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCC1, serialNumber=822ABCE04417BE157B2833BA3B0230DE2384C240 Validity Not Before: Dec 6 18:14:00 2025 GMT Not After : Dec 13 18:14:00 2025 GMT Subject: CN=69347268-02ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:70:1c:07:8b:c8:ac:ae:bf:e0:22:74:4a:ff: 8b:b8:ab:43:ca:20:6b:a0:85:f0:b2:cc:e3:c5:5b: b9:99:bc:3d:24:12:5b:a8:3d:f1:e0:ac:41:1d:9d: ad:9b:c9:89:c3:be:24:12:66:c4:ad:d6:49:ad:71: 60:ef:98:2c:58:0e:da:0d:a7:26:aa:cd:56:55:36: 99:31:f6:fd:a0:8a:d2:4a:49:f9:12:e5:84:42:a2: 11:1f:08:89:f7:be:06:44:c0:6a:80:5c:5f:1d:45: 6a:27:71:d6:df:7c:a9:8b:2a:70:d7:bc:0b:cc:f3: 8c:7f:1e:63:94:7b:40:dc:e8:b7:54:42:2f:49:4a: 39:6e:d6:38:a4:15:b4:bb:f4:26:9d:7d:25:43:a7: 8a:b2:cd:d1:d1:0c:d8:5f:87:a0:83:91:e8:e6:7a: 74:55:d3:0b:80:49:b2:09:a0:8c:8f:10:49:0c:17: bf:67:11:79:b6:72:80:2e:ca:50:c5:7c:74:91:6e: aa:35:94:9c:b7:52:de:1c:42:73:3f:5b:c4:07:10: f2:c7:8c:fd:2f:24:a8:d0:d6:27:95:ca:9c:0b:17: f3:10:c2:89:45:83:18:4b:df:67:f9:bf:38:3c:f7: 49:3f:9e:c2:3c:fc:09:05:4c:17:f9:48:df:9c:7a: d8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:6E:03:B5:97:FD:0C:9E:81:EB:3C:D7:37:AB:75:AA:47:74:F1:94 X509v3 Authority Key Identifier: keyid:82:2A:BC:E0:44:17:BE:15:7B:28:33:BA:3B:02:30:DE:23:84:C2:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giq84EQXvhV7KDO6OwIw3iOEwkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCC1/1498FC9E31E011EA837BDE3BC4F9AE02/giq84EQXvhV7KDO6OwIw3iOEwkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:73:f9:8d:80:25:d4:6f:6f:87:64:b7:3e:6a:0a:05:e9:fa: 26:64:23:65:6f:78:cb:20:82:d3:77:0c:68:e3:91:c1:4b:45: bb:a1:1a:6f:59:8e:1a:dc:a7:36:d4:cf:23:4f:f0:db:e9:f5: 03:2f:4f:da:a7:dc:e1:ec:df:e8:e5:8c:b4:12:da:9c:bf:83: b2:37:29:ed:a3:87:02:4b:f0:ff:f4:ba:44:8f:56:1e:10:81: 0a:7f:9d:de:fb:fc:e2:fe:bd:f2:c4:79:a3:84:28:4e:b3:ba: 41:80:0e:c2:0d:4b:68:62:6a:55:1f:67:17:e5:39:30:7d:92: f2:3a:83:ea:27:e5:fe:c4:66:77:18:4f:c2:4b:f9:1c:c8:b6: bf:0d:a0:74:89:00:15:36:3b:80:90:49:84:ab:ea:27:74:fc: f5:02:d1:6e:a4:d0:43:41:8f:3e:3b:d2:56:95:46:ed:9a:35: 0c:4b:18:a2:ff:6c:9e:8e:b6:4d:f7:62:7c:0d:fb:50:91:0f: 58:b3:d4:11:4f:8b:e0:01:ba:fb:fe:45:a3:1b:cb:c0:cf:d5: ba:29:ac:87:84:bc:bf:be:a5:86:06:8f:1d:01:ea:99:99:14: d6:80:a6:cc:9e:e8:31:b2:c5:08:45:54:8b:39:84:83:dd:4c: 2c:ba:41:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDQzExMTAvBgNVBAUTKDgyMkFCQ0UwNDQxN0JFMTU3QjI4MzNCQTNCMDIzMERF MjM4NEMyNDAwHhcNMjUxMjA2MTgxNDAwWhcNMjUxMjEzMTgxNDAwWjAYMRYwFAYD VQQDEw02OTM0NzI2OC0wMmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3AcB4vIrK6/4CJ0Sv+LuKtDyiBroIXwsszjxVu5mbw9JBJbqD3x4KxBHZ2t m8mJw74kEmbErdZJrXFg75gsWA7aDacmqs1WVTaZMfb9oIrSSkn5EuWEQqIRHwiJ 974GRMBqgFxfHUVqJ3HW33ypiypw17wLzPOMfx5jlHtA3Oi3VEIvSUo5btY4pBW0 u/QmnX0lQ6eKss3R0QzYX4egg5Ho5np0VdMLgEmyCaCMjxBJDBe/ZxF5tnKALspQ xXx0kW6qNZSct1LeHEJzP1vEBxDyx4z9LySo0NYnlcqcCxfzEMKJRYMYS99n+b84 PPdJP57CPPwJBUwX+UjfnHrYNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGduA7WX /Qyeges81zerdapHdPGUMB8GA1UdIwQYMBaAFIIqvOBEF74VeygzujsCMN4jhMJA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNDMS8xNDk4RkM5RTMx RTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZoVjdLRE82T3dJdzNpT0V3 a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dpcTg0RVFYdmhWN0tETzZPd0l3M2lPRXdrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkNDMS8xNDk4RkM5RTMxRTAxMUVBODM3QkRFM0JDNEY5QUUwMi9naXE4NEVRWHZo VjdLRE82T3dJdzNpT0V3a0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSc/mNgCXUb2+HZLc+agoF6fomZCNlb3jLIILTdwxo45HBS0W7oRpv WY4a3Kc21M8jT/Db6fUDL0/ap9zh7N/o5Yy0Etqcv4OyNynto4cCS/D/9LpEj1Ye EIEKf53e+/zi/r3yxHmjhChOs7pBgA7CDUtoYmpVH2cX5TkwfZLyOoPqJ+X+xGZ3 GE/CS/kcyLa/DaB0iQAVNjuAkEmEq+ondPz1AtFupNBDQY8+O9JWlUbtmjUMSxii /2yejrZN92J8DftQkQ9Ys9QRT4vgAbr7/kWjG8vAz9W6KayHhLy/vqWGBo8dAeqZ mRTWgKbMnugxssUIRVSLOYSD3UwsukEh -----END CERTIFICATE-----Generated at Sun Dec 7 01:58:43 2025 by rpki-client