This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: Q5+Pj/wyVmFl24N9gGItpuNFDK4e1f6JrBbYfayeUds= Subject key identifier: AA:79:89:B5:75:2A:90:BB:AF:85:E7:0E:18:9B:31:9D:26:FA:8A:17 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 04C4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 04B0 Signing time: Sat 06 Dec 2025 16:36:06 +0000 Manifest this update: Sat 06 Dec 2025 16:36:05 +0000 Manifest next update: Sat 13 Dec 2025 16:36:05 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: OIYL8n0D2yOknZjAzxj79Hi1fEWGuyXG8Qg9OCyj3FA=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: BSTa7sI/Wxp7paF8iFEhYcOXczYzjvqpGs3tFatgPsE=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: TLiIvWlCkSUznKaCtTmASc45uAF4Q8KIvn7LhcKxI18=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HMDK7qPjAO3ncQEJzX6SKnODDt4e7glxidti8sfhV1k=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Z/SQA8GAHBj69mDXnfsLMK8qu+tlZ5LxlzdXDGduFGo=) 7: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: AfGxVPGE0X5aiSEnPrV13VcxuUAvslUoJjsgWW+PD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1220 (0x4c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Dec 6 16:36:05 2025 GMT Not After : Dec 13 16:36:05 2025 GMT Subject: CN=69345b75-1747 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:8a:01:b3:f5:5f:53:73:35:58:eb:84:f5: 61:2c:9d:6d:26:7e:dd:77:35:51:4f:af:ec:ad:16: 00:e6:f1:b1:48:dd:f1:ed:f2:99:e0:b6:cc:f1:96: 65:40:03:61:e1:49:62:f4:bb:d4:19:6b:2a:7d:a2: 96:90:72:59:74:db:76:8e:86:a8:9d:a4:7c:bf:5c: 01:51:a3:b9:f7:3a:26:2e:e4:31:20:e7:1e:ab:e3: 27:3c:f7:da:de:af:51:44:e8:f1:b9:28:4f:30:69: 07:c0:01:93:95:a3:33:bb:c2:1d:d2:01:3a:9d:77: f5:6d:94:47:f2:a1:2a:bf:38:d8:b5:14:78:38:92: c4:02:85:1e:99:81:94:22:c0:28:81:c7:d7:e7:6b: 0b:a5:19:b6:2c:da:19:bd:60:5e:1a:9f:d3:b1:b3: a1:36:1c:78:13:7c:26:9a:e4:bb:01:8a:d2:78:42: 65:ef:96:09:9e:7b:0c:0f:32:0c:33:f7:48:29:fe: d7:f2:15:6e:7d:12:5a:49:b3:b7:6e:80:fc:ff:95: a4:9a:da:48:63:96:c5:26:80:ae:b1:6e:2d:43:ba: b3:83:ff:77:15:7a:2a:e2:a9:02:28:9a:09:dd:52: 2a:f4:12:fc:01:95:3e:19:4e:4d:33:ba:e1:6a:e7: 93:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:79:89:B5:75:2A:90:BB:AF:85:E7:0E:18:9B:31:9D:26:FA:8A:17 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:9e:74:0f:9d:3b:86:80:00:99:71:62:54:5b:d5:0b:48:c9: 9d:ac:e1:81:51:36:1c:cc:f6:0b:9d:48:74:66:4f:bb:c3:e6: 4c:b7:dd:f0:75:35:0f:e0:bf:e5:8c:f5:fa:c0:f1:b2:34:04: 39:42:e3:7e:32:b7:95:13:ac:25:25:05:e4:ff:69:aa:11:cf: 0b:f0:fd:90:ff:53:fd:a1:1d:08:60:c5:a9:dc:4e:34:2c:32: df:39:9e:34:4d:ff:aa:a4:cb:5f:b8:8f:9e:67:1c:c2:2f:bd: 3a:7b:fc:82:fe:06:f1:b9:92:31:0a:ca:70:6a:1d:f4:46:5f: e3:2b:58:77:49:ff:23:9d:f3:ed:c4:8d:50:f3:53:15:7a:f4: 00:85:bb:a3:7e:39:24:8d:1d:b4:1d:94:c9:00:aa:1c:43:0c: 66:68:7b:6f:4d:f5:fa:82:53:99:c7:42:de:58:cf:af:91:99: c7:fd:1a:ad:57:33:28:32:7e:85:68:dd:3f:59:d6:07:60:0c: 84:7d:ae:f8:ad:a6:11:53:ae:e2:16:64:a0:47:b5:eb:cd:41: 1d:6f:02:9a:38:7b:ef:43:ce:93:ef:49:1b:cc:d7:0e:9b:10: 35:f6:01:e9:35:ce:19:0b:2f:55:65:0e:2d:87:0d:b4:b1:fb: 56:4e:b4:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUxMjA2MTYzNjA1WhcNMjUxMjEzMTYzNjA1WjAYMRYwFAYD VQQDEw02OTM0NWI3NS0xNzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbCKAbP1X1NzNVjrhPVhLJ1tJn7ddzVRT6/srRYA5vGxSN3x7fKZ4LbM8ZZl QANh4Uli9LvUGWsqfaKWkHJZdNt2joaonaR8v1wBUaO59zomLuQxIOceq+MnPPfa 3q9RROjxuShPMGkHwAGTlaMzu8Id0gE6nXf1bZRH8qEqvzjYtRR4OJLEAoUemYGU IsAogcfX52sLpRm2LNoZvWBeGp/TsbOhNhx4E3wmmuS7AYrSeEJl75YJnnsMDzIM M/dIKf7X8hVufRJaSbO3boD8/5WkmtpIY5bFJoCusW4tQ7qzg/93FXoq4qkCKJoJ 3VIq9BL8AZU+GU5NM7rhaueT6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKp5ibV1 KpC7r4XnDhibMZ0m+ooXMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSnnQPnTuGgACZcWJUW9ULSMmdrOGBUTYczPYLnUh0Zk+7w+ZMt93w dTUP4L/ljPX6wPGyNAQ5QuN+MreVE6wlJQXk/2mqEc8L8P2Q/1P9oR0IYMWp3E40 LDLfOZ40Tf+qpMtfuI+eZxzCL706e/yC/gbxuZIxCspwah30Rl/jK1h3Sf8jnfPt xI1Q81MVevQAhbujfjkkjR20HZTJAKocQwxmaHtvTfX6glOZx0LeWM+vkZnH/Rqt VzMoMn6FaN0/WdYHYAyEfa74raYRU67iFmSgR7XrzUEdbwKaOHvvQ86T70kbzNcO mxA19gHpNc4ZCy9VZQ4thw20sftWTrS2 -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:05 2025 by rpki-client