This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft File: 6qSDu71coOErPsD25wxbqq40VSs.mft (raw, json) Hash identifier: 45kPlpgd5AtqxcF+wRPsCTbivAJvgvcTDgg8Uss4fzo= Subject key identifier: 83:FD:39:13:16:C3:F8:10:7D:F2:DB:0A:ED:2B:2D:61:BD:7A:D8:F8 Authority key identifier: EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B Certificate issuer: /CN=A914BAA2/serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft Manifest number: 98 Signing time: Fri 05 Dec 2025 04:32:30 +0000 Manifest this update: Fri 05 Dec 2025 04:32:30 +0000 Manifest next update: Fri 12 Dec 2025 04:32:30 +0000 Files and hashes: 1: 6qSDu71coOErPsD25wxbqq40VSs.crl (hash: TEa7WcswMObHvRBcA4cavBRlQzq0bwkkDqQlNQ/oVxk=) 2: 535D1F52069511F090414823C4F9AE02.roa (hash: Z1otMQWN0CbTaPhw5EvbwRe+YB3GZZkedSXo8XkS78Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:32:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BAA2, serialNumber=EAA483BBBD5CA0E12B3EC0F6E70C5BAAAE34552B Validity Not Before: Dec 5 04:32:30 2025 GMT Not After : Dec 12 04:32:30 2025 GMT Subject: CN=6932605e-c91a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:a0:f2:46:b6:ae:d2:fd:d0:c1:94:e5:0e:8f: 4b:f8:23:ea:03:78:c3:30:cd:81:d7:10:1b:9a:15: 8b:56:5d:57:d1:42:63:95:bf:ae:97:98:c9:c8:c5: c8:d4:29:4a:b8:bb:8a:a1:f1:2b:f7:47:05:65:cc: 82:a5:ea:27:3d:63:f1:10:34:a5:32:c5:7a:58:25: cc:7f:cb:ae:a9:a3:5a:9d:88:a6:f9:cd:93:52:50: ba:09:9e:07:6d:41:44:f4:53:7b:32:ce:02:77:26: b1:a0:bd:25:a6:e2:eb:ea:6e:f4:38:2e:2b:83:26: 5a:34:60:3b:37:5d:e0:7a:c8:2e:a1:ce:9b:b3:de: e2:d1:10:24:80:cc:2e:f2:f9:d2:e2:49:91:3d:7c: 3c:aa:49:d6:56:25:0a:58:36:fc:dd:2c:64:14:3c: d2:97:4c:7d:47:10:2a:3c:60:99:44:53:cd:5d:b1: a1:e9:55:0d:9c:ca:42:29:3c:c0:4e:71:dc:9f:bf: 24:13:75:7c:d4:ac:69:63:89:bd:cd:ce:65:96:a1: 99:c4:6d:b3:f1:64:64:89:ba:d7:31:47:de:bb:66: 46:86:f1:16:e5:2a:f1:32:b0:95:9b:c2:82:6e:41: f9:b0:90:25:d9:51:e6:d4:0c:63:7c:27:2f:0b:4b: 5a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FD:39:13:16:C3:F8:10:7D:F2:DB:0A:ED:2B:2D:61:BD:7A:D8:F8 X509v3 Authority Key Identifier: keyid:EA:A4:83:BB:BD:5C:A0:E1:2B:3E:C0:F6:E7:0C:5B:AA:AE:34:55:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qSDu71coOErPsD25wxbqq40VSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BAA2/4DECD080FE6611EF892E5214C4F9AE02/6qSDu71coOErPsD25wxbqq40VSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:b1:d5:d0:08:80:49:4f:42:f6:14:47:4c:92:7f:5d:d6:c3: 