This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft File: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft (raw, json) Hash identifier: EUKLYvGNlwUKvqOT8PZZ6WFmQbVNa5uYjqayGDXr5PY= Subject key identifier: 98:BA:6B:AE:7A:5E:60:CE:00:65:7F:40:62:54:6C:2D:E2:54:98:B9 Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 069E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft Manifest number: 0697 Signing time: Thu 04 Dec 2025 21:13:06 +0000 Manifest this update: Thu 04 Dec 2025 21:13:05 +0000 Manifest next update: Thu 11 Dec 2025 21:13:05 +0000 Files and hashes: 1: fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl (hash: 9mUeLdVd/BaTvjdQeTUvK00Z63kkPKU4to/9dnFLonA=) 2: AB791BEE7BC711F0B0A56A74C4F9AE02.roa (hash: lK7bGVCygyPQRcWZjT3XlPriu2CyfUJlUxTwi2dzB50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1694 (0x69e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Dec 4 21:13:05 2025 GMT Not After : Dec 11 21:13:05 2025 GMT Subject: CN=6931f961-3bf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ba:ce:df:7f:1e:cc:8f:d0:26:b1:79:16:c8: e3:c0:01:6f:fc:c8:9b:f4:32:13:9f:9c:9c:e1:7c: 68:f0:58:5d:b8:5a:ef:5b:35:f4:23:5e:19:ff:f9: c7:fa:23:a6:7d:91:28:d8:b7:b2:cc:7b:01:67:83: 24:09:24:00:7b:04:19:63:2a:c8:bb:5c:0c:2f:86: 08:63:e3:1a:42:19:0f:2f:8f:2b:c8:39:50:64:7d: 0b:6d:69:f9:35:ec:01:f7:93:64:3f:3a:bf:6a:d3: 6b:f7:a7:6c:6a:2c:12:ea:93:bf:42:f2:b4:61:e2: 45:76:3f:1a:d5:62:37:14:9c:cb:b8:2d:89:a3:f0: eb:4c:d8:91:27:d3:26:7e:71:ab:48:8a:bc:2a:99: 6d:5c:e9:37:59:ca:b3:ff:88:05:3d:cd:67:91:75: bf:aa:09:be:18:0d:66:25:44:b0:2f:03:d3:31:cd: a0:48:38:68:b8:89:00:c6:9e:65:0e:dc:c8:f6:97: 87:5d:95:91:99:16:d1:bd:74:89:ec:8a:73:0a:6c: 7b:d7:50:85:cf:21:9e:1f:9b:d7:61:fb:3a:01:47: b8:42:40:93:08:f3:4e:9b:c4:fb:48:3f:b4:45:d1: 44:07:f2:4d:0c:e6:68:0a:87:0f:44:cb:aa:f2:25: 37:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:BA:6B:AE:7A:5E:60:CE:00:65:7F:40:62:54:6C:2D:E2:54:98:B9 X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c6:c8:cf:3c:1d:f2:1f:6a:e9:7a:23:b4:20:3a:dc:84:8c: fe:a0:98:e4:dd:bc:9d:6d:d8:45:96:d6:c2:02:69:a5:84:44: d9:ed:a4:9d:c4:a0:d0:17:41:8c:07:73:08:8e:7d:78:c6:07: 7a:74:fc:5e:f0:0b:b1:d2:d5:7a:31:b3:be:4e:1d:0e:e2:ca: 9e:80:75:97:cf:da:d4:f2:b7:eb:6a:a4:08:77:3c:4f:d4:47: 8f:cf:96:76:40:f4:2f:4e:6b:fe:fb:ac:59:bc:12:41:8d:60: 2c:cc:18:b7:9b:b4:b3:84:33:32:d9:84:7d:35:da:b5:e2:53: 34:55:e0:03:e0:f6:8f:1a:40:7d:c6:d0:c4:16:f4:1e:db:83: b5:41:7f:95:1d:6c:92:dc:a8:45:13:16:f9:9f:68:a6:e6:f5: 1d:81:24:6e:91:a1:9e:56:62:e2:aa:8e:d4:2b:43:34:14:3d: a1:f3:42:56:cc:6c:11:a0:13:c3:2f:74:3a:7c:2d:7a:5d:b5: f1:94:26:70:4c:ba:5f:36:64:90:b5:8b:e5:4e:52:47:ba:1f: 68:ba:bd:65:83:25:07:61:23:c0:b4:d4:2a:b0:2d:66:14:cd: 52:93:41:61:e6:ea:d2:ff:bd:4a:71:ef:6b:b3:b6:27:81:f5: 14:7d:2c:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUxMjA0MjExMzA1WhcNMjUxMjExMjExMzA1WjAYMRYwFAYD VQQDEw02OTMxZjk2MS0zYmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7rO338ezI/QJrF5FsjjwAFv/Mib9DITn5yc4Xxo8FhduFrvWzX0I14Z//nH +iOmfZEo2LeyzHsBZ4MkCSQAewQZYyrIu1wML4YIY+MaQhkPL48ryDlQZH0LbWn5 NewB95NkPzq/atNr96dsaiwS6pO/QvK0YeJFdj8a1WI3FJzLuC2Jo/DrTNiRJ9Mm fnGrSIq8KpltXOk3Wcqz/4gFPc1nkXW/qgm+GA1mJUSwLwPTMc2gSDhouIkAxp5l DtzI9peHXZWRmRbRvXSJ7IpzCmx711CFzyGeH5vXYfs6AUe4QkCTCPNOm8T7SD+0 RdFEB/JNDOZoCocPRMuq8iU3mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJi6a656 XmDOAGV/QGJUbC3iVJi5MB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MkE0RS9FM0UwODQ2NDk1QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hl QVFJNFI2a2JDdzhIaTE4Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZxsjPPB3yH2rpeiO0IDrchIz+oJjk3bydbdhFltbCAmmlhETZ7aSd xKDQF0GMB3MIjn14xgd6dPxe8Aux0tV6MbO+Th0O4sqegHWXz9rU8rfraqQIdzxP 1EePz5Z2QPQvTmv++6xZvBJBjWAszBi3m7SzhDMy2YR9Ndq14lM0VeAD4PaPGkB9 xtDEFvQe24O1QX+VHWyS3KhFExb5n2im5vUdgSRukaGeVmLiqo7UK0M0FD2h80JW zGwRoBPDL3Q6fC16XbXxlCZwTLpfNmSQtYvlTlJHuh9our1lgyUHYSPAtNQqsC1m FM1Sk0Fh5urS/71Kce9rs7YngfUUfSzQ -----END CERTIFICATE-----Generated at Sat Dec 6 16:09:52 2025 by rpki-client