This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft File: _wsVRthMDZNVkFtsopPiW0QJSMU.mft (raw, json) Hash identifier: UYgD8kk91yWdVgwJu2retRP8hFsLGGICrGTZvtH+zUM= Subject key identifier: FA:C2:83:61:15:9B:FE:D8:CE:00:7E:E4:51:30:B2:2C:DF:F4:DE:E5 Authority key identifier: FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 Certificate issuer: /CN=A9198F53/serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Certificate serial: 0B79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft Manifest number: 0B71 Signing time: Thu 04 Dec 2025 18:26:40 +0000 Manifest this update: Thu 04 Dec 2025 18:26:40 +0000 Manifest next update: Thu 11 Dec 2025 18:26:40 +0000 Files and hashes: 1: _wsVRthMDZNVkFtsopPiW0QJSMU.crl (hash: JHR/sZ8zkKyG3GCywtpKg8mm85mNWvMUfuAEYXPqUT0=) 2: 0B1FBD4A40F611EAACD44866C4F9AE02.roa (hash: cE46r29KbbkAXjWAwbBON9XRly7r0/vPAZnB5kdMO20=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2937 (0xb79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198F53, serialNumber=FF0B1546D84C0D9355905B6CA293E25B440948C5 Validity Not Before: Dec 4 18:26:40 2025 GMT Not After : Dec 11 18:26:40 2025 GMT Subject: CN=6931d260-7ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3e:1d:6c:d9:e1:23:33:08:a4:59:78:eb:05: 1e:35:19:8b:2b:9b:72:ea:6c:6c:85:f4:f4:61:2b: ea:31:fa:9a:67:b9:2e:8c:b6:a4:01:10:57:51:65: ac:e2:62:cd:22:40:6e:11:10:b2:9a:b4:d2:49:be: 30:3f:59:b6:4a:02:fd:40:3f:76:df:1e:f4:8d:7f: e0:61:65:d7:b6:b7:91:75:c2:27:97:87:82:9e:9d: 51:b8:63:73:31:66:c0:cc:b9:82:58:92:e3:0d:32: cf:2f:24:6d:a7:cb:76:09:a5:e0:84:08:44:15:ac: 6c:0a:ef:57:b4:83:cd:44:ff:52:d4:9c:82:77:ae: d9:3d:32:cc:85:56:b7:33:76:2b:b5:13:cb:58:3f: e6:f3:96:05:d9:a8:4b:79:8e:77:39:87:82:56:e2: 65:e4:30:ee:2c:dd:ea:37:98:50:b5:fa:cd:f2:2f: d5:e0:16:34:39:32:3d:cf:33:f9:34:1a:c4:6a:7a: c7:11:cb:be:bd:54:12:2d:29:7b:55:8c:5e:35:73: 8c:a9:82:c6:48:24:e1:80:5b:75:17:4d:2b:de:77: 3f:2a:29:f0:1e:09:9d:97:eb:da:1d:32:2e:c3:20: e5:c9:60:00:e4:41:d4:dc:32:9b:f6:e0:a0:34:5d: f0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C2:83:61:15:9B:FE:D8:CE:00:7E:E4:51:30:B2:2C:DF:F4:DE:E5 X509v3 Authority Key Identifier: keyid:FF:0B:15:46:D8:4C:0D:93:55:90:5B:6C:A2:93:E2:5B:44:09:48:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_wsVRthMDZNVkFtsopPiW0QJSMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198F53/CD06217640F411EAAE778261C4F9AE02/_wsVRthMDZNVkFtsopPiW0QJSMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:f9:64:39:45:d7:45:b2:d1:67:63:1a:8d:e7:4a:20:e8:b6: