This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft File: WAfnFR1ax7dL8iyZCSvS6S6mBig.mft (raw, json) Hash identifier: Nm6sXwryhfGK8xFDEtkZ/YNFl8/t5BidWGbyp1kuKCg= Subject key identifier: 88:8B:7E:82:76:A1:F8:A6:7B:05:2E:11:14:69:B6:41:0A:81:7C:8F Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 062A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft Manifest number: 061F Signing time: Sat 06 Dec 2025 21:41:03 +0000 Manifest this update: Sat 06 Dec 2025 21:41:02 +0000 Manifest next update: Sat 13 Dec 2025 21:41:02 +0000 Files and hashes: 1: WAfnFR1ax7dL8iyZCSvS6S6mBig.crl (hash: V/Hb+WaK2lzzTh/BeptFWFCLO7CR2RNXj6Nz2CTIYgI=) 2: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (hash: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 21:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Dec 6 21:41:02 2025 GMT Not After : Dec 13 21:41:02 2025 GMT Subject: CN=6934a2ee-c66d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:90:3d:af:48:a1:6d:4b:85:e8:38:ab:62:13: 0f:7f:44:57:dd:0c:7c:ee:b5:9c:b9:46:86:10:f1: 94:6f:f8:2b:f8:06:27:de:d3:be:63:8c:c4:35:e5: 34:d7:15:24:cc:9f:2b:aa:ea:b0:2e:ab:0b:4a:a0: 12:90:67:a9:e1:64:82:b4:16:28:4a:02:e7:77:0d: 6f:9a:f8:36:06:8e:25:b2:8e:29:34:c2:60:c7:53: 3c:70:1a:f0:08:56:0f:66:07:6b:bd:46:77:82:23: ec:bc:f7:05:74:d8:69:7f:6a:3c:92:3f:65:ac:fd: b5:eb:ab:8c:fd:c8:dc:7d:d9:26:5f:f1:5a:89:6c: 9e:f6:41:eb:f2:1c:16:92:2f:a9:43:2d:64:6e:47: 0c:b5:1f:f2:8d:93:10:6a:5f:2e:2c:ff:87:fc:db: 6c:2e:45:04:57:52:46:21:e9:51:80:61:69:5e:18: 53:17:7b:88:c2:04:67:20:b8:2e:bb:90:63:5d:ed: d1:72:bf:77:8c:7e:bc:3e:47:1e:fb:61:b1:a4:92: 13:f8:ac:80:7d:2b:13:c1:58:0e:d0:0f:47:8d:a5: 76:9f:8b:c7:81:7a:ea:ee:b9:e5:59:a9:cd:16:9c: de:e7:2e:cb:cb:8d:23:00:75:02:d3:75:c2:5a:75: e1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:8B:7E:82:76:A1:F8:A6:7B:05:2E:11:14:69:B6:41:0A:81:7C:8F X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:71:7f:ad:f8:53:00:e3:f8:10:93:cf:11:d7:d1:67:4d:f0: 0c:6e:31:db:63:14:19:c4:d7:5f:89:64:29:8a:3e:f5:08:f0: 36:c0:c8:ee:cf:ab:19:ef:a5:30:f6:04:52:3c:e6:ba:9c:84: ab:6f:f5:24:19:0a:5a:8b:9d:87:d6:15:85:ee:fc:6d:84:f7: 6b:fe:09:31:5c:bc:34:20:0c:a5:7a:3a:bf:d7:a9:02:cf:71: ce:dc:7e:f9:81:9b:c8:9f:5d:3e:ce:26:22:e2:5c:b6:1d:cd: 90:5e:c3:a5:38:59:83:19:7a:bf:2b:72:c6:42:23:80:9a:45: d0:ef:dc:60:6c:19:91:2f:d9:1c:b5:88:ed:2b:55:72:34:3f: c6:2c:d6:d6:df:67:3b:de:a6:d2:4a:2d:43:f2:65:f3:52:34: ea:6a:cb:2e:4e:67:69:63:ed:19:51:b0:9d:9a:d9:c7:4c:54: 17:88:0a:c5:ee:d6:b4:b2:e7:f8:6a:fa:27:57:bc:dc:5c:95: f6:e8:75:a7:7f:c8:50:78:55:9d:cc:77:6d:56:cf:73:df:9b: 9b:5e:54:0a:ea:16:75:ef:a8:48:8a:be:e9:fe:5e:ba:68:d0: 68:4e:95:2b:ae:a1:84:d3:b3:c3:81:b4:43:0f:63:28:75:13: 7d:0f:84:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUxMjA2MjE0MTAyWhcNMjUxMjEzMjE0MTAyWjAYMRYwFAYD VQQDEw02OTM0YTJlZS1jNjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4pA9r0ihbUuF6DirYhMPf0RX3Qx87rWcuUaGEPGUb/gr+AYn3tO+Y4zENeU0 1xUkzJ8rquqwLqsLSqASkGep4WSCtBYoSgLndw1vmvg2Bo4lso4pNMJgx1M8cBrw CFYPZgdrvUZ3giPsvPcFdNhpf2o8kj9lrP2166uM/cjcfdkmX/FaiWye9kHr8hwW ki+pQy1kbkcMtR/yjZMQal8uLP+H/NtsLkUEV1JGIelRgGFpXhhTF3uIwgRnILgu u5BjXe3Rcr93jH68Pkce+2GxpJIT+KyAfSsTwVgO0A9HjaV2n4vHgXrq7rnlWanN Fpze5y7Ly40jAHUC03XCWnXhpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiLfoJ2 ofimewUuERRptkEKgXyPMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEVDNS80MzlFM0MyOEM1MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3 ZEw4aXlaQ1N2UzZTNm1CaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3cX+t+FMA4/gQk88R19FnTfAMbjHbYxQZxNdfiWQpij71CPA2wMju z6sZ76Uw9gRSPOa6nISrb/UkGQpai52H1hWF7vxthPdr/gkxXLw0IAylejq/16kC z3HO3H75gZvIn10+ziYi4ly2Hc2QXsOlOFmDGXq/K3LGQiOAmkXQ79xgbBmRL9kc tYjtK1VyND/GLNbW32c73qbSSi1D8mXzUjTqassuTmdpY+0ZUbCdmtnHTFQXiArF 7ta0suf4avonV7zcXJX26HWnf8hQeFWdzHdtVs9z35ubXlQK6hZ176hIir7p/l66 aNBoTpUrrqGE07PDgbRDD2ModRN9D4T1 -----END CERTIFICATE-----Generated at Sun Dec 7 01:52:02 2025 by rpki-client