This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft File: fd08hfmnH2JfzMEMqDHld3CbTz8.mft (raw, json) Hash identifier: EP9rOcI2iUZjlCIJEjcT5FWVLG+FXqtEEVoN3N6dlEs= Subject key identifier: 90:B3:96:D8:F1:7A:4A:9C:6E:EE:45:CA:81:4D:CA:7E:BD:31:60:C3 Authority key identifier: 7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F Certificate issuer: /CN=A9167B41/serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Certificate serial: 0352 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft Manifest number: 034E Signing time: Thu 04 Dec 2025 23:23:04 +0000 Manifest this update: Thu 04 Dec 2025 23:23:03 +0000 Manifest next update: Thu 11 Dec 2025 23:23:03 +0000 Files and hashes: 1: fd08hfmnH2JfzMEMqDHld3CbTz8.crl (hash: 4yAmlq2pcdxbc+bDioxmr+cheDVv8T6ZSbiY9SfMatQ=) 2: D24B4D42DF3E11EC83CCFE1EC4F9AE02.roa (hash: Cq6mdfvGMSMUVVy722vXaVlEzZ5zjpH7LRI1e0MUF1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 23:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 850 (0x352) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B41, serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Validity Not Before: Dec 4 23:23:03 2025 GMT Not After : Dec 11 23:23:03 2025 GMT Subject: CN=693217d7-42b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:39:33:77:2d:c3:6e:a5:ef:15:80:9b:d9:94: 7c:97:29:98:87:55:6e:35:2b:19:10:a6:e8:22:4a: 91:fc:41:3e:d7:8f:51:c1:4e:52:98:a8:5b:a3:d9: 58:f5:91:88:40:d4:e5:f2:fa:04:19:a6:09:17:71: e8:c8:c6:88:08:fc:4d:ff:22:62:2c:c5:b6:6b:2d: 94:b8:8d:0b:84:70:ff:c4:69:d4:51:3a:f7:f9:64: 9c:ed:0a:a2:13:80:fe:0b:01:19:ce:5a:f9:aa:77: 10:26:7e:a3:61:b9:02:c5:61:7a:b0:e4:0c:e6:41: 53:2b:b6:c2:fa:e8:c8:68:d1:53:32:ad:8c:4e:8a: 41:88:99:69:a4:79:34:c8:f4:ad:fe:ba:ba:7c:17: c7:c5:d5:fe:bc:c3:e1:9d:a8:35:41:15:2c:de:b2: e5:5c:92:e5:98:6d:77:5b:23:22:a4:b6:64:08:e9: f4:d4:03:77:c5:24:9e:d3:45:81:93:32:25:16:e1: 8d:85:9d:d3:e7:94:ba:c5:4d:3e:3c:27:6e:75:67: df:23:cb:00:3a:cd:52:97:06:ef:4c:64:cc:21:7a: ae:cb:fe:ee:6d:99:0d:55:dd:8c:d2:f5:85:74:8f: 26:18:7e:a8:5c:d4:86:1f:ec:65:6d:b6:eb:e8:7e: f6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B3:96:D8:F1:7A:4A:9C:6E:EE:45:CA:81:4D:CA:7E:BD:31:60:C3 X509v3 Authority Key Identifier: keyid:7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:8a:97:cb:ec:20:8b:53:f8:94:4e:6d:26:66:a5:b4:a4:20: 43:b0:01:17:fe:03:6d:f8:f0:37:11:65:a0:8f:e2:a6:c3:4a: 7b:e3:7c:b3:88:4a:2a:9c:03:39:3b:5f:03:57:28:f2:11:95: 38:93:27:b1:14:77:f3:1e:bd:53:93:f7:e0:2d:76:ca:16:bf: ba:ab:74:9b:82:bc:03:a5:57:fa:7b:b6:38:c5:14:da:aa:e6: aa:b0:66:1b:78:be:fc:7e:89:a6:0c:3a:0f:9a:be:5e:71:5b: fa:f2:ea:74:40:c7:1c:d6:83:95:e3:19:ec:5f:15:8e:ce:e9: f3:89:13:d2:7b:a3:68:af:cc:34:07:f6:40:2b:e1:75:3a:22: b4:b2:d9:b3:23:f8:b0:48:35:9e:f0:4e:e6:c1:1c:8e:e8:82: 59:58:4b:19:3e:c1:54:1a:a6:19:2d:0a:29:2b:06:62:1b:e2: 27:3a:53:0d:f2:95:4a:5e:f4:76:0d:d2:ff:40:4e:95:de:f2: d0:10:4d:46:0f:1c:a3:a7:87:94:0f:7f:63:56:01:af:96:3d: a8:ac:7e:db:a2:83:87:cb:66:a5:58:60:d8:82:46:4c:93:6c: ea:e4:52:55:4f:38:6f:9f:18:cc:86:4b:51:b2:1b:5a:65:35: 23:23:0e:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNDExMTAvBgNVBAUTKDdEREQzQzg1RjlBNzFGNjI1RkNDQzEwQ0E4MzFFNTc3 NzA5QjRGM0YwHhcNMjUxMjA0MjMyMzAzWhcNMjUxMjExMjMyMzAzWjAYMRYwFAYD VQQDEw02OTMyMTdkNy00MmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnjkzdy3DbqXvFYCb2ZR8lymYh1VuNSsZEKboIkqR/EE+149RwU5SmKhbo9lY 9ZGIQNTl8voEGaYJF3HoyMaICPxN/yJiLMW2ay2UuI0LhHD/xGnUUTr3+WSc7Qqi E4D+CwEZzlr5qncQJn6jYbkCxWF6sOQM5kFTK7bC+ujIaNFTMq2MTopBiJlppHk0 yPSt/rq6fBfHxdX+vMPhnag1QRUs3rLlXJLlmG13WyMipLZkCOn01AN3xSSe00WB kzIlFuGNhZ3T55S6xU0+PCdudWffI8sAOs1SlwbvTGTMIXquy/7ubZkNVd2M0vWF dI8mGH6oXNSGH+xlbbbr6H72SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCzltjx ekqcbu5FyoFNyn69MWDDMB8GA1UdIwQYMBaAFH3dPIX5px9iX8zBDKgx5Xdwm08/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I0MS9FNzkwRjlBQURG MzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgySmZ6TUVNcURIbGQzQ2JU ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkMDhoZm1uSDJKZnpNRU1xREhsZDNDYlR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0I0MS9FNzkwRjlBQURGMzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgy SmZ6TUVNcURIbGQzQ2JUejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBipfL7CCLU/iUTm0mZqW0pCBDsAEX/gNt+PA3EWWgj+Kmw0p743yz iEoqnAM5O18DVyjyEZU4kyexFHfzHr1Tk/fgLXbKFr+6q3SbgrwDpVf6e7Y4xRTa quaqsGYbeL78fommDDoPmr5ecVv68up0QMcc1oOV4xnsXxWOzunziRPSe6Nor8w0 B/ZAK+F1OiK0stmzI/iwSDWe8E7mwRyO6IJZWEsZPsFUGqYZLQopKwZiG+InOlMN 8pVKXvR2DdL/QE6V3vLQEE1GDxyjp4eUD39jVgGvlj2orH7booOHy2alWGDYgkZM k2zq5FJVTzhvnxjMhktRshtaZTUjIw6r -----END CERTIFICATE-----Generated at Sat Dec 6 22:26:01 2025 by rpki-client