This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft File: SIcH43YxSt1UXMZgreziKYZME-A.mft (raw, json) Hash identifier: HTwkX7f31CWUsll/kYulf6SUidzY7TL4WGnjcjY7qyY= Subject key identifier: 70:F8:67:FD:C8:8B:CA:7A:F0:C4:7C:1D:28:1D:3B:C0:15:DB:E8:4B Authority key identifier: 48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 Certificate issuer: /CN=A9193B7A/serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft Manifest number: 38 Signing time: Fri 05 Dec 2025 05:21:24 +0000 Manifest this update: Fri 05 Dec 2025 05:21:23 +0000 Manifest next update: Fri 12 Dec 2025 05:21:23 +0000 Files and hashes: 1: SIcH43YxSt1UXMZgreziKYZME-A.crl (hash: NuTWVpZEb7x6LhIAn6d4DUhUrJvGhMLFOqHaFHoSl8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 05:21:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B7A, serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Validity Not Before: Dec 5 05:21:23 2025 GMT Not After : Dec 12 05:21:23 2025 GMT Subject: CN=69326bd3-2f6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f0:c8:c7:aa:b8:43:a4:29:f4:66:4a:11:ac: 1a:ba:3a:8f:bd:fb:a2:f7:f0:f1:01:6b:7b:60:f6: 07:5c:07:b9:a4:55:1e:a0:87:70:2d:22:5f:b0:e5: 7c:87:fa:1c:bf:9a:7b:7a:75:09:0f:c7:8c:cb:fc: cb:84:dd:ab:95:d4:d6:c5:d0:56:1f:cb:6b:ac:14: 2a:1a:7b:3c:44:09:8d:01:53:87:aa:22:70:83:75: 2a:cc:35:4f:1b:69:b6:b9:86:64:b1:20:8b:17:62: 9a:f5:61:0a:b9:f1:aa:b8:fa:5b:d4:bc:04:6d:eb: 9e:f1:02:1c:4f:58:84:37:ae:6c:c4:32:03:cf:c9: a2:b6:d9:53:34:7f:c4:df:76:1a:2a:f0:a1:b7:54: 54:1b:d1:e6:ca:37:e8:d6:05:e5:81:ca:f2:b0:71: 97:6a:22:48:b1:94:71:15:64:7c:6b:34:57:94:c9: 4d:e4:3f:f4:75:15:01:01:1d:df:58:58:7b:13:88: dd:3c:de:d9:3c:cf:34:d8:55:79:1d:d5:7e:d7:7c: 08:62:4f:12:81:14:9e:56:03:65:97:ec:68:08:c5: ae:a3:e2:29:92:5d:12:d3:97:65:28:33:39:e8:eb: da:80:0a:56:34:20:11:f0:6c:63:34:f6:89:3a:b6: b1:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F8:67:FD:C8:8B:CA:7A:F0:C4:7C:1D:28:1D:3B:C0:15:DB:E8:4B X509v3 Authority Key Identifier: keyid:48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:e6:8e:b4:90:03:01:57:5c:75:6c:b3:78:2f:52:6a:51:f3: e4:f7:5b:07:e9:40:34:90:de:c3:2b:a6:76:fd:43:48:0b:f1: 00:ce:a1:c9:9f:f0:65:a5:c7:49:9b:da:1f:89:59:e8:b5:d0: 16:9e:56:ef:d2:f8:03:7d:18:32:c9:e2:47:a0:f5:b0:e4:6f: c5:eb:49:83:1d:51:90:4a:52:bc:ec:c7:7f:6c:ae:fc:cb:2c: d7:9f:e4:95:09:87:15:b5:63:e8:02:5b:1f:e5:2f:5e:c6:c3: ad:0e:2f:f0:d9:82:27:c3:ed:18:97:16:00:1d:02:fb:55:7e: 4b:2e:57:cc:4b:ff:02:7c:84:1a:b4:f2:15:8e:ca:94:dc:c2: f0:39:72:01:2e:66:8a:36:69:7b:5b:5e:b5:3a:63:3d:ca:e3: d1:56:59:4d:55:c0:a7:13:12:ea:10:f0:35:ad:59:c4:7c:57: eb:65:a4:7b:2f:95:74:b1:91:6b:81:0c:4c:d3:3f:0a:7e:47: c9:54:38:29:5e:2f:6b:a0:b5:22:30:60:18:90:74:86:cb:83: 65:e8:8a:3a:4e:36:b8:33:69:85:d0:b3:05:7a:b0:84:90:c3: 56:72:5e:be:89:8a:fa:02:be:11:bd:86:4c:c2:30:62:a8:6f: ab:86:3d:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0I3QTExMC8GA1UEBRMoNDg4NzA3RTM3NjMxNEFERDU0NUNDNjYwQURFQ0UyMjk4 NjRDMTNFMDAeFw0yNTEyMDUwNTIxMjNaFw0yNTEyMTIwNTIxMjNaMBgxFjAUBgNV BAMTDTY5MzI2YmQzLTJmNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe8MjHqrhDpCn0ZkoRrBq6Oo+9+6L38PEBa3tg9gdcB7mkVR6gh3AtIl+w5XyH +hy/mnt6dQkPx4zL/MuE3auV1NbF0FYfy2usFCoaezxECY0BU4eqInCDdSrMNU8b aba5hmSxIIsXYpr1YQq58aq4+lvUvARt657xAhxPWIQ3rmzEMgPPyaK22VM0f8Tf dhoq8KG3VFQb0ebKN+jWBeWByvKwcZdqIkixlHEVZHxrNFeUyU3kP/R1FQEBHd9Y WHsTiN083tk8zzTYVXkd1X7XfAhiTxKBFJ5WA2WX7GgIxa6j4imSXRLTl2UoMzno 69qAClY0IBHwbGM09ok6trHpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcPhn/ciL ynrwxHwdKB07wBXb6EswHwYDVR0jBBgwFoAUSIcH43YxSt1UXMZgreziKYZME+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQjdBL0M5OEQ1NUZBN0RC QjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3QxVVhNWmdyZXppS1laTUUt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0ljSDQzWXhTdDFVWE1aZ3JlemlLWVpNRS1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz QjdBL0M5OEQ1NUZBN0RCQjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3Qx VVhNWmdyZXppS1laTUUtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACzmjrSQAwFXXHVss3gvUmpR8+T3WwfpQDSQ3sMrpnb9Q0gL8QDOocmf 8GWlx0mb2h+JWei10BaeVu/S+AN9GDLJ4keg9bDkb8XrSYMdUZBKUrzsx39srvzL LNef5JUJhxW1Y+gCWx/lL17Gw60OL/DZgifD7RiXFgAdAvtVfksuV8xL/wJ8hBq0 8hWOypTcwvA5cgEuZoo2aXtbXrU6Yz3K49FWWU1VwKcTEuoQ8DWtWcR8V+tlpHsv lXSxkWuBDEzTPwp+R8lUOCleL2ugtSIwYBiQdIbLg2XoijpONrgzaYXQswV6sISQ w1ZyXr6JivoCvhG9hkzCMGKob6uGPSM= -----END CERTIFICATE-----Generated at Sat Dec 6 18:51:15 2025 by rpki-client