This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: Rrd0hjqk6Pbf3ZcFruZ5uixBY139auYcgQoGkpX36hQ= Subject key identifier: E0:C4:CA:2C:B4:B0:7B:CC:BA:74:DA:09:8E:C0:26:26:5E:35:31:98 Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0B95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0B8B Signing time: Thu 04 Dec 2025 18:23:25 +0000 Manifest this update: Thu 04 Dec 2025 18:23:24 +0000 Manifest next update: Thu 11 Dec 2025 18:23:24 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: 3kXatmi4jSoX6wKTB4XGQh6S4Uvq3BJg9MXzrg+b5ac=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: HQ+n/zvxBXsyHktY7VZtlLogGsEgUPieMT07w6OWlaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2965 (0xb95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Dec 4 18:23:24 2025 GMT Not After : Dec 11 18:23:24 2025 GMT Subject: CN=6931d19c-bc9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f2:c8:f8:5d:72:56:32:73:43:30:85:c7:4e: f8:65:c9:03:1e:47:10:85:13:e4:e2:24:89:f8:3d: 75:0d:01:26:a5:45:c4:21:95:2d:22:eb:e6:97:39: a9:01:36:1b:45:ea:3b:9e:8e:0d:09:56:00:b5:67: ee:c2:6f:b9:82:09:05:5f:96:77:af:90:ca:d8:67: 02:90:72:65:23:44:72:fd:11:cd:5b:2c:ce:95:ea: f4:89:13:38:ba:90:2f:d6:56:62:08:23:cd:75:c9: 3f:85:4a:73:72:f6:56:ff:db:df:53:3f:07:5c:c8: c0:f5:ba:4e:9e:d0:b6:bf:e3:e4:31:ea:c7:41:8e: b0:34:88:87:41:2a:b2:05:45:cf:91:c7:42:e8:35: 09:91:8e:36:7f:66:5c:56:8b:7f:c8:37:bd:58:91: 4d:41:fe:42:a5:98:09:03:c3:50:aa:26:ef:90:c5: 4b:d5:5f:d6:63:51:20:a3:22:81:21:69:47:f0:0d: bd:d4:a9:7a:04:e7:76:34:06:24:09:53:4d:d0:bb: f9:fe:75:05:38:56:70:75:60:58:47:2b:64:71:d0: 25:0c:38:0e:f2:7f:0b:9e:05:79:b3:5f:cc:e8:75: d1:dd:59:d9:c9:59:39:a4:32:e0:f4:78:46:f0:d7: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:C4:CA:2C:B4:B0:7B:CC:BA:74:DA:09:8E:C0:26:26:5E:35:31:98 X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:22:05:a1:1e:e7:fb:eb:3e:e0:7f:a5:41:2f:7a:ce:a3:d2: e7:1f:e1:af:46:83:44:7d:1e:9d:d9:4e:69:e1:3f:30:88:03: 3e:72:5f:a6:f5:a8:2f:55:7e:09:ab:ca:3c:e1:9a:e6:4d:a0: 26:e6:58:98:e8:84:4a:65:fa:fc:cf:e3:d9:8b:f1:70:e5:a7: 9c:c7:27:69:58:50:1f:9d:e4:49:a7:19:7c:b5:5e:5d:5b:ef: 1e:fa:13:3b:14:0d:47:d9:e7:09:d3:7f:5c:98:be:7a:f8:ae: ea:3f:d6:cc:c2:c1:fb:86:37:32:36:39:b2:0e:24:6e:5f:c3: 62:c7:0f:ba:4a:81:87:2d:72:1e:c6:35:4b:d1:1c:88:df:e1: b2:cb:8e:bf:30:9b:20:84:14:14:cf:d4:e4:f1:d1:75:28:20: 97:0a:6f:24:20:27:26:14:0e:23:2c:c6:2f:e2:75:4c:e5:6c: f7:d4:57:49:14:cc:7d:f7:3c:ea:d3:6f:91:bc:5d:17:99:63: b1:26:2f:c0:01:43:87:0d:40:71:9e:89:75:c3:58:e3:21:de: 51:33:fb:b2:d0:be:a2:35:b0:5e:6d:84:f2:ee:6d:8d:be:e7: 9d:05:b2:59:8f:4b:96:4e:7f:11:db:b7:3a:88:c9:c9:e6:54: 1c:aa:5e:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjUxMjA0MTgyMzI0WhcNMjUxMjExMTgyMzI0WjAYMRYwFAYD VQQDEw02OTMxZDE5Yy1iYzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPLI+F1yVjJzQzCFx074ZckDHkcQhRPk4iSJ+D11DQEmpUXEIZUtIuvmlzmp ATYbReo7no4NCVYAtWfuwm+5ggkFX5Z3r5DK2GcCkHJlI0Ry/RHNWyzOler0iRM4 upAv1lZiCCPNdck/hUpzcvZW/9vfUz8HXMjA9bpOntC2v+PkMerHQY6wNIiHQSqy BUXPkcdC6DUJkY42f2ZcVot/yDe9WJFNQf5CpZgJA8NQqibvkMVL1V/WY1EgoyKB IWlH8A291Kl6BOd2NAYkCVNN0Lv5/nUFOFZwdWBYRytkcdAlDDgO8n8LngV5s1/M 6HXR3VnZyVk5pDLg9HhG8NfEKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODEyiy0 sHvMunTaCY7AJiZeNTGYMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfIgWhHuf76z7gf6VBL3rOo9LnH+GvRoNEfR6d2U5p4T8wiAM+cl+m 9agvVX4Jq8o84ZrmTaAm5liY6IRKZfr8z+PZi/Fw5aecxydpWFAfneRJpxl8tV5d W+8e+hM7FA1H2ecJ039cmL56+K7qP9bMwsH7hjcyNjmyDiRuX8Nixw+6SoGHLXIe xjVL0RyI3+Gyy46/MJsghBQUz9Tk8dF1KCCXCm8kICcmFA4jLMYv4nVM5Wz31FdJ FMx99zzq02+RvF0XmWOxJi/AAUOHDUBxnol1w1jjId5RM/uy0L6iNbBebYTy7m2N vuedBbJZj0uWTn8R27c6iMnJ5lQcql4t -----END CERTIFICATE-----Generated at Sat Dec 6 17:43:22 2025 by rpki-client