This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: V/Xw3Gl004eyjT2lh63/jbbGQ/cpCwiD7cY+dewRfkU= Subject key identifier: 70:6A:4A:6E:3B:AB:ED:34:37:F5:C8:A9:45:C1:F0:5F:89:6B:47:53 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 2426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23F7 Signing time: Sat 06 Dec 2025 15:33:20 +0000 Manifest this update: Sat 06 Dec 2025 15:33:19 +0000 Manifest next update: Sat 13 Dec 2025 15:33:19 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: mYpucGsjEBJueJ5e6TzznfPrBi8dd4LZx4J29q8MLG4=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9254 (0x2426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Dec 6 15:33:19 2025 GMT Not After : Dec 13 15:33:19 2025 GMT Subject: CN=69344cc0-2d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b7:e0:8d:b1:e9:43:21:8d:7d:3d:53:bb:ed: bc:c6:81:d7:e6:6d:bd:fc:33:45:56:b4:c9:3b:b7: a4:31:11:bb:02:ee:bd:0b:48:e6:47:5e:83:94:8c: 3d:f6:5c:d8:33:8e:38:88:a6:b1:f7:46:78:33:22: 31:f4:10:5a:70:8d:0f:11:bd:03:19:25:fa:59:79: 1a:7a:d7:9f:4f:ea:0f:67:55:57:b9:0e:0e:65:8b: e4:09:27:08:57:c4:2f:f1:a8:32:cb:b0:b5:d9:cd: a0:ec:b9:81:ae:d1:d1:10:50:2c:c6:0f:6d:5f:69: 29:d6:f5:0f:5c:60:e8:d5:74:89:6e:fc:eb:a9:72: e1:e2:79:cf:7a:68:e8:72:ee:33:bf:45:59:49:8f: 85:ca:7f:4b:ed:98:fd:73:e7:cb:53:87:46:92:37: 87:e4:97:4d:ae:55:d1:3b:f1:62:2a:d9:c7:0e:1d: 1a:b9:73:36:7c:bd:0c:1d:90:ec:04:70:96:c2:d2: e8:63:43:14:62:9f:1c:44:fe:df:34:2f:01:81:22: 45:7c:17:92:e5:a8:1a:18:ac:84:8c:ff:cf:c1:9e: 7d:37:da:ce:8e:1e:1d:ee:c7:99:18:66:ec:c8:78: d1:75:79:cc:50:f9:9f:c9:41:03:05:2b:4c:da:af: 49:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:6A:4A:6E:3B:AB:ED:34:37:F5:C8:A9:45:C1:F0:5F:89:6B:47:53 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:e5:bc:cc:57:33:73:fb:82:29:0a:f0:35:83:fa:b4:25:24: 44:c1:18:d3:1c:59:6f:8b:26:4d:c1:1b:22:64:cf:a3:df:90: 58:b6:6a:49:fd:10:78:3a:b1:e5:47:90:66:a4:85:2d:d2:10: 95:be:fb:7c:39:70:4e:bc:2e:2b:68:fe:85:23:71:74:eb:0d: 23:dd:36:e7:24:0a:c3:77:10:96:2d:6a:54:ce:91:77:97:23: 32:d2:78:e0:41:59:20:93:b4:b1:5b:21:dd:d0:d2:c2:26:ea: 5f:c1:2e:77:22:29:00:2f:ce:2a:1d:e5:a7:46:a8:c0:3f:f1: 89:fc:dd:c6:f3:f8:53:b0:0a:f9:f1:03:52:6e:63:88:1c:8c: 4f:c6:43:7e:55:dd:33:d2:e0:41:13:03:4a:4d:fb:55:88:06: 5f:4f:18:fb:f0:1c:0b:f1:44:c8:fd:72:6f:5d:44:4a:44:1f: 3e:01:6a:5d:5a:de:23:ac:ca:ec:fc:c2:56:30:a4:e2:36:f0: c5:d2:d5:b9:72:3a:82:81:02:92:56:db:2c:48:36:15:d2:8d: 1f:66:8a:ac:58:85:de:53:d7:a4:07:7b:16:84:61:3e:d7:3a: 88:5b:7c:b5:b5:0f:b5:5a:25:b5:26:b5:cd:3f:5a:a2:5a:73: 73:3a:cb:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUxMjA2MTUzMzE5WhcNMjUxMjEzMTUzMzE5WjAYMRYwFAYD VQQDEw02OTM0NGNjMC0yZDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7fgjbHpQyGNfT1Tu+28xoHX5m29/DNFVrTJO7ekMRG7Au69C0jmR16DlIw9 9lzYM444iKax90Z4MyIx9BBacI0PEb0DGSX6WXkaetefT+oPZ1VXuQ4OZYvkCScI V8Qv8agyy7C12c2g7LmBrtHREFAsxg9tX2kp1vUPXGDo1XSJbvzrqXLh4nnPemjo cu4zv0VZSY+Fyn9L7Zj9c+fLU4dGkjeH5JdNrlXRO/FiKtnHDh0auXM2fL0MHZDs BHCWwtLoY0MUYp8cRP7fNC8BgSJFfBeS5agaGKyEjP/PwZ59N9rOjh4d7seZGGbs yHjRdXnMUPmfyUEDBStM2q9JaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBqSm47 q+00N/XIqUXB8F+Ja0dTMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF5bzMVzNz+4IpCvA1g/q0JSREwRjTHFlviyZNwRsiZM+j35BYtmpJ /RB4OrHlR5BmpIUt0hCVvvt8OXBOvC4raP6FI3F06w0j3TbnJArDdxCWLWpUzpF3 lyMy0njgQVkgk7SxWyHd0NLCJupfwS53IikAL84qHeWnRqjAP/GJ/N3G8/hTsAr5 8QNSbmOIHIxPxkN+Vd0z0uBBEwNKTftViAZfTxj78BwL8UTI/XJvXURKRB8+AWpd Wt4jrMrs/MJWMKTiNvDF0tW5cjqCgQKSVtssSDYV0o0fZoqsWIXeU9ekB3sWhGE+ 1zqIW3y1tQ+1WiW1JrXNP1qiWnNzOsuq -----END CERTIFICATE-----Generated at Sun Dec 7 05:20:03 2025 by rpki-client