This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: VzkubozIoLdHYeMUpg5AHkVkC3AQVjzEJ54krkQMzL4= Subject key identifier: B5:98:1D:DB:2A:D4:95:39:80:60:16:37:39:6D:0E:85:66:EE:3E:94 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 08EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 08BA Signing time: Thu 04 Dec 2025 19:40:53 +0000 Manifest this update: Thu 04 Dec 2025 19:40:52 +0000 Manifest next update: Thu 11 Dec 2025 19:40:52 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: U12ARzFviiqqmDLCYXPpSUoedobXP10rjeBKM+mZ3Og=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: BD1D670AA9AE11F0BAAC4E40C4F9AE02.roa (hash: 50ACgx85pKWBSdecvm1PzIpRWx2Le1Y9DodxHydptpU=) 5: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2286 (0x8ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Dec 4 19:40:52 2025 GMT Not After : Dec 11 19:40:52 2025 GMT Subject: CN=6931e3c4-8668 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:6a:1c:4b:b4:50:d8:4f:6f:5c:96:81:92:62: 5d:21:90:f3:03:2e:4d:bb:c1:93:5b:8e:89:0e:78: e3:28:14:86:0f:e0:5b:c5:cb:73:74:72:79:92:32: 07:51:05:fb:9c:ec:73:12:00:71:24:90:11:db:94: c7:2e:a1:c7:4f:b5:28:ad:72:9a:25:d4:ff:8a:64: 55:fd:c4:b3:25:42:3a:5d:45:c7:49:da:69:28:27: 3b:5c:ec:50:20:ea:19:1e:fb:6d:a9:06:a9:5c:6d: f2:72:bb:f9:50:db:a1:85:f5:2b:16:67:0a:d4:ae: 35:a0:b9:f0:ce:6f:03:3c:36:c4:6f:4d:d5:c5:b9: 5b:16:2d:4f:1b:44:68:c0:f0:67:c1:61:f4:6e:ae: 86:f1:a7:77:c1:78:24:be:2d:49:da:a9:7a:25:04: b6:53:b9:96:81:7c:ab:32:32:f1:b0:52:48:ea:c5: 5a:36:5c:b2:fc:52:a8:f7:56:3c:4c:47:1b:8d:50: e9:e8:82:87:80:7e:bb:1c:35:29:3e:40:e5:5c:a7: a9:4a:8e:77:02:99:06:18:93:04:5a:c8:0b:fe:bb: 80:95:81:c2:db:0f:8c:16:80:d7:35:b1:a8:7d:20: e0:44:0d:24:d8:a6:89:d4:e4:33:32:98:8f:de:2a: 65:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:98:1D:DB:2A:D4:95:39:80:60:16:37:39:6D:0E:85:66:EE:3E:94 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:5c:12:f2:25:ca:77:80:b1:cc:1d:3b:e3:b2:b7:ec:cc:d1: 4a:40:16:8d:e2:4a:c7:b4:49:33:38:7a:73:53:02:34:f3:0c: a5:c8:50:20:c2:47:73:6a:8b:33:4b:08:1f:8c:3e:8b:98:0f: ba:71:8e:f6:17:a2:be:d7:a2:3b:4f:bf:e1:6d:ce:02:a1:cb: a9:77:2a:14:0c:1e:d4:45:e1:12:12:19:da:e8:2d:0c:2f:53: d2:22:3a:31:99:4c:e0:d2:68:bf:ca:e2:67:bf:ec:66:99:f1: b8:d1:eb:4e:47:79:76:00:f7:d6:f9:e8:04:54:77:ca:94:ad: 69:f1:ed:09:39:57:9a:00:ac:35:45:08:92:31:c7:7e:e1:0a: bf:f8:00:1f:de:3d:29:28:cb:3c:7f:85:e8:24:98:52:df:35: e3:82:8c:29:97:58:f4:fb:c4:a4:a0:8e:1c:7c:e9:e0:b5:fc: 09:c4:cd:c6:6d:9c:e3:4c:51:44:0a:9e:c7:90:47:92:bf:93: aa:3f:ca:d1:57:8d:3b:c9:2b:76:e9:12:cc:77:15:b8:55:55: c4:36:a8:7d:d1:56:f5:d1:3c:33:0e:03:54:49:65:30:23:00: b3:37:a6:b5:25:5d:1e:71:96:83:c1:cc:0f:41:8c:e5:81:80: 4c:7d:ce:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUxMjA0MTk0MDUyWhcNMjUxMjExMTk0MDUyWjAYMRYwFAYD VQQDEw02OTMxZTNjNC04NjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlGocS7RQ2E9vXJaBkmJdIZDzAy5Nu8GTW46JDnjjKBSGD+BbxctzdHJ5kjIH UQX7nOxzEgBxJJAR25THLqHHT7UorXKaJdT/imRV/cSzJUI6XUXHSdppKCc7XOxQ IOoZHvttqQapXG3ycrv5UNuhhfUrFmcK1K41oLnwzm8DPDbEb03VxblbFi1PG0Ro wPBnwWH0bq6G8ad3wXgkvi1J2ql6JQS2U7mWgXyrMjLxsFJI6sVaNlyy/FKo91Y8 TEcbjVDp6IKHgH67HDUpPkDlXKepSo53ApkGGJMEWsgL/ruAlYHC2w+MFoDXNbGo fSDgRA0k2KaJ1OQzMpiP3ipl4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWYHdsq 1JU5gGAWNzltDoVm7j6UMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2XBLyJcp3gLHMHTvjsrfszNFKQBaN4krHtEkzOHpzUwI08wylyFAg wkdzaoszSwgfjD6LmA+6cY72F6K+16I7T7/hbc4CocupdyoUDB7UReESEhna6C0M L1PSIjoxmUzg0mi/yuJnv+xmmfG40etOR3l2APfW+egEVHfKlK1p8e0JOVeaAKw1 RQiSMcd+4Qq/+AAf3j0pKMs8f4XoJJhS3zXjgowpl1j0+8SkoI4cfOngtfwJxM3G bZzjTFFECp7HkEeSv5OqP8rRV407ySt26RLMdxW4VVXENqh90Vb10TwzDgNUSWUw IwCzN6a1JV0ecZaDwcwPQYzlgYBMfc41 -----END CERTIFICATE-----Generated at Sat Dec 6 20:29:04 2025 by rpki-client