This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft File: 0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft (raw, json) Hash identifier: rGPdqnJQzRnbbVKz5Es1sbKPEVyNqZaPCtVtV5yQu3Q= Subject key identifier: 47:7A:90:FC:38:25:ED:E7:FF:A6:95:A0:CB:C1:21:7F:E1:58:FC:FE Authority key identifier: D1:53:F7:58:5F:62:E9:C3:15:12:D2:86:88:84:01:C1:A6:8D:DE:16 Certificate issuer: /CN=A9143684/serialNumber=D153F7585F62E9C31512D286888401C1A68DDE16 Certificate serial: 01CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0VP3WF9i6cMVEtKGiIQBwaaN3hY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft Manifest number: 01CC Signing time: Sat 06 Dec 2025 15:02:57 +0000 Manifest this update: Sat 06 Dec 2025 15:02:56 +0000 Manifest next update: Sat 13 Dec 2025 15:02:56 +0000 Files and hashes: 1: 0VP3WF9i6cMVEtKGiIQBwaaN3hY.crl (hash: j6JeClQ5+NuY6oC7HIetCLkt0xxvKKoid38sA3c6ftA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.crl rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0VP3WF9i6cMVEtKGiIQBwaaN3hY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:02:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143684, serialNumber=D153F7585F62E9C31512D286888401C1A68DDE16 Validity Not Before: Dec 6 15:02:56 2025 GMT Not After : Dec 13 15:02:56 2025 GMT Subject: CN=693445a1-af0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c2:52:b1:0c:ba:71:d6:c0:f6:4c:c3:f2:88: 02:2a:9f:fa:a3:18:48:44:da:40:96:d4:60:43:8e: 7f:e4:6f:1b:87:fa:61:27:3d:72:67:25:ea:71:cf: a5:75:d9:64:19:92:07:fd:69:8f:7d:eb:0f:90:18: 6a:79:fb:ff:46:80:60:2f:19:77:bd:f2:c2:7a:c7: 67:05:34:60:33:52:a3:0c:e5:68:80:8e:3f:9c:95: 10:c0:51:f8:cc:56:10:e9:35:4a:de:ec:aa:c9:bb: 1a:1a:d3:4d:ae:09:ef:41:bd:f8:fc:d1:dc:9c:a6: 3e:9e:b7:a9:29:bd:5c:fe:10:18:55:9c:72:fb:0d: c9:4a:60:a8:e8:00:0c:fb:03:fb:1a:86:71:9a:bd: 96:fd:cb:01:0a:e3:19:ed:76:49:1e:e2:e6:29:4e: 57:e2:8b:04:1f:99:07:89:1b:b3:06:70:14:0e:6e: fd:d0:68:b7:23:a0:58:f8:89:5e:03:8b:a3:92:9e: ef:9e:34:1b:e7:9a:0a:58:40:39:c3:85:82:8e:81: 71:79:49:ed:46:07:8a:9b:bf:e4:a2:7b:8e:fa:f8: 72:a4:84:77:ac:d9:a4:dd:2e:80:19:e6:95:a1:b8: cd:7e:79:93:da:d8:2b:53:82:7c:1e:66:f3:1f:b8: 8a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7A:90:FC:38:25:ED:E7:FF:A6:95:A0:CB:C1:21:7F:E1:58:FC:FE X509v3 Authority Key Identifier: keyid:D1:53:F7:58:5F:62:E9:C3:15:12:D2:86:88:84:01:C1:A6:8D:DE:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0VP3WF9i6cMVEtKGiIQBwaaN3hY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143684/A6C840B22AB011EEAE2E5D1AC4F9AE02/0VP3WF9i6cMVEtKGiIQBwaaN3hY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:15:c1:94:74:d0:27:0d:12:65:ff:0d:f9:02:3b:9a:c1:5a: 