This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft File: AXJLovQFMrfgjXIPTAlmQbShyMQ.mft (raw, json) Hash identifier: GzJdV2tAbliNGI3/fuRn1mK86n59C44QzWo45buwW5I= Subject key identifier: DF:A2:59:B2:51:BD:4C:ED:EF:04:4B:6E:7D:D7:8A:26:62:C9:60:AB Authority key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 Certificate issuer: /CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Certificate serial: 0541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft Manifest number: 053C Signing time: Thu 04 Dec 2025 22:04:18 +0000 Manifest this update: Thu 04 Dec 2025 22:04:18 +0000 Manifest next update: Thu 11 Dec 2025 22:04:18 +0000 Files and hashes: 1: AXJLovQFMrfgjXIPTAlmQbShyMQ.crl (hash: in4F/xTdkgnXBROr8MeUFWR3ybx7X2YGbPlF7R1BtW8=) 2: BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa (hash: gvY7yNXsc8f6BaNnDgo1s6r58BRk/opgVjfKstxIGuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1345 (0x541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138271, serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Validity Not Before: Dec 4 22:04:18 2025 GMT Not After : Dec 11 22:04:18 2025 GMT Subject: CN=69320562-4b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d4:bb:67:c9:bb:68:ad:23:d0:94:75:b5:e6: 9e:0b:bc:ba:27:d1:e0:10:07:55:1c:f0:e4:38:c6: 2c:8a:49:d8:b3:52:15:b3:a5:89:ca:73:9a:66:22: de:86:dd:a6:e2:69:5f:9e:28:cd:51:ca:a8:e0:db: af:74:f5:61:7d:9b:75:fa:27:30:6a:ec:66:b8:b5: 81:c8:0c:cb:5e:4c:d8:c4:01:1d:25:a0:7e:5a:42: bd:ce:46:e6:88:63:84:e1:19:29:9d:5b:bc:0b:e4: 0e:29:33:d7:a9:ad:75:f0:bb:b8:e4:2b:33:d8:64: 78:eb:de:b4:c4:6f:f4:8a:e3:9a:33:f8:16:69:30: 31:20:37:0e:9d:05:04:ab:aa:50:0f:9d:e8:8c:2f: 9d:17:c1:bc:40:d4:ac:dc:53:a6:a8:d0:4d:21:3d: 02:c7:1f:a8:85:3a:83:07:5f:62:52:f9:3b:4e:34: 18:5c:be:68:62:d9:82:4d:0b:74:57:dd:f3:5f:f5: 96:b0:11:76:f3:61:32:a1:f1:15:d2:00:33:b1:32: 9f:ac:24:e4:07:7a:a2:7f:8a:80:78:d5:14:58:05: 18:89:6c:f9:8e:2f:b5:d5:01:92:e6:eb:1a:4f:c9: ba:67:9d:ce:01:a5:28:5d:f3:c8:90:15:8a:5e:e3: 10:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A2:59:B2:51:BD:4C:ED:EF:04:4B:6E:7D:D7:8A:26:62:C9:60:AB X509v3 Authority Key Identifier: keyid:01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:b6:07:8d:6e:49:68:91:10:99:55:4b:c8:67:bc:bb:dc:2b: ac:c4:b4:94:ee:5b:a9:cb:3a:51:9e:27:c2:a2:e2:0c:dd:16: ea:7d:99:4a:f1:f8:32:5b:78:15:1a:fc:99:ea:68:bf:30:d0: af:51:13:b8:93:09:67:ad:e2:14:03:2d:27:d7:45:ff:f7:c1: 1b:17:cd:ab:2b:f5:74:23:14:6a:7a:02:31:fc:46:6f:e2:f0: 1e:eb:dc:41:cb:67:bc:6f:b7:22:aa:a0:0d:6b:32:7a:4a:ee: 34:23:7b:fb:3c:93:6f:85:27:7e:35:e8:d1:7c:2b:4a:9d:d2: 5c:e1:d4:16:48:ba:23:70:f7:e1:02:47:72:de:f0:5c:c8:01: 64:f3:02:82:e5:43:97:5f:b0:3e:68:ef:4e:a3:44:28:40:a6: c2:e2:53:a8:8b:11:c0:8b:47:bb:df:91:ed:d4:12:e6:44:8c: 21:f4:6c:cf:9d:7c:8e:ad:d7:7b:b4:29:3f:94:80:72:38:f9: aa:f9:fa:66:18:b0:e0:e3:fd:72:57:99:d6:58:44:28:7c:f7: 8b:43:c8:5d:0c:69:af:f4:4a:f6:64:98:a6:78:d2:5b:70:4f: c5:cf:48:09:b4:4e:e6:a0:a9:d0:cc:8e:0d:23:1b:8d:ba:08: bb:95:be:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgyNzExMTAvBgNVBAUTKDAxNzI0QkEyRjQwNTMyQjdFMDhENzIwRjRDMDk2NjQx QjRBMUM4QzQwHhcNMjUxMjA0MjIwNDE4WhcNMjUxMjExMjIwNDE4WjAYMRYwFAYD VQQDEw02OTMyMDU2Mi00YjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dS7Z8m7aK0j0JR1teaeC7y6J9HgEAdVHPDkOMYsiknYs1IVs6WJynOaZiLe ht2m4mlfnijNUcqo4NuvdPVhfZt1+icwauxmuLWByAzLXkzYxAEdJaB+WkK9zkbm iGOE4RkpnVu8C+QOKTPXqa118Lu45Csz2GR46960xG/0iuOaM/gWaTAxIDcOnQUE q6pQD53ojC+dF8G8QNSs3FOmqNBNIT0Cxx+ohTqDB19iUvk7TjQYXL5oYtmCTQt0 V93zX/WWsBF282EyofEV0gAzsTKfrCTkB3qif4qAeNUUWAUYiWz5ji+11QGS5usa T8m6Z53OAaUoXfPIkBWKXuMQAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+iWbJR vUzt7wRLbn3XiiZiyWCrMB8GA1UdIwQYMBaAFAFyS6L0BTK34I1yD0wJZkG0ocjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODI3MS84MUY5RTJEMDFD NDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1yZmdqWElQVEFsbVFiU2h5 TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYSkxvdlFGTXJmZ2pYSVBUQWxtUWJTaHlNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODI3MS84MUY5RTJEMDFDNDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1y ZmdqWElQVEFsbVFiU2h5TVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDtgeNbklokRCZVUvIZ7y73CusxLSU7lupyzpRnifCouIM3RbqfZlK 8fgyW3gVGvyZ6mi/MNCvURO4kwlnreIUAy0n10X/98EbF82rK/V0IxRqegIx/EZv 4vAe69xBy2e8b7ciqqANazJ6Su40I3v7PJNvhSd+NejRfCtKndJc4dQWSLojcPfh Akdy3vBcyAFk8wKC5UOXX7A+aO9Oo0QoQKbC4lOoixHAi0e735Ht1BLmRIwh9GzP nXyOrdd7tCk/lIByOPmq+fpmGLDg4/1yV5nWWEQofPeLQ8hdDGmv9Er2ZJimeNJb cE/Fz0gJtE7moKnQzI4NIxuNugi7lb7k -----END CERTIFICATE-----Generated at Sat Dec 6 17:43:30 2025 by rpki-client