This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: lRBZZAZo9MdMZ0YGcNTnWSHtVjJxeHPAgjfuF9gtBuY= Subject key identifier: F9:05:22:41:AB:2A:B3:02:18:25:82:D3:27:C1:39:D6:B9:A0:BA:EE Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 0814 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 0809 Signing time: Thu 04 Dec 2025 20:01:38 +0000 Manifest this update: Thu 04 Dec 2025 20:01:37 +0000 Manifest next update: Thu 11 Dec 2025 20:01:37 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: wttBabrv8Lx2iL3enK0gO71/2fg0LcS/Q0Tg93CrGaM=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Dec 4 20:01:37 2025 GMT Not After : Dec 11 20:01:37 2025 GMT Subject: CN=6931e8a2-a945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:de:1b:13:23:d5:db:3e:9c:44:c2:7a:8a:c4: 47:43:f4:80:a1:45:a3:06:a7:60:92:03:57:e0:59: 76:61:5c:e1:34:e4:d8:c7:d8:8e:2c:7f:70:fa:db: 38:45:4c:cb:d8:60:f6:f1:be:d9:05:51:75:e0:8f: 10:7b:e5:14:06:79:0d:b9:b7:fb:b8:9b:cb:54:32: 84:75:b3:d3:d4:2b:c8:bb:96:8d:15:e8:59:fd:1e: ac:00:64:7b:97:ec:4f:86:49:24:fc:b1:ac:d4:e4: e3:e6:91:7a:8a:e1:ed:4e:23:0e:f9:13:34:bd:36: eb:5b:74:fc:b5:4c:81:83:58:64:07:62:9d:e6:e7: 85:e6:b4:5c:48:0e:9e:c3:60:87:f5:db:e0:ce:32: 4d:e2:81:74:5e:b6:80:a6:b2:c9:36:9f:f3:c3:ac: 54:26:7e:24:b7:34:6f:c8:52:94:a0:d4:c4:f1:58: bd:ec:b2:eb:42:50:27:2e:19:45:34:93:e1:ab:84: d3:de:5e:b6:41:0f:ef:ab:df:ae:77:2c:60:13:fe: d3:08:bf:29:7e:0a:6e:45:de:69:b1:72:4e:53:99: b2:36:ed:b5:82:ec:16:e3:10:de:f9:0c:96:b9:c9: c3:f5:c4:9e:d1:69:16:3e:0a:74:27:a2:da:b6:d3: 8e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:05:22:41:AB:2A:B3:02:18:25:82:D3:27:C1:39:D6:B9:A0:BA:EE X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:f6:ab:35:60:8b:0d:4e:36:89:b4:03:bb:12:d9:e9:3e:83: fc:17:dd:dc:a2:bc:46:b2:56:3b:c3:cd:5d:2a:71:11:0f:3e: 9f:62:d8:12:2c:ae:fd:93:f2:e8:83:ac:ec:fa:0e:66:8a:fc: ba:66:6c:fe:ba:fb:06:92:03:98:44:d1:23:9f:84:5b:70:e2: d2:8c:cf:f5:1a:95:b8:0b:14:a0:62:7a:37:9c:26:09:b8:a2: ac:85:7d:44:fb:9f:03:15:5e:fc:ef:31:6a:51:c1:a2:80:20: 1c:54:2d:fd:7c:0b:68:fa:b4:47:58:4f:6e:ca:b7:a5:e6:cc: 58:2f:44:17:ff:f3:ab:15:d8:95:41:ac:c9:00:b1:2f:4b:aa: 46:b3:28:07:76:e5:76:58:b0:6c:85:b6:a0:fb:9f:e5:f2:37: 79:99:60:8b:e5:84:43:fd:95:d5:da:d2:d7:c7:b4:be:3e:35: 07:bb:25:fb:66:73:57:35:0e:f9:4b:2f:e1:a0:99:c1:b6:6c: e6:79:4b:db:6e:40:bc:93:e9:e1:90:97:72:58:01:8b:39:44: 3b:80:51:7c:56:0f:6d:94:5b:85:b2:fc:94:eb:d3:48:25:ed: ff:a1:26:d5:4f:39:3c:80:73:5e:19:9f:45:f6:fa:cb:7b:27: 2b:a4:ec:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUxMjA0MjAwMTM3WhcNMjUxMjExMjAwMTM3WjAYMRYwFAYD VQQDEw02OTMxZThhMi1hOTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0N4bEyPV2z6cRMJ6isRHQ/SAoUWjBqdgkgNX4Fl2YVzhNOTYx9iOLH9w+ts4 RUzL2GD28b7ZBVF14I8Qe+UUBnkNubf7uJvLVDKEdbPT1CvIu5aNFehZ/R6sAGR7 l+xPhkkk/LGs1OTj5pF6iuHtTiMO+RM0vTbrW3T8tUyBg1hkB2Kd5ueF5rRcSA6e w2CH9dvgzjJN4oF0XraAprLJNp/zw6xUJn4ktzRvyFKUoNTE8Vi97LLrQlAnLhlF NJPhq4TT3l62QQ/vq9+udyxgE/7TCL8pfgpuRd5psXJOU5myNu21guwW4xDe+QyW ucnD9cSe0WkWPgp0J6LattOOxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkFIkGr KrMCGCWC0yfBOda5oLruMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR9qs1YIsNTjaJtAO7EtnpPoP8F93corxGslY7w81dKnERDz6fYtgS LK79k/Log6zs+g5mivy6Zmz+uvsGkgOYRNEjn4RbcOLSjM/1GpW4CxSgYno3nCYJ uKKshX1E+58DFV787zFqUcGigCAcVC39fAto+rRHWE9uyrel5sxYL0QX//OrFdiV QazJALEvS6pGsygHduV2WLBshbag+5/l8jd5mWCL5YRD/ZXV2tLXx7S+PjUHuyX7 ZnNXNQ75Sy/hoJnBtmzmeUvbbkC8k+nhkJdyWAGLOUQ7gFF8Vg9tlFuFsvyU69NI Je3/oSbVTzk8gHNeGZ9F9vrLeycrpOzA -----END CERTIFICATE-----Generated at Sat Dec 6 21:53:43 2025 by rpki-client