c6:ad:d2:8e:db:22:00:e1:d8:fa:2a:f7:d3:47:ef:43:e9:86: df:41:aa:6e:b3:2c:28:0e:76:c1:70:ea:0c:a7:a7:d4:28:63: 98:f7:3d:d6:d5:11:3c:da:53:87:7b:31:60:23:d9:39:81:c2: 2a:3e:a2:31:49:bc:9c:14:5d:cd:59:8e:3d:ee:78:bd:aa:57: 24:03:7f:d3:54:04:0e:85:81:aa:73:c0:6f:c0:a7:0c:27:97: f5:fc:9d:2d:04:9f:5e:50:a7:86:42:36:f2:27:a1:69:a0:4c: cb:93:1f:4c:af:65:06:f2:22:2a:59:0b:ad:c0:3b:5c:5a:0c: db:b8:76:c2:ea:e6:50:05:77:0f:89:4b:f5:7b:8b:f1:59:5f: 2d:11:54:34:df:c2:ad:c0:08:99:7e:ad:46:3c:78:f4:fd:99: 08:fa:37:6d:4e:7b:2b:28:ca:9c:0d:09:9d:10:49:f5:78:cf: f4:e3:8c:b3:e8:d1:b2:e5:f0:dc:2a:da:d4:c1:50:c5:97:45: b2:19:ba:5e:31:c4:a7:cc:3b:14:b4:7b:b0:99:07:c3:97:42: 50:99:c4:62:b1:04:38:c6:ba:3f:5b:0e:3d:1e:2e:ee:51:d3: 26:34:3a:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThGNTMxMTAvBgNVBAUTKEZGMEIxNTQ2RDg0QzBEOTM1NTkwNUI2Q0EyOTNFMjVC NDQwOTQ4QzUwHhcNMjUxMjA0MTgyNjQwWhcNMjUxMjExMTgyNjQwWjAYMRYwFAYD VQQDEw02OTMxZDI2MC03Y2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzD4dbNnhIzMIpFl46wUeNRmLK5ty6mxshfT0YSvqMfqaZ7kujLakARBXUWWs 4mLNIkBuERCymrTSSb4wP1m2SgL9QD923x70jX/gYWXXtreRdcInl4eCnp1RuGNz MWbAzLmCWJLjDTLPLyRtp8t2CaXghAhEFaxsCu9XtIPNRP9S1JyCd67ZPTLMhVa3 M3YrtRPLWD/m85YF2ahLeY53OYeCVuJl5DDuLN3qN5hQtfrN8i/V4BY0OTI9zzP5 NBrEanrHEcu+vVQSLSl7VYxeNXOMqYLGSCThgFt1F00r3nc/KinwHgmdl+vaHTIu wyDlyWAA5EHU3DKb9uCgNF3wrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrCg2EV m/7YzgB+5FEwsizf9N7lMB8GA1UdIwQYMBaAFP8LFUbYTA2TVZBbbKKT4ltECUjF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEY1My9DRDA2MjE3NjQw RjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURaTlZrRnRzb3BQaVcwUUpT TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193c1ZSdGhNRFpOVmtGdHNvcFBpVzBRSlNNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEY1My9DRDA2MjE3NjQwRjQxMUVBQUU3NzgyNjFDNEY5QUUwMi9fd3NWUnRoTURa TlZrRnRzb3BQaVcwUUpTTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0+WQ5RddFstFnYxqN50og6LbGrdKO2yIA4dj6KvfTR+9D6YbfQapu sywoDnbBcOoMp6fUKGOY9z3W1RE82lOHezFgI9k5gcIqPqIxSbycFF3NWY497ni9 qlckA3/TVAQOhYGqc8BvwKcMJ5f1/J0tBJ9eUKeGQjbyJ6FpoEzLkx9Mr2UG8iIq WQutwDtcWgzbuHbC6uZQBXcPiUv1e4vxWV8tEVQ038KtwAiZfq1GPHj0/ZkI+jdt TnsrKMqcDQmdEEn1eM/044yz6NGy5fDcKtrUwVDFl0WyGbpeMcSnzDsUtHuwmQfD l0JQmcRisQQ4xro/Ww49Hi7uUdMmNDok -----END CERTIFICATE-----Generated at Sat Dec 6 18:55:27 2025 by rpki-client