This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft File: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft (raw, json) Hash identifier: A1670aGHYHrbeD7tYad1sSp6dRRN0iCZ4kO05h2mxE8= Subject key identifier: C6:4C:A0:92:15:C6:1B:3D:3D:75:0F:D5:54:73:F0:B6:1A:85:49:FD Authority key identifier: 13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 Certificate issuer: /CN=A917B633/serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft Manifest number: D9 Signing time: Fri 05 Dec 2025 03:36:15 +0000 Manifest this update: Fri 05 Dec 2025 03:36:14 +0000 Manifest next update: Fri 12 Dec 2025 03:36:14 +0000 Files and hashes: 1: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl (hash: G1qh4ceqVAtJVfq6X8V7FGOFpL/6+Ro74uJhJt63Fgc=) 2: 3E4867CC86DC11EFA6022627C4F9AE02.roa (hash: uCHzaAIAycwpBc70iXWJQqRjsJQk8uvEaTZJzV9udnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:36:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B633, serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Validity Not Before: Dec 5 03:36:14 2025 GMT Not After : Dec 12 03:36:14 2025 GMT Subject: CN=6932532f-4a93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:3f:9e:6d:32:ad:62:0e:19:29:f6:38:d5:f6: 39:ac:1d:41:4e:19:af:7c:ab:25:8b:92:eb:a8:ed: 79:37:e1:19:be:56:8f:39:9c:82:a0:f1:a6:07:a2: b4:e3:6c:ab:b3:72:a3:41:de:b2:6f:6d:94:e2:24: 08:f8:31:99:bb:3d:1b:fe:d3:25:14:27:f5:a8:64: 50:b9:58:7f:da:b6:89:6c:61:15:dd:d9:ec:a4:0e: 68:4b:60:99:11:cd:d4:1a:62:6c:8e:8a:9c:41:e6: b3:d0:99:80:de:1a:03:2b:b7:44:a5:0d:fe:90:36: 53:a3:b3:02:c1:64:17:b1:4e:96:9b:fa:32:8c:21: 2b:6e:df:fb:eb:5a:80:6c:11:8a:6a:f4:99:97:d4: 93:bd:98:a2:36:fd:f4:67:59:73:a2:ba:ea:2e:fd: 92:05:70:86:0c:80:e0:90:a7:9a:0f:3d:dd:8f:e1: 3d:3c:01:72:e0:97:e6:c7:31:09:95:a1:44:3d:cc: 3f:d4:7c:d8:74:00:bc:fc:00:4c:7d:19:26:c4:31: 05:d7:ac:f1:82:da:20:e5:c0:1b:bb:bf:46:36:3a: 72:4c:e7:96:35:a2:bb:45:75:e5:fc:63:c4:23:be: 48:fc:df:4d:e8:5b:a5:d7:1f:c0:ba:8e:0f:c2:bd: 31:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:4C:A0:92:15:C6:1B:3D:3D:75:0F:D5:54:73:F0:B6:1A:85:49:FD X509v3 Authority Key Identifier: keyid:13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e5:70:c8:29:bd:2a:62:fc:45:f3:4e:de:98:b4:fb:cb:a1: e1:62:01:f5:fa:d5:87:75:69:83:f2:51:f1:dc:87:65:a6:de: 1e:c1:eb:91:13:67:03:e8:04:21:80:42:b6:29:30:61:3d:ed: ef:e9:97:9b:0d:b9:1b:a9:bd:0b:f1:d0:59:35:29:b4:f7:ef: a1:bc:94:a9:6c:c5:47:35:2f:bf:15:51:5a:67:86:1f:f7:34: 71:89:df:35:e0:d7:c9:0a:52:66:5b:56:14:b8:93:a8:0c:2f: af:ca:53:09:ed:83:dd:13:01:3f:52:13:0d:e9:c2:0e:20:b6: 53:28:63:51:2c:1f:71:00:06:72:b7:5d:71:46:67:47:56:f2: ca:e2:79:11:94:d8:af:2e:6c:98:e7:8a:5b:dc:c3:d9:76:ce: da:06:a4:a1:65:77:24:36:5d:4d:f0:fc:e2:fe:ef:30:61:8f: f2:a6:4d:9d:9d:96:bc:1f:e5:29:b3:6f:6d:09:b4:68:b6:c5: ee:33:cf:80:8b:07:15:b2:05:51:7c:7a:45:72:8b:36:6e:30: af:00:1e:10:68:d6:7c:a1:b4:65:59:31:e2:cd:7c:e9:a5:b5: 93:f1:2d:c5:4c:41:f1:c4:c5:44:f7:da:0b:bf:0c:53:49:e2: 01:cd:99:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2MzMxMTAvBgNVBAUTKDEzRDdBMTNCNDIzQkI2RTg3QTFBNzVCNzQ5M0YwQkMx OUQwQ0VBQTMwHhcNMjUxMjA1MDMzNjE0WhcNMjUxMjEyMDMzNjE0WjAYMRYwFAYD VQQDEw02OTMyNTMyZi00YTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoj+ebTKtYg4ZKfY41fY5rB1BThmvfKsli5LrqO15N+EZvlaPOZyCoPGmB6K0 42yrs3KjQd6yb22U4iQI+DGZuz0b/tMlFCf1qGRQuVh/2raJbGEV3dnspA5oS2CZ Ec3UGmJsjoqcQeaz0JmA3hoDK7dEpQ3+kDZTo7MCwWQXsU6Wm/oyjCErbt/761qA bBGKavSZl9STvZiiNv30Z1lzorrqLv2SBXCGDIDgkKeaDz3dj+E9PAFy4JfmxzEJ laFEPcw/1HzYdAC8/ABMfRkmxDEF16zxgtog5cAbu79GNjpyTOeWNaK7RXXl/GPE I75I/N9N6Ful1x/Auo4Pwr0xPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZMoJIV xhs9PXUP1VRz8LYahUn9MB8GA1UdIwQYMBaAFBPXoTtCO7boehp1t0k/C8GdDOqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjYzMy9EMEFCOTNFNDg2 RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1aDZHblczU1Q4THdaME02 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0U5ZWhPMEk3dHVoNkduVzNTVDhMd1owTTZxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjYzMy9EMEFCOTNFNDg2RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1 aDZHblczU1Q4THdaME02cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP5XDIKb0qYvxF807emLT7y6HhYgH1+tWHdWmD8lHx3Idlpt4eweuR E2cD6AQhgEK2KTBhPe3v6ZebDbkbqb0L8dBZNSm09++hvJSpbMVHNS+/FVFaZ4Yf 9zRxid814NfJClJmW1YUuJOoDC+vylMJ7YPdEwE/UhMN6cIOILZTKGNRLB9xAAZy t11xRmdHVvLK4nkRlNivLmyY54pb3MPZds7aBqShZXckNl1N8Pzi/u8wYY/ypk2d nZa8H+Ups29tCbRotsXuM8+AiwcVsgVRfHpFcos2bjCvAB4QaNZ8obRlWTHizXzp pbWT8S3FTEHxxMVE99oLvwxTSeIBzZmm -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:12 2025 by rpki-client