This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft File: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft (raw, json) Hash identifier: VcwCS/ZaT1ozx8WnZdJWUFiplqdyCjgkONvhmWT6fFg= Subject key identifier: 28:A7:2F:21:69:52:0C:93:56:89:C3:58:61:49:F0:49:FB:C6:0C:4F Authority key identifier: E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 Certificate issuer: /CN=A912D5C1/serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Certificate serial: 0CE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft Manifest number: 0CD0 Signing time: Sat 06 Dec 2025 17:34:59 +0000 Manifest this update: Sat 06 Dec 2025 17:34:59 +0000 Manifest next update: Sat 13 Dec 2025 17:34:59 +0000 Files and hashes: 1: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl (hash: fg1oW7hOHhA1+bCtCUKdjSWYWiSSozcWqxMWnOIElWE=) 2: D7F98876520B11EE8B85DB63C4F9AE02.roa (hash: PKoIMzmjFW6opIpuPpXxT7JTsKk8w7rWTXfvOheNJEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:34:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3302 (0xce6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D5C1, serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Validity Not Before: Dec 6 17:34:59 2025 GMT Not After : Dec 13 17:34:59 2025 GMT Subject: CN=69346943-7944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a1:04:c6:f4:e9:3d:9a:42:dc:93:35:1e:34: 89:bf:18:52:17:6d:ae:5c:65:e2:c2:60:28:7c:d9: 31:2b:42:9d:93:3c:4a:9d:52:c1:80:d0:22:73:b2: 9c:9e:1e:e3:b2:5d:a2:44:22:f2:2b:fe:c0:c4:5d: 16:15:f7:69:5a:55:85:86:a4:34:c1:fc:d5:d0:47: ae:2b:00:f5:a2:9a:3a:68:94:55:3e:40:dd:7d:d4: 64:f9:f1:e8:a9:33:b0:6b:e9:21:d4:1a:2d:dc:52: b8:07:d4:c8:5f:ec:04:91:b1:c4:97:93:f8:3a:82: 5e:d2:a1:35:5e:60:94:b2:c5:9d:84:a9:23:5b:3d: 58:39:c1:8b:e4:14:0f:7e:87:50:37:d5:2c:29:cd: 79:2f:82:58:c7:64:4f:58:a6:27:99:fa:11:2f:89: f8:eb:2f:a2:e3:93:60:22:98:43:9a:f4:40:1a:a3: b3:1f:7e:68:06:70:34:9a:cb:5b:c1:2c:5c:01:ff: 22:ff:e5:fc:09:ea:8d:c1:19:79:51:12:2f:c7:a3: 19:8f:95:d2:2c:81:c9:be:84:11:38:d9:0e:11:1a: 44:83:b9:9a:9e:3c:49:45:bf:47:07:3c:84:3e:68: 25:08:1c:a6:85:07:ee:0a:39:dc:c4:b1:31:d2:88: 71:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A7:2F:21:69:52:0C:93:56:89:C3:58:61:49:F0:49:FB:C6:0C:4F X509v3 Authority Key Identifier: keyid:E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:10:35:e5:85:6f:24:4b:52:ec:5c:03:7b:ec:5d:ca:1e:33: 4f:8b:e0:a3:d0:e2:4a:21:26:db:e7:51:d7:26:99:e0:69:7a: 59:87:c3:8d:40:1f:8d:c4:fd:73:ab:a0:46:e7:d6:13:5d:15: 24:45:3c:b2:b7:ab:e7:c5:16:a1:ae:47:b2:3f:21:d0:b2:de: 6e:a0:18:d7:d1:5d:ea:2b:93:42:33:2d:6b:8d:fd:77:c6:9b: da:2f:74:4f:42:0f:5e:7c:45:16:2d:a5:56:e7:44:0f:a3:3d: 7e:44:d2:a7:fb:c3:fb:6e:39:f5:7e:15:ed:d8:0e:55:bd:93: eb:ee:7a:d0:e5:f8:d6:88:22:7d:4f:72:38:28:b5:39:4e:2f: 58:e0:a1:b8:ad:b3:c0:fb:0e:48:23:4e:40:39:e9:08:91:53: 49:0a:98:77:67:45:b2:c2:e8:44:e1:60:d1:ee:04:a9:6b:d5: 38:50:6d:de:9b:8b:09:34:10:67:88:0a:49:fc:af:82:92:1b: 41:8e:cc:1f:66:19:d9:95:89:04:5c:d8:90:9b:1b:80:3c:e5: 9d:d3:68:9b:9f:8a:0e:da:12:3d:3c:3b:df:34:c5:e7:a3:79: d3:89:5b:5d:69:57:81:32:9a:2e:c5:c5:c2:15:60:30:57:6b: 8a:7c:71:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ1QzExMTAvBgNVBAUTKEU4MkQxMEQyREExQzk4QkY2OENBNEM2NDkxQjkwRkZE MEZBQjMzOTQwHhcNMjUxMjA2MTczNDU5WhcNMjUxMjEzMTczNDU5WjAYMRYwFAYD VQQDEw02OTM0Njk0My03OTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6EExvTpPZpC3JM1HjSJvxhSF22uXGXiwmAofNkxK0KdkzxKnVLBgNAic7Kc nh7jsl2iRCLyK/7AxF0WFfdpWlWFhqQ0wfzV0EeuKwD1opo6aJRVPkDdfdRk+fHo qTOwa+kh1Bot3FK4B9TIX+wEkbHEl5P4OoJe0qE1XmCUssWdhKkjWz1YOcGL5BQP fodQN9UsKc15L4JYx2RPWKYnmfoRL4n46y+i45NgIphDmvRAGqOzH35oBnA0mstb wSxcAf8i/+X8CeqNwRl5URIvx6MZj5XSLIHJvoQRONkOERpEg7manjxJRb9HBzyE PmglCBymhQfuCjncxLEx0ohx0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCinLyFp UgyTVonDWGFJ8En7xgxPMB8GA1UdIwQYMBaAFOgtENLaHJi/aMpMZJG5D/0PqzOU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDVDMS9CMDdEQ0I0NEZG Q0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21MOW95a3hra2JrUF9RLXJN NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZDMFEwdG9jbUw5b3lreGtrYmtQX1Etck01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDVDMS9CMDdEQ0I0NEZGQ0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21M OW95a3hra2JrUF9RLXJNNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaEDXlhW8kS1LsXAN77F3KHjNPi+Cj0OJKISbb51HXJpngaXpZh8ON QB+NxP1zq6BG59YTXRUkRTyyt6vnxRahrkeyPyHQst5uoBjX0V3qK5NCMy1rjf13 xpvaL3RPQg9efEUWLaVW50QPoz1+RNKn+8P7bjn1fhXt2A5VvZPr7nrQ5fjWiCJ9 T3I4KLU5Ti9Y4KG4rbPA+w5II05AOekIkVNJCph3Z0WywuhE4WDR7gSpa9U4UG3e m4sJNBBniApJ/K+CkhtBjswfZhnZlYkEXNiQmxuAPOWd02ibn4oO2hI9PDvfNMXn o3nTiVtdaVeBMpouxcXCFWAwV2uKfHHz -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:07 2025 by rpki-client