This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: /G4kPqPkaYCUOQhCUj/s3rNr/pPCejHysfpMOr3Uw7M= Subject key identifier: E0:EE:F1:90:F1:3B:F9:B8:83:F6:74:D6:CD:17:2B:FF:15:13:CA:EC Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0E4A Signing time: Sat 06 Dec 2025 17:13:59 +0000 Manifest this update: Sat 06 Dec 2025 17:13:59 +0000 Manifest next update: Sat 13 Dec 2025 17:13:59 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: tpztk7rWz2FCBuLBK3piMBVvKLwuO+nCigClOxGVOmc=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: TISln3OWwFMxrFHBXjhzJmsuAj7ldgpqpKcI/7qFxoU=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: cRBzFvwtKhO498akQMxVv4jrQ/Ofn1ctENdiE3NLHgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Dec 6 17:13:59 2025 GMT Not After : Dec 13 17:13:59 2025 GMT Subject: CN=69346457-8cd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:8d:c4:e7:18:99:c7:10:e6:f3:9a:ce:39: d5:99:13:a8:22:04:90:96:e8:92:50:5b:0e:84:9b: 40:e3:78:aa:b4:76:27:fe:c2:59:22:50:b7:75:ab: aa:1e:25:8f:0a:2c:18:45:e5:4c:7f:e5:df:b4:fa: 29:a7:37:24:7d:af:b8:35:b5:99:d0:09:7b:38:d8: 82:5f:3e:f3:65:7c:ac:33:ce:59:88:a8:98:29:56: f5:42:13:45:21:75:46:1d:cf:55:20:5a:8a:72:49: fb:4f:dc:58:70:11:64:1c:d2:d3:07:3e:26:94:0e: 6c:ab:f0:6d:7d:50:76:1f:e5:1a:e5:6b:76:52:e4: 14:c7:10:d4:3c:a1:24:c1:c6:a2:9c:32:6f:27:df: 50:d4:ec:a6:19:88:bf:66:4b:97:b0:32:4b:51:77: 0d:06:2b:12:c6:c0:92:16:89:9c:e1:cb:f6:09:f7: e2:97:21:72:1b:4f:51:8d:ed:85:38:45:6f:4f:ed: 42:bf:d9:46:a1:5d:0b:63:a3:b7:9b:14:b3:2a:fe: 44:b0:78:03:e2:68:b2:37:9e:3a:3a:76:29:74:7e: 00:a5:e2:27:35:4a:67:9f:a3:94:33:14:a0:69:fc: cd:f7:08:ad:1f:2a:27:68:5a:bd:06:9f:42:f0:22: 78:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:EE:F1:90:F1:3B:F9:B8:83:F6:74:D6:CD:17:2B:FF:15:13:CA:EC X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:c1:76:5c:a4:ec:fa:42:05:b2:d8:e4:96:25:6d:24:27:77: 98:11:cc:d2:10:58:90:a3:81:5e:97:f7:a3:dd:2b:11:89:9c: 35:d9:59:fa:b4:85:04:98:11:20:9b:22:7e:5e:a7:23:2a:f7: fa:60:66:d6:07:ce:dc:70:06:4f:12:3b:3c:75:03:fa:39:6e: 0e:96:32:70:29:7b:66:75:d0:fa:9a:3f:70:bf:31:70:3d:92: 75:0c:e5:46:1d:d0:63:aa:a1:82:91:03:e9:2c:7c:55:68:db: 30:4f:3c:c9:89:4a:86:7c:aa:db:4d:ee:be:2e:cc:91:44:fb: 8d:fe:70:ad:6e:64:f6:48:61:21:80:01:f8:80:ea:ce:09:09: 67:1c:d0:01:51:bb:9e:98:d4:7f:5a:42:7a:0f:58:87:03:54: 21:24:08:1c:e1:1b:d4:69:a9:c8:5f:04:89:94:c5:4d:b1:20: bc:d8:57:36:fa:77:8f:04:d2:54:5e:b8:1c:39:9e:a3:3c:58: 7a:b7:62:a0:19:07:94:11:39:ef:a1:25:3c:75:83:12:42:a7: 89:35:60:1b:1b:b7:90:98:c5:03:55:2b:0f:83:5a:3e:a1:d2: 03:e0:db:9f:ef:df:66:08:d6:05:73:a1:b8:83:c1:a6:52:32: 54:08:b8:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUxMjA2MTcxMzU5WhcNMjUxMjEzMTcxMzU5WjAYMRYwFAYD VQQDEw02OTM0NjQ1Ny04Y2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArI2NxOcYmccQ5vOazjnVmROoIgSQluiSUFsOhJtA43iqtHYn/sJZIlC3dauq HiWPCiwYReVMf+XftPoppzckfa+4NbWZ0Al7ONiCXz7zZXysM85ZiKiYKVb1QhNF IXVGHc9VIFqKckn7T9xYcBFkHNLTBz4mlA5sq/BtfVB2H+Ua5Wt2UuQUxxDUPKEk wcainDJvJ99Q1OymGYi/ZkuXsDJLUXcNBisSxsCSFomc4cv2CffilyFyG09Rje2F OEVvT+1Cv9lGoV0LY6O3mxSzKv5EsHgD4miyN546OnYpdH4ApeInNUpnn6OUMxSg afzN9witHyonaFq9Bp9C8CJ4mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODu8ZDx O/m4g/Z01s0XK/8VE8rsMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjwXZcpOz6QgWy2OSWJW0kJ3eYEczSEFiQo4Fel/ej3SsRiZw12Vn6 tIUEmBEgmyJ+XqcjKvf6YGbWB87ccAZPEjs8dQP6OW4OljJwKXtmddD6mj9wvzFw PZJ1DOVGHdBjqqGCkQPpLHxVaNswTzzJiUqGfKrbTe6+LsyRRPuN/nCtbmT2SGEh gAH4gOrOCQlnHNABUbuemNR/WkJ6D1iHA1QhJAgc4RvUaanIXwSJlMVNsSC82Fc2 +nePBNJUXrgcOZ6jPFh6t2KgGQeUETnvoSU8dYMSQqeJNWAbG7eQmMUDVSsPg1o+ odID4Nuf799mCNYFc6G4g8GmUjJUCLj8 -----END CERTIFICATE-----Generated at Sat Dec 6 20:08:13 2025 by rpki-client