This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: Xp6wspJJnGoIUq8yqnxB1o8vhver19kbb/93mjB3MAI= Subject key identifier: 3A:2C:02:C0:F1:BD:47:7D:51:02:6F:8B:D9:F6:B0:3C:F6:27:DE:82 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0D85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0D7C Signing time: Sat 06 Dec 2025 17:22:29 +0000 Manifest this update: Sat 06 Dec 2025 17:22:28 +0000 Manifest next update: Sat 13 Dec 2025 17:22:28 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: KoobR0vZHnghEpF+KHb6YgUkTrAxy0OKV8moD2yMeA8=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: 5GX92aioe88puPmyzGflssCck3bnuW06XT8lCNmGXB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3461 (0xd85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Dec 6 17:22:28 2025 GMT Not After : Dec 13 17:22:28 2025 GMT Subject: CN=69346655-6134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e1:8b:28:d3:0b:13:f3:11:a6:cc:60:07:35: 91:0e:88:6b:ca:88:70:e9:ae:98:38:50:22:f4:c1: 94:36:27:21:c5:61:53:9f:69:83:2f:77:2d:e9:1c: 13:c7:e9:47:b8:f2:ee:76:85:ee:eb:b3:7e:ab:38: 36:1e:85:3f:b2:df:6a:24:b2:87:2a:fb:c6:f1:48: fd:ee:c4:dd:4f:0d:a1:78:1b:62:1d:de:f7:73:16: 55:5f:4b:9e:2a:b4:22:a9:a2:4f:fe:18:5d:6a:1f: f3:85:51:e6:ee:ec:92:7a:3e:14:ea:01:49:8f:dd: 2d:6b:f5:3e:32:48:63:46:77:70:db:b5:1f:97:7f: 0c:6a:f3:8c:89:d6:0b:2c:74:a1:cd:93:37:f5:dd: c0:00:89:dc:5a:c5:5c:68:fc:0b:54:33:7f:5c:1f: 92:0e:ce:0d:8d:dd:71:70:39:83:a2:80:b2:8c:7d: 15:db:8e:11:9f:06:87:e4:c2:bf:78:fd:f3:dc:ca: f1:3b:9b:9b:e8:44:16:d4:41:e1:e9:30:e7:5e:63: ff:8d:3c:12:5f:a1:8f:04:6d:07:83:3b:15:fb:50: 31:6d:14:30:39:a8:59:95:62:70:24:68:31:10:66: 0d:eb:46:f9:29:70:c8:d8:fd:9c:23:83:25:a0:43: 78:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:2C:02:C0:F1:BD:47:7D:51:02:6F:8B:D9:F6:B0:3C:F6:27:DE:82 X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:f1:e7:72:d2:76:f7:7a:4e:0e:80:73:9e:52:b9:05:87:1d: 9b:ac:d1:1c:5c:1b:54:5e:af:29:c0:38:31:46:17:f5:23:69: 5c:ed:10:39:94:68:1f:2d:9a:16:3e:c0:d2:ee:3c:aa:1b:86: b7:f8:3a:ce:dc:77:d1:dd:b1:74:95:f8:5c:d2:47:7b:39:bf: 11:e8:28:3a:67:10:97:42:76:9c:ae:f4:60:2d:88:fb:69:0a: d4:1f:e5:30:12:f7:17:5d:d2:69:00:f9:6b:a8:17:05:08:f5: 02:22:0a:5d:45:47:15:11:83:55:5e:3f:fc:74:1a:c2:d3:62: 71:87:95:94:5c:99:e6:1a:9d:cf:19:79:3b:5f:85:46:78:7d: 2a:aa:19:cf:1b:cb:69:2f:ab:e2:e4:b9:48:c5:e4:b8:c5:bd: b5:3c:24:2c:c2:34:3b:1b:e7:88:ca:3a:f6:cd:24:af:e5:4a: c7:38:69:87:16:c3:07:21:7d:3a:1d:12:54:2f:60:b3:76:ee: 98:0d:88:90:7c:3a:53:09:9a:9a:64:68:55:c6:d4:96:a7:fe: e9:60:1f:c5:a5:22:fc:f7:44:bc:72:61:2f:0a:39:1a:c1:7d: 6c:f8:37:93:fb:81:2a:44:b2:49:74:5d:19:2e:17:95:ae:cc: 40:3e:9d:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjUxMjA2MTcyMjI4WhcNMjUxMjEzMTcyMjI4WjAYMRYwFAYD VQQDEw02OTM0NjY1NS02MTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+GLKNMLE/MRpsxgBzWRDohryohw6a6YOFAi9MGUNichxWFTn2mDL3ct6RwT x+lHuPLudoXu67N+qzg2HoU/st9qJLKHKvvG8Uj97sTdTw2heBtiHd73cxZVX0ue KrQiqaJP/hhdah/zhVHm7uySej4U6gFJj90ta/U+MkhjRndw27Ufl38MavOMidYL LHShzZM39d3AAIncWsVcaPwLVDN/XB+SDs4Njd1xcDmDooCyjH0V244RnwaH5MK/ eP3z3MrxO5ub6EQW1EHh6TDnXmP/jTwSX6GPBG0HgzsV+1AxbRQwOahZlWJwJGgx EGYN60b5KXDI2P2cI4MloEN41QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDosAsDx vUd9UQJvi9n2sDz2J96CMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl8edy0nb3ek4OgHOeUrkFhx2brNEcXBtUXq8pwDgxRhf1I2lc7RA5 lGgfLZoWPsDS7jyqG4a3+DrO3HfR3bF0lfhc0kd7Ob8R6Cg6ZxCXQnacrvRgLYj7 aQrUH+UwEvcXXdJpAPlrqBcFCPUCIgpdRUcVEYNVXj/8dBrC02Jxh5WUXJnmGp3P GXk7X4VGeH0qqhnPG8tpL6vi5LlIxeS4xb21PCQswjQ7G+eIyjr2zSSv5UrHOGmH FsMHIX06HRJUL2Czdu6YDYiQfDpTCZqaZGhVxtSWp/7pYB/FpSL890S8cmEvCjka wX1s+DeT+4EqRLJJdF0ZLheVrsxAPp0o -----END CERTIFICATE-----Generated at Sat Dec 6 22:04:22 2025 by rpki-client