This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft File: Aul8r2u1VIcberzm6NeDIOuURpE.mft (raw, json) Hash identifier: eeYM2YHEjnZ4s4SCSJRiD6iNODzx83gzYEQ2lNNPOaU= Subject key identifier: 02:FE:82:B2:DB:45:28:E1:BA:0A:51:FE:00:9E:EF:F3:4B:A6:1F:FF Authority key identifier: 02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 Certificate issuer: /CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Certificate serial: 244A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft Manifest number: 2434 Signing time: Sat 06 Dec 2025 15:33:09 +0000 Manifest this update: Sat 06 Dec 2025 15:33:08 +0000 Manifest next update: Sat 13 Dec 2025 15:33:08 +0000 Files and hashes: 1: Aul8r2u1VIcberzm6NeDIOuURpE.crl (hash: RCso3Z31uU+wGYkCpVlSnHbOj6vD5zYSgClh0jE2bDI=) 2: 0B72CFAC049211EBB8144531C4F9AE02.roa (hash: 8qQ0fcDr/aGVnyD7P+G/6xo5kjUt3vBtdFXB7xYrVKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:33:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9290 (0x244a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A47E, serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Validity Not Before: Dec 6 15:33:08 2025 GMT Not After : Dec 13 15:33:08 2025 GMT Subject: CN=69344cb5-c50d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:94:d3:52:f0:c7:37:4f:aa:97:f9:1d:4e:5a: c4:68:d5:e6:63:a7:e8:07:c9:d2:6b:53:d0:8a:2b: 0f:b8:29:0a:a5:93:79:27:70:7c:69:16:33:f5:26: b8:40:a9:b5:e4:4d:24:24:be:b8:81:3e:70:bf:9a: e9:9e:43:00:84:87:08:c4:3c:05:ac:07:2a:0f:ca: 6d:de:40:17:1c:d3:b3:3a:fc:1e:72:c1:c8:14:14: aa:a1:3a:36:fc:4b:0b:c8:b7:13:47:28:bc:91:de: 88:1d:9e:56:ca:fb:04:07:50:0c:0b:da:3d:b6:27: 80:4b:a7:e9:59:b6:52:b6:96:1e:e4:f0:1e:e2:b2: 52:e6:ce:8b:f4:c8:22:41:1a:0e:b6:d3:3e:36:dc: be:3c:d9:3b:20:68:a8:28:cb:7a:b4:72:72:7d:2a: e3:4f:6c:46:7f:62:65:5d:5f:c0:ad:ac:e6:ff:16: 19:d5:f0:f5:af:6d:d9:7a:81:4a:d4:f1:7c:70:b2: 19:ff:00:c1:f8:e9:d9:e1:ce:79:58:0c:90:e5:4f: 2a:7f:a8:4a:69:bc:ce:35:df:93:39:b1:94:f7:0b: 20:36:59:1d:5f:f1:f3:3c:21:16:b9:81:b3:8f:a3: 66:7e:a9:ae:02:c5:a3:de:a9:0c:48:4d:a5:a2:2a: 00:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FE:82:B2:DB:45:28:E1:BA:0A:51:FE:00:9E:EF:F3:4B:A6:1F:FF X509v3 Authority Key Identifier: keyid:02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:65:d2:57:6b:c0:57:ef:26:73:17:8c:4d:72:9f:51:cb:c7: 43:42:09:1b:23:a6:71:ac:59:5a:37:d5:91:77:7b:41:e9:c9: 2e:be:b4:fc:96:b5:d8:cb:c5:3d:70:86:4b:d6:45:91:ce:14: 71:dd:04:00:55:63:51:7f:a9:a7:fd:4b:68:c4:40:0e:51:83: 9a:95:84:f4:95:c6:b8:e7:b9:8c:68:c6:21:eb:58:ef:80:e9: 4c:ae:12:03:79:f4:2c:b7:e4:d0:79:a4:00:5e:5d:dc:81:5c: b9:19:a2:a7:ab:ad:29:05:47:09:0c:fe:b8:50:3f:7f:02:61: ee:dd:0b:d2:87:b1:b1:df:45:03:41:d3:0f:6c:60:d6:c8:39: c1:91:5a:fe:d0:0a:b0:0b:9e:4a:eb:ab:b1:6d:9e:75:47:2e: 75:b4:55:c7:3c:b0:7f:6a:5e:9e:db:df:0e:fc:b1:6e:04:b6: 2b:0d:ba:0c:f0:72:0e:57:fe:0f:80:33:b8:7c:c1:06:b5:8e: c0:98:bc:51:71:99:30:05:43:d7:7f:23:c4:38:cc:76:96:ea: 6b:24:e2:1b:5b:27:c8:22:9e:2c:6b:95:a1:7b:75:bd:6b:b1: 98:31:a5:78:2d:cb:9a:ae:05:b7:8e:9d:3f:68:a0:14:fd:78: 46:26:5e:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0N0UxMTAvBgNVBAUTKDAyRTk3Q0FGNkJCNTU0ODcxQjdBQkNFNkU4RDc4MzIw RUI5NDQ2OTEwHhcNMjUxMjA2MTUzMzA4WhcNMjUxMjEzMTUzMzA4WjAYMRYwFAYD VQQDEw02OTM0NGNiNS1jNTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypTTUvDHN0+ql/kdTlrEaNXmY6foB8nSa1PQiisPuCkKpZN5J3B8aRYz9Sa4 QKm15E0kJL64gT5wv5rpnkMAhIcIxDwFrAcqD8pt3kAXHNOzOvwecsHIFBSqoTo2 /EsLyLcTRyi8kd6IHZ5WyvsEB1AMC9o9tieAS6fpWbZStpYe5PAe4rJS5s6L9Mgi QRoOttM+Nty+PNk7IGioKMt6tHJyfSrjT2xGf2JlXV/Arazm/xYZ1fD1r23ZeoFK 1PF8cLIZ/wDB+OnZ4c55WAyQ5U8qf6hKabzONd+TObGU9wsgNlkdX/HzPCEWuYGz j6NmfqmuAsWj3qkMSE2loioAWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAL+grLb RSjhugpR/gCe7/NLph//MB8GA1UdIwQYMBaAFALpfK9rtVSHG3q85ujXgyDrlEaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ3RS8zRTZCRUM1NjY5 MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJY2JlcnptNk5lRElPdVVS cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F1bDhyMnUxVkljYmVyem02TmVESU91VVJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ3RS8zRTZCRUM1NjY5MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJ Y2JlcnptNk5lRElPdVVScEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOZdJXa8BX7yZzF4xNcp9Ry8dDQgkbI6ZxrFlaN9WRd3tB6ckuvrT8 lrXYy8U9cIZL1kWRzhRx3QQAVWNRf6mn/UtoxEAOUYOalYT0lca457mMaMYh61jv gOlMrhIDefQst+TQeaQAXl3cgVy5GaKnq60pBUcJDP64UD9/AmHu3QvSh7Gx30UD QdMPbGDWyDnBkVr+0AqwC55K66uxbZ51Ry51tFXHPLB/al6e298O/LFuBLYrDboM 8HIOV/4PgDO4fMEGtY7AmLxRcZkwBUPXfyPEOMx2luprJOIbWyfIIp4sa5Whe3W9 a7GYMaV4LcuargW3jp0/aKAU/XhGJl72 -----END CERTIFICATE-----Generated at Sat Dec 6 23:55:50 2025 by rpki-client