This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft File: j4RQ6hjtZj3XYxNayPnBormb2W0.mft (raw, json) Hash identifier: siEbqDp0o0XKzRO8HveLWIcTRfzmc8bXvpE4FcIE+9g= Subject key identifier: BB:34:95:3E:E9:DA:5F:35:10:CF:92:B7:95:67:90:F5:5C:7E:A2:2C Authority key identifier: 8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D Certificate issuer: /CN=A913D9CB/serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Certificate serial: 08BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft Manifest number: 08B3 Signing time: Thu 04 Dec 2025 19:38:30 +0000 Manifest this update: Thu 04 Dec 2025 19:38:29 +0000 Manifest next update: Thu 11 Dec 2025 19:38:29 +0000 Files and hashes: 1: j4RQ6hjtZj3XYxNayPnBormb2W0.crl (hash: i2KOssAvKIDxBjKB7wZQTAVOA2jD4JB6ErgeTQEAFWg=) 2: BA33C4CC638A11F090002541C4F9AE02.roa (hash: SYp3+Qw2NUOxAP2PI8VyKC4eZrJ7XxwyTmQykIlzc3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:38:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2234 (0x8ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D9CB, serialNumber=8F8450EA18ED663DD763135AC8F9C1A2B99BD96D Validity Not Before: Dec 4 19:38:29 2025 GMT Not After : Dec 11 19:38:29 2025 GMT Subject: CN=6931e335-c595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ae:c3:95:32:52:30:2f:86:f1:d4:d6:85:5e: e3:10:60:d0:71:ed:36:8d:02:c2:60:2e:ac:9b:47: 48:b3:1d:6f:bb:3d:fa:b7:06:6d:36:a0:f2:80:b0: 21:95:65:5d:bf:ae:56:1f:7b:0a:fd:93:66:97:eb: 5c:31:8f:3b:a7:0c:a9:2f:f4:57:c6:a2:64:96:73: a2:0f:66:5f:95:ab:74:f4:80:2e:00:03:c2:91:25: b8:18:d7:3b:3c:7a:62:64:db:9a:38:d9:96:20:6f: 52:c6:09:96:bb:18:c4:df:86:39:cb:8d:cb:0c:fd: 2c:9f:57:6f:0d:87:38:6a:e7:d0:08:6a:94:77:68: 02:ee:48:c0:fe:96:fc:a3:18:13:cb:ae:ad:60:7c: 90:bf:17:cb:ad:dd:3f:05:1f:2f:0b:f5:6b:7c:52: bc:14:c9:b0:fa:24:90:85:d5:19:6c:dd:be:27:15: 3f:d3:30:93:b3:d4:54:82:8b:7b:d3:bc:72:48:d7: 68:04:22:d1:7c:25:bf:b5:b6:9f:ca:a7:61:7b:2e: 63:af:4a:97:a1:b0:3d:b9:ca:01:9f:a2:e8:0f:d5: 23:ef:b9:66:c7:74:50:f7:56:eb:57:84:6f:f4:3f: 42:2c:0e:33:df:05:f8:20:11:fa:08:b6:ee:fb:0f: b1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:34:95:3E:E9:DA:5F:35:10:CF:92:B7:95:67:90:F5:5C:7E:A2:2C X509v3 Authority Key Identifier: keyid:8F:84:50:EA:18:ED:66:3D:D7:63:13:5A:C8:F9:C1:A2:B9:9B:D9:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j4RQ6hjtZj3XYxNayPnBormb2W0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D9CB/3FD2D9C4CA2A11EA95EA887FC4F9AE02/j4RQ6hjtZj3XYxNayPnBormb2W0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:02:80:09:13:2b:d8:e7:02:4c:fd:e5:da:2f:c3:4e:0e:64: 