This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft File: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft (raw, json) Hash identifier: 8U5SvBx+kbeQ8qNUNqRmR0/gUnyipe59wcQShwIA8Qg= Subject key identifier: CC:2C:06:BF:01:F3:A4:2D:AF:0B:2D:C3:C2:DC:B6:75:86:01:84:F0 Authority key identifier: F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 Certificate issuer: /CN=A9146A02/serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Certificate serial: 0CAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft Manifest number: 0CA7 Signing time: Sat 06 Dec 2025 17:39:11 +0000 Manifest this update: Sat 06 Dec 2025 17:39:11 +0000 Manifest next update: Sat 13 Dec 2025 17:39:11 +0000 Files and hashes: 1: 8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl (hash: 4zcXE+H4br4+R0KXE4vpWLSGi9waqWF2dfe24Ro7lz0=) 2: 3F1B0EF2045F11EA87A3BD3BC4F9AE02.roa (hash: QFXAssP53pMm/bFh5UJHCvk6JCuQJOPSQpSae2xtEZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 17:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3246 (0xcae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A02, serialNumber=F0728EED2D4F8FFD8CFE5F87F61BEC0434514129 Validity Not Before: Dec 6 17:39:11 2025 GMT Not After : Dec 13 17:39:11 2025 GMT Subject: CN=69346a3f-9cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:a3:6d:7b:74:bc:12:42:e9:fa:60:5a:ce: 3c:83:41:59:64:3c:b5:44:0f:8b:c9:dd:3e:d3:cf: 34:e4:40:20:a0:d0:ce:1b:e0:d7:f8:b8:3f:b5:db: e2:e9:28:fa:95:87:a3:b0:7e:ce:b3:34:f2:06:b9: a0:92:8d:9e:fe:ad:91:4a:a9:60:86:1c:c0:b4:64: 86:b2:dc:1a:34:b0:f9:7f:32:a1:26:60:80:96:50: 90:92:8d:f9:ec:77:63:05:4b:eb:4e:df:ca:ab:3b: 72:4b:ca:4a:09:bb:61:7a:c5:70:8b:53:46:ac:af: 75:82:59:66:8c:5b:92:6c:15:7c:e4:39:77:ab:0d: 8c:1e:42:62:ef:89:69:f3:cf:d1:70:ed:00:57:b6: 55:33:46:46:57:31:b0:34:7a:68:23:41:40:72:95: 50:e1:34:91:bb:ac:e2:bc:48:28:15:19:45:84:a2: b3:2d:99:fa:11:4b:65:c2:57:42:00:60:cd:2c:5a: b3:3c:64:0b:c9:92:14:d8:b9:60:92:39:b6:6c:fb: 77:9c:73:ab:05:79:ff:fe:08:e7:29:8b:d2:9b:64: 40:6f:33:2e:ea:cd:c8:e3:39:1d:fa:17:47:8d:43: 79:55:5e:d3:1c:42:4e:ac:2b:0d:1f:dd:83:37:d5: fd:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2C:06:BF:01:F3:A4:2D:AF:0B:2D:C3:C2:DC:B6:75:86:01:84:F0 X509v3 Authority Key Identifier: keyid:F0:72:8E:ED:2D:4F:8F:FD:8C:FE:5F:87:F6:1B:EC:04:34:51:41:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A02/8DCEE9FC045E11EAADB7DF3AC4F9AE02/8HKO7S1Pj_2M_l-H9hvsBDRRQSk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:97:1a:1b:8d:ad:e5:65:68:ae:9d:e8:4b:f9:b7:53:c1:fe: