This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: t+v5/o4rDES03AC9PLO+MWSX4BnHEs2OlWKIfnfIoZo= Subject key identifier: 40:A1:F5:34:FA:92:09:80:72:3A:2F:E6:1D:BA:A5:D1:57:E8:06:EC Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 01CE Signing time: Fri 05 Dec 2025 01:07:49 +0000 Manifest this update: Fri 05 Dec 2025 01:07:49 +0000 Manifest next update: Fri 12 Dec 2025 01:07:49 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: uOiB5LxTK1WJAzHFZ+xOUfGECCKJiUd+xaU+vK2pIhk=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Dec 5 01:07:49 2025 GMT Not After : Dec 12 01:07:49 2025 GMT Subject: CN=69323065-fc27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:4f:06:61:ea:ea:66:79:58:f3:7a:ae:09: 88:fd:e9:27:e2:ca:ae:7a:26:38:87:ee:31:75:fd: c5:37:53:f6:45:cf:a4:e1:72:4e:46:02:fe:ed:a0: 2c:c5:9a:e6:a7:fe:e7:cb:46:b2:5d:c4:6e:e2:36: 3f:fc:98:2a:8b:e1:2f:fe:aa:f3:20:ae:b4:39:ec: 28:a9:36:e7:0b:1c:36:a9:a7:5a:46:80:1b:69:01: 36:4e:95:b9:ff:4d:eb:17:6f:f9:10:01:e2:fc:15: 29:22:2e:05:c8:30:b2:79:c2:1e:a7:91:b2:e9:13: 6d:4b:34:15:6d:37:5a:2a:26:46:69:39:2d:6c:42: 68:a7:dc:92:15:b4:77:ca:c6:fa:43:96:9b:c1:a6: 0b:97:c7:8d:87:4a:91:98:a0:f1:15:bb:e8:82:4d: 8b:35:38:d7:d5:82:ce:ea:8e:a7:46:46:79:9f:68: 6a:4f:79:7e:c3:4d:98:55:bc:ba:19:86:62:e8:12: 16:7b:3c:0c:25:e4:63:12:52:ff:09:1a:af:a2:61: 12:de:05:ce:ea:5d:bc:91:0a:47:8b:72:19:26:d6: 46:bc:b1:2a:03:fd:27:81:fb:41:28:17:29:43:fe: 9d:b7:3c:d6:90:fd:6e:cd:49:53:c4:2b:ef:a6:f2: 2c:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:A1:F5:34:FA:92:09:80:72:3A:2F:E6:1D:BA:A5:D1:57:E8:06:EC X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:18:a4:00:6a:6e:05:d1:7b:d8:95:8d:8c:d6:80:3f:0c:7a: d4:dd:39:98:91:50:9a:68:97:7a:d4:53:09:00:47:48:ca:7d: b4:a4:75:fa:e5:e7:00:cf:5f:06:b0:dd:80:5a:1a:fb:12:ff: 43:95:3c:aa:ff:d5:cf:fe:e5:e4:8a:bf:48:1e:ce:32:47:30: f3:2a:a7:58:fc:77:59:0b:fd:74:a3:b6:ff:0e:08:e6:ab:7d: bb:e8:92:a1:20:05:20:2c:ae:c8:61:56:ab:87:3d:1f:d3:43: 69:66:b7:1a:09:0c:73:58:0f:78:a7:f6:52:c0:ca:f1:e9:2e: e6:fc:dd:36:0f:a0:8c:64:b6:44:cf:8e:fb:6f:67:db:a4:43: 9b:69:6e:f2:25:3e:92:4f:77:50:e9:7f:e1:5b:5c:d8:05:96: ee:1b:df:f0:4f:67:f7:b9:d2:61:1e:71:f4:66:2b:a6:ee:2f: 5e:86:72:9b:ed:41:95:26:8e:af:d2:c5:d7:6d:c8:74:09:4b: 43:49:2a:d8:bf:f0:97:bd:f8:04:a7:40:d2:d4:e9:70:af:f7: b5:ea:bc:ce:e1:e1:12:f4:64:0f:cc:f0:1e:3b:d5:2e:d1:f3: d3:44:76:72:26:98:de:6b:c9:24:ed:80:a4:4a:70:17:6b:44: 8d:ab:df:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUxMjA1MDEwNzQ5WhcNMjUxMjEyMDEwNzQ5WjAYMRYwFAYD VQQDEw02OTMyMzA2NS1mYzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNRPBmHq6mZ5WPN6rgmI/ekn4squeiY4h+4xdf3FN1P2Rc+k4XJORgL+7aAs xZrmp/7ny0ayXcRu4jY//Jgqi+Ev/qrzIK60OewoqTbnCxw2qadaRoAbaQE2TpW5 /03rF2/5EAHi/BUpIi4FyDCyecIep5Gy6RNtSzQVbTdaKiZGaTktbEJop9ySFbR3 ysb6Q5abwaYLl8eNh0qRmKDxFbvogk2LNTjX1YLO6o6nRkZ5n2hqT3l+w02YVby6 GYZi6BIWezwMJeRjElL/CRqvomES3gXO6l28kQpHi3IZJtZGvLEqA/0ngftBKBcp Q/6dtzzWkP1uzUlTxCvvpvIsHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECh9TT6 kgmAcjov5h26pdFX6AbsMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZGKQAam4F0XvYlY2M1oA/DHrU3TmYkVCaaJd61FMJAEdIyn20pHX6 5ecAz18GsN2AWhr7Ev9DlTyq/9XP/uXkir9IHs4yRzDzKqdY/HdZC/10o7b/Dgjm q3276JKhIAUgLK7IYVarhz0f00NpZrcaCQxzWA94p/ZSwMrx6S7m/N02D6CMZLZE z477b2fbpEObaW7yJT6ST3dQ6X/hW1zYBZbuG9/wT2f3udJhHnH0Zium7i9ehnKb 7UGVJo6v0sXXbch0CUtDSSrYv/CXvfgEp0DS1Olwr/e16rzO4eES9GQPzPAeO9Uu 0fPTRHZyJpjea8kk7YCkSnAXa0SNq98f -----END CERTIFICATE-----Generated at Sat Dec 6 21:46:01 2025 by rpki-client