This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft File: 0XRFPpVj66_LuzKsxs-Gb72OIvA.mft (raw, json) Hash identifier: f2GZ5LM8/M49UIu8Jl71AOarBbN0ZQJD5HmcdfwZRBE= Subject key identifier: 06:B7:A6:58:EE:DF:EB:EB:F3:58:B3:AA:F7:D5:FE:E1:6C:82:BE:48 Authority key identifier: D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 Certificate issuer: /CN=A9187325/serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft Manifest number: BF Signing time: Fri 05 Dec 2025 03:54:15 +0000 Manifest this update: Fri 05 Dec 2025 03:54:15 +0000 Manifest next update: Fri 12 Dec 2025 03:54:15 +0000 Files and hashes: 1: 0XRFPpVj66_LuzKsxs-Gb72OIvA.crl (hash: dM4DGR2fLm8D9mlb+bzw8n2MLCc50PFQc/9/H1Wq6Q4=) 2: D9DB29CCAAEF11EF9187EE2AC4F9AE02.roa (hash: zhUDBt2wZDhknIJUCNitYM8EJRnUn0t65SOwAtO1PEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187325, serialNumber=D174453E9563EBAFCBBB32ACC6CF866FBD8E22F0 Validity Not Before: Dec 5 03:54:15 2025 GMT Not After : Dec 12 03:54:15 2025 GMT Subject: CN=69325767-88c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:67:8d:1c:2a:fc:f6:33:aa:e6:de:0c:f4:da: 52:77:86:8d:0a:f3:ec:43:27:88:e8:c1:6b:65:b6: 2a:3e:52:46:53:47:f1:db:37:98:91:2f:cd:81:0d: a7:9c:91:b9:07:43:a8:66:7f:c8:12:30:89:d9:a9: 9b:ef:43:7a:a4:fd:38:57:d8:ed:15:fa:94:32:53: d1:96:fa:c0:7d:e3:33:34:58:1d:3e:fb:f5:c6:c3: 81:86:5e:23:1c:84:15:31:39:31:38:a3:87:52:89: 55:37:3e:5d:37:16:57:68:bc:b7:17:4c:a6:a6:d8: 9d:13:58:38:6e:3f:c9:a4:ba:a6:ed:46:0d:92:da: 62:4e:d4:be:a2:e7:a3:5d:6e:5e:e3:d4:89:1a:db: ba:bb:a9:d3:be:d5:b1:ad:78:21:87:53:22:a4:11: 7b:ef:8b:b9:73:7b:b3:e4:33:da:46:b9:e1:77:e8: b8:b7:e8:59:01:91:ba:de:06:36:38:8e:2a:8b:a5: e8:27:99:19:8a:c3:0d:ce:e6:8e:46:2d:66:42:8b: 64:f6:31:99:14:51:e8:a7:3b:2d:a1:30:16:22:17: 19:68:06:39:57:a1:f4:de:5d:8b:ae:22:63:58:f1: 5b:17:cb:59:e0:01:83:e0:ed:74:82:a4:c0:67:54: c5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:B7:A6:58:EE:DF:EB:EB:F3:58:B3:AA:F7:D5:FE:E1:6C:82:BE:48 X509v3 Authority Key Identifier: keyid:D1:74:45:3E:95:63:EB:AF:CB:BB:32:AC:C6:CF:86:6F:BD:8E:22:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0XRFPpVj66_LuzKsxs-Gb72OIvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187325/7B334A4AAAE911EFB721C25DC4F9AE02/0XRFPpVj66_LuzKsxs-Gb72OIvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:9c:98:d5:55:27:cf:22:e2:78:aa:d2:91:53:5d:01:ac:93: 