1c:99:97:e9:fb:29:de:89:d8:8b:63:3e:00:d5:b6:b5:5f:d1: 1b:29:79:83:a8:58:3b:5a:02:39:e1:ba:5e:38:8f:86:73:e4: 50:f8:a0:63:e4:e6:16:5d:37:1e:b6:16:e6:82:20:b4:72:ec: 99:16:f9:87:03:fd:e1:93:88:a4:b8:9f:09:74:9f:ad:21:93: 24:4f:b1:43:5a:d4:62:ee:e4:0c:56:36:2d:46:35:50:c1:34: 6a:5d:25:50:3b:97:8f:f9:3b:21:11:de:00:f2:d7:32:4b:98: 8d:97:ce:68:fb:de:5a:77:4e:3e:a0:1a:f1:2c:a5:20:77:4c: 7f:9e:23:cc:32:a1:e8:2f:35:cf:97:4a:fb:44:a4:58:4d:07: 34:dc:e7:3b:3f:8c:06:93:df:df:98:c2:b4:83:19:84:9a:00: 31:d2:89:16:2c:7d:95:9b:85:8b:93:75:f7:52:a2:dd:86:48: 4f:74:01:c4:09:87:ad:5c:70:2f:46:66:99:03:31:0e:c0:95: 2f:cd:7c:d3:e7:47:0f:4a:14:75:72:97:f7:d7:35:86:d3:87: 36:b7:65:e3:4a:ef:c0:4f:ae:ee:d7:e6:94:be:53:83:06:7a: 22:84:35:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDM2ODQxMTAvBgNVBAUTKEQxNTNGNzU4NUY2MkU5QzMxNTEyRDI4Njg4ODQwMUMx QTY4RERFMTYwHhcNMjUxMjA2MTUwMjU2WhcNMjUxMjEzMTUwMjU2WjAYMRYwFAYD VQQDEw02OTM0NDVhMS1hZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcJSsQy6cdbA9kzD8ogCKp/6oxhIRNpAltRgQ45/5G8bh/phJz1yZyXqcc+l ddlkGZIH/WmPfesPkBhqefv/RoBgLxl3vfLCesdnBTRgM1KjDOVogI4/nJUQwFH4 zFYQ6TVK3uyqybsaGtNNrgnvQb34/NHcnKY+nrepKb1c/hAYVZxy+w3JSmCo6AAM +wP7GoZxmr2W/csBCuMZ7XZJHuLmKU5X4osEH5kHiRuzBnAUDm790Gi3I6BY+Ile A4ujkp7vnjQb55oKWEA5w4WCjoFxeUntRgeKm7/konuO+vhypIR3rNmk3S6AGeaV objNfnmT2tgrU4J8HmbzH7iK3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEd6kPw4 Je3n/6aVoMvBIX/hWPz+MB8GA1UdIwQYMBaAFNFT91hfYunDFRLShoiEAcGmjd4W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzY4NC9BNkM4NDBCMjJB QjAxMUVFQUUyRTVEMUFDNEY5QUUwMi8wVlAzV0Y5aTZjTVZFdEtHaUlRQndhYU4z aFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBWUDNXRjlpNmNNVkV0S0dpSVFCd2FhTjNoWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzY4NC9BNkM4NDBCMjJBQjAxMUVFQUUyRTVEMUFDNEY5QUUwMi8wVlAzV0Y5aTZj TVZFdEtHaUlRQndhYU4zaFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaFcGUdNAnDRJl/w35AjuawVocmZfp+yneidiLYz4A1ba1X9EbKXmD qFg7WgI54bpeOI+Gc+RQ+KBj5OYWXTcethbmgiC0cuyZFvmHA/3hk4ikuJ8JdJ+t IZMkT7FDWtRi7uQMVjYtRjVQwTRqXSVQO5eP+TshEd4A8tcyS5iNl85o+95ad04+ oBrxLKUgd0x/niPMMqHoLzXPl0r7RKRYTQc03Oc7P4wGk9/fmMK0gxmEmgAx0okW LH2Vm4WLk3X3UqLdhkhPdAHECYetXHAvRmaZAzEOwJUvzXzT50cPShR1cpf31zWG 04c2t2XjSu/AT67u1+aUvlODBnoihDXM -----END CERTIFICATE-----Generated at Sun Dec 7 01:56:04 2025 by rpki-client