This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft File: 23zlI-hAt3_J4Zb1jxSXas5BVL4.mft (raw, json) Hash identifier: AYvZs6W3ESOGtyNkCfOP4CyFCZ4lF2H3tvuo4B0K9G0= Subject key identifier: B7:25:8E:F2:BC:B6:1E:0E:5B:5A:D7:B7:9C:67:1E:E4:A5:AF:2A:B8 Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 06D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft Manifest number: 06BA Signing time: Sat 06 Dec 2025 21:13:11 +0000 Manifest this update: Sat 06 Dec 2025 21:13:10 +0000 Manifest next update: Sat 13 Dec 2025 21:13:10 +0000 Files and hashes: 1: 23zlI-hAt3_J4Zb1jxSXas5BVL4.crl (hash: nY8ek/PtwsDQmXgY151rTqBsddDEft5W3W6YS6Yksc4=) 2: F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa (hash: xD+NCFUusyV8948kjGogzh90vclALi1BI0w1G6upBJY=) 3: 1E9D1268B3E011ED98356A75C4F9AE02.roa (hash: q2NpAKCFs4OqUi3rj9uEiN/8qjO9vGuIBeFLXS5ulLQ=) 4: 36A82D708CAA11EB9ED48C70C4F9AE02.roa (hash: LYI+Uxituq3xp6IH8KDfFMmbgDovt1mhBIYkZG0TTig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C, serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Validity Not Before: Dec 6 21:13:10 2025 GMT Not After : Dec 13 21:13:10 2025 GMT Subject: CN=69349c67-302c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:68:cc:b1:7a:61:7e:fe:1a:91:16:ba:bc:78: b2:b2:41:bb:c1:07:15:ed:02:d1:1d:b9:e4:2e:99: 46:c6:47:0d:b8:99:7b:98:da:ef:18:a9:cf:ca:2e: 5c:9a:e6:02:16:45:23:71:fc:bc:3d:60:69:24:72: 7e:c9:c4:b2:30:b1:7f:4b:14:6e:66:de:16:7f:b1: 17:15:02:04:2f:17:5a:50:40:de:76:b4:a1:93:01: bd:52:ed:16:30:a3:87:50:5e:d5:a9:e7:57:8a:b0: 18:bb:50:9a:1c:ad:8d:e0:e1:bf:c1:5b:0d:f8:94: 88:61:31:39:fe:18:b0:b3:01:9c:82:bd:c1:83:b1: b2:c2:c9:8e:7a:94:7c:cd:98:86:11:c8:51:3b:b0: 5f:11:3c:6e:f6:c6:70:69:dd:05:e3:6d:71:80:fc: 7b:99:dc:70:58:c0:e2:80:27:16:e8:96:37:c8:36: a6:86:1d:2d:cd:dd:1e:4c:33:79:27:15:81:fd:84: 34:e4:3e:e6:7a:8d:89:60:85:21:03:69:53:9d:84: 2a:d2:f7:ec:5e:84:00:12:d4:98:a4:78:22:bd:58: 68:52:20:8f:12:a1:2d:a3:87:c7:ec:1a:ee:64:55: 81:bf:29:29:42:7e:ed:df:aa:6d:d1:54:29:dd:57: 5f:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:25:8E:F2:BC:B6:1E:0E:5B:5A:D7:B7:9C:67:1E:E4:A5:AF:2A:B8 X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:83:3e:e9:0a:cd:9a:cd:87:64:ca:de:39:04:f6:8c:ac:6d: b9:81:03:f5:a1:2e:5f:73:da:17:de:95:89:b1:57:3f:54:cc: bc:54:b0:02:22:29:c4:ca:5f:a1:15:6f:de:40:05:c1:24:5a: 09:74:31:f1:b0:48:31:d7:a6:35:d5:47:dc:b3:3a:e5:99:b6: f1:6b:b1:25:80:66:0d:a8:c5:5a:c0:b0:fe:23:42:f3:42:6a: bd:7f:63:ca:21:ca:82:11:50:8f:68:65:c2:bf:74:9c:3e:4b: 5b:9a:86:f3:5c:d5:bf:84:01:04:3f:9a:ca:ba:20:09:ae:b4: 45:63:45:22:b1:22:c4:81:3b:ec:4e:89:33:04:16:03:c4:8e: b1:62:ac:3c:02:9a:c3:df:d5:a9:50:ba:87:72:b7:92:1b:8a: 67:02:c6:1d:f4:60:1a:44:cb:27:3c:c7:81:35:e5:84:b5:e0: b4:12:31:73:54:cb:0b:c6:c1:53:5b:f0:1e:ce:de:79:b9:95: c5:ef:9e:10:cd:fb:76:67:97:98:bf:b2:31:41:ab:b0:eb:23: 89:97:a0:1a:d6:d1:2a:d0:81:63:72:aa:bf:ed:b3:8d:84:78: cb:4b:c2:53:ce:2b:39:12:b4:93:94:f7:83:94:e5:0c:08:ea: cd:9f:cf:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjUxMjA2MjExMzEwWhcNMjUxMjEzMjExMzEwWjAYMRYwFAYD VQQDEw02OTM0OWM2Ny0zMDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12jMsXphfv4akRa6vHiyskG7wQcV7QLRHbnkLplGxkcNuJl7mNrvGKnPyi5c muYCFkUjcfy8PWBpJHJ+ycSyMLF/SxRuZt4Wf7EXFQIELxdaUEDedrShkwG9Uu0W MKOHUF7VqedXirAYu1CaHK2N4OG/wVsN+JSIYTE5/hiwswGcgr3Bg7GywsmOepR8 zZiGEchRO7BfETxu9sZwad0F421xgPx7mdxwWMDigCcW6JY3yDamhh0tzd0eTDN5 JxWB/YQ05D7meo2JYIUhA2lTnYQq0vfsXoQAEtSYpHgivVhoUiCPEqEto4fH7Bru ZFWBvykpQn7t36pt0VQp3VdfgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcljvK8 th4OW1rXt5xnHuSlryq4MB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTQyQy8xQjYzNDY2RThDQTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQz X0o0WmIxanhTWGFzNUJWTDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4gz7pCs2azYdkyt45BPaMrG25gQP1oS5fc9oX3pWJsVc/VMy8VLAC IinEyl+hFW/eQAXBJFoJdDHxsEgx16Y11Ufcszrlmbbxa7ElgGYNqMVawLD+I0Lz Qmq9f2PKIcqCEVCPaGXCv3ScPktbmobzXNW/hAEEP5rKuiAJrrRFY0UisSLEgTvs TokzBBYDxI6xYqw8AprD39WpULqHcreSG4pnAsYd9GAaRMsnPMeBNeWEteC0EjFz VMsLxsFTW/Aezt55uZXF754Qzft2Z5eYv7IxQauw6yOJl6Aa1tEq0IFjcqq/7bON hHjLS8JTzis5ErSTlPeDlOUMCOrNn8/U -----END CERTIFICATE-----Generated at Sun Dec 7 02:57:06 2025 by rpki-client