This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: vpKBWTi5T7Acf+xRrEfGUdExhJd7nFRm0RPlvvruIoI= Subject key identifier: 56:96:7D:9B:88:42:9D:C0:16:0A:68:D3:84:6C:FE:7F:E4:E6:DC:8F Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 350C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 34FB Signing time: Sat 06 Dec 2025 14:58:01 +0000 Manifest this update: Sat 06 Dec 2025 14:58:01 +0000 Manifest next update: Sat 13 Dec 2025 14:58:01 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: 9/YWGJVMF7SeNszgyY58oqx/EgiQ9I3iPBK3K30zvnc=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: l+r465/YNbsSePCYzOqNrThMuqt7t44YKkUIR4UnTJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 14:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13580 (0x350c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Dec 6 14:58:01 2025 GMT Not After : Dec 13 14:58:01 2025 GMT Subject: CN=69344479-1af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:3b:56:eb:49:c6:38:0d:d1:6c:2b:2e:ba:c4: 3d:1c:41:f9:c6:a2:45:39:6d:7c:80:f4:83:df:2d: 85:ce:fe:19:ab:a3:c2:b6:6f:df:00:a7:9b:91:19: b5:ba:b7:5c:39:2c:44:2d:6a:6c:bc:4f:17:df:d7: 3e:8a:e9:ec:c1:43:af:93:ac:82:41:72:62:ac:6d: 5a:60:58:68:f4:10:83:56:15:ed:1d:13:0b:da:62: 8d:16:bd:9d:62:af:14:fb:2e:92:f6:86:f2:d8:d8: 29:5a:ee:33:50:5c:8d:4d:dc:4f:81:4e:45:9e:85: 3a:ae:8d:95:6a:d1:ea:71:53:4e:40:bd:c4:dd:85: 73:4d:96:f8:c0:bf:ee:77:f7:2d:5b:0c:40:08:f0: ee:6f:52:24:66:b7:b0:37:56:cd:f0:55:2a:3f:a0: d8:88:d6:b4:cb:bd:6f:6c:74:94:a9:84:fb:7b:d0: a1:5e:ea:34:62:03:7f:8e:0e:93:76:82:7b:cd:80: a4:79:a8:1d:c4:ac:39:3b:06:46:98:74:83:b4:b4: fe:ae:84:b2:f7:91:f4:f6:fc:2c:5d:11:8b:cb:c0: 1e:6c:c3:6c:f7:a7:59:f5:c1:8d:a7:93:6a:36:e4: 88:d4:26:fe:8a:6c:5e:8e:2f:be:c5:7e:79:45:6f: 51:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:96:7D:9B:88:42:9D:C0:16:0A:68:D3:84:6C:FE:7F:E4:E6:DC:8F X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:39:2f:69:34:7e:95:b6:ea:2e:f6:26:77:be:e9:c8:40:90: b5:25:60:cc:44:8b:71:99:e8:08:02:bc:3f:67:fd:f0:2a:be: 40:aa:9e:86:4b:74:05:23:a4:9c:6a:74:7c:ff:14:05:81:62: 00:f7:44:10:d2:af:c9:83:ff:43:f6:6b:c9:62:24:65:37:5c: f0:70:87:56:20:f1:32:68:74:f4:bc:19:48:fb:66:c2:e6:92: 1f:9b:39:aa:1b:48:14:5e:ed:7e:55:4a:d8:1f:88:ac:98:06: 4d:97:b1:b6:82:a6:d9:f5:85:08:70:45:f3:e4:6e:27:21:41: 58:f1:28:6e:3e:3b:6d:c4:6b:98:e0:96:65:04:37:48:fc:4f: 88:e8:61:90:59:d7:e3:42:56:a5:c4:23:67:b4:76:81:9a:22: 57:2f:db:79:ab:04:01:4c:16:91:66:e4:d8:18:8d:e9:0f:cc: 77:db:5b:4f:00:9b:7c:90:a5:45:9a:13:b1:37:68:58:08:a6: 5b:68:2d:f0:8e:39:17:f9:95:6b:57:d9:0f:38:25:bf:04:0a: 36:fd:97:af:b2:e6:10:8a:1d:7a:cc:00:05:30:92:02:bd:9c: 2c:a7:90:d0:59:f5:c6:c2:8b:06:21:75:82:5c:a6:c2:70:e8: e7:10:3e:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUxMjA2MTQ1ODAxWhcNMjUxMjEzMTQ1ODAxWjAYMRYwFAYD VQQDEw02OTM0NDQ3OS0xYWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7jtW60nGOA3RbCsuusQ9HEH5xqJFOW18gPSD3y2Fzv4Zq6PCtm/fAKebkRm1 urdcOSxELWpsvE8X39c+iunswUOvk6yCQXJirG1aYFho9BCDVhXtHRML2mKNFr2d Yq8U+y6S9oby2NgpWu4zUFyNTdxPgU5FnoU6ro2VatHqcVNOQL3E3YVzTZb4wL/u d/ctWwxACPDub1IkZrewN1bN8FUqP6DYiNa0y71vbHSUqYT7e9ChXuo0YgN/jg6T doJ7zYCkeagdxKw5OwZGmHSDtLT+roSy95H09vwsXRGLy8AebMNs96dZ9cGNp5Nq NuSI1Cb+imxeji++xX55RW9RAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaWfZuI Qp3AFgpo04Rs/n/k5tyPMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUOS9pNH6Vtuou9iZ3vunIQJC1JWDMRItxmegIArw/Z/3wKr5Aqp6G S3QFI6ScanR8/xQFgWIA90QQ0q/Jg/9D9mvJYiRlN1zwcIdWIPEyaHT0vBlI+2bC 5pIfmzmqG0gUXu1+VUrYH4ismAZNl7G2gqbZ9YUIcEXz5G4nIUFY8ShuPjttxGuY 4JZlBDdI/E+I6GGQWdfjQlalxCNntHaBmiJXL9t5qwQBTBaRZuTYGI3pD8x321tP AJt8kKVFmhOxN2hYCKZbaC3wjjkX+ZVrV9kPOCW/BAo2/ZevsuYQih16zAAFMJIC vZwsp5DQWfXGwosGIXWCXKbCcOjnED6s -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:36 2025 by rpki-client