This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft File: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft (raw, json) Hash identifier: Mn5BGjkB/rusVWgTSQdik+oocIhYzNP37fWvpoGX3D0= Subject key identifier: EA:58:A0:3A:BB:7E:F7:48:9F:77:B7:06:5E:24:02:A1:00:67:9E:3F Authority key identifier: 32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 Certificate issuer: /CN=A918C88D/serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Certificate serial: 0BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft Manifest number: 0B8B Signing time: Sat 06 Dec 2025 18:20:45 +0000 Manifest this update: Sat 06 Dec 2025 18:20:45 +0000 Manifest next update: Sat 13 Dec 2025 18:20:45 +0000 Files and hashes: 1: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl (hash: jS+7x6N9MLYONn25+dTcbZZbYCZa1ahbDlATVIgcAg4=) 2: E1EFDAA8F40611EAA5B2244FC4F9AE02.roa (hash: 1JlSj0jibLQBYUZDl8FfRdFm1NJZVGdp1slha+X5ouk=) 3: E324E2F6F40611EAA5B2244FC4F9AE02.roa (hash: JjlHcRfhosfD6kjrFJUxOquQczoFwZ+SbHdvTDfS9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 18:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C88D, serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Validity Not Before: Dec 6 18:20:45 2025 GMT Not After : Dec 13 18:20:45 2025 GMT Subject: CN=693473fd-ebc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5a:c0:36:90:30:0b:33:0d:80:cc:fd:e1:a0: 9c:08:2a:f7:9f:b6:68:41:5a:68:8a:68:7d:9c:d7: ae:f9:c8:94:95:fa:38:ad:37:ea:ad:f1:eb:89:4e: 24:81:a2:a5:4f:69:09:d6:d6:13:0c:0d:19:b1:68: 6e:6d:0c:08:6f:b8:a0:d6:5e:e5:34:54:13:b6:18: 6f:33:4c:a5:d0:fa:36:5d:19:b9:0a:0d:33:b1:1d: 1a:8f:89:32:f9:a5:a5:88:7e:d7:21:94:7d:da:3f: 50:40:73:98:e6:52:b8:90:79:59:4d:c1:88:8c:ec: fa:88:1b:3f:8b:d8:77:ed:d5:37:22:85:29:fd:6d: 8f:a3:57:6b:cb:d5:a0:4a:88:5d:e7:33:9e:82:08: aa:77:be:b6:08:4f:8b:29:d5:cc:b3:bd:10:0b:d2: ca:b6:67:26:1b:d2:27:99:fe:b2:07:8f:b3:9b:09: 25:b4:93:06:82:bb:f1:7d:68:db:ed:d4:2f:e5:64: f6:23:66:52:64:1a:44:19:2c:9b:d2:ec:b2:a1:f6: 62:a7:03:3f:85:f4:b1:c6:03:e5:41:ff:82:4b:19: 29:17:cf:ae:a7:48:47:fe:98:c8:18:05:85:89:56: 75:a4:ef:7d:c1:ef:e0:11:44:85:ee:31:d4:80:35: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:58:A0:3A:BB:7E:F7:48:9F:77:B7:06:5E:24:02:A1:00:67:9E:3F X509v3 Authority Key Identifier: keyid:32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:31:c6:5a:77:95:10:a6:d3:ae:e2:25:f5:ac:b5:b1:ce:98: e6:ba:69:d8:96:24:04:22:a2:ac:bc:58:ca:81:49:db:34:04: 50:6e:49:96:56:01:97:12:bb:ff:7e:be:40:bd:e5:b5:41:13: fe:82:e8:03:da:64:db:fe:28:d3:77:27:c8:92:ad:c9:1f:33: 11:04:45:66:7e:e8:23:3a:51:8e:1d:f0:9c:94:a1:29:aa:13: 3d:92:ef:e7:a3:6e:2d:a9:ca:e2:7e:a2:2b:a8:d6:12:9f:0f: 22:a0:f2:f2:d1:42:20:64:35:d7:cc:9a:e6:cd:e0:3a:33:d4: ec:65:cf:35:9f:55:a0:a1:70:fc:48:d4:c8:8b:bf:fc:66:e6: 0d:84:71:00:10:58:fd:cc:ee:7d:52:0b:e9:93:b5:85:4e:d5: f7:be:b3:05:bc:2b:b1:f2:db:83:6a:c1:33:82:27:be:53:43: b9:97:c6:99:97:70:70:11:df:ea:c0:68:11:0f:90:04:98:66: 18:0a:88:b6:7d:e0:91:f0:5f:16:23:bb:05:c8:70:4f:24:22: 9a:e1:57:e3:bc:1c:eb:63:55:6f:da:d2:7c:a7:ae:5b:23:8c: bd:ce:1c:25:16:43:dc:0c:78:86:4d:a0:bb:4e:5e:31:00:c6: b7:92:56:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM4OEQxMTAvBgNVBAUTKDMyNjQ0MzY0NzlBNTBFRDQwQ0NGRDJCNzA0RTYwMjQ5 NjA4RTQzQTgwHhcNMjUxMjA2MTgyMDQ1WhcNMjUxMjEzMTgyMDQ1WjAYMRYwFAYD VQQDEw02OTM0NzNmZC1lYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1rANpAwCzMNgMz94aCcCCr3n7ZoQVpoimh9nNeu+ciUlfo4rTfqrfHriU4k gaKlT2kJ1tYTDA0ZsWhubQwIb7ig1l7lNFQTthhvM0yl0Po2XRm5Cg0zsR0aj4ky +aWliH7XIZR92j9QQHOY5lK4kHlZTcGIjOz6iBs/i9h37dU3IoUp/W2Po1dry9Wg Sohd5zOeggiqd762CE+LKdXMs70QC9LKtmcmG9Inmf6yB4+zmwkltJMGgrvxfWjb 7dQv5WT2I2ZSZBpEGSyb0uyyofZipwM/hfSxxgPlQf+CSxkpF8+up0hH/pjIGAWF iVZ1pO99we/gEUSF7jHUgDVHBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOpYoDq7 fvdIn3e3Bl4kAqEAZ54/MB8GA1UdIwQYMBaAFDJkQ2R5pQ7UDM/StwTmAklgjkOo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzg4RC8zOEFCNTkxRTNE QzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0UU16OUszQk9ZQ1NXQ09R NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tUkRaSG1sRHRRTXo5SzNCT1lDU1dDT1E2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzg4RC8zOEFCNTkxRTNEQzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0 UU16OUszQk9ZQ1NXQ09RNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMMcZad5UQptOu4iX1rLWxzpjmumnYliQEIqKsvFjKgUnbNARQbkmW VgGXErv/fr5AveW1QRP+gugD2mTb/ijTdyfIkq3JHzMRBEVmfugjOlGOHfCclKEp qhM9ku/no24tqcrifqIrqNYSnw8ioPLy0UIgZDXXzJrmzeA6M9TsZc81n1WgoXD8 SNTIi7/8ZuYNhHEAEFj9zO59Ugvpk7WFTtX3vrMFvCux8tuDasEzgie+U0O5l8aZ l3BwEd/qwGgRD5AEmGYYCoi2feCR8F8WI7sFyHBPJCKa4VfjvBzrY1Vv2tJ8p65b I4y9zhwlFkPcDHiGTaC7Tl4xAMa3klZa -----END CERTIFICATE-----Generated at Sun Dec 7 02:02:25 2025 by rpki-client