5d:fd:a2:61:d7:cf:ce:49:f3:b4:cc:76:ad:c6:d0:40:6a:b1: b0:51:0f:e6:73:fd:f3:99:a6:c5:6d:7c:e8:b6:71:a5:13:ac: 82:f8:9f:b3:c0:ca:87:3b:60:e2:5c:5e:11:3d:2a:2f:ea:25: c1:55:99:e6:bd:d9:bc:09:ed:10:2d:12:4f:1f:bc:07:c2:2d: 8f:af:2b:4f:9d:26:f9:52:b5:5f:d1:4b:f7:06:38:6b:10:09: d4:fe:da:ce:a5:ce:17:ef:e6:88:cb:0d:9d:73:bc:00:0c:d5: 80:76:86:a5:0b:12:fa:99:52:c2:18:e3:cc:81:78:9c:ea:d8: 70:e5:07:af:5f:d4:31:ab:6d:a7:d4:f3:c5:25:b7:1d:6b:d8: e8:0e:76:0f:cb:5c:4f:4c:bd:c1:1e:80:1a:17:52:ab:4a:f0: 70:b2:a3:c8:75:0d:87:9a:4d:0c:b2:db:b5:aa:d5:a0:72:b3: 2f:23:00:00:f4:6e:e2:26:40:5c:e3:50:bf:0a:60:13:0e:87: c9:a4:a9:3e:7d:7b:e0:fa:1b:6b:9f:f9:7d:a6:66:77:04:47: c2:ca:06:00:cc:2a:a7:6d:04:86:03:a0:5b:96:1e:3b:53:3f: e6:9c:10:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMjUxMTAvBgNVBAUTKEQxNzQ0NTNFOTU2M0VCQUZDQkJCMzJBQ0M2Q0Y4NjZG QkQ4RTIyRjAwHhcNMjUxMjA1MDM1NDE1WhcNMjUxMjEyMDM1NDE1WjAYMRYwFAYD VQQDEw02OTMyNTc2Ny04OGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGeNHCr89jOq5t4M9NpSd4aNCvPsQyeI6MFrZbYqPlJGU0fx2zeYkS/NgQ2n nJG5B0OoZn/IEjCJ2amb70N6pP04V9jtFfqUMlPRlvrAfeMzNFgdPvv1xsOBhl4j HIQVMTkxOKOHUolVNz5dNxZXaLy3F0ymptidE1g4bj/JpLqm7UYNktpiTtS+ouej XW5e49SJGtu6u6nTvtWxrXghh1MipBF774u5c3uz5DPaRrnhd+i4t+hZAZG63gY2 OI4qi6XoJ5kZisMNzuaORi1mQotk9jGZFFHopzstoTAWIhcZaAY5V6H03l2LriJj WPFbF8tZ4AGD4O10gqTAZ1TFRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAa3plju 3+vr81izqvfV/uFsgr5IMB8GA1UdIwQYMBaAFNF0RT6VY+uvy7syrMbPhm+9jiLw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMyNS83QjMzNEE0QUFB RTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2X0x1ektzeHMtR2I3Mk9J dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBYUkZQcFZqNjZfTHV6S3N4cy1HYjcyT0l2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzMyNS83QjMzNEE0QUFBRTkxMUVGQjcyMUMyNURDNEY5QUUwMi8wWFJGUHBWajY2 X0x1ektzeHMtR2I3Mk9JdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFnJjVVSfPIuJ4qtKRU10BrJNd/aJh18/OSfO0zHatxtBAarGwUQ/m c/3zmabFbXzotnGlE6yC+J+zwMqHO2DiXF4RPSov6iXBVZnmvdm8Ce0QLRJPH7wH wi2PrytPnSb5UrVf0Uv3BjhrEAnU/trOpc4X7+aIyw2dc7wADNWAdoalCxL6mVLC GOPMgXic6thw5QevX9Qxq22n1PPFJbcda9joDnYPy1xPTL3BHoAaF1KrSvBwsqPI dQ2Hmk0Mstu1qtWgcrMvIwAA9G7iJkBc41C/CmATDofJpKk+fXvg+htrn/l9pmZ3 BEfCygYAzCqnbQSGA6Bblh47Uz/mnBDM -----END CERTIFICATE-----Generated at Sun Dec 7 03:39:44 2025 by rpki-client