This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: wyLhyUxleaonmFXxwnLk2ogO8tP7e6otHq5+b9fPfv0= Subject key identifier: 87:07:3C:31:5E:1A:07:2A:84:71:DC:3D:7C:86:F8:5B:AB:B5:95:AF Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A43 Signing time: Thu 04 Dec 2025 19:01:45 +0000 Manifest this update: Thu 04 Dec 2025 19:01:44 +0000 Manifest next update: Thu 11 Dec 2025 19:01:44 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: EI0d6ncsgrXJLNwd4bBb9IWmQnR0JWbw/sfr4WPQ3Bs=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 19:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Dec 4 19:01:44 2025 GMT Not After : Dec 11 19:01:44 2025 GMT Subject: CN=6931da98-bdc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:df:06:c0:7e:37:ed:c0:61:5e:b1:1b:46:d6: b8:b1:9a:74:ab:88:5a:1c:f1:0c:db:66:b2:45:8c: 9c:01:41:2f:eb:2e:00:11:6a:ae:25:13:e4:60:87: 26:0f:9c:94:6a:74:25:20:d3:4f:8a:b2:1c:7b:8b: bb:a2:fc:f0:a3:2e:ce:35:7f:2a:64:50:d6:17:cb: be:31:9a:34:2a:82:61:44:02:db:ad:b0:dc:c9:e2: 99:a3:f0:a7:cc:e4:33:8c:62:d7:a6:04:53:0a:f2: ac:97:3a:a6:3d:d0:c6:b1:d9:14:38:09:6f:3b:81: c6:a7:fe:07:ce:c2:22:7d:72:52:40:1e:91:50:73: 7b:60:21:bb:24:65:a8:6b:1a:19:fd:24:9a:9a:54: 13:6b:65:69:87:73:f3:04:9d:dc:3f:08:cc:0b:4c: 94:20:58:a6:50:75:f2:3a:6e:7f:44:a7:d4:59:4a: ad:a6:2a:29:57:22:08:73:17:b5:10:4e:3b:16:aa: c9:09:58:35:53:c6:fa:33:cd:c8:3c:90:d3:ba:ff: 88:08:b7:d7:89:21:b5:0d:01:48:ce:37:33:ea:3f: dd:08:4d:8b:f0:aa:4b:1e:29:f8:f6:98:38:6e:dc: 55:b7:1d:ea:a5:47:ff:13:1c:91:f0:e9:8d:09:1e: 26:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:07:3C:31:5E:1A:07:2A:84:71:DC:3D:7C:86:F8:5B:AB:B5:95:AF X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:47:49:38:ea:db:e1:ef:9f:37:c5:cd:f9:3c:45:a7:9a:2c: b5:5a:af:9a:b6:f3:45:6b:81:64:6f:2d:78:08:3e:47:61:ab: 64:d7:97:2a:36:b6:6e:42:19:56:48:90:62:61:7c:e3:7e:28: 3b:fe:1d:37:86:f5:14:cc:79:ab:01:8f:9e:cb:b5:97:b3:8f: 8a:3b:9b:33:38:ba:73:2d:1d:25:07:a1:78:02:5b:a0:24:1a: 92:9a:84:58:71:ad:39:ae:89:a7:fe:b0:29:5b:29:10:a7:c1: f5:9b:17:82:c2:15:42:b3:63:45:f0:89:05:32:65:06:77:6d: 22:45:d0:03:7e:f4:80:ac:5d:0c:4b:8a:61:16:6d:53:b7:aa: 7a:57:60:77:f3:b8:53:8d:3e:ab:02:80:af:9a:72:2a:74:b8: 45:b3:97:1f:d8:9c:25:3f:9b:55:be:4d:c6:b6:fd:df:10:28: f8:5f:88:9b:42:20:dd:a5:9a:78:38:2f:07:8f:d0:0d:ed:47: 29:a3:c2:e9:b3:51:24:72:cc:17:8b:6f:72:39:a3:d3:dd:31: 26:3c:db:a7:fc:d4:b7:83:4c:05:47:57:70:68:13:52:b4:a1: b4:dd:2f:d2:9a:b1:b5:3e:65:8b:84:b2:4e:7e:4f:aa:50:27: 8b:2e:21:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUxMjA0MTkwMTQ0WhcNMjUxMjExMTkwMTQ0WjAYMRYwFAYD VQQDEw02OTMxZGE5OC1iZGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt98GwH437cBhXrEbRta4sZp0q4haHPEM22ayRYycAUEv6y4AEWquJRPkYIcm D5yUanQlINNPirIce4u7ovzwoy7ONX8qZFDWF8u+MZo0KoJhRALbrbDcyeKZo/Cn zOQzjGLXpgRTCvKslzqmPdDGsdkUOAlvO4HGp/4HzsIifXJSQB6RUHN7YCG7JGWo axoZ/SSamlQTa2Vph3PzBJ3cPwjMC0yUIFimUHXyOm5/RKfUWUqtpiopVyIIcxe1 EE47FqrJCVg1U8b6M83IPJDTuv+ICLfXiSG1DQFIzjcz6j/dCE2L8KpLHin49pg4 btxVtx3qpUf/ExyR8OmNCR4mRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcHPDFe GgcqhHHcPXyG+FurtZWvMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuR0k46tvh7583xc35PEWnmiy1Wq+atvNFa4Fkby14CD5HYatk15cq NrZuQhlWSJBiYXzjfig7/h03hvUUzHmrAY+ey7WXs4+KO5szOLpzLR0lB6F4Alug JBqSmoRYca05romn/rApWykQp8H1mxeCwhVCs2NF8IkFMmUGd20iRdADfvSArF0M S4phFm1Tt6p6V2B387hTjT6rAoCvmnIqdLhFs5cf2JwlP5tVvk3Gtv3fECj4X4ib QiDdpZp4OC8Hj9AN7Ucpo8Lps1EkcswXi29yOaPT3TEmPNun/NS3g0wFR1dwaBNS tKG03S/SmrG1PmWLhLJOfk+qUCeLLiF8 -----END CERTIFICATE-----Generated at Sat Dec 6 17:28:22 2025 by rpki-client