This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft File: X-srwGbHr1fSafdXM_D_g-mQOaM.mft (raw, json) Hash identifier: /WtvWvSiOMjVfe00e2dAVOVal/FaEoqwp7BKpNsp9ZY= Subject key identifier: 91:C6:62:B4:17:D0:19:EA:08:EE:A0:16:9B:B4:B2:FE:B9:0E:F6:60 Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft Manifest number: 01C2 Signing time: Fri 05 Dec 2025 01:26:02 +0000 Manifest this update: Fri 05 Dec 2025 01:26:01 +0000 Manifest next update: Fri 12 Dec 2025 01:26:01 +0000 Files and hashes: 1: X-srwGbHr1fSafdXM_D_g-mQOaM.crl (hash: nHum/5bVMreloiWZqxb5utFMQ9lLUXlmplUeM0Sfn+w=) 2: 2F5D72E695EC11F0BF295042C4F9AE02.roa (hash: 0lzHMRu/BEbN9XyM7Nn7lU0Tdf9VP7CQevvwrhAJ9I4=) 3: C7D74E2CB9EA11EFBCC89752C4F9AE02.roa (hash: ySS8x+DTKoqsAepHwvR2qHqY0ZCmV9P1QKOa76HzTlg=) 4: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (hash: oQkH3u9NTYvKUYQPQlkbYyuLgyzF8QlzdxljTJ0MaOk=) 5: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (hash: 2gtTc6ZU74S7+Yus2EBYeK424P/75ngpI7OxmlHbzq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF, serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Validity Not Before: Dec 5 01:26:01 2025 GMT Not After : Dec 12 01:26:01 2025 GMT Subject: CN=693234aa-b8d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ba:bd:88:25:a1:75:53:64:25:b2:ee:22:59: 9b:55:b5:b4:80:86:36:1f:fa:d6:27:07:22:79:04: 3a:1b:99:27:df:84:f7:66:ff:8a:f0:93:06:80:8b: 8c:74:b7:98:ac:14:1d:f0:8f:05:dd:04:61:42:4a: c1:b5:3b:9d:7f:64:85:e2:1c:c7:ec:43:28:66:95: 08:f0:4e:de:3d:64:87:c9:e3:7d:1e:f0:5d:d5:35: 90:5d:cb:1f:56:54:ec:7f:8e:fc:72:4d:3e:81:63: 33:21:63:db:e7:2b:4d:6b:42:0d:84:ab:4b:e8:b4: af:aa:5b:1f:c4:c5:66:92:66:77:19:84:31:63:33: 59:4f:bd:64:b7:5f:58:fb:cb:c8:f9:c5:4f:09:85: 8e:d6:cf:74:03:24:0c:4a:45:98:98:c8:c3:a8:47: d3:e3:85:74:54:30:27:37:59:3f:dd:08:b3:3d:50: 9c:1e:45:67:9a:c0:c6:df:cf:e0:14:5d:ba:e7:11: aa:6f:ad:92:c5:1b:b3:cf:d0:f4:08:79:57:71:9d: 8e:92:4c:4a:cf:d5:59:34:2c:4b:2a:1d:18:1e:d2: 75:47:f8:25:c5:18:27:de:07:5d:6e:68:96:79:17: c6:ae:8c:89:a2:36:50:f2:7b:05:93:ba:98:b1:2a: 38:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C6:62:B4:17:D0:19:EA:08:EE:A0:16:9B:B4:B2:FE:B9:0E:F6:60 X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:4c:ab:ff:e4:bb:76:e6:60:84:cd:ca:d4:1b:fc:9a:34:8e: 3c:eb:31:c4:26:06:19:15:5b:e5:ba:cb:88:17:77:a1:7d:c7: b6:2c:06:9d:10:a9:c7:e9:82:74:41:1e:0b:6b:a5:77:59:09: d3:d7:58:4c:5e:fa:ea:e8:a9:67:29:fe:29:b7:b8:80:4f:ac: 78:16:fb:20:96:f8:49:e5:d3:2a:bd:76:c0:86:ca:a6:a6:e9: a3:6f:a8:b0:c5:8c:68:1a:a8:f9:29:b5:65:e4:13:66:31:b2: f2:d0:64:b3:a6:ba:2b:12:ed:a0:32:35:38:65:ec:b3:68:cc: 50:c0:ec:1f:3d:48:f8:4b:62:6d:19:ef:37:8b:c6:0a:f3:a5: ad:83:a3:b8:3f:82:e8:df:6c:42:a4:4d:85:32:7b:a7:d4:a7: 42:80:cd:09:0e:bb:b6:57:37:09:0d:a5:a7:04:d2:fb:14:97: 23:d1:66:cf:a0:74:4e:19:0e:83:d7:59:d3:1a:6b:5b:bf:6e: 06:c4:77:9a:3a:86:3b:b9:c8:04:f7:7e:32:db:1f:ea:00:67: 5a:8e:a9:80:a8:8a:bb:4d:9a:85:16:fa:4c:62:10:5b:40:1c: 96:d8:e6:48:86:d3:9f:90:e3:7f:ec:b0:77:34:bb:0e:01:45: 4d:74:f8:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjUxMjA1MDEyNjAxWhcNMjUxMjEyMDEyNjAxWjAYMRYwFAYD VQQDEw02OTMyMzRhYS1iOGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbq9iCWhdVNkJbLuIlmbVbW0gIY2H/rWJwcieQQ6G5kn34T3Zv+K8JMGgIuM dLeYrBQd8I8F3QRhQkrBtTudf2SF4hzH7EMoZpUI8E7ePWSHyeN9HvBd1TWQXcsf VlTsf478ck0+gWMzIWPb5ytNa0INhKtL6LSvqlsfxMVmkmZ3GYQxYzNZT71kt19Y +8vI+cVPCYWO1s90AyQMSkWYmMjDqEfT44V0VDAnN1k/3QizPVCcHkVnmsDG38/g FF265xGqb62SxRuzz9D0CHlXcZ2OkkxKz9VZNCxLKh0YHtJ1R/glxRgn3gddbmiW eRfGroyJojZQ8nsFk7qYsSo4KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHGYrQX 0BnqCO6gFpu0sv65DvZgMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RThCRi9CMzg5Q0YzODQxQTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIx ZlNhZmRYTV9EX2ctbVFPYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcTKv/5Lt25mCEzcrUG/yaNI486zHEJgYZFVvlusuIF3ehfce2LAad EKnH6YJ0QR4La6V3WQnT11hMXvrq6KlnKf4pt7iAT6x4FvsglvhJ5dMqvXbAhsqm pumjb6iwxYxoGqj5KbVl5BNmMbLy0GSzprorEu2gMjU4ZeyzaMxQwOwfPUj4S2Jt Ge83i8YK86Wtg6O4P4Lo32xCpE2FMnun1KdCgM0JDru2VzcJDaWnBNL7FJcj0WbP oHROGQ6D11nTGmtbv24GxHeaOoY7ucgE934y2x/qAGdajqmAqIq7TZqFFvpMYhBb QByW2OZIhtOfkON/7LB3NLsOAUVNdPhE -----END CERTIFICATE-----Generated at Sat Dec 6 13:34:52 2025 by rpki-client