This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: KsVphdYCDQFkCVeSLWJSEvQKQChCmVBoNnfydv12dPc= Subject key identifier: 2A:2E:80:C4:A3:4B:DF:DA:4E:84:E5:AB:6F:53:F1:ED:5C:EC:BF:1C Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 04EB Signing time: Sat 06 Dec 2025 16:07:27 +0000 Manifest this update: Sat 06 Dec 2025 16:07:27 +0000 Manifest next update: Sat 13 Dec 2025 16:07:27 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: 0W3Nl6vB62nA0CvUjexy2XflryFzH4N7fT3kPh3YAOE=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 16:07:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Dec 6 16:07:27 2025 GMT Not After : Dec 13 16:07:27 2025 GMT Subject: CN=693454bf-2351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:16:48:18:6b:2c:2f:5e:3d:4e:be:d8:3a:c6: 75:8d:d9:e3:50:0f:6d:8d:59:fc:9a:2c:a0:65:a9: 7b:e1:7a:fd:e4:40:d5:cc:9b:6a:52:87:a8:11:86: 29:d9:e2:fe:4e:1f:c9:77:83:76:5d:f1:3e:a9:96: 47:49:c0:6d:df:06:7b:61:6e:89:f7:37:c5:8d:b8: 00:43:69:6b:2b:84:d0:ec:06:04:fa:9e:f2:76:8f: 47:28:3a:39:b7:a8:c2:78:3e:23:e2:30:55:28:12: 40:73:c7:38:d4:78:43:c8:7a:22:52:a7:43:33:20: 20:88:8f:1f:3b:bc:0f:f6:16:e4:ae:36:d8:53:9a: 77:f0:f6:dd:27:48:ea:6a:45:12:47:6e:97:12:23: 62:6c:4d:ac:9c:cf:c0:61:ce:86:c6:b3:78:fc:15: a8:56:cd:ec:00:23:87:23:21:2c:b9:78:33:c8:da: 78:4d:0d:92:4d:81:4d:0e:73:ba:0f:66:e8:ef:98: 3d:b5:5b:02:46:53:57:27:81:e6:b5:15:c2:f3:93: 15:1c:db:4f:f6:a0:c7:e6:ec:8b:f7:93:a9:68:3e: f8:46:39:0f:23:ce:2b:b2:cd:0d:8c:00:a4:82:7c: fb:70:df:5b:a4:d1:79:38:28:87:ae:74:31:e8:30: e4:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:2E:80:C4:A3:4B:DF:DA:4E:84:E5:AB:6F:53:F1:ED:5C:EC:BF:1C X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:f7:73:f3:8e:8d:47:95:8f:fb:1e:7a:f2:e5:46:12:ff:0b: 80:1b:e5:c8:d9:5c:06:42:e9:4a:e1:fa:00:97:21:dc:9c:24: 09:4e:08:7a:da:48:ec:25:07:65:2e:fe:63:73:04:41:3d:52: b5:65:8a:46:45:7a:af:a4:3b:84:23:f0:b5:e7:bc:51:09:9b: 59:67:b8:b4:65:e4:2c:c6:60:1e:31:3c:d4:d8:f6:77:5d:21: 6e:69:3e:88:53:10:fc:b4:c4:12:c0:67:3c:85:14:bc:bc:ce: 46:6b:66:6c:12:52:c9:bf:9a:29:ff:8d:a4:a2:5e:8e:3c:67: 5b:8a:ed:16:6a:a8:0d:00:91:eb:bc:e9:10:91:b4:23:1a:80: 0d:80:39:9a:29:a0:49:73:c3:b2:c3:e8:04:32:77:5d:7e:c3: af:e7:f7:3e:43:99:04:0f:53:e5:75:56:a3:d7:eb:83:54:10: f1:81:16:af:c6:ff:23:ef:37:c5:20:8a:b0:e7:10:76:dc:ae: 06:da:8b:50:40:70:c1:42:75:3f:4d:82:c5:ca:80:ee:a5:ac: 3e:ed:9d:98:1c:16:25:f0:cc:ea:0f:2e:e8:06:9b:7a:30:1f: 9c:0f:83:fb:f1:e4:90:00:36:7c:2c:c6:37:d4:94:f5:1b:17: 9e:b2:c3:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjUxMjA2MTYwNzI3WhcNMjUxMjEzMTYwNzI3WjAYMRYwFAYD VQQDEw02OTM0NTRiZi0yMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRZIGGssL149Tr7YOsZ1jdnjUA9tjVn8miygZal74Xr95EDVzJtqUoeoEYYp 2eL+Th/Jd4N2XfE+qZZHScBt3wZ7YW6J9zfFjbgAQ2lrK4TQ7AYE+p7ydo9HKDo5 t6jCeD4j4jBVKBJAc8c41HhDyHoiUqdDMyAgiI8fO7wP9hbkrjbYU5p38PbdJ0jq akUSR26XEiNibE2snM/AYc6GxrN4/BWoVs3sACOHIyEsuXgzyNp4TQ2STYFNDnO6 D2bo75g9tVsCRlNXJ4HmtRXC85MVHNtP9qDH5uyL95OpaD74RjkPI84rss0NjACk gnz7cN9bpNF5OCiHrnQx6DDkQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCougMSj S9/aToTlq29T8e1c7L8cMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX93Pzjo1HlY/7Hnry5UYS/wuAG+XI2VwGQulK4foAlyHcnCQJTgh6 2kjsJQdlLv5jcwRBPVK1ZYpGRXqvpDuEI/C157xRCZtZZ7i0ZeQsxmAeMTzU2PZ3 XSFuaT6IUxD8tMQSwGc8hRS8vM5Ga2ZsElLJv5op/42kol6OPGdbiu0WaqgNAJHr vOkQkbQjGoANgDmaKaBJc8Oyw+gEMnddfsOv5/c+Q5kED1PldVaj1+uDVBDxgRav xv8j7zfFIIqw5xB23K4G2otQQHDBQnU/TYLFyoDupaw+7Z2YHBYl8MzqDy7oBpt6 MB+cD4P78eSQADZ8LMY31JT1GxeessNO -----END CERTIFICATE-----Generated at Mon Dec 8 02:37:46 2025 by rpki-client