This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft File: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft (raw, json) Hash identifier: BkS9RcXkY0/7LcsynUAABEsDhKM7NqNGQXIjfDL254o= Subject key identifier: 68:7F:52:B9:0F:A1:50:98:35:3F:37:44:7D:1E:23:D8:79:9A:9C:89 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 039F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft Manifest number: 0397 Signing time: Sat 06 Dec 2025 23:21:58 +0000 Manifest this update: Sat 06 Dec 2025 23:21:57 +0000 Manifest next update: Sat 13 Dec 2025 23:21:57 +0000 Files and hashes: 1: 0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl (hash: rM6bdi9il/BXtGfovbj6bsneqLJ1lKDPrYKs3a7uEfI=) 2: A26E4F16C13411ECA5838429C4F9AE02.roa (hash: iCw79y4BWdxeg4SkApinNCBIqylm75Jz7mdMCrDh0eI=) 3: A1CB8D62C13411ECA5838429C4F9AE02.roa (hash: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 23:21:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 927 (0x39f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: Dec 6 23:21:57 2025 GMT Not After : Dec 13 23:21:57 2025 GMT Subject: CN=6934ba95-67e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:75:58:aa:52:6a:7f:44:d5:05:8e:2a:b6:af: d1:d3:92:fd:17:b0:05:50:12:ea:4a:bd:d7:aa:02: 75:53:a0:cb:d8:01:e3:73:ae:50:cd:26:86:b6:97: 78:20:d2:f3:51:12:98:55:09:bb:84:42:9d:78:09: 3c:fa:55:2c:b4:9c:49:32:28:25:9b:ef:72:b8:a1: 8f:5f:62:f7:9c:e0:5b:f0:52:29:9a:bb:7e:86:ca: 66:21:10:05:62:8b:e4:6b:ce:3b:6f:15:b0:14:f3: 6b:7a:01:ac:7f:54:bc:c3:91:12:34:ec:0b:b8:a4: dc:13:a7:6a:25:81:1f:e2:cf:ba:78:46:87:83:8a: 01:e1:69:70:88:02:4a:a5:92:f0:b8:09:16:2d:ee: 4b:0a:1d:a7:7b:36:d3:cf:60:b6:c9:19:4e:7a:fa: 67:80:72:34:0f:28:be:11:cd:dc:db:71:6f:0f:df: 28:ec:74:b2:e8:80:76:87:78:59:38:67:8a:1e:0f: 27:17:2b:0a:f2:d6:20:73:42:57:fb:1f:e0:44:a8: 87:45:17:30:b0:d1:f7:9b:13:eb:d9:ed:fa:b7:66: 59:ae:55:09:5c:88:0a:32:a8:c7:9d:c9:a6:2e:ed: 8d:73:f2:98:9d:37:80:73:7f:0a:28:b0:e7:5d:ec: e1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7F:52:B9:0F:A1:50:98:35:3F:37:44:7D:1E:23:D8:79:9A:9C:89 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:f4:82:9a:1e:32:bc:5f:83:aa:8e:36:cd:09:f2:e1:cb:24: d1:e1:fe:59:ea:31:d6:09:29:a4:12:ae:50:51:0a:fa:1e:8e: 0d:92:e2:91:1a:4a:fd:b7:ff:59:6d:fa:39:26:ba:19:d3:f6: 56:2b:7a:2c:00:76:94:a8:e9:48:b5:17:1f:d3:0c:67:59:39: b7:00:3a:0b:c3:c6:f9:13:43:1d:0c:ce:4e:16:12:f7:b3:06: b7:c7:12:1f:fb:02:93:d3:08:4c:a6:60:20:02:e4:b1:fc:b0: c0:56:a7:c8:42:6a:da:5e:dc:b5:21:1c:73:4a:99:e3:b2:19: 0a:4d:e3:12:43:f0:f0:bd:68:85:60:ca:1a:d3:4d:a1:03:e0: 85:c6:bd:e0:8d:01:7b:48:bd:97:52:46:ca:cf:42:f0:09:37: a9:54:da:c6:83:1d:dd:42:0b:94:7e:78:41:64:01:f6:82:db: eb:e6:2c:9f:35:50:6c:94:6b:04:0c:af:80:4c:76:97:68:9d: 0a:72:36:33:a2:bc:07:c7:8c:5a:82:d4:cf:24:08:09:31:2b: d9:2c:06:da:c2:60:47:94:87:99:ce:47:da:1f:66:ae:ab:05: 52:70:ae:20:2e:f8:bc:cb:2d:33:bc:d5:41:d4:fa:ed:46:2c: 70:1b:6e:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUxMjA2MjMyMTU3WhcNMjUxMjEzMjMyMTU3WjAYMRYwFAYD VQQDEw02OTM0YmE5NS02N2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHVYqlJqf0TVBY4qtq/R05L9F7AFUBLqSr3XqgJ1U6DL2AHjc65QzSaGtpd4 INLzURKYVQm7hEKdeAk8+lUstJxJMiglm+9yuKGPX2L3nOBb8FIpmrt+hspmIRAF Yovka847bxWwFPNregGsf1S8w5ESNOwLuKTcE6dqJYEf4s+6eEaHg4oB4WlwiAJK pZLwuAkWLe5LCh2nezbTz2C2yRlOevpngHI0Dyi+Ec3c23FvD98o7HSy6IB2h3hZ OGeKHg8nFysK8tYgc0JX+x/gRKiHRRcwsNH3mxPr2e36t2ZZrlUJXIgKMqjHncmm Lu2Nc/KYnTeAc38KKLDnXezhsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGh/UrkP oVCYNT83RH0eI9h5mpyJMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDM5Qi85OUY1NDQ3OEMxMzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUt V0ttYUhtYzlPdUhGMzl5NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr9IKaHjK8X4OqjjbNCfLhyyTR4f5Z6jHWCSmkEq5QUQr6Ho4NkuKR Gkr9t/9Zbfo5JroZ0/ZWK3osAHaUqOlItRcf0wxnWTm3ADoLw8b5E0MdDM5OFhL3 swa3xxIf+wKT0whMpmAgAuSx/LDAVqfIQmraXty1IRxzSpnjshkKTeMSQ/DwvWiF YMoa002hA+CFxr3gjQF7SL2XUkbKz0LwCTepVNrGgx3dQguUfnhBZAH2gtvr5iyf NVBslGsEDK+ATHaXaJ0KcjYzorwHx4xagtTPJAgJMSvZLAbawmBHlIeZzkfaH2au qwVScK4gLvi8yy0zvNVB1PrtRixwG26v -----END CERTIFICATE-----Generated at Sun Dec 7 08:21:08 2025 by rpki-client