This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft File: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft (raw, json) Hash identifier: woOr78LTMA6ECS11mKkn8twy1IneRnB8lp1fyMzhhuc= Subject key identifier: 4C:C3:9E:0B:AE:8F:77:8E:07:16:D4:50:DC:D9:68:D8:0D:34:5F:75 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft Manifest number: F0 Signing time: Fri 05 Dec 2025 03:22:24 +0000 Manifest this update: Fri 05 Dec 2025 03:22:23 +0000 Manifest next update: Fri 12 Dec 2025 03:22:23 +0000 Files and hashes: 1: 5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl (hash: o1MHJaJBA/uDOgqVOd6F3tTV1PU7w7xDyltKESU7UEY=) 2: 4D06CD2C667411EF8E723587C4F9AE02.roa (hash: 4PdtbIsL2ZotyQ7lOujn962oNOjC34OWUPtAk2nb5/I=) 3: 4CA4BE8E667411EF8E723587C4F9AE02.roa (hash: 8qwHnAzkWpQMSqbxW4gRTYW6uWniUVjWaHfJJJJlxJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8, serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Dec 5 03:22:23 2025 GMT Not After : Dec 12 03:22:23 2025 GMT Subject: CN=69324fef-8e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:90:81:74:7f:26:89:ec:2b:c2:f1:97:cd:8f: 7d:df:05:49:e3:be:0d:35:a6:a6:1a:f4:4c:81:e6: b0:b9:de:e5:1b:e4:a8:e1:01:2c:90:df:32:22:a3: 71:ba:64:dd:05:d3:00:5f:76:ca:cf:2e:b4:38:af: 36:c1:a2:3d:a7:34:8f:78:d0:58:66:65:04:a1:a7: d4:c4:19:5d:ec:e2:7b:52:44:88:21:76:83:dd:db: da:6a:90:1a:36:3c:97:fe:dd:0b:ce:61:9d:ae:04: 03:cf:26:e2:65:73:4d:12:90:23:5a:55:f6:72:d1: 91:64:64:61:5d:8b:91:96:ec:6f:d1:f7:8e:d0:74: fe:e1:f5:24:94:a4:e7:cd:c5:0d:b1:55:74:4b:61: 32:de:b9:d9:a5:db:e0:01:37:d4:af:44:2a:f9:15: af:f8:a9:cc:4a:a1:0e:1a:8a:97:8e:69:84:55:21: 99:91:cd:ea:6f:e9:bc:9c:70:d7:78:f5:c9:c7:b7: d9:5e:60:15:d8:82:56:44:77:fd:27:15:67:e7:11: 61:b3:7d:3f:d9:9a:64:e0:1a:b2:20:6c:35:63:1a: e2:04:4f:65:64:51:0c:2e:ea:b7:fd:9c:a6:74:0f: 76:25:23:8c:b9:d1:15:21:db:f2:87:4a:ce:4a:f1: 86:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C3:9E:0B:AE:8F:77:8E:07:16:D4:50:DC:D9:68:D8:0D:34:5F:75 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e7:9e:35:87:71:f4:c5:5c:e4:cb:4e:09:33:67:e0:50:15:93: 9f:31:c3:5c:d4:2b:42:cb:59:db:b9:03:39:09:37:08:e2:d4: a7:68:06:47:f0:fa:18:05:32:7c:2b:9a:b8:9e:37:38:a4:d8: f7:a8:91:ee:a5:db:8b:80:8a:21:77:b3:d7:c7:64:3c:ef:ff: d7:30:63:e0:23:e0:73:b0:f8:15:6c:98:1b:8d:4a:e2:f4:b6: 7d:94:a4:79:04:91:04:46:97:e2:61:43:89:5a:48:88:fe:a3: 57:4f:4e:2a:1a:1e:24:c7:81:07:cf:b3:1d:4f:1f:65:cf:3c: 64:02:2f:e3:92:49:a3:0c:45:88:ec:39:0a:43:15:77:d1:68: a4:88:47:c2:26:37:49:44:f2:01:8d:cd:38:66:03:dd:c3:c3: 0c:51:8a:9e:cb:f1:8d:17:35:6c:2d:87:95:01:82:dd:2d:14: 53:5d:03:1c:0e:0d:28:74:bb:b0:4f:20:20:00:da:b4:14:92: 78:be:19:2a:bc:31:58:54:97:68:01:00:56:94:40:22:60:2a: a7:1c:90:31:7d:e1:cf:9f:3a:13:56:f2:d8:09:aa:ea:d8:8e: f8:5c:98:c8:c9:f1:db:37:ab:3a:b9:1f:83:16:78:b5:c3:6c: 77:5a:89:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBERDgxMTAvBgNVBAUTKEU2QjU0RDAyN0NFMzQ5OEJGMzVFNEQwNjVCQzQ3OEE5 MzZDMTYxNjkwHhcNMjUxMjA1MDMyMjIzWhcNMjUxMjEyMDMyMjIzWjAYMRYwFAYD VQQDEw02OTMyNGZlZi04ZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5CBdH8miewrwvGXzY993wVJ474NNaamGvRMgeawud7lG+So4QEskN8yIqNx umTdBdMAX3bKzy60OK82waI9pzSPeNBYZmUEoafUxBld7OJ7UkSIIXaD3dvaapAa NjyX/t0LzmGdrgQDzybiZXNNEpAjWlX2ctGRZGRhXYuRluxv0feO0HT+4fUklKTn zcUNsVV0S2Ey3rnZpdvgATfUr0Qq+RWv+KnMSqEOGoqXjmmEVSGZkc3qb+m8nHDX ePXJx7fZXmAV2IJWRHf9JxVn5xFhs30/2Zpk4BqyIGw1YxriBE9lZFEMLuq3/Zym dA92JSOMudEVIdvyh0rOSvGGowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzDnguu j3eOBxbUUNzZaNgNNF91MB8GA1UdIwQYMBaAFOa1TQJ840mL815NBlvEeKk2wWFp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEREOC9BNjZBNzVFRTY1 QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZdnpYazBHVzhSNHFUYkJZ V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEREOC9BNjZBNzVFRTY1QkIxMUVGQUZBMzJGODJDNEY5QUUwMi81clZOQW56alNZ dnpYazBHVzhSNHFUYkJZV2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDnnjWHcfTFXOTLTgkzZ+BQFZOfMcNc1CtCy1nbuQM5CTcI4tSnaAZH 8PoYBTJ8K5q4njc4pNj3qJHupduLgIohd7PXx2Q87//XMGPgI+BzsPgVbJgbjUri 9LZ9lKR5BJEERpfiYUOJWkiI/qNXT04qGh4kx4EHz7MdTx9lzzxkAi/jkkmjDEWI 7DkKQxV30WikiEfCJjdJRPIBjc04ZgPdw8MMUYqey/GNFzVsLYeVAYLdLRRTXQMc Dg0odLuwTyAgANq0FJJ4vhkqvDFYVJdoAQBWlEAiYCqnHJAxfeHPnzoTVvLYCarq 2I74XJjIyfHbN6s6uR+DFni1w2x3Wokj -----END CERTIFICATE-----Generated at Sun Dec 7 05:10:09 2025 by rpki-client