This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft File: K08yPFindrTnU4be6Dci4EViMsY.mft (raw, json) Hash identifier: 8TGXKBRdAb5qiQw3DdVakd1wSp3LOKFS9Y7QN1g7Rxc= Subject key identifier: A1:9E:7D:26:9F:4D:8D:7C:43:D3:F9:9A:5A:BC:A8:C5:2B:5D:E0:3D Authority key identifier: 2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 Certificate issuer: /CN=A911BC62/serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Certificate serial: 0E53 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft Manifest number: 0E45 Signing time: Sat 20 Dec 2025 15:29:33 +0000 Manifest this update: Sat 20 Dec 2025 15:29:32 +0000 Manifest next update: Sat 27 Dec 2025 15:29:32 +0000 Files and hashes: 1: K08yPFindrTnU4be6Dci4EViMsY.crl (hash: 03WY76SflDxmUyl+vnbj+4mxzee/NkMx1MVHgBKmnrA=) 2: EE1EA292EA6A11E98F16FE30C4F9AE02.roa (hash: Our/a/Q4riPqnap8Bs+iL6aJ7lQ+NPuqmEKv5JVFqNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3667 (0xe53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Validity Not Before: Dec 20 15:29:32 2025 GMT Not After : Dec 27 15:29:32 2025 GMT Subject: CN=6946c0dd-1929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b8:3d