1a:0e:f5:e9:86:6f:38:6c:9d:e3:2f:2d:1a:5c:3c:f0:a1:50: ee:a5:b1:b2:7d:f3:54:50:28:03:dd:2d:5d:d3:61:6a:06:70: 80:cd:9b:54:23:e8:47:58:6d:1b:0e:0c:fe:5c:2d:e2:bb:55: 05:cd:0f:33:a2:5f:bf:a4:4b:82:52:57:90:fa:30:a7:74:29: 92:15:64:c5:98:f2:db:30:8d:c9:04:d9:49:5a:21:4d:b8:32: 51:11:ca:f7:8e:ba:89:de:3b:9e:ff:c9:5f:ba:9d:94:42:1f: 5b:1a:a3:d4:31:75:1f:cb:94:98:59:50:b1:69:c5:a3:36:d3: c5:f7:d0:19:f6:e3:1e:c9:de:e7:16:f5:45:e3:03:4a:79:4d: 6d:2f:65:4f:c7:c7:e6:f6:fc:8e:35:26:18:d5:a7:5f:26:3d: 19:7d:76:b7:ee:a8:07:93:d8:3d:dd:81:7f:ab:e0:af:dc:28: 88:a9:52:77:03:02:92:e1:db:f3:d6:ec:61:01:dd:d6:dc:2a: 5e:58:b5:ec:76:61:56:78:38:94:2a:1d:cd:5a:40:5b:de:8c: c5:c7:f0:54:34:9b:20:57:39:9a:d4:b7:a3:ce:06:56:56:a8: 47:0e:69:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJBQTIxMTAvBgNVBAUTKEVBQTQ4M0JCQkQ1Q0EwRTEyQjNFQzBGNkU3MEM1QkFB QUUzNDU1MkIwHhcNMjUxMjA1MDQzMjMwWhcNMjUxMjEyMDQzMjMwWjAYMRYwFAYD VQQDEw02OTMyNjA1ZS1jOTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8KDyRrau0v3QwZTlDo9L+CPqA3jDMM2B1xAbmhWLVl1X0UJjlb+ul5jJyMXI 1ClKuLuKofEr90cFZcyCpeonPWPxEDSlMsV6WCXMf8uuqaNanYim+c2TUlC6CZ4H bUFE9FN7Ms4CdyaxoL0lpuLr6m70OC4rgyZaNGA7N13gesguoc6bs97i0RAkgMwu 8vnS4kmRPXw8qknWViUKWDb83SxkFDzSl0x9RxAqPGCZRFPNXbGh6VUNnMpCKTzA TnHcn78kE3V81KxpY4m9zc5llqGZxG2z8WRkibrXMUfeu2ZGhvEW5SrxMrCVm8KC bkH5sJAl2VHm1AxjfCcvC0tagQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIP9ORMW w/gQffLbCu0rLWG9etj4MB8GA1UdIwQYMBaAFOqkg7u9XKDhKz7A9ucMW6quNFUr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkFBMi80REVDRDA4MEZF NjYxMUVGODkyRTUyMTRDNEY5QUUwMi82cVNEdTcxY29PRXJQc0QyNXd4YnFxNDBW U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZxU0R1NzFjb09FclBzRDI1d3hicXE0MFZTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkFBMi80REVDRDA4MEZFNjYxMUVGODkyRTUyMTRDNEY5QUUwMi82cVNEdTcxY29P RXJQc0QyNXd4YnFxNDBWU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUsdXQCIBJT0L2FEdMkn9d1sMaDvXphm84bJ3jLy0aXDzwoVDupbGy ffNUUCgD3S1d02FqBnCAzZtUI+hHWG0bDgz+XC3iu1UFzQ8zol+/pEuCUleQ+jCn dCmSFWTFmPLbMI3JBNlJWiFNuDJREcr3jrqJ3jue/8lfup2UQh9bGqPUMXUfy5SY WVCxacWjNtPF99AZ9uMeyd7nFvVF4wNKeU1tL2VPx8fm9vyONSYY1adfJj0ZfXa3 7qgHk9g93YF/q+Cv3CiIqVJ3AwKS4dvz1uxhAd3W3CpeWLXsdmFWeDiUKh3NWkBb 3ozFx/BUNJsgVzma1LejzgZWVqhHDmma -----END CERTIFICATE-----Generated at Sun Dec 7 02:36:55 2025 by rpki-client