This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: N05z8T7B/QmdZ38j2GPoWIWgUMfZQGwseGsceXhbsk4= Subject key identifier: 17:C0:45:4D:87:92:20:90:9D:CD:7B:AB:D0:D2:0C:53:A3:4D:12:76 Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 07E0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 07D8 Signing time: Sat 06 Dec 2025 15:40:25 +0000 Manifest this update: Sat 06 Dec 2025 15:40:24 +0000 Manifest next update: Sat 13 Dec 2025 15:40:24 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: m0bnKOjb0PH6Ek9O43Eoxm5WyAj4NAQ+DkN9UUpqfnY=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2016 (0x7e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Dec 6 15:40:24 2025 GMT Not After : Dec 13 15:40:24 2025 GMT Subject: CN=69344e69-152a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fe:81:3a:3b:ee:29:ea:b3:ae:0e:05:b9:9d: 91:48:ab:8f:68:ff:1a:0c:45:a9:80:ef:e9:44:e8: b0:21:c1:7c:eb:2e:e1:db:d2:d5:ff:ef:ed:a1:6f: fa:d1:97:12:43:71:cb:b2:0d:f8:f8:8e:d0:f1:d4: 38:4e:2f:39:a4:88:c0:20:dd:e2:11:ae:ad:b3:7b: 25:7a:d1:9c:e9:32:c3:63:d8:7c:2f:55:cf:a9:7a: 36:d7:ed:33:48:44:66:2e:ad:c3:1c:29:6a:3f:d9: 7b:58:87:93:ed:3d:83:0d:03:89:b6:af:e4:72:48: 13:73:38:a9:4a:ea:b6:fd:a7:b0:43:f6:f3:52:90: 28:08:f9:5b:25:60:a8:76:49:9e:bc:00:cd:9a:3f: a7:f3:34:74:63:55:ce:27:02:68:6a:33:5b:78:49: d7:f0:a6:54:1f:5b:e1:85:ab:ff:83:71:5d:81:6f: 73:b5:3f:f6:33:3f:f3:48:c1:80:cc:c5:07:f1:3f: 73:60:27:1e:30:99:0b:ef:1e:6d:53:cb:e9:83:39: eb:20:4c:5d:e6:11:6a:57:5f:f7:b5:35:28:d1:a8: 9d:94:1b:81:5b:9e:d3:fd:a7:c3:a5:e1:2b:91:9f: a8:1b:3e:76:7a:31:1f:6b:03:3e:1b:82:10:9e:08: f6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:C0:45:4D:87:92:20:90:9D:CD:7B:AB:D0:D2:0C:53:A3:4D:12:76 X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e1:7a:27:f1:a5:63:cf:d6:ac:75:20:7c:67:db:9c:e7:46: b7:f9:c4:6d:5f:6a:be:2e:07:d0:a9:88:56:60:4b:fb:31:87: d6:96:b3:fb:d7:f5:0c:04:f8:89:c1:a0:0c:e3:63:84:37:50: 39:98:29:87:1a:20:69:4b:f2:5b:4e:a8:ab:57:1b:20:78:dd: e6:b5:f9:31:18:74:4e:f8:ca:30:71:ee:73:aa:23:db:82:5e: 19:b2:04:73:21:87:e7:2e:f5:b6:dc:38:54:77:10:dd:81:ca: 12:22:6b:3e:dc:20:2f:a9:93:9d:4c:bb:39:47:ec:87:b0:36: 8b:5e:c7:a7:62:e8:1a:1c:46:fe:9a:3d:84:80:cd:e8:72:b0: b7:b5:c7:a1:3a:2c:0f:91:9e:02:c8:da:43:25:03:2e:17:a9: ac:3f:d0:05:ac:b0:ba:c5:f6:bf:11:42:a5:f8:eb:3b:58:22: 4b:5b:5b:65:66:a4:99:1a:31:47:af:bb:68:cf:93:9c:2d:3f: fe:b2:09:86:dd:3b:e1:b1:7f:0e:3a:8f:70:f2:df:1a:30:6b: 60:0f:22:31:80:d3:24:09:6e:32:f5:c5:9a:b9:46:a8:a2:ea: 4e:94:8a:7d:71:69:42:16:ee:22:96:dc:50:9b:bb:d1:c4:6c: 0a:ef:5a:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUxMjA2MTU0MDI0WhcNMjUxMjEzMTU0MDI0WjAYMRYwFAYD VQQDEw02OTM0NGU2OS0xNTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxP6BOjvuKeqzrg4FuZ2RSKuPaP8aDEWpgO/pROiwIcF86y7h29LV/+/toW/6 0ZcSQ3HLsg34+I7Q8dQ4Ti85pIjAIN3iEa6ts3sletGc6TLDY9h8L1XPqXo21+0z SERmLq3DHClqP9l7WIeT7T2DDQOJtq/kckgTczipSuq2/aewQ/bzUpAoCPlbJWCo dkmevADNmj+n8zR0Y1XOJwJoajNbeEnX8KZUH1vhhav/g3FdgW9ztT/2Mz/zSMGA zMUH8T9zYCceMJkL7x5tU8vpgznrIExd5hFqV1/3tTUo0aidlBuBW57T/afDpeEr kZ+oGz52ejEfawM+G4IQngj2IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfARU2H kiCQnc17q9DSDFOjTRJ2MB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP4Xon8aVjz9asdSB8Z9uc50a3+cRtX2q+LgfQqYhWYEv7MYfWlrP7 1/UMBPiJwaAM42OEN1A5mCmHGiBpS/JbTqirVxsgeN3mtfkxGHRO+Mowce5zqiPb gl4ZsgRzIYfnLvW23DhUdxDdgcoSIms+3CAvqZOdTLs5R+yHsDaLXsenYugaHEb+ mj2EgM3ocrC3tcehOiwPkZ4CyNpDJQMuF6msP9AFrLC6xfa/EUKl+Os7WCJLW1tl ZqSZGjFHr7toz5OcLT/+sgmG3TvhsX8OOo9w8t8aMGtgDyIxgNMkCW4y9cWauUao oupOlIp9cWlCFu4iltxQm7vRxGwK71rz -----END CERTIFICATE-----Generated at Sat Dec 6 18:25:01 2025 by rpki-client