06:71:38:8b:54:4b:43:09:a0:71:d7:15:ed:2e:c5:68:a7:8a: 95:fc:76:58:37:f5:cc:eb:bf:38:0e:49:3e:f3:5e:d3:0b:50: a3:a7:89:f8:33:a7:8b:f2:c3:bb:cc:dc:d1:95:c7:ad:45:24: e7:c1:23:b9:ef:ef:6e:bd:6c:00:e8:ea:26:c4:ee:c4:fe:0e: 72:1a:8a:43:72:5b:ef:58:22:b6:da:86:d0:7f:ab:92:ee:0b: 31:ef:0c:a4:62:8f:10:27:73:bd:be:ab:70:1c:b0:48:26:9a: 78:f3:70:66:f2:1a:ea:72:d9:0d:9d:b9:5d:89:ab:df:33:60: 48:e4:4e:ee:1b:06:38:08:2e:de:72:95:ae:c9:5b:f9:88:31: 02:b3:cd:27:55:50:d3:1e:97:63:73:71:c3:36:24:a3:82:73: 44:d3:a4:44:09:70:1a:13:da:a8:ca:cd:f4:ff:d8:27:1c:48: 9f:68:47:32:ca:b8:55:8a:28:1d:be:2b:62:35:bd:6d:d7:7d: cc:8b:f8:75:31:56:97:8b:ca:4c:44:aa:a0:f3:ca:43:83:10: 6a:aa:a3:eb:f1:ee:a6:cd:04:e9:76:05:7c:10:16:5d:82:d6: 4d:07:a3:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q5Q0IxMTAvBgNVBAUTKDhGODQ1MEVBMThFRDY2M0RENzYzMTM1QUM4RjlDMUEy Qjk5QkQ5NkQwHhcNMjUxMjA0MTkzODI5WhcNMjUxMjExMTkzODI5WjAYMRYwFAYD VQQDEw02OTMxZTMzNS1jNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2a7DlTJSMC+G8dTWhV7jEGDQce02jQLCYC6sm0dIsx1vuz36twZtNqDygLAh lWVdv65WH3sK/ZNml+tcMY87pwypL/RXxqJklnOiD2Zflat09IAuAAPCkSW4GNc7 PHpiZNuaONmWIG9SxgmWuxjE34Y5y43LDP0sn1dvDYc4aufQCGqUd2gC7kjA/pb8 oxgTy66tYHyQvxfLrd0/BR8vC/VrfFK8FMmw+iSQhdUZbN2+JxU/0zCTs9RUgot7 07xySNdoBCLRfCW/tbafyqdhey5jr0qXobA9ucoBn6LoD9Uj77lmx3RQ91brV4Rv 9D9CLA4z3wX4IBH6CLbu+w+xLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLs0lT7p 2l81EM+St5VnkPVcfqIsMB8GA1UdIwQYMBaAFI+EUOoY7WY912MTWsj5waK5m9lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDlDQi8zRkQyRDlDNENB MkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpqM1hZeE5heVBuQm9ybWIy VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o0UlE2aGp0WmozWFl4TmF5UG5Cb3JtYjJXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDlDQi8zRkQyRDlDNENBMkExMUVBOTVFQTg4N0ZDNEY5QUUwMi9qNFJRNmhqdFpq M1hZeE5heVBuQm9ybWIyVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwAoAJEyvY5wJM/eXaL8NODmQGcTiLVEtDCaBx1xXtLsVop4qV/HZY N/XM6784Dkk+817TC1Cjp4n4M6eL8sO7zNzRlcetRSTnwSO57+9uvWwA6OomxO7E /g5yGopDclvvWCK22obQf6uS7gsx7wykYo8QJ3O9vqtwHLBIJpp483Bm8hrqctkN nbldiavfM2BI5E7uGwY4CC7ecpWuyVv5iDECs80nVVDTHpdjc3HDNiSjgnNE06RE CXAaE9qoys30/9gnHEifaEcyyrhViigdvitiNb1t133Mi/h1MVaXi8pMRKqg88pD gxBqqqPr8e6mzQTpdgV8EBZdgtZNB6Mw -----END CERTIFICATE-----Generated at Sat Dec 6 17:29:49 2025 by rpki-client