a0:8d:61:3b:93:c4:03:e4:3c:83:e4:2f:b9:bd:a3:01:b2:f8: 90:8c:f4:8e:26:a2:57:ca:5c:d6:be:38:03:3c:ba:d1:c1:da: 2b:fd:cd:f2:21:09:86:48:98:67:d4:aa:3a:a2:92:77:e5:60: ab:02:46:12:3d:c9:e6:50:ce:56:e7:86:e9:31:71:ca:f3:cc: d3:66:b5:bd:30:c8:b9:f7:1e:9e:92:f8:eb:50:7a:cc:8e:03: 7a:1b:ac:c2:51:ee:fd:9f:57:ec:f2:90:3c:c9:09:d8:81:1a: ec:3f:ae:85:c3:be:a0:79:1a:76:2c:af:a9:46:e1:1a:93:93: e7:c7:15:af:72:cb:0a:bf:e8:72:39:41:b1:b4:5c:47:63:a5: 8f:14:e8:13:b4:99:5d:e2:44:5d:1a:9e:c6:44:73:a7:00:e5: 8a:f9:89:7c:eb:30:89:39:dc:f7:f6:9f:85:61:58:58:dc:f0: 38:2d:0a:77:f0:05:07:57:48:ad:b3:96:71:76:a0:a9:64:4d: ac:3a:d2:8d:54:26:6b:5a:8e:a5:88:71:fa:b5:fc:63:d1:3a: d4:c7:96:00:b1:86:02:3d:38:3e:2a:f8:bc:2d:25:25:cf:f3: 3d:cd:43:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBMDIxMTAvBgNVBAUTKEYwNzI4RUVEMkQ0RjhGRkQ4Q0ZFNUY4N0Y2MUJFQzA0 MzQ1MTQxMjkwHhcNMjUxMjA2MTczOTExWhcNMjUxMjEzMTczOTExWjAYMRYwFAYD VQQDEw02OTM0NmEzZi05Y2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+SjbXt0vBJC6fpgWs48g0FZZDy1RA+Lyd0+08805EAgoNDOG+DX+Lg/tdvi 6Sj6lYejsH7OszTyBrmgko2e/q2RSqlghhzAtGSGstwaNLD5fzKhJmCAllCQko35 7HdjBUvrTt/KqztyS8pKCbthesVwi1NGrK91gllmjFuSbBV85Dl3qw2MHkJi74lp 88/RcO0AV7ZVM0ZGVzGwNHpoI0FAcpVQ4TSRu6zivEgoFRlFhKKzLZn6EUtlwldC AGDNLFqzPGQLyZIU2Llgkjm2bPt3nHOrBXn//gjnKYvSm2RAbzMu6s3I4zkd+hdH jUN5VV7THEJOrCsNH92DN9X9iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwsBr8B 86Qtrwstw8LctnWGAYTwMB8GA1UdIwQYMBaAFPByju0tT4/9jP5fh/Yb7AQ0UUEp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkEwMi84RENFRTlGQzA0 NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpfMk1fbC1IOWh2c0JEUlJR U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhIS083UzFQal8yTV9sLUg5aHZzQkRSUlFTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkEwMi84RENFRTlGQzA0NUUxMUVBQURCN0RGM0FDNEY5QUUwMi84SEtPN1MxUGpf Mk1fbC1IOWh2c0JEUlJRU2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3lxobja3lZWiunehL+bdTwf6gjWE7k8QD5DyD5C+5vaMBsviQjPSO JqJXylzWvjgDPLrRwdor/c3yIQmGSJhn1Ko6opJ35WCrAkYSPcnmUM5W54bpMXHK 88zTZrW9MMi59x6ekvjrUHrMjgN6G6zCUe79n1fs8pA8yQnYgRrsP66Fw76geRp2 LK+pRuEak5PnxxWvcssKv+hyOUGxtFxHY6WPFOgTtJld4kRdGp7GRHOnAOWK+Yl8 6zCJOdz39p+FYVhY3PA4LQp38AUHV0its5ZxdqCpZE2sOtKNVCZrWo6liHH6tfxj 0TrUx5YAsYYCPTg+Kvi8LSUlz/M9zUON -----END CERTIFICATE-----Generated at Sun Dec 7 06:32:48 2025 by rpki-client