This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft File: xNdQnlMs4vbky06OXDwia6MVTm8.mft (raw, json) Hash identifier: 8NZTJtEZhI+aSAn2y0pBHapveYWde1JVufeq08C7754= Subject key identifier: D8:5A:A2:08:8C:99:E3:C5:D0:A9:74:23:5B:AC:DE:C0:A5:86:F1:85 Authority key identifier: C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F Certificate issuer: /CN=A912AF0B/serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Certificate serial: 10FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft Manifest number: 10E3 Signing time: Sat 06 Dec 2025 16:47:58 +0000 Manifest this update: Sat 06 Dec 2025 16:47:58 +0000 Manifest next update: Sat 13 Dec 2025 16:47:58 +0000 Files and hashes: 1: xNdQnlMs4vbky06OXDwia6MVTm8.crl (hash: +oQ5MHUvZzY8E321RlL/1JWZ2MciJ3NKiQVPp/ntMQ0=) 2: 21151EF0A8C411EC8F560C42C4F9AE02.roa (hash: eTNVjRr/aSchkaouKrk/Oq/42y0wRZtV7uyB0zYEbrA=) 3: 1803FFC65E5F11EBBE37FA4CC4F9AE02.roa (hash: eUt1E2TLbdx/xbzWyASK22uYzePTztkTbdss+ADEaLg=) 4: 9FC6F664BE2A11EFA17DA82CC4F9AE02.roa (hash: AaORu8sCMwbv8JHtt5/RekZXiyN9Tg46Q6eaQZHNsHU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4350 (0x10fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF0B, serialNumber=C4D7509E532CE2F6E4CB4E8E5C3C226BA3154E6F Validity Not Before: Dec 6 16:47:58 2025 GMT Not After : Dec 13 16:47:58 2025 GMT Subject: CN=69345e3e-5f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2f:00:76:f6:a5:f7:1e:91:f8:14:c9:af:d0: 59:e1:48:f0:5d:89:25:87:65:f7:4c:6b:75:43:81: 5e:56:f9:36:74:be:a9:7b:d3:d3:65:b5:e2:c5:f1: af:0b:5a:48:95:6e:46:96:69:3e:f4:ef:64:81:65: 9b:c4:55:89:8c:fc:d1:02:95:54:76:c8:ea:1b:95: 8c:93:c1:31:e2:a9:47:1c:5b:f5:67:9b:60:2a:03: c4:13:94:bc:d8:1a:e3:b6:4d:26:ce:c3:ad:ef:c9: ac:41:bb:23:11:6b:25:7f:84:90:21:80:68:b3:f6: b3:79:0e:80:d3:7a:57:b3:65:0e:0f:96:36:10:fb: 00:2b:6c:e3:0a:12:1a:d1:c1:f8:c1:2e:c0:a2:70: 48:98:cc:bf:5e:96:09:e5:0e:9d:bb:17:2e:02:29: 84:1a:3e:75:68:0c:7e:cf:d4:fe:72:a9:b4:34:8c: b5:e4:7c:7b:32:9d:56:92:58:c0:43:85:bb:13:8a: fb:3e:bc:58:54:42:df:7a:58:7f:bc:5f:2d:3a:8d: 43:54:8f:6c:99:da:e9:ba:05:83:d0:67:2a:d0:47: 2c:58:75:07:2a:8a:cc:ea:95:99:9c:ca:0f:0e:67: dd:be:9d:ca:dd:90:13:34:2d:ae:48:f7:8b:59:98: 69:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5A:A2:08:8C:99:E3:C5:D0:A9:74:23:5B:AC:DE:C0:A5:86:F1:85 X509v3 Authority Key Identifier: