This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft File: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft (raw, json) Hash identifier: npEFtKueGwymbnis6AsIhSOcQIp4L8/yKn+YD+EUewg= Subject key identifier: 31:3D:72:41:53:58:A5:EE:7A:3E:E2:74:E2:1E:88:C3:46:68:2B:46 Authority key identifier: FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 Certificate issuer: /CN=A912FF6F/serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Certificate serial: 02C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft Manifest number: 02C5 Signing time: Thu 04 Dec 2025 23:46:44 +0000 Manifest this update: Thu 04 Dec 2025 23:46:43 +0000 Manifest next update: Thu 11 Dec 2025 23:46:43 +0000 Files and hashes: 1: -xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl (hash: fmf+CaStM50gXa7kyTk9Zsxbh9mqqci2NgpGUNbJg+k=) 2: 6D5014F2146F11EDB756F727C4F9AE02.roa (hash: YZYraaTW4N+SBvMTqXTfavIL9Ycht4bd0iE5EB0Igv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 713 (0x2c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FF6F, serialNumber=FB11A2D8368C15021A5BF312F51D44CE58FD4451 Validity Not Before: Dec 4 23:46:43 2025 GMT Not After : Dec 11 23:46:43 2025 GMT Subject: CN=69321d63-7684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c6:41:37:3c:11:2a:c4:7d:5d:9e:6a:39:ce: 01:7b:cb:0d:e6:9f:29:3a:cc:d5:05:ce:b0:6d:0a: de:ef:d3:6e:03:61:b8:d2:7d:83:e5:cf:0f:6c:a9: da:2c:5b:7b:5b:84:9a:29:23:1c:f0:a5:65:76:7c: 7a:a3:02:29:1c:a3:51:06:43:6a:21:86:4d:9a:79: d5:dd:7f:66:8a:a6:20:73:66:ff:0f:2e:fa:d6:88: 22:d8:4e:67:19:13:ce:b8:9f:5c:c5:8d:2f:ce:99: 20:f2:18:db:fd:61:22:8a:9e:dc:a0:33:df:9f:3d: 83:e9:81:59:ca:e3:8f:83:d6:53:29:67:41:01:7b: 69:f5:9e:07:65:20:1f:33:41:0e:24:e2:ff:5b:8c: 85:f7:dd:15:e8:9c:4d:50:d7:da:1a:3a:da:5e:25: f7:26:c8:bb:2f:d3:0e:69:98:d4:b6:6d:b2:f4:a6: 5e:78:ab:f6:55:f8:2f:51:fa:ab:68:f1:3f:3b:34: ef:28:6b:b4:e1:d3:6b:0c:89:47:72:26:06:32:c1: 40:09:b4:01:9e:e1:d8:31:43:e0:d3:06:c3:eb:b5: d2:a3:50:cd:87:09:e7:10:ef:b9:6a:b1:8a:9a:4c: 3e:7c:a0:95:25:f4:e5:9f:b0:7b:a7:67:d5:b0:fc: ac:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:3D:72:41:53:58:A5:EE:7A:3E:E2:74:E2:1E:88:C3:46:68:2B:46 X509v3 Authority Key Identifier: keyid:FB:11:A2:D8:36:8C:15:02:1A:5B:F3:12:F5:1D:44:CE:58:FD:44:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FF6F/12E2517C146C11EDB7C40A23C4F9AE02/-xGi2DaMFQIaW_MS9R1Ezlj9RFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:fc:51:79:28:fb:7f:d8:56:f6:67:a6:61:c4:00:0d:65:5b: