This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft File: 0AZhDr1oKXhFffitopEQATORAZI.mft (raw, json) Hash identifier: eAJpkxNhoYRVruGB891t9gKCfBikCe6gfqyJkrB6L+s= Subject key identifier: 7E:99:93:14:BC:52:78:7C:4D:92:DA:C5:3E:C5:27:B1:53:E6:B7:36 Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0EE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft Manifest number: 0ED5 Signing time: Thu 04 Dec 2025 17:12:54 +0000 Manifest this update: Thu 04 Dec 2025 17:12:54 +0000 Manifest next update: Thu 11 Dec 2025 17:12:54 +0000 Files and hashes: 1: 0AZhDr1oKXhFffitopEQATORAZI.crl (hash: TUfFJ0xWZcdXXqv2RCndlquBaagclF/s3JP2JDxVJyg=) 2: CBD704945F5F11EFB99ABA76C4F9AE02.roa (hash: FyQYY0MU08e6kSNLp/WlThzg7KnlPeR081y6rj64cL8=) 3: 42431FFC8FF711EEA0FC990FC4F9AE02.roa (hash: YFP7eBTQi2LSXP0RAmqpULUvPlrkmlQWua4tsLRcOaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 17:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3812 (0xee4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E, serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: Dec 4 17:12:54 2025 GMT Not After : Dec 11 17:12:54 2025 GMT Subject: CN=6931c116-20be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:38:36:ec:f2:e5:58:d3:38:1d:35:e6:f3:20: e5:c2:3c:4a:64:05:eb:c3:1d:52:fe:cb:62:e0:86: 18:80:0a:7d:50:f4:b4:07:f0:8f:49:5b:aa:76:9f: b4:43:82:7d:2a:33:00:20:9c:3d:89:94:5d:1c:0a: 21:92:da:80:57:ad:1e:73:24:8b:3e:85:56:b6:b1: 20:56:86:27:18:ce:b1:62:d8:28:b8:50:f6:ed:0a: 50:3a:3b:99:01:bf:5c:68:52:99:83:21:f9:e0:9f: c6:8c:41:b3:17:dd:4a:d2:57:a6:eb:d4:60:f1:2c: 57:0b:05:1c:cd:2a:c5:33:bd:aa:a7:49:2d:2c:5e: ee:1f:57:1b:53:ff:38:66:52:90:94:43:46:23:99: 22:17:18:b0:ea:df:37:0c:3e:0b:b7:ec:95:4a:04: 89:40:3a:92:81:b3:43:d4:55:5a:96:41:3c:f1:da: 3e:ad:02:1f:42:f0:bb:c4:d8:74:e4:35:d1:7e:d4: 80:5b:7a:9b:bb:e6:47:1f:9a:49:71:01:2e:6a:a7: ce:68:6c:44:d4:5b:fc:17:81:c1:c4:cb:1b:97:1c: f8:a3:22:69:01:b4:da:00:c7:78:d4:2f:52:08:70: 01:d3:e9:75:13:e1:18:5a:28:4b:41:43:a1:0a:ad: 68:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:99:93:14:BC:52:78:7C:4D:92:DA:C5:3E:C5:27:B1:53:E6:B7:36 X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:f3:d8:3f:7f:4a:55:49:f6:ca:14:48:d7:f0:ff:87:55:42: 1d:cc:44:04:87:4f:be:75:16:e6:b4:58:b4:61:b1:f5:f2:a8: 18:9a:4d:9e:b0:d6:40:05:3e:71:9f:27:dc:99:de:e9:0c:48: b5:65:99:bc:e4:07:3c:f7:46:28:ad:0d:92:14:6e:e1:33:22: d9:90:6d:4e:81:91:82:6e:ac:24:67:8c:3d:a1:7b:80:ab:35: 42:44:0e:1a:c7:dc:05:25:95:b1:56:ed:52:57:23:94:8c:bd: 81:17:89:ff:8c:1b:3b:3a:31:2b:29:7d:42:00:36:39:82:a7: 53:b4:c8:e4:82:33:cc:a5:5e:87:0b:9e:16:64:65:d4:24:8c: d7:df:49:b7:82:41:15:c4:46:46:4f:0e:e1:2c:2a:38:07:ee: 50:04:1b:1d:ef:63:4a:84:b6:0e:9b:9e:2d:0f:48:28:99:5d: 1b:38:b3:30:98:a7:16:d0:2e:90:d1:73:42:1a:23:73:dd:b3: 7e:26:a8:c9:f6:f9:4c:b2:2f:7b:19:31:01:7b:1b:49:da:0e: c5:1c:4c:9d:1e:41:4e:f8:ea:21:fc:f5:59:8b:66:9b:d1:18: 3b:51:54:80:12:11:a6:54:6f:d0:04:ef:e3:bd:f5:db:c4:d3: cc:51:2b:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjUxMjA0MTcxMjU0WhcNMjUxMjExMTcxMjU0WjAYMRYwFAYD VQQDEw02OTMxYzExNi0yMGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDg27PLlWNM4HTXm8yDlwjxKZAXrwx1S/sti4IYYgAp9UPS0B/CPSVuqdp+0 Q4J9KjMAIJw9iZRdHAohktqAV60ecySLPoVWtrEgVoYnGM6xYtgouFD27QpQOjuZ Ab9caFKZgyH54J/GjEGzF91K0lem69Rg8SxXCwUczSrFM72qp0ktLF7uH1cbU/84 ZlKQlENGI5kiFxiw6t83DD4Lt+yVSgSJQDqSgbND1FValkE88do+rQIfQvC7xNh0 5DXRftSAW3qbu+ZHH5pJcQEuaqfOaGxE1Fv8F4HBxMsblxz4oyJpAbTaAMd41C9S CHAB0+l1E+EYWihLQUOhCq1ofwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH6ZkxS8 Unh8TZLaxT7FJ7FT5rc2MB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0E2RS83OUVDRTgzODk4QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tY aEZmZml0b3BFUUFUT1JBWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf89g/f0pVSfbKFEjX8P+HVUIdzEQEh0++dRbmtFi0YbH18qgYmk2e sNZABT5xnyfcmd7pDEi1ZZm85Ac890YorQ2SFG7hMyLZkG1OgZGCbqwkZ4w9oXuA qzVCRA4ax9wFJZWxVu1SVyOUjL2BF4n/jBs7OjErKX1CADY5gqdTtMjkgjPMpV6H C54WZGXUJIzX30m3gkEVxEZGTw7hLCo4B+5QBBsd72NKhLYOm54tD0gomV0bOLMw mKcW0C6Q0XNCGiNz3bN+JqjJ9vlMsi97GTEBextJ2g7FHEydHkFO+Ooh/PVZi2ab 0Rg7UVSAEhGmVG/QBO/jvfXbxNPMUSvs -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:07 2025 by rpki-client