This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft File: aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft (raw, json) Hash identifier: GldTY0fUxLvoNkeJ0bYu2bFSUO6+ERuWToC0OGc6oB8= Subject key identifier: 1F:8E:6B:7D:31:1F:95:E1:31:83:E4:9B:A5:98:56:FA:73:C9:DC:42 Authority key identifier: 68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03 Certificate issuer: /CN=A915AF7A/serialNumber=6880D323AA3F2D5146050640F321A6129000DF03 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft Manifest number: 07EF Signing time: Thu 04 Dec 2025 21:29:19 +0000 Manifest this update: Thu 04 Dec 2025 21:29:19 +0000 Manifest next update: Thu 11 Dec 2025 21:29:19 +0000 Files and hashes: 1: aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl (hash: hT0bwinL/gdpi0Kv+KSw7Pwk10WWJ+caLJtYgBWqBsQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 21:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AF7A, serialNumber=6880D323AA3F2D5146050640F321A6129000DF03 Validity Not Before: Dec 4 21:29:19 2025 GMT Not After : Dec 11 21:29:19 2025 GMT Subject: CN=6931fd2f-9bbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:fa:c3:92:d9:1b:08:e7:e5:4a:19:5f:ee:4e: e1:3f:7a:74:ea:f5:f5:a6:4e:9d:61:c6:fe:f2:6f: 23:e8:5b:df:1c:80:8c:94:e4:47:af:fc:74:2f:a1: 52:3f:2c:6b:55:67:4a:01:08:ce:05:3d:d9:4c:8d: 20:ff:b1:10:5e:5d:7a:da:65:dd:f5:c8:e5:2f:1f: 2d:06:32:21:09:f3:b5:d7:8e:82:a5:17:9b:f2:68: f5:d5:36:3c:2d:ed:ba:63:59:fb:47:6e:cf:24:04: 75:01:31:f8:e7:b0:89:f3:bd:ca:4d:d2:0a:a6:05: 3c:1a:0b:85:16:90:e4:36:1b:95:cf:2d:8b:15:95: 3a:e5:1e:ad:5c:27:ca:71:76:a2:ea:ff:4d:14:d4: 47:5d:0f:ee:7c:34:1a:26:33:0b:f0:56:85:fb:84: 3a:9a:cd:01:f4:a5:c8:94:f5:04:e0:8e:85:5f:d8: c4:23:6f:bb:7b:65:35:90:e7:76:db:98:f8:49:80: 94:64:65:d8:ce:50:b7:4d:4c:97:49:30:b6:06:c2: ad:44:d4:d6:42:a3:24:9f:ae:74:54:51:1f:32:1a: f3:90:fc:43:83:d0:19:a8:98:cd:a7:72:fa:ab:9d: fe:15:13:8b:6f:b9:54:9e:c7:67:fe:43:70:86:3b: 48:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:8E:6B:7D:31:1F:95:E1:31:83:E4:9B:A5:98:56:FA:73:C9:DC:42 X509v3 Authority Key Identifier: keyid:68:80:D3:23:AA:3F:2D:51:46:05:06:40:F3:21:A6:12:90:00:DF:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIDTI6o_LVFGBQZA8yGmEpAA3wM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/aIDTI6o_LVFGBQZA8yGmEpAA3wM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:77:d2:ab:11:d2:e8:88:89:3d:4f:c4:b3:a3:dd:6b:6b:7f: 25:a1:62:c8:23:9f:8b:fd:08:04:30:50:17:bf:25:3b:33:d7: 91:c3:53:b2:aa:fd:a4:41:9e:42:15:aa:a8:c4:3e:ec:1b:f5: 7c:8e:0a:5d:cc:d4:34:3b:e0:32:65:11:29:af:57:10:31:bc: eb:52:b7:93:64:1c:43:cc:62:f1:a8:f6:0e:4a:b8:a6:0a:5f: 0d:74:f6:90:59:bf:41:ff:ac:d8:4d:f5:77:ae:4c:2e:08:5a: e6:b0:df:28:fa:82:83:5a:6f:01:0c:89:f5:6b:79:03:2d:3f: e2:4d:ee:e3:3b:05:86:bd:33:8e:61:9a:73:c2:7a:f2:1e:fb: 8b:2e:5c:56:0a:20:bd:04:85:05:5a:81:b3:15:e7:f5:1f:e3: 9f:06:43:be:5f:c5:f1:85:ab:ca:55:7c:60:d1:40:83:a7:04: 43:17:51:b2:6f:e1:90:2b:e9:2f:19:41:66:9c:8e:81:d0:88: 5c:a8:5e:d9:f2:88:ad:ba:3d:f5:d1:3a:86:d9:1d:85:eb:73: 07:aa:79:07:23:cc:b5:52:d8:58:ec:15:51:76:63:72:df:44: c5:ba:b7:aa:e1:49:fa:95:38:37:f5:3e:dc:d4:e9:f9:9f:9a: 6c:2d:01:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFGN0ExMTAvBgNVBAUTKDY4ODBEMzIzQUEzRjJENTE0NjA1MDY0MEYzMjFBNjEy OTAwMERGMDMwHhcNMjUxMjA0MjEyOTE5WhcNMjUxMjExMjEyOTE5WjAYMRYwFAYD VQQDEw02OTMxZmQyZi05YmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/rDktkbCOflShlf7k7hP3p06vX1pk6dYcb+8m8j6FvfHICMlORHr/x0L6FS PyxrVWdKAQjOBT3ZTI0g/7EQXl162mXd9cjlLx8tBjIhCfO1146CpReb8mj11TY8 Le26Y1n7R27PJAR1ATH457CJ873KTdIKpgU8GguFFpDkNhuVzy2LFZU65R6tXCfK cXai6v9NFNRHXQ/ufDQaJjML8FaF+4Q6ms0B9KXIlPUE4I6FX9jEI2+7e2U1kOd2 25j4SYCUZGXYzlC3TUyXSTC2BsKtRNTWQqMkn650VFEfMhrzkPxDg9AZqJjNp3L6 q53+FROLb7lUnsdn/kNwhjtIIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+Oa30x H5XhMYPkm6WYVvpzydxCMB8GA1UdIwQYMBaAFGiA0yOqPy1RRgUGQPMhphKQAN8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUY3QS9FMDUzMzMzNkJB QzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi9hSURUSTZvX0xWRkdCUVpBOHlHbUVwQUEz d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJRFRJNm9fTFZGR0JRWkE4eUdtRXBBQTN3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUY3QS9FMDUzMzMzNkJBQzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi9hSURUSTZvX0xW RkdCUVpBOHlHbUVwQUEzd00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZd9KrEdLoiIk9T8Szo91ra38loWLII5+L/QgEMFAXvyU7M9eRw1Oy qv2kQZ5CFaqoxD7sG/V8jgpdzNQ0O+AyZREpr1cQMbzrUreTZBxDzGLxqPYOSrim Cl8NdPaQWb9B/6zYTfV3rkwuCFrmsN8o+oKDWm8BDIn1a3kDLT/iTe7jOwWGvTOO YZpzwnryHvuLLlxWCiC9BIUFWoGzFef1H+OfBkO+X8XxhavKVXxg0UCDpwRDF1Gy b+GQK+kvGUFmnI6B0IhcqF7Z8oituj310TqG2R2F63MHqnkHI8y1UthY7BVRdmNy 30TFureq4Un6lTg39T7c1On5n5psLQHD -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:55 2025 by rpki-client