This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft File: Sp1OqbVF6hBQTTa2X6owSfmezUY.mft (raw, json) Hash identifier: 2HJ4Rb6hYleMiHcTYr49huO4iDJg0kGLDUlQ1J4scCc= Subject key identifier: 56:92:4A:50:E9:8C:0B:25:84:80:8A:BE:4C:75:EB:6F:A7:AB:9D:5A Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 101F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft Manifest number: 1013 Signing time: Sat 06 Dec 2025 16:56:16 +0000 Manifest this update: Sat 06 Dec 2025 16:56:16 +0000 Manifest next update: Sat 13 Dec 2025 16:56:16 +0000 Files and hashes: 1: Sp1OqbVF6hBQTTa2X6owSfmezUY.crl (hash: LCAeB6ZUwDmB8WRAOZU8MI7Dgn7OJ6E12THSd7Ocuk8=) 2: D34588789F8A11ECB8E03812C4F9AE02.roa (hash: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4127 (0x101f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Dec 6 16:56:16 2025 GMT Not After : Dec 13 16:56:16 2025 GMT Subject: CN=69346030-7c13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d2:86:a6:0a:be:aa:d7:d2:4f:5d:6d:bd:1c: 82:09:33:4b:2a:23:a8:6a:f8:c3:ad:a4:53:da:26: 91:6f:96:34:cf:da:68:4f:e4:a2:2e:ad:df:91:00: 67:51:59:b4:ad:da:e4:1f:3c:bf:f1:ed:4d:3b:50: 2a:4b:d3:14:db:a1:33:13:bd:50:d9:49:5d:be:0a: 83:3d:72:17:55:2d:98:aa:05:6d:41:f8:f6:ca:0e: 36:27:79:49:40:3c:e5:e8:de:c0:07:06:5d:82:6e: 1f:15:b5:13:96:16:a1:79:c4:46:b7:15:e7:fe:80: ad:b3:b2:e7:ec:a4:56:cf:a1:25:30:40:bb:d2:bc: 77:e0:d4:19:51:43:77:98:24:b1:6e:66:86:68:da: 8d:49:e8:66:2a:1f:a0:3c:c5:6a:32:26:87:bf:e3: 8f:de:a1:78:ab:1f:d4:5e:47:dc:12:64:9b:b9:5b: 1d:4d:d4:4f:2f:c0:47:c6:cd:6c:aa:83:b7:5e:89: 78:64:7a:0d:5d:10:52:ef:e6:79:ec:a5:a9:67:ff: a5:aa:62:30:58:78:80:04:6e:45:e2:72:40:48:aa: bc:bf:9d:c9:15:40:5a:70:e0:03:fb:33:c3:8b:4e: 9f:9d:f7:7a:82:71:cc:40:c1:44:47:b8:17:ba:62: f0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:92:4A:50:E9:8C:0B:25:84:80:8A:BE:4C:75:EB:6F:A7:AB:9D:5A X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:97:2c:95:d1:83:a8:0e:e9:c0:8e:16:57:54:ef:d9:1e:f9: f6:d7:c6:a7:62:27:f4:62:61:0e:20:85:b3:ad:4c:e5:26:be: ae:16:38:27:8b:33:f4:40:3a:ee:77:d7:b8:1f:f9:e3:9f:56: 52:c7:de:60:97:f4:17:38:5a:07:95:bc:1a:3d:fd:c6:58:76: 04:2a:9e:42:62:ce:ad:d5:92:78:f0:86:57:79:17:68:ee:1c: 60:1f:02:63:97:77:c9:e0:27:fc:3e:01:d5:1f:34:be:f1:09: b4:77:a0:c9:c4:9a:b4:68:77:05:71:7a:cc:ca:7f:ad:26:e4: 4a:b3:16:3f:ec:95:6a:5d:1b:58:e5:0d:6a:67:f8:a6:c0:a5: 39:da:2b:f6:ed:0c:7b:0f:09:72:b1:fe:e6:a9:48:4a:15:8b: a0:da:85:da:9b:54:d7:97:19:94:a9:3c:85:fd:3c:fc:44:bc: e7:e1:80:aa:fe:ef:66:61:5b:fd:0d:78:67:06:29:07:bd:3d: 66:8b:f0:da:e9:da:d3:db:5d:e5:17:91:e5:13:76:8c:8b:81: 09:18:3d:e2:9f:ef:49:91:c3:8a:dc:25:b7:40:7e:6c:c3:51: 39:8f:33:82:e7:52:85:33:ba:22:e9:c4:18:21:f9:ef:8b:af: 7f:97:11:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUxMjA2MTY1NjE2WhcNMjUxMjEzMTY1NjE2WjAYMRYwFAYD VQQDEw02OTM0NjAzMC03YzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNKGpgq+qtfST11tvRyCCTNLKiOoavjDraRT2iaRb5Y0z9poT+SiLq3fkQBn UVm0rdrkHzy/8e1NO1AqS9MU26EzE71Q2UldvgqDPXIXVS2YqgVtQfj2yg42J3lJ QDzl6N7ABwZdgm4fFbUTlhahecRGtxXn/oCts7Ln7KRWz6ElMEC70rx34NQZUUN3 mCSxbmaGaNqNSehmKh+gPMVqMiaHv+OP3qF4qx/UXkfcEmSbuVsdTdRPL8BHxs1s qoO3Xol4ZHoNXRBS7+Z57KWpZ/+lqmIwWHiABG5F4nJASKq8v53JFUBacOAD+zPD i06fnfd6gnHMQMFER7gXumLwzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaSSlDp jAslhICKvkx162+nq51aMB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RkFEMi84MzRBQzQ3ODU5QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZo QlFUVGEyWDZvd1NmbWV6VVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwlyyV0YOoDunAjhZXVO/ZHvn218anYif0YmEOIIWzrUzlJr6uFjgn izP0QDrud9e4H/njn1ZSx95gl/QXOFoHlbwaPf3GWHYEKp5CYs6t1ZJ48IZXeRdo 7hxgHwJjl3fJ4Cf8PgHVHzS+8Qm0d6DJxJq0aHcFcXrMyn+tJuRKsxY/7JVqXRtY 5Q1qZ/imwKU52iv27Qx7Dwlysf7mqUhKFYug2oXam1TXlxmUqTyF/Tz8RLzn4YCq /u9mYVv9DXhnBikHvT1mi/Da6drT213lF5HlE3aMi4EJGD3in+9JkcOK3CW3QH5s w1E5jzOC51KFM7oi6cQYIfnvi69/lxE8 -----END CERTIFICATE-----Generated at Sat Dec 6 21:27:46 2025 by rpki-client