This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft File: vmOANw9kBuY_dG-vUrxQHsTQvVI.mft (raw, json) Hash identifier: HN3l8Jb3JuUWqlebec8F1qdgx/iLt5W/cXshKyYzumg= Subject key identifier: 5B:44:C0:0D:19:A4:69:9F:86:66:E3:09:7C:9D:A3:2A:2F:41:D3:0D Authority key identifier: BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 Certificate issuer: /CN=A9171B8D/serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft Manifest number: 87 Signing time: Fri 05 Dec 2025 04:34:17 +0000 Manifest this update: Fri 05 Dec 2025 04:34:16 +0000 Manifest next update: Fri 12 Dec 2025 04:34:16 +0000 Files and hashes: 1: vmOANw9kBuY_dG-vUrxQHsTQvVI.crl (hash: P43n0DFgkmCs/hq7qjDr2e71AZ4+0Ogsi9WlcL3Y21w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:34:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171B8D, serialNumber=BE6380370F6406E63F746FAF52BC501EC4D0BD52 Validity Not Before: Dec 5 04:34:16 2025 GMT Not After : Dec 12 04:34:16 2025 GMT Subject: CN=693260c9-b59c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:33:ef:62:e8:88:7f:e2:a2:81:b6:b3:72: 90:3c:82:18:3e:f8:15:a7:93:ec:79:58:fa:8a:fc: 5e:cb:95:06:ac:a9:6e:2b:f3:fe:9f:de:2c:ad:ca: 37:77:62:69:05:0d:4b:32:7e:bd:a9:da:68:e0:70: ee:0a:03:c6:a9:c5:0e:4a:d3:01:5f:61:92:c1:7a: ec:98:dd:6c:cc:34:e2:1b:33:4d:88:e1:66:c4:3c: db:8f:71:4e:ce:e7:c4:9e:68:76:8c:f8:8a:4c:b8: 1b:48:65:3f:af:74:da:3a:d3:8d:1b:7d:7d:13:f7: c6:26:ef:88:cf:22:98:47:93:54:e8:1e:90:aa:ff: 13:7a:d7:0d:f6:27:0e:59:c2:48:7d:33:be:08:d2: 63:92:8c:96:a2:7a:63:6c:db:f4:a1:50:b1:2b:db: 5d:b2:cc:7d:d5:31:f7:02:64:f1:7b:19:8d:dc:44: a6:a5:90:4e:6b:b4:73:10:c8:df:af:87:72:ad:68: 6e:26:09:8a:37:66:70:58:c4:a0:fa:2e:07:b1:e9: 59:e2:56:4a:6c:66:ad:15:88:ce:14:3b:e7:5c:ad: 4c:a3:0d:04:28:b9:25:6e:ae:23:c3:7a:f4:4f:47: 79:6b:9b:05:ef:06:5f:b0:41:ad:65:3e:f7:1c:0d: 57:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:44:C0:0D:19:A4:69:9F:86:66:E3:09:7C:9D:A3:2A:2F:41:D3:0D X509v3 Authority Key Identifier: keyid:BE:63:80:37:0F:64:06:E6:3F:74:6F:AF:52:BC:50:1E:C4:D0:BD:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vmOANw9kBuY_dG-vUrxQHsTQvVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171B8D/1CF9A87A03D111F0B234BC15C4F9AE02/vmOANw9kBuY_dG-vUrxQHsTQvVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:05:d8:85:bd:c8:23:b5:01:8e:d5:47:75:69:0f:da:75:13: 