keyid:C4:D7:50:9E:53:2C:E2:F6:E4:CB:4E:8E:5C:3C:22:6B:A3:15:4E:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNdQnlMs4vbky06OXDwia6MVTm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF0B/B59419D232ED11E99C954C24C4F9AE02/xNdQnlMs4vbky06OXDwia6MVTm8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a0:6a:41:af:c7:a6:ae:46:2e:cc:87:81:a3:db:f8:6a:8a: dd:5c:4b:86:f6:ef:44:61:62:e0:51:2e:02:5c:7f:08:2a:e3: 46:b9:73:26:6d:d5:05:8e:00:fb:9a:3c:03:23:20:fa:2c:51: e1:9e:0f:16:75:41:50:eb:5d:22:a2:97:f8:a0:fa:a2:5f:ea: 5e:67:62:19:ac:60:bf:25:a9:e1:3b:36:51:de:31:13:9d:35: d4:66:db:0e:ba:e5:bd:c3:30:fe:98:1f:f7:18:d4:59:f5:43: 39:14:f3:0a:01:c6:bb:37:4b:c7:17:47:10:35:8b:97:5f:03: fd:ce:1f:60:ff:fc:83:cd:c7:83:4a:5a:1d:e6:33:85:3d:11: 54:4c:d1:7e:c9:f6:97:a7:4f:de:f0:a4:4c:1a:32:91:c0:22: 2d:e6:a3:ac:b8:ce:49:c6:0f:c3:e4:33:f2:f5:49:69:04:eb: 7b:3d:04:e4:37:12:63:64:e0:bc:02:40:01:14:8d:69:5f:39: ab:80:44:24:5c:18:8f:94:a8:8a:fe:b9:d2:35:c7:65:0d:d7: 0e:fb:13:63:f8:91:60:e1:ba:f8:41:ad:13:d1:d1:b5:4a:fd: 3d:e1:55:a6:9b:ae:e1:fa:20:1d:3a:62:6f:ec:75:a4:9c:3e: b1:63:25:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGMEIxMTAvBgNVBAUTKEM0RDc1MDlFNTMyQ0UyRjZFNENCNEU4RTVDM0MyMjZC QTMxNTRFNkYwHhcNMjUxMjA2MTY0NzU4WhcNMjUxMjEzMTY0NzU4WjAYMRYwFAYD VQQDEw02OTM0NWUzZS01ZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y8Adval9x6R+BTJr9BZ4UjwXYklh2X3TGt1Q4FeVvk2dL6pe9PTZbXixfGv C1pIlW5Glmk+9O9kgWWbxFWJjPzRApVUdsjqG5WMk8Ex4qlHHFv1Z5tgKgPEE5S8 2Brjtk0mzsOt78msQbsjEWslf4SQIYBos/azeQ6A03pXs2UOD5Y2EPsAK2zjChIa 0cH4wS7AonBImMy/XpYJ5Q6duxcuAimEGj51aAx+z9T+cqm0NIy15Hx7Mp1WkljA Q4W7E4r7PrxYVELfelh/vF8tOo1DVI9smdrpugWD0Gcq0EcsWHUHKorM6pWZnMoP Dmfdvp3K3ZATNC2uSPeLWZhpkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhaogiM mePF0Kl0I1us3sClhvGFMB8GA1UdIwQYMBaAFMTXUJ5TLOL25MtOjlw8ImujFU5v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUYwQi9CNTk0MTlEMjMy RUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2Ymt5MDZPWER3aWE2TVZU bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZFFubE1zNHZia3kwNk9YRHdpYTZNVlRtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUYwQi9CNTk0MTlEMjMyRUQxMUU5OUM5NTRDMjRDNEY5QUUwMi94TmRRbmxNczR2 Ymt5MDZPWER3aWE2TVZUbTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtoGpBr8emrkYuzIeBo9v4aordXEuG9u9EYWLgUS4CXH8IKuNGuXMm bdUFjgD7mjwDIyD6LFHhng8WdUFQ610iopf4oPqiX+peZ2IZrGC/JanhOzZR3jET nTXUZtsOuuW9wzD+mB/3GNRZ9UM5FPMKAca7N0vHF0cQNYuXXwP9zh9g//yDzceD Slod5jOFPRFUTNF+yfaXp0/e8KRMGjKRwCIt5qOsuM5Jxg/D5DPy9UlpBOt7PQTk NxJjZOC8AkABFI1pXzmrgEQkXBiPlKiK/rnSNcdlDdcO+xNj+JFg4br4Qa0T0dG1 Sv094VWmm67h+iAdOmJv7HWknD6xYyX3 -----END CERTIFICATE-----Generated at Sat Dec 6 23:20:36 2025 by rpki-client