This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: tLxBhLvoyR2DOhhT7fHvci8AYtdho2Ro6oDPDerQXRo= Subject key identifier: 04:F0:26:1C:CF:A6:F6:7E:6C:2F:68:BF:85:86:AD:66:95:9D:E8:05 Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 0226 Signing time: Fri 05 Dec 2025 00:35:36 +0000 Manifest this update: Fri 05 Dec 2025 00:35:35 +0000 Manifest next update: Fri 12 Dec 2025 00:35:35 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: av5EcCklX2T8u5rN/FNYIP+0EJAw48DkKrOMcPaQJkA=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: gio3U9WsxU2OTvZplKV8K5tuXOfWf9W0TdHSTYl7CRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 00:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Dec 5 00:35:35 2025 GMT Not After : Dec 12 00:35:35 2025 GMT Subject: CN=693228d8-0409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:32:01:47:96:63:07:39:d4:4c:c2:09:f1:22: 04:f5:ca:1c:93:da:ab:93:cb:ff:32:83:57:88:47: 27:73:4f:78:09:61:01:90:61:c4:0a:5f:9b:02:38: 67:0e:f6:a2:ad:00:26:a2:cf:40:2d:f6:0b:7d:11: b0:ae:d1:36:d1:7d:a4:1c:5a:d4:08:95:75:60:c0: 0e:ce:d8:72:a5:f9:01:3b:0f:e3:38:bd:53:55:ef: 53:cf:68:1b:3e:f1:95:63:bc:fc:04:fc:db:9c:0e: cc:cd:e3:15:8a:4a:35:af:5c:0d:4c:72:5d:2d:28: 3e:62:e3:fa:1b:89:9f:22:66:4e:10:93:3b:15:4b: c7:24:d9:8e:23:d9:5d:9f:9d:1d:f6:93:b2:6f:d6: 0a:76:28:4a:20:c1:08:6e:b6:4a:2d:9d:cb:45:ac: a1:5a:ee:66:12:78:1d:65:d0:eb:e9:be:5e:17:d7: e2:09:ef:88:90:02:3b:94:c3:97:f8:64:ae:fb:01: 19:25:ec:05:32:96:9b:66:4b:7e:3e:06:67:d2:db: 0c:ad:5d:2e:5d:9a:85:26:a6:05:fc:34:05:ea:9f: 09:2f:78:fd:54:c6:10:91:2d:a6:ba:7e:dc:ce:af: d7:e5:d0:17:bd:da:a7:68:69:84:b3:e3:6b:f0:0a: 1c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:F0:26:1C:CF:A6:F6:7E:6C:2F:68:BF:85:86:AD:66:95:9D:E8:05 X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:28:4c:e5:4b:25:e7:b1:7d:5a:67:27:1b:18:87:a9:4f:3e: 33:1d:39:e6:6b:27:6b:d9:c0:a2:d8:7b:b5:bb:7a:8f:71:4e: 6e:14:da:bc:cb:06:68:cf:a6:f6:dc:5e:c0:8c:a6:f1:7c:30: 16:d9:a9:bd:a1:67:46:bf:f5:d6:99:3d:75:4b:f2:81:99:03: be:a4:87:da:a3:cc:29:ba:98:19:5a:1f:73:3c:70:ab:22:9c: 2b:c5:84:ed:9b:bc:6c:db:34:b6:65:2a:d2:75:7e:fa:08:81: f2:bd:12:7d:83:72:7e:7b:a3:47:fb:d1:9a:01:5a:da:3b:78: 81:c5:aa:97:53:ce:d3:e6:64:90:d5:a5:8b:4a:74:d0:77:ab: 64:66:61:53:95:5c:f4:c0:f9:5d:66:2d:99:18:e2:35:93:16: f0:6e:e0:56:79:aa:36:da:6d:5f:1d:d0:c3:94:70:4c:6c:28: 6c:13:8f:a1:df:6c:af:e1:2e:b0:1a:44:c8:42:f8:ca:58:2f: 3f:c5:a3:9b:12:6c:66:87:34:73:a9:dd:57:aa:2a:f1:e6:a1: 26:79:d5:f3:28:f3:04:3c:2c:03:66:b0:64:bf:de:36:05:6b: da:4f:72:9c:c1:18:26:6a:ca:89:8f:6c:0a:1c:97:a7:62:87: 36:54:ff:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUxMjA1MDAzNTM1WhcNMjUxMjEyMDAzNTM1WjAYMRYwFAYD VQQDEw02OTMyMjhkOC0wNDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TIBR5ZjBznUTMIJ8SIE9cock9qrk8v/MoNXiEcnc094CWEBkGHECl+bAjhn DvairQAmos9ALfYLfRGwrtE20X2kHFrUCJV1YMAOzthypfkBOw/jOL1TVe9Tz2gb PvGVY7z8BPzbnA7MzeMViko1r1wNTHJdLSg+YuP6G4mfImZOEJM7FUvHJNmOI9ld n50d9pOyb9YKdihKIMEIbrZKLZ3LRayhWu5mEngdZdDr6b5eF9fiCe+IkAI7lMOX +GSu+wEZJewFMpabZkt+PgZn0tsMrV0uXZqFJqYF/DQF6p8JL3j9VMYQkS2mun7c zq/X5dAXvdqnaGmEs+Nr8AocnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATwJhzP pvZ+bC9ov4WGrWaVnegFMB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeKEzlSyXnsX1aZycbGIepTz4zHTnmaydr2cCi2Hu1u3qPcU5uFNq8 ywZoz6b23F7AjKbxfDAW2am9oWdGv/XWmT11S/KBmQO+pIfao8wpupgZWh9zPHCr IpwrxYTtm7xs2zS2ZSrSdX76CIHyvRJ9g3J+e6NH+9GaAVraO3iBxaqXU87T5mSQ 1aWLSnTQd6tkZmFTlVz0wPldZi2ZGOI1kxbwbuBWeao22m1fHdDDlHBMbChsE4+h 32yv4S6wGkTIQvjKWC8/xaObEmxmhzRzqd1Xqirx5qEmedXzKPMEPCwDZrBkv942 BWvaT3KcwRgmasqJj2wKHJenYoc2VP87 -----END CERTIFICATE-----Generated at Sat Dec 6 14:50:46 2025 by rpki-client