This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: TDho8xKJd71lCuWYlMA/o+kXVPcIeExt/Ln84u/nqg4= Subject key identifier: 9E:96:CA:64:43:65:09:98:7C:50:44:67:93:6B:F7:C7:1D:86:7F:5D Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 08EE Signing time: Sat 06 Dec 2025 19:31:51 +0000 Manifest this update: Sat 06 Dec 2025 19:31:50 +0000 Manifest next update: Sat 13 Dec 2025 19:31:50 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: TaC0SUbBmQAOUvvb8r0kDPb3xmtxWypzuro9rgJz2tE=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: PLkHHx8GaTekc9dmC5heFwXjJ3zz86/8Y8QSgJQ+mrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:31:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Dec 6 19:31:50 2025 GMT Not After : Dec 13 19:31:50 2025 GMT Subject: CN=693484a7-2506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9a:81:24:9c:05:6b:be:3a:22:d4:1c:df:ac: 6a:b6:fe:3b:87:cf:a5:69:d5:5c:55:d2:61:c4:5f: 25:15:92:6b:a6:0a:5e:65:7d:02:8a:e8:ba:4b:ac: 18:ae:b8:fd:74:dd:2f:3e:5f:97:6e:38:50:90:bb: 98:15:b9:bb:7e:4b:5b:e8:d9:a0:21:df:c1:0c:6f: fc:88:0c:fe:7d:22:86:f7:97:06:51:4c:11:50:90: d6:bd:36:ba:f4:7f:75:5b:3c:b8:4a:8c:c7:3e:c6: 59:84:ba:e5:9d:f5:69:a8:82:19:32:0f:30:fb:3c: 67:d3:e5:2d:76:15:8d:f4:17:01:28:48:ac:bd:aa: c2:03:49:41:96:65:7d:83:68:ef:d1:58:16:f1:2d: 5c:bf:7d:83:1b:2a:6a:6b:67:32:0a:bd:3e:78:99: 44:9c:4e:9d:8d:8d:b0:77:03:cf:b8:2e:4b:eb:5e: c7:8a:5b:12:c0:ab:0a:f4:8a:41:cd:bb:81:3f:18: 04:72:bf:11:6e:f3:31:5b:76:da:33:92:5a:98:b9: 90:03:72:16:d8:fc:98:58:3d:ab:a4:c4:df:e3:05: a8:8a:f7:9a:0b:74:55:5c:6a:95:23:38:2f:aa:f6: f5:17:53:26:ed:54:1e:13:f1:06:13:96:e5:85:a1: 54:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:96:CA:64:43:65:09:98:7C:50:44:67:93:6B:F7:C7:1D:86:7F:5D X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:d6:37:0f:c9:73:94:e8:4d:53:25:ff:ab:24:59:dc:b0:fc: a6:1c:1c:0b:56:92:b7:e0:5d:8d:0e:3a:82:1c:02:d7:a0:77: a8:47:cb:c0:a4:2d:0a:16:d6:0a:56:fe:6e:f0:65:a5:c4:e1: 56:85:af:69:4b:2f:4a:08:d2:83:90:a6:06:de:11:a7:4a:2e: 79:2a:55:0d:1d:54:bc:45:e2:bf:06:d5:3d:e8:b5:6d:8d:f6: d1:23:f6:cd:1e:75:00:1e:d4:75:ae:59:e8:c8:0c:df:59:8d: 5f:2d:26:9a:bc:40:d9:6b:eb:7d:df:93:5f:ce:eb:ed:79:10: 72:52:0c:4d:6b:03:74:30:a6:1e:10:73:64:ba:87:5d:d7:34: 38:6f:2e:43:16:9b:1c:b1:02:c5:ea:72:20:20:4c:84:da:61: 3a:05:9e:c6:3a:63:5a:e5:06:6b:59:23:b5:1d:1e:04:66:16: 66:3e:1d:a1:c3:f0:c2:74:46:4a:4d:d3:69:aa:d2:a0:17:55: 8a:dd:2a:e7:52:58:50:d7:42:6d:22:d7:e4:e1:b3:98:7b:94: 2c:ba:ca:be:b8:0d:90:b8:8b:34:b6:79:07:cc:db:2b:66:c9: 99:d4:2b:18:ed:70:4b:9a:00:8a:76:57:46:fa:61:31:6c:1a: e6:bb:28:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUxMjA2MTkzMTUwWhcNMjUxMjEzMTkzMTUwWjAYMRYwFAYD VQQDEw02OTM0ODRhNy0yNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZqBJJwFa746ItQc36xqtv47h8+ladVcVdJhxF8lFZJrpgpeZX0Ciui6S6wY rrj9dN0vPl+XbjhQkLuYFbm7fktb6NmgId/BDG/8iAz+fSKG95cGUUwRUJDWvTa6 9H91Wzy4SozHPsZZhLrlnfVpqIIZMg8w+zxn0+UtdhWN9BcBKEisvarCA0lBlmV9 g2jv0VgW8S1cv32DGypqa2cyCr0+eJlEnE6djY2wdwPPuC5L617HilsSwKsK9IpB zbuBPxgEcr8RbvMxW3baM5JamLmQA3IW2PyYWD2rpMTf4wWoiveaC3RVXGqVIzgv qvb1F1Mm7VQeE/EGE5blhaFUTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6WymRD ZQmYfFBEZ5Nr98cdhn9dMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu1jcPyXOU6E1TJf+rJFncsPymHBwLVpK34F2NDjqCHALXoHeoR8vA pC0KFtYKVv5u8GWlxOFWha9pSy9KCNKDkKYG3hGnSi55KlUNHVS8ReK/BtU96LVt jfbRI/bNHnUAHtR1rlnoyAzfWY1fLSaavEDZa+t935NfzuvteRByUgxNawN0MKYe EHNkuodd1zQ4by5DFpscsQLF6nIgIEyE2mE6BZ7GOmNa5QZrWSO1HR4EZhZmPh2h w/DCdEZKTdNpqtKgF1WK3SrnUlhQ10JtItfk4bOYe5Qsusq+uA2QuIs0tnkHzNsr ZsmZ1CsY7XBLmgCKdldG+mExbBrmuyj8 -----END CERTIFICATE-----Generated at Sun Dec 7 18:58:48 2025 by rpki-client