This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: +olvfG1BhdscjATqGHzSpRDzD53SNzySfAJnkZBH2Gw= Subject key identifier: 33:A3:16:51:A6:15:B7:4D:00:F6:7F:AB:F1:2E:42:DC:53:ED:4D:78 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 09F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 09E7 Signing time: Sat 06 Dec 2025 19:07:32 +0000 Manifest this update: Sat 06 Dec 2025 19:07:32 +0000 Manifest next update: Sat 13 Dec 2025 19:07:32 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: XoYUc/srRTGNv7tbTAQH0ed0HrHuXYV4JBLE3wzZEfo=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: EW5gw++/Nv/7XkyhmrGAdJFCyCQBgQSX+Pdw0qIT5p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2545 (0x9f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Dec 6 19:07:32 2025 GMT Not After : Dec 13 19:07:32 2025 GMT Subject: CN=69347ef4-f491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e7:ab:66:2a:68:70:de:8f:e2:12:12:69:d4: d9:fb:03:cc:06:ed:0f:69:ff:de:3c:d7:fd:8e:66: 1a:26:43:59:e2:7c:4a:ac:8f:74:76:61:b8:16:92: bd:57:5c:af:b2:a6:95:a1:db:63:f5:c9:4e:8a:44: 88:a1:e5:60:4c:ce:f3:15:6a:4a:1e:48:52:ef:b4: 63:53:76:0b:e6:63:f0:2a:10:75:ae:29:3b:40:46: c9:da:df:e6:82:2d:f9:5b:dd:a4:5a:47:cb:72:e2: 40:86:6b:d4:75:fc:bf:d3:ec:54:79:72:8e:d4:5e: 28:8b:98:e7:a6:9d:48:6c:9a:8d:9a:4a:aa:59:32: d0:05:d2:9d:d2:c5:86:97:c4:6e:ed:ea:6d:f6:94: b9:89:c2:3d:88:64:7d:82:ad:ec:40:68:83:8e:52: fb:03:35:80:89:4e:dd:95:a5:09:db:8f:ef:e1:2b: dd:11:54:87:74:0f:08:26:70:13:13:a8:cf:bd:53: 52:24:b8:9b:00:33:3a:b2:7f:f0:e3:60:a7:1b:00: 5a:ad:85:86:39:c2:82:c7:20:0b:d9:05:d5:b9:aa: 34:78:de:8f:44:aa:66:85:be:ce:7b:a2:96:66:fe: f9:47:36:2b:a5:f0:88:ce:5e:c7:fc:09:68:f9:03: 3b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A3:16:51:A6:15:B7:4D:00:F6:7F:AB:F1:2E:42:DC:53:ED:4D:78 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:e9:b1:af:54:77:36:1b:68:78:f1:26:55:ae:ac:72:10:f6: 61:95:af:06:be:b8:9a:71:ef:4c:f2:6a:2f:1e:b9:c5:35:51: cb:9e:b7:ae:be:8a:19:aa:1c:df:34:9f:16:2e:93:09:2b:22: 2f:a4:72:ae:15:c7:95:c4:0e:1d:6a:67:8b:b8:2e:1d:5e:7b: 8e:ca:e3:ce:c2:bf:7e:09:d8:42:09:4f:f3:49:53:29:46:b2: 62:96:0a:65:a9:00:d4:46:3e:fa:a5:15:0c:d3:a7:21:40:50: 2d:70:a0:cb:75:de:1b:5e:de:7a:50:9d:e7:5e:4f:b7:f0:5a: 24:97:c2:34:f9:0f:18:fc:d6:97:ba:e7:26:6f:58:56:fb:c9: 31:29:71:2c:e5:6a:2f:f2:db:8e:0d:33:f5:18:37:f6:c8:07: 0a:16:48:9b:ce:98:de:90:fa:a4:60:9a:0a:5a:2b:23:dc:cb: da:aa:9b:0b:29:a4:5f:54:28:db:b9:b0:ef:f4:59:f0:bf:ef: f7:f9:73:38:2a:ba:6e:c8:8e:3a:ca:96:8c:a3:9d:83:e2:22: 01:1b:2d:d3:3e:e1:cc:87:6a:c2:56:6e:13:fa:ea:28:6c:c5: b2:36:76:bd:04:3f:7e:30:a3:41:be:fc:c5:4d:70:9e:34:75: 14:17:29:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjUxMjA2MTkwNzMyWhcNMjUxMjEzMTkwNzMyWjAYMRYwFAYD VQQDEw02OTM0N2VmNC1mNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeerZipocN6P4hISadTZ+wPMBu0Paf/ePNf9jmYaJkNZ4nxKrI90dmG4FpK9 V1yvsqaVodtj9clOikSIoeVgTM7zFWpKHkhS77RjU3YL5mPwKhB1rik7QEbJ2t/m gi35W92kWkfLcuJAhmvUdfy/0+xUeXKO1F4oi5jnpp1IbJqNmkqqWTLQBdKd0sWG l8Ru7ept9pS5icI9iGR9gq3sQGiDjlL7AzWAiU7dlaUJ24/v4SvdEVSHdA8IJnAT E6jPvVNSJLibADM6sn/w42CnGwBarYWGOcKCxyAL2QXVuao0eN6PRKpmhb7Oe6KW Zv75RzYrpfCIzl7H/Alo+QM7oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOjFlGm FbdNAPZ/q/EuQtxT7U14MB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk6bGvVHc2G2h48SZVrqxyEPZhla8Gvriace9M8movHrnFNVHLnreu vooZqhzfNJ8WLpMJKyIvpHKuFceVxA4dameLuC4dXnuOyuPOwr9+CdhCCU/zSVMp RrJilgplqQDURj76pRUM06chQFAtcKDLdd4bXt56UJ3nXk+38Fokl8I0+Q8Y/NaX uucmb1hW+8kxKXEs5Wov8tuODTP1GDf2yAcKFkibzpjekPqkYJoKWisj3MvaqpsL KaRfVCjbubDv9Fnwv+/3+XM4KrpuyI46ypaMo52D4iIBGy3TPuHMh2rCVm4T+uoo bMWyNna9BD9+MKNBvvzFTXCeNHUUFylV -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:38 2025 by rpki-client