This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: i0NatHGjInwdykEKJCA9EitOFHP9ptihXt209eIXOIA= Subject key identifier: 97:6D:5E:A8:E7:4F:C6:D6:1E:DF:73:84:3E:D9:FE:23:40:DC:6C:E2 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 06B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 06A3 Signing time: Sat 06 Dec 2025 18:43:18 +0000 Manifest this update: Sat 06 Dec 2025 18:43:17 +0000 Manifest next update: Sat 13 Dec 2025 18:43:17 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: kAOHNadgnFi3pE64JXAjPCW546oJIcrcmN6DAsXM9UA=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: c7+1xl97Qj2WBa7uEaRi3C9ZQy4QYdknXZBQu0sbmag=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: nh7VvVbwlcEI7LPWlEzxHGSM7ZH4CPOm9G5I1MGrFHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Dec 6 18:43:17 2025 GMT Not After : Dec 13 18:43:17 2025 GMT Subject: CN=69347945-3062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:5c:1d:e1:27:0d:74:a0:78:e2:3b:2d:96:34: d4:af:d6:b1:cf:d7:9f:78:17:a3:a0:70:3f:89:74: 76:b9:8d:f8:dd:8f:ca:90:fd:ea:1c:d3:dc:43:e4: cb:86:57:ac:0a:af:89:fd:c0:07:8e:ae:19:02:32: 32:6b:e0:ae:5b:b6:27:a5:05:da:89:78:c3:68:5a: 08:52:67:a0:45:59:99:a3:e5:de:0a:b7:e0:c6:35: e5:af:e9:df:76:77:1e:45:5a:1c:32:f1:21:c8:a6: b5:62:30:7d:a1:e5:bc:00:4a:46:8b:15:2f:13:bc: ea:2a:f3:b7:8f:48:33:ee:66:d0:bb:21:5b:1a:1b: da:1a:2c:8d:48:d8:7a:36:f8:8b:3c:c1:a0:59:56: b8:2e:4c:a7:0d:a0:db:23:b1:ae:ec:66:af:8c:69: 53:6d:1a:70:6b:c2:eb:f1:76:a3:81:6e:7c:29:1e: 8a:f3:b9:44:29:9f:bb:9a:ca:60:bb:cf:bd:2f:ba: 60:45:d7:c5:1d:4e:db:81:ea:c9:9a:c0:45:e2:95: 0e:9d:8e:45:de:43:ff:09:77:81:18:71:b7:4c:a3: 0c:73:73:fb:3c:7d:68:be:cc:f2:2c:cc:eb:a5:45: 9e:28:f7:d0:f5:2f:04:07:73:62:9d:b3:b5:b4:a0: 57:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6D:5E:A8:E7:4F:C6:D6:1E:DF:73:84:3E:D9:FE:23:40:DC:6C:E2 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:01:e3:46:4c:00:af:b1:eb:b8:e3:38:b1:bf:68:1d:28:6e: bb:b0:18:79:e6:6a:89:66:f7:11:a1:3d:72:5a:cd:fa:b0:81: 84:f3:f0:0a:2d:5b:e2:c8:5a:12:5c:ef:27:d8:42:3e:20:69: df:37:d7:3e:fc:25:ab:01:10:1f:20:c2:a1:f3:d7:36:32:88: 00:43:1f:e4:a7:03:27:6a:31:7e:e6:d5:c5:f5:55:d5:93:a6: 84:74:9d:c3:e7:c6:7c:8c:c0:d9:b9:9d:69:d9:17:2d:a9:81: 07:8e:d7:0b:34:8b:e3:ae:b2:b5:9c:e6:d9:7b:4c:03:ff:1b: 01:85:36:96:df:47:f5:a4:af:47:42:a6:2f:02:24:c6:cc:18: 06:5a:65:7a:47:b2:2e:be:ba:ef:39:a5:e2:eb:27:0a:83:0c: 9b:8f:dc:07:82:0c:c7:ba:fb:0c:7e:e3:f0:8c:29:9d:d1:d6: 89:36:4b:b4:30:e0:5d:a0:9f:a3:f9:d5:b0:11:f2:c6:a4:8e: 84:e8:55:c0:77:eb:d1:0a:cc:11:c0:bc:5b:37:3d:2c:65:99: e7:65:5e:35:62:d0:f4:c9:1b:6c:60:44:7b:9a:f2:47:37:fb: df:54:00:c0:03:a2:a4:96:71:0b:a6:f5:cd:ee:b6:f3:6c:27: a4:3a:49:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUxMjA2MTg0MzE3WhcNMjUxMjEzMTg0MzE3WjAYMRYwFAYD VQQDEw02OTM0Nzk0NS0zMDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Vwd4ScNdKB44jstljTUr9axz9efeBejoHA/iXR2uY343Y/KkP3qHNPcQ+TL hlesCq+J/cAHjq4ZAjIya+CuW7YnpQXaiXjDaFoIUmegRVmZo+XeCrfgxjXlr+nf dnceRVocMvEhyKa1YjB9oeW8AEpGixUvE7zqKvO3j0gz7mbQuyFbGhvaGiyNSNh6 NviLPMGgWVa4LkynDaDbI7Gu7GavjGlTbRpwa8Lr8XajgW58KR6K87lEKZ+7mspg u8+9L7pgRdfFHU7bgerJmsBF4pUOnY5F3kP/CXeBGHG3TKMMc3P7PH1ovszyLMzr pUWeKPfQ9S8EB3NinbO1tKBXgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdtXqjn T8bWHt9zhD7Z/iNA3GziMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMAeNGTACvseu44zixv2gdKG67sBh55mqJZvcRoT1yWs36sIGE8/AK LVviyFoSXO8n2EI+IGnfN9c+/CWrARAfIMKh89c2MogAQx/kpwMnajF+5tXF9VXV k6aEdJ3D58Z8jMDZuZ1p2RctqYEHjtcLNIvjrrK1nObZe0wD/xsBhTaW30f1pK9H QqYvAiTGzBgGWmV6R7IuvrrvOaXi6ycKgwybj9wHggzHuvsMfuPwjCmd0daJNku0 MOBdoJ+j+dWwEfLGpI6E6FXAd+vRCswRwLxbNz0sZZnnZV41YtD0yRtsYER7mvJH N/vfVADAA6KklnELpvXN7rbzbCekOknm -----END CERTIFICATE-----Generated at Sat Dec 6 23:24:16 2025 by rpki-client