This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: v4EL54sIyeIvXh2OvIWIGQ7pfHwpkXZ/2gIeS0nt8mE= Subject key identifier: 43:8C:32:F7:88:8F:1B:E1:7D:65:49:ED:52:A8:BB:5A:AA:E4:DB:1B Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 082E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 0816 Signing time: Thu 04 Dec 2025 20:06:10 +0000 Manifest this update: Thu 04 Dec 2025 20:06:09 +0000 Manifest next update: Thu 11 Dec 2025 20:06:09 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: E0lsdYQCQZQE60Qyfamv5+F2cV1bPXiwNeXFZx8d+vA=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: qMmeoWKTXO/QLTaIlepiWqpBCY/bnd052/G5bGpuqOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 20:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2094 (0x82e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Dec 4 20:06:09 2025 GMT Not After : Dec 11 20:06:09 2025 GMT Subject: CN=6931e9b1-cd52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4f:10:d7:fe:32:a5:28:00:3f:7e:4d:c6:4d: c6:20:df:b7:ab:95:54:2e:67:ee:47:c6:18:80:db: 63:13:de:73:48:73:be:42:e9:f2:f5:9e:1d:dc:9f: 4a:b8:84:88:6f:55:51:5e:2c:63:48:f2:89:6d:ca: bb:13:10:01:7a:7d:7d:91:27:c5:74:46:f6:6a:54: af:6a:fd:96:af:e0:fa:5c:83:97:54:d5:dc:1a:92: 72:02:b3:c6:0f:f2:b5:df:ef:4e:ce:60:17:00:aa: b0:3f:42:5c:41:9e:68:86:eb:8b:88:70:6f:32:16: 47:e0:94:c1:cb:e2:d1:34:e3:f0:2a:be:ae:7d:c3: a2:6c:13:ed:ff:9e:ae:b9:ff:d7:fa:52:bb:7e:5c: 67:c4:2e:b9:e3:4f:5f:78:34:d5:78:5b:01:fe:aa: 6e:20:00:14:81:1a:e7:64:c4:27:52:c0:d4:92:75: f5:2b:90:88:6b:4d:7c:87:ad:a0:54:c9:99:8f:e8: 09:27:36:89:d4:a1:39:70:84:a2:3d:b9:b1:7c:b7: 90:c7:ca:8a:62:01:58:48:8a:e3:74:56:17:36:24: 3d:c0:eb:58:97:63:ce:d1:64:9d:8c:f2:32:07:00: 6b:d8:5a:d9:7a:47:75:a2:cd:37:91:6f:ff:00:78: 39:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:8C:32:F7:88:8F:1B:E1:7D:65:49:ED:52:A8:BB:5A:AA:E4:DB:1B X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:af:e1:a5:55:29:8f:a8:99:84:cb:78:1f:58:70:39:f9:c7: 2a:db:03:a1:14:bc:97:3a:fd:88:b7:dc:77:7a:29:b9:a8:2b: 1c:a1:f6:88:65:57:05:54:64:c9:ce:60:47:5d:99:06:8d:23: 48:ce:a3:e0:e4:39:92:15:e7:5f:20:16:bf:06:7d:7f:e6:05: a8:4f:51:c5:56:e7:d8:9d:d3:5f:5a:c4:59:fd:64:14:8a:e9: ba:1f:46:c3:ea:2e:31:30:b2:f9:41:9d:a6:3b:f7:3d:52:44: 62:b0:4a:ac:3a:22:de:72:af:88:02:3d:6f:18:0d:10:f9:7c: 4a:3b:f5:4f:a0:eb:11:14:88:a8:80:54:12:b5:0c:67:81:02: d6:9f:f2:21:4d:f6:cb:64:0d:a4:03:1d:9b:92:b3:f7:bb:cb: 0d:d5:57:9f:ca:84:dc:68:b2:81:21:e2:75:98:34:d8:02:ba: 12:3b:93:e3:28:0e:d0:64:2f:49:1f:2d:84:ef:9a:33:8c:4a: d3:3a:84:ef:2c:7f:72:df:8a:b6:71:81:73:8d:b4:bb:8b:23: 4d:63:36:74:12:39:a6:93:9a:a6:28:16:9c:88:9f:2b:08:85: 5f:b3:a3:25:4f:84:c8:b3:a0:8a:1d:d6:2e:28:74:16:a6:55: 1f:30:28:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUxMjA0MjAwNjA5WhcNMjUxMjExMjAwNjA5WjAYMRYwFAYD VQQDEw02OTMxZTliMS1jZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9U8Q1/4ypSgAP35Nxk3GIN+3q5VULmfuR8YYgNtjE95zSHO+Quny9Z4d3J9K uISIb1VRXixjSPKJbcq7ExABen19kSfFdEb2alSvav2Wr+D6XIOXVNXcGpJyArPG D/K13+9OzmAXAKqwP0JcQZ5ohuuLiHBvMhZH4JTBy+LRNOPwKr6ufcOibBPt/56u uf/X+lK7flxnxC65409feDTVeFsB/qpuIAAUgRrnZMQnUsDUknX1K5CIa018h62g VMmZj+gJJzaJ1KE5cISiPbmxfLeQx8qKYgFYSIrjdFYXNiQ9wOtYl2PO0WSdjPIy BwBr2FrZekd1os03kW//AHg5vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOMMveI jxvhfWVJ7VKou1qq5NsbMB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgr+GlVSmPqJmEy3gfWHA5+ccq2wOhFLyXOv2It9x3eim5qCscofaI ZVcFVGTJzmBHXZkGjSNIzqPg5DmSFedfIBa/Bn1/5gWoT1HFVufYndNfWsRZ/WQU ium6H0bD6i4xMLL5QZ2mO/c9UkRisEqsOiLecq+IAj1vGA0Q+XxKO/VPoOsRFIio gFQStQxngQLWn/IhTfbLZA2kAx2bkrP3u8sN1VefyoTcaLKBIeJ1mDTYAroSO5Pj KA7QZC9JHy2E75ozjErTOoTvLH9y34q2cYFzjbS7iyNNYzZ0Ejmmk5qmKBaciJ8r CIVfs6MlT4TIs6CKHdYuKHQWplUfMCjF -----END CERTIFICATE-----Generated at Sat Dec 6 18:11:43 2025 by rpki-client