This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: Wz98rIf5diDHTeREgJmbDNV+r4gKjbsrz4rS7wNFgcw= Subject key identifier: E9:92:09:F6:6B:73:3A:D1:9E:1F:58:2A:4F:CC:43:D8:2B:97:31:01 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0840 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 082F Signing time: Thu 04 Dec 2025 19:55:33 +0000 Manifest this update: Thu 04 Dec 2025 19:55:32 +0000 Manifest next update: Thu 11 Dec 2025 19:55:32 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: p9ZvYMbtdAJj5vuonZdiZncCiS9/Sj5/66rRBLNHhLs=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Dec 4 19:55:32 2025 GMT Not After : Dec 11 19:55:32 2025 GMT Subject: CN=6931e734-b198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c0:5e:34:28:4e:f9:c4:3a:1a:cb:03:1b:ff: 0b:6b:f2:b5:b7:7c:16:01:d3:ee:5e:3e:51:05:c4: 97:32:b2:da:30:a6:6f:cb:9b:ef:15:fe:00:25:6b: 0e:a2:5a:00:27:55:d6:cc:d5:d3:ea:ef:34:f8:0d: 37:13:fb:c8:a1:41:2c:0d:53:f2:e7:62:b8:07:b2: a1:0e:dc:77:02:ca:9c:36:2d:d7:04:53:ee:57:2d: 00:92:2d:4c:90:0d:24:22:8b:fd:59:f4:15:7f:2c: b5:46:73:d3:0d:9b:72:7c:95:0e:dd:78:52:81:34: 1e:84:ef:21:52:88:bc:26:3b:a0:4f:6b:cd:4e:58: ce:cd:98:9f:96:73:dd:16:e7:bd:fd:ca:e4:b2:b3: 8f:89:20:63:07:1c:16:f8:08:08:b1:d7:5f:29:2d: 2b:5a:54:45:06:21:41:96:93:a6:de:9b:5c:57:4f: 4f:27:ae:5e:b2:22:88:b0:0b:43:22:47:0d:e2:fd: 14:d6:ef:b7:3a:b0:32:40:d0:2c:80:9c:74:38:98: 77:7f:5c:ec:35:ce:21:b4:f5:2e:dc:81:54:7e:43: 6c:09:00:e9:79:55:cb:41:71:93:3a:76:90:3c:70: 3e:0d:2b:33:38:5b:c6:b6:bb:64:18:54:61:d1:94: 15:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:92:09:F6:6B:73:3A:D1:9E:1F:58:2A:4F:CC:43:D8:2B:97:31:01 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:df:de:7f:f8:5a:ff:fa:0f:13:64:a9:d9:cc:ca:44:87:18: 45:45:07:16:03:1e:30:26:31:c1:7d:33:ca:f8:c2:fa:5b:45: 15:47:25:c1:4b:17:bf:e6:c6:48:10:2e:36:4f:3e:c5:f4:d3: 02:cc:5d:e9:01:1a:17:10:f1:3a:aa:41:c3:b6:99:61:64:13: 0e:61:95:aa:df:98:62:96:ee:2d:a7:89:32:18:c3:d2:25:1c: a7:14:06:b7:d0:96:0d:bf:cf:72:fe:2f:b0:ce:e3:f0:29:f2: 39:d4:7f:f0:81:08:bd:76:70:65:07:89:ae:56:65:0d:e8:41: 42:73:f7:bf:28:36:f2:ca:1e:de:4a:0d:f5:39:fd:fe:d9:b3: 3e:dc:65:f9:7c:67:7a:3e:b2:10:7c:f2:61:2a:0b:d4:67:bb: 69:7b:2d:7e:ff:68:6d:13:38:47:97:c2:c1:a1:fc:63:8e:56: aa:0c:d1:31:c8:a6:35:fa:d4:96:53:5f:07:60:55:3f:95:c6: 49:7c:79:af:79:50:d9:98:42:a3:a1:af:6e:a5:9c:b8:25:79: d7:f5:61:cd:6d:9f:83:50:91:4b:3b:a0:8b:79:f9:79:84:76: e5:09:06:81:4f:8e:54:03:2b:a7:01:72:ab:02:4a:97:ac:c3: 94:2e:f5:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUxMjA0MTk1NTMyWhcNMjUxMjExMTk1NTMyWjAYMRYwFAYD VQQDEw02OTMxZTczNC1iMTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz8BeNChO+cQ6GssDG/8La/K1t3wWAdPuXj5RBcSXMrLaMKZvy5vvFf4AJWsO oloAJ1XWzNXT6u80+A03E/vIoUEsDVPy52K4B7KhDtx3AsqcNi3XBFPuVy0Aki1M kA0kIov9WfQVfyy1RnPTDZtyfJUO3XhSgTQehO8hUoi8JjugT2vNTljOzZiflnPd Fue9/crksrOPiSBjBxwW+AgIsddfKS0rWlRFBiFBlpOm3ptcV09PJ65esiKIsAtD IkcN4v0U1u+3OrAyQNAsgJx0OJh3f1zsNc4htPUu3IFUfkNsCQDpeVXLQXGTOnaQ PHA+DSszOFvGtrtkGFRh0ZQVGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmSCfZr czrRnh9YKk/MQ9grlzEBMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1395/+Fr/+g8TZKnZzMpEhxhFRQcWAx4wJjHBfTPK+ML6W0UVRyXB Sxe/5sZIEC42Tz7F9NMCzF3pARoXEPE6qkHDtplhZBMOYZWq35hilu4tp4kyGMPS JRynFAa30JYNv89y/i+wzuPwKfI51H/wgQi9dnBlB4muVmUN6EFCc/e/KDbyyh7e Sg31Of3+2bM+3GX5fGd6PrIQfPJhKgvUZ7tpey1+/2htEzhHl8LBofxjjlaqDNEx yKY1+tSWU18HYFU/lcZJfHmveVDZmEKjoa9upZy4JXnX9WHNbZ+DUJFLO6CLefl5 hHblCQaBT45UAyunAXKrAkqXrMOULvWy -----END CERTIFICATE-----Generated at Sat Dec 6 12:21:26 2025 by rpki-client