This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: yeJA1h+13CN/6C3QXbJX34V3ut92eGH5vAFodrGCB4c= Subject key identifier: E7:A9:99:85:20:CC:54:9A:69:27:FC:FE:DC:A9:3A:79:10:2F:90:2B Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 02C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 02BC Signing time: Thu 04 Dec 2025 23:48:57 +0000 Manifest this update: Thu 04 Dec 2025 23:48:57 +0000 Manifest next update: Thu 11 Dec 2025 23:48:57 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: pLR2oRo+U9+uEezQvCVZ1FX4ZOHmE6noxta3CVTyGds=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 704 (0x2c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Dec 4 23:48:57 2025 GMT Not After : Dec 11 23:48:57 2025 GMT Subject: CN=69321de9-813e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:99:9b:56:98:a2:09:11:f3:aa:28:70:10:d1: 3b:8a:bd:1b:b0:10:ac:0f:c1:34:31:95:d7:a0:ba: 2b:c8:23:6e:31:6c:1c:83:85:c3:d1:59:45:73:8f: 75:b6:cd:b9:5e:5a:1d:5b:22:d5:c2:78:c9:c9:2b: c4:f5:c9:c7:c6:65:0f:c4:9b:43:6f:be:ad:71:5e: e2:b7:56:5a:b1:15:ef:c2:55:66:58:5c:8b:f4:86: 3d:c2:cd:eb:96:61:b4:25:a6:b9:b1:09:a4:f4:55: 75:ae:80:75:f6:af:6e:f5:bc:c4:9a:c6:e0:84:34: 66:02:03:85:1b:69:f5:b0:54:9f:de:99:c2:a3:a2: ff:7c:f9:f2:d2:26:a5:c5:87:8c:68:26:38:01:54: 84:5e:5c:8d:50:19:12:37:08:dc:03:76:fb:20:07: 93:54:59:26:18:51:70:8a:e6:82:81:9c:e0:b9:a3: 0e:6f:12:9e:28:70:a3:ff:53:62:a1:63:a3:e7:74: c9:4f:f3:f3:d0:10:ce:cd:a4:8c:90:82:b9:95:43: d1:2d:66:62:62:55:d7:d0:0d:fc:8e:b5:85:8f:13: de:35:94:05:e5:7f:08:78:00:07:6d:93:d4:69:48: 4b:74:e6:5b:12:c4:c4:76:35:31:ae:16:df:87:b4: 02:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A9:99:85:20:CC:54:9A:69:27:FC:FE:DC:A9:3A:79:10:2F:90:2B X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:6f:84:78:d6:d2:db:e2:56:8a:d6:a4:04:36:24:1a:22:3d: 1e:9a:8c:cd:53:e9:e7:48:1c:b6:ed:2c:68:2e:38:74:d3:c0: c6:a7:0a:26:3e:26:60:b3:6f:15:9f:48:dc:13:2a:33:f6:9b: 58:73:20:af:1d:81:18:d0:27:81:7f:31:08:45:2d:f3:14:24: e9:46:a9:ce:8f:2a:6c:8f:b6:e5:50:86:2a:7a:fe:08:ea:06: 83:d1:91:a5:eb:de:e5:1d:55:c0:3b:ee:b5:8c:60:77:c8:f0: 87:9e:30:d7:e9:19:85:e8:50:bd:36:53:cc:96:ca:ab:5a:b4: e7:03:57:29:67:b5:b1:49:96:e7:c2:d6:81:d8:57:f5:4d:be: 51:94:28:03:b9:83:36:2c:2d:dd:78:ff:e2:db:1a:31:b1:fa: bf:9f:3d:0e:86:c6:2c:5b:6d:a5:de:ce:07:40:5b:21:4a:3a: 48:8d:c4:f7:29:0b:ac:78:a2:71:0b:99:5d:db:b8:10:46:43: e9:5d:f1:e9:a6:a3:a9:80:19:8c:82:df:5f:7e:fb:cd:55:35: 27:1a:3b:8e:26:2f:df:6d:8d:be:ae:23:d5:50:55:5c:e0:72: 03:ba:2c:ce:e2:6d:41:d5:41:47:59:80:db:6f:ff:b2:3a:85: 3d:d2:ad:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUxMjA0MjM0ODU3WhcNMjUxMjExMjM0ODU3WjAYMRYwFAYD VQQDEw02OTMyMWRlOS04MTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45mbVpiiCRHzqihwENE7ir0bsBCsD8E0MZXXoLoryCNuMWwcg4XD0VlFc491 ts25XlodWyLVwnjJySvE9cnHxmUPxJtDb76tcV7it1ZasRXvwlVmWFyL9IY9ws3r lmG0Jaa5sQmk9FV1roB19q9u9bzEmsbghDRmAgOFG2n1sFSf3pnCo6L/fPny0ial xYeMaCY4AVSEXlyNUBkSNwjcA3b7IAeTVFkmGFFwiuaCgZzguaMObxKeKHCj/1Ni oWOj53TJT/Pz0BDOzaSMkIK5lUPRLWZiYlXX0A38jrWFjxPeNZQF5X8IeAAHbZPU aUhLdOZbEsTEdjUxrhbfh7QCRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOepmYUg zFSaaSf8/typOnkQL5ArMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/b4R41tLb4laK1qQENiQaIj0emozNU+nnSBy27SxoLjh008DGpwom PiZgs28Vn0jcEyoz9ptYcyCvHYEY0CeBfzEIRS3zFCTpRqnOjypsj7blUIYqev4I 6gaD0ZGl697lHVXAO+61jGB3yPCHnjDX6RmF6FC9NlPMlsqrWrTnA1cpZ7WxSZbn wtaB2Ff1Tb5RlCgDuYM2LC3deP/i2xoxsfq/nz0OhsYsW22l3s4HQFshSjpIjcT3 KQuseKJxC5ld27gQRkPpXfHppqOpgBmMgt9ffvvNVTUnGjuOJi/fbY2+riPVUFVc 4HIDuizO4m1B1UFHWYDbb/+yOoU90q3m -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:54 2025 by rpki-client