This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft File: o9c6Tp8QQ946v09e0Qhor20zW_Q.mft (raw, json) Hash identifier: xbkGMBwWrqCKAcy9+fQIhzaKAffh670pKgk1RJ395w4= Subject key identifier: 19:1C:A8:54:BB:74:F5:1F:4C:D4:93:DE:9A:F6:C3:47:64:92:5F:3F Authority key identifier: A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 Certificate issuer: /CN=A914A4A1/serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Certificate serial: 040F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft Manifest number: 040A Signing time: Thu 04 Dec 2025 22:53:05 +0000 Manifest this update: Thu 04 Dec 2025 22:53:04 +0000 Manifest next update: Thu 11 Dec 2025 22:53:04 +0000 Files and hashes: 1: o9c6Tp8QQ946v09e0Qhor20zW_Q.crl (hash: okbeTP2NdrqdWAdsup3ut7wYNcvuPTOUnrL7szWZOpw=) 2: 59212E58955D11EC97EC0461C4F9AE02.roa (hash: /LvExGUs3Vr9wpRYY+a9ZS6EORFrCyhwbLTTuNvKjdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 22:53:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A4A1, serialNumber=A3D73A4E9F1043DE3ABF4F5ED10868AF6D335BF4 Validity Not Before: Dec 4 22:53:04 2025 GMT Not After : Dec 11 22:53:04 2025 GMT Subject: CN=693210d1-6310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f9:ed:23:9a:05:fa:2f:1e:8b:88:f2:8d:ac: 39:42:c1:3c:29:06:01:4e:fd:17:05:c9:d2:92:e1: 86:69:e5:95:88:8e:5d:82:d8:77:cc:1a:64:dd:6c: c9:74:ec:86:93:6f:2a:23:65:77:32:b0:03:a2:9f: 14:96:54:23:91:62:91:46:33:b9:a0:a7:b0:2a:ca: 3b:65:51:b7:df:c3:83:4b:59:7d:e0:ca:f2:d2:81: f5:0f:cf:a9:4a:b4:6a:f2:a7:d7:5c:62:3b:05:20: 32:f4:fd:87:75:e8:d6:44:9d:a6:2b:52:f4:7d:0a: af:6c:d5:cc:ad:86:91:23:18:9f:32:ae:8b:74:5b: d5:63:66:c6:ae:74:1f:68:26:1c:ea:5c:99:77:85: 2b:34:25:28:8a:bc:f5:87:bd:53:bd:f3:83:10:65: 51:b6:85:0e:9a:a4:21:b0:72:5c:71:5d:62:45:55: de:3e:55:3f:6f:52:6f:aa:a7:21:f6:91:0e:fe:e2: 80:bf:5d:4f:1d:3f:c1:a5:60:99:e7:12:2b:be:d4: f2:ee:c3:ed:f6:3e:75:64:3a:e5:11:97:4a:c0:59: 32:fd:69:f1:a6:6c:5b:0f:c5:cc:3a:02:ed:f9:5d: c5:06:ef:f8:f9:9f:22:47:c8:36:0c:36:f5:3e:ee: e2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1C:A8:54:BB:74:F5:1F:4C:D4:93:DE:9A:F6:C3:47:64:92:5F:3F X509v3 Authority Key Identifier: keyid:A3:D7:3A:4E:9F:10:43:DE:3A:BF:4F:5E:D1:08:68:AF:6D:33:5B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9c6Tp8QQ946v09e0Qhor20zW_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A4A1/68CEC094955911EC84728736C4F9AE02/o9c6Tp8QQ946v09e0Qhor20zW_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:83:3d:e2:35:db:99:f5:07:ec:90:12:70:34:2f:d4:80:d7: 