06:25:39:6c:89:d9:31:5d:8f:a8:b1:a4:5b:6e:9b:24:14:6a: 8c:40:2d:de:20:46:9e:02:50:5a:8d:35:a4:38:c3:2f:90:9d: 0f:ff:f0:e3:4b:45:65:48:2f:6f:06:87:3b:73:82:b3:cd:c1: 01:f9:e9:53:3c:16:35:b1:35:81:e7:e2:ab:d8:ad:f5:54:00: 01:2b:e6:6b:95:0d:9d:d0:fc:2e:d0:91:5f:f5:65:77:d9:01: 39:91:6e:3d:7a:e2:14:33:d4:96:72:d9:f9:7d:98:b0:c5:55: 26:01:14:f2:92:d7:f0:42:db:c7:55:ca:ce:42:cd:be:48:27: 2d:ae:5d:5c:10:91:98:f7:0d:bc:2d:94:32:eb:b4:0b:cf:ee: d7:c5:a5:dc:b3:ae:81:84:8b:95:d7:e4:e7:c7:77:c4:46:12: 63:8c:31:58:a4:09:34:bd:81:6c:77:79:56:1c:73:77:bc:42: 2b:40:ee:98:5f:46:3a:65:54:d1:8f:64:92:c9:5b:fa:27:53: 16:4e:6f:88:69:22:a5:09:c9:f7:9c:cf:35:4f:df:50:77:cc: 4c:07:7b:0a:bb:98:5b:88:1d:aa:23:3f:8b:af:1f:7e:2a:02: bc:58:70:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCOEQxMTAvBgNVBAUTKEJFNjM4MDM3MEY2NDA2RTYzRjc0NkZBRjUyQkM1MDFF QzREMEJENTIwHhcNMjUxMjA1MDQzNDE2WhcNMjUxMjEyMDQzNDE2WjAYMRYwFAYD VQQDEw02OTMyNjBjOS1iNTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxIz72LoiH/iooG2s3KQPIIYPvgVp5PseVj6ivxey5UGrKluK/P+n94srco3 d2JpBQ1LMn69qdpo4HDuCgPGqcUOStMBX2GSwXrsmN1szDTiGzNNiOFmxDzbj3FO zufEnmh2jPiKTLgbSGU/r3TaOtONG319E/fGJu+IzyKYR5NU6B6Qqv8TetcN9icO WcJIfTO+CNJjkoyWonpjbNv0oVCxK9tdssx91TH3AmTxexmN3ESmpZBOa7RzEMjf r4dyrWhuJgmKN2ZwWMSg+i4HselZ4lZKbGatFYjOFDvnXK1Mow0EKLklbq4jw3r0 T0d5a5sF7wZfsEGtZT73HA1XJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtEwA0Z pGmfhmbjCXydoyovQdMNMB8GA1UdIwQYMBaAFL5jgDcPZAbmP3Rvr1K8UB7E0L1S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUI4RC8xQ0Y5QTg3QTAz RDExMUYwQjIzNEJDMTVDNEY5QUUwMi92bU9BTnc5a0J1WV9kRy12VXJ4UUhzVFF2 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZtT0FOdzlrQnVZX2RHLXZVcnhRSHNUUXZWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUI4RC8xQ0Y5QTg3QTAzRDExMUYwQjIzNEJDMTVDNEY5QUUwMi92bU9BTnc5a0J1 WV9kRy12VXJ4UUhzVFF2VkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTBdiFvcgjtQGO1Ud1aQ/adRMGJTlsidkxXY+osaRbbpskFGqMQC3e IEaeAlBajTWkOMMvkJ0P//DjS0VlSC9vBoc7c4KzzcEB+elTPBY1sTWB5+Kr2K31 VAABK+ZrlQ2d0Pwu0JFf9WV32QE5kW49euIUM9SWctn5fZiwxVUmARTyktfwQtvH VcrOQs2+SCctrl1cEJGY9w28LZQy67QLz+7XxaXcs66BhIuV1+Tnx3fERhJjjDFY pAk0vYFsd3lWHHN3vEIrQO6YX0Y6ZVTRj2SSyVv6J1MWTm+IaSKlCcn3nM81T99Q d8xMB3sKu5hbiB2qIz+Lrx9+KgK8WHCa -----END CERTIFICATE-----Generated at Sun Dec 7 01:51:41 2025 by rpki-client