bf:e8:a7:54:06:a1:52:7a:20:5f:80:c0:6f:72:66:cb:5b:b3: 86:47:f0:e2:84:6a:f6:d8:bc:7c:3d:b6:d8:6e:31:90:96:fc: 67:3f:c7:c3:5b:3a:7f:c2:90:71:b5:b5:20:83:7a:26:1d:10: d9:9f:37:aa:0d:15:06:27:31:44:06:48:49:61:91:46:ab:6d: 81:c0:f6:aa:08:6c:4a:64:97:50:dd:8b:e6:ec:44:a8:5c:15: 21:6b:0f:30:20:b1:ea:b5:fb:0b:ff:2a:6a:88:48:fe:a8:75: 15:88:ed:73:bd:ce:cc:c6:ee:e8:25:e8:a8:b6:83:e9:03:84: c2:58:d3:b5:d0:ae:6e:4a:36:d9:05:e1:3a:18:27:3a:df:3d: 9d:9d:6c:75:69:cb:c7:c0:dc:23:fe:bf:87:05:33:bd:d8:58: 60:1d:78:fc:26:07:09:82:73:64:b8:df:0e:b5:b3:19:25:24: bc:18:a8:ad:d4:e6:43:bc:58:fe:a8:77:70:d9:e1:6a:18:f9: c6:a6:b5:38:28:8c:37:35:8f:d7:82:07:b7:2f:d5:15:c6:f0: eb:f3:06:d4:19:32:fd:b0:d2:f9:aa:8c:5d:6f:0a:99:ff:79: a3:2a:6b:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZGNkYxMTAvBgNVBAUTKEZCMTFBMkQ4MzY4QzE1MDIxQTVCRjMxMkY1MUQ0NENF NThGRDQ0NTEwHhcNMjUxMjA0MjM0NjQzWhcNMjUxMjExMjM0NjQzWjAYMRYwFAYD VQQDEw02OTMyMWQ2My03Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sZBNzwRKsR9XZ5qOc4Be8sN5p8pOszVBc6wbQre79NuA2G40n2D5c8PbKna LFt7W4SaKSMc8KVldnx6owIpHKNRBkNqIYZNmnnV3X9miqYgc2b/Dy761ogi2E5n GRPOuJ9cxY0vzpkg8hjb/WEiip7coDPfnz2D6YFZyuOPg9ZTKWdBAXtp9Z4HZSAf M0EOJOL/W4yF990V6JxNUNfaGjraXiX3Jsi7L9MOaZjUtm2y9KZeeKv2VfgvUfqr aPE/OzTvKGu04dNrDIlHciYGMsFACbQBnuHYMUPg0wbD67XSo1DNhwnnEO+5arGK mkw+fKCVJfTln7B7p2fVsPysJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE9ckFT WKXuej7idOIeiMNGaCtGMB8GA1UdIwQYMBaAFPsRotg2jBUCGlvzEvUdRM5Y/URR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkY2Ri8xMkUyNTE3QzE0 NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZRSWFXX01TOVIxRXpsajlS RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14R2kyRGFNRlFJYVdfTVM5UjFFemxqOVJGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkY2Ri8xMkUyNTE3QzE0NkMxMUVEQjdDNDBBMjNDNEY5QUUwMi8teEdpMkRhTUZR SWFXX01TOVIxRXpsajlSRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG/FF5KPt/2Fb2Z6ZhxAANZVu/6KdUBqFSeiBfgMBvcmbLW7OGR/Di hGr22Lx8PbbYbjGQlvxnP8fDWzp/wpBxtbUgg3omHRDZnzeqDRUGJzFEBkhJYZFG q22BwPaqCGxKZJdQ3Yvm7ESoXBUhaw8wILHqtfsL/ypqiEj+qHUViO1zvc7Mxu7o JeiotoPpA4TCWNO10K5uSjbZBeE6GCc63z2dnWx1acvHwNwj/r+HBTO92FhgHXj8 JgcJgnNkuN8OtbMZJSS8GKit1OZDvFj+qHdw2eFqGPnGprU4KIw3NY/Xgge3L9UV xvDr8wbUGTL9sNL5qoxdbwqZ/3mjKmvT -----END CERTIFICATE-----Generated at Sat Dec 6 15:07:50 2025 by rpki-client