1c:77:2d:b3:81:69:ef:b6:7f:a0:9f:03:a7:44:62:bf:af:99: bf:bf:21:ec:22:36:e7:8f:98:02:41:4a:30:a3:9e:e4:a9:fd: 23:b4:3c:c6:a9:b8:9a:18:2f:6c:fe:70:63:7e:5e:c5:ba:e1: 84:31:67:1c:fe:c5:e8:e1:cc:c6:26:b5:25:89:d1:bf:da:fa: a7:38:a2:88:a7:37:ef:a2:f3:6d:17:f8:f2:6a:79:fa:31:50: f4:de:25:1b:ac:df:00:cc:61:33:81:3e:14:2b:97:81:66:3b: 24:fb:24:5c:5f:bf:ff:58:c3:90:dc:65:81:ad:8f:a6:3a:d5: 3b:ae:24:5c:77:2e:24:89:0a:58:b4:69:8b:ed:fd:24:53:0f: 79:ce:d5:6b:87:7e:7b:2d:d0:93:b8:3d:37:b8:be:40:36:68: 46:f2:25:01:55:e2:67:d7:4b:b2:e6:fa:a7:27:b7:26:45:9f: 1c:55:d2:e0:50:03:22:c7:3f:84:2f:d3:05:b7:cf:c6:ac:bf: 8a:ba:ee:dd:72:0a:9a:fd:4d:b9:52:5c:1b:c2:86:08:26:6d: a9:d4:14:ac:e3:cf:f5:7f:e2:c4:6c:8d:0d:bf:a0:47:d0:b6: 1b:15:fc:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0QTExMTAvBgNVBAUTKEEzRDczQTRFOUYxMDQzREUzQUJGNEY1RUQxMDg2OEFG NkQzMzVCRjQwHhcNMjUxMjA0MjI1MzA0WhcNMjUxMjExMjI1MzA0WjAYMRYwFAYD VQQDEw02OTMyMTBkMS02MzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4vntI5oF+i8ei4jyjaw5QsE8KQYBTv0XBcnSkuGGaeWViI5dgth3zBpk3WzJ dOyGk28qI2V3MrADop8UllQjkWKRRjO5oKewKso7ZVG338ODS1l94Mry0oH1D8+p SrRq8qfXXGI7BSAy9P2HdejWRJ2mK1L0fQqvbNXMrYaRIxifMq6LdFvVY2bGrnQf aCYc6lyZd4UrNCUoirz1h71TvfODEGVRtoUOmqQhsHJccV1iRVXePlU/b1Jvqqch 9pEO/uKAv11PHT/BpWCZ5xIrvtTy7sPt9j51ZDrlEZdKwFky/WnxpmxbD8XMOgLt +V3FBu/4+Z8iR8g2DDb1Pu7iNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkcqFS7 dPUfTNST3pr2w0dkkl8/MB8GA1UdIwQYMBaAFKPXOk6fEEPeOr9PXtEIaK9tM1v0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTRBMS82OENFQzA5NDk1 NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5NDZ2MDllMFFob3IyMHpX X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285YzZUcDhRUTk0NnYwOWUwUWhvcjIweldfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTRBMS82OENFQzA5NDk1NTkxMUVDODQ3Mjg3MzZDNEY5QUUwMi9vOWM2VHA4UVE5 NDZ2MDllMFFob3IyMHpXX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzgz3iNduZ9QfskBJwNC/UgNccdy2zgWnvtn+gnwOnRGK/r5m/vyHs Ijbnj5gCQUowo57kqf0jtDzGqbiaGC9s/nBjfl7FuuGEMWcc/sXo4czGJrUlidG/ 2vqnOKKIpzfvovNtF/jyann6MVD03iUbrN8AzGEzgT4UK5eBZjsk+yRcX7//WMOQ 3GWBrY+mOtU7riRcdy4kiQpYtGmL7f0kUw95ztVrh357LdCTuD03uL5ANmhG8iUB VeJn10uy5vqnJ7cmRZ8cVdLgUAMixz+EL9MFt8/GrL+Kuu7dcgqa/U25UlwbwoYI Jm2p1BSs48/1f+LEbI0Nv6BH0LYbFfxX -----END CERTIFICATE-----Generated at Sat Dec 6 23:04:13 2025 by rpki-client