This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: TYaZdr8K83cgoiILoGK4Pcz4I3lHwk+Y9fkGo0nX7IQ= Subject key identifier: 14:B2:56:23:26:F2:43:4B:68:93:13:3E:D6:15:17:88:BC:AF:AC:F6 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: 86 Signing time: Fri 05 Dec 2025 04:34:52 +0000 Manifest this update: Fri 05 Dec 2025 04:34:51 +0000 Manifest next update: Fri 12 Dec 2025 04:34:51 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: DwhdbH0pdY2yT89GerXo/xVRI0XjXIEQFNBQwR5/yGQ=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Dec 5 04:34:51 2025 GMT Not After : Dec 12 04:34:51 2025 GMT Subject: CN=693260ec-69a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:4e:59:b4:0c:23:95:82:1e:2b:bb:80:07: f4:ea:3e:1a:bb:f3:e2:4d:c1:95:82:b1:d6:6a:6a: 16:2c:4b:63:03:b3:20:df:f1:50:db:53:ed:53:23: f5:d5:88:f4:c6:4d:07:d0:49:d7:b9:8c:d7:9b:ab: bb:7d:fa:e8:03:b3:85:7e:45:bd:b0:72:49:22:5e: 74:5b:46:f0:5e:68:85:94:f1:09:82:22:2c:62:fd: bd:53:da:ce:c6:86:2b:da:1f:30:90:9b:b6:e6:26: 54:4d:af:0f:8e:80:28:c3:f2:23:4b:0f:68:dc:a6: a0:2e:14:87:57:b8:8a:9b:c5:9e:fb:a7:dc:d8:ae: 9e:e4:ad:4e:2f:a6:1f:58:1b:93:47:b8:51:57:bc: e0:c9:cd:64:1d:d5:09:fc:f3:89:e0:d7:e6:99:43: 52:21:ae:9c:e1:e9:11:ae:85:21:21:f1:4f:51:10: 04:9d:19:1d:25:30:d3:af:de:d2:81:37:e8:2d:46: e5:0a:20:a5:f5:6c:6e:3f:32:06:f1:f5:00:bc:10: c0:be:05:ee:04:42:7f:d3:35:24:88:be:09:c2:19: 1e:0e:37:7a:93:7a:29:c1:5a:41:56:ba:71:91:14: 00:f7:b2:19:e6:93:57:36:8c:dd:18:d7:9b:6d:19: 81:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:B2:56:23:26:F2:43:4B:68:93:13:3E:D6:15:17:88:BC:AF:AC:F6 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:45:15:0b:69:19:19:80:57:83:ee:bd:2d:ae:0c:3b:c5:68: 01:d5:c4:35:81:8c:4f:6b:ef:00:c1:c0:bc:6e:c2:73:93:c2: 71:66:6d:39:d2:18:34:c4:f3:40:96:54:02:7e:0e:2f:a6:fd: 1d:18:11:1b:97:51:2d:2e:34:8c:dd:a9:c8:eb:2e:a4:b2:b1: 33:59:7c:54:a2:b3:20:e1:0a:c9:f2:a1:6f:56:4f:b5:db:c1: 3c:dc:09:c9:6d:0f:b7:bc:fc:be:df:4b:6c:87:90:2d:e2:3f: 16:a5:17:41:82:04:d6:c5:9b:c6:2c:0e:7f:30:42:cf:b0:63: 97:c2:79:81:a6:7b:6f:b9:49:2d:96:1d:1b:d0:7d:c9:cb:fd: 40:2e:53:f6:e9:d2:a1:3f:b7:df:ff:aa:7f:66:bd:fc:79:c5: 73:6e:7b:c4:93:48:18:76:20:d7:6c:52:08:16:c9:25:92:c3: 0c:c8:18:8f:74:fd:79:f5:3d:21:bd:01:87:f4:d8:a1:2d:09: bf:c1:6f:63:2a:34:8f:52:7e:7d:9b:fe:bc:b8:8e:44:75:a5: 68:c1:ce:66:bf:65:59:6e:a6:da:1a:0b:3a:92:97:73:a9:f3: 9d:b0:be:65:f2:8e:6f:2e:9e:16:66:20:ad:22:50:d3:92:62: b2:b6:1d:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKEIwMzQxQzM0M0ZFMTUyNUY3NkM5Mjk5NjEwQ0EwRTc4 RTkzRTg3QzMwHhcNMjUxMjA1MDQzNDUxWhcNMjUxMjEyMDQzNDUxWjAYMRYwFAYD VQQDEw02OTMyNjBlYy02OWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzFOWbQMI5WCHiu7gAf06j4au/PiTcGVgrHWamoWLEtjA7Mg3/FQ21PtUyP1 1Yj0xk0H0EnXuYzXm6u7ffroA7OFfkW9sHJJIl50W0bwXmiFlPEJgiIsYv29U9rO xoYr2h8wkJu25iZUTa8PjoAow/IjSw9o3KagLhSHV7iKm8We+6fc2K6e5K1OL6Yf WBuTR7hRV7zgyc1kHdUJ/POJ4NfmmUNSIa6c4ekRroUhIfFPURAEnRkdJTDTr97S gTfoLUblCiCl9WxuPzIG8fUAvBDAvgXuBEJ/0zUkiL4JwhkeDjd6k3opwVpBVrpx kRQA97IZ5pNXNozdGNebbRmBpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSyViMm 8kNLaJMTPtYVF4i8r6z2MB8GA1UdIwQYMBaAFLA0HDQ/4VJfdskplhDKDnjpPofD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80MkZDM0Q4QTA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVsOTJ5U21XRU1vT2VPay1o OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0ZCQS80MkZDM0Q4QTA0OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9zRFFjTkRfaFVs OTJ5U21XRU1vT2VPay1oOE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgRRULaRkZgFeD7r0trgw7xWgB1cQ1gYxPa+8AwcC8bsJzk8JxZm05 0hg0xPNAllQCfg4vpv0dGBEbl1EtLjSM3anI6y6ksrEzWXxUorMg4QrJ8qFvVk+1 28E83AnJbQ+3vPy+30tsh5At4j8WpRdBggTWxZvGLA5/MELPsGOXwnmBpntvuUkt lh0b0H3Jy/1ALlP26dKhP7ff/6p/Zr38ecVzbnvEk0gYdiDXbFIIFsklksMMyBiP dP159T0hvQGH9NihLQm/wW9jKjSPUn59m/68uI5EdaVowc5mv2VZbqbaGgs6kpdz qfOdsL5l8o5vLp4WZiCtIlDTkmKyth2Y -----END CERTIFICATE-----Generated at Sat Dec 6 17:08:04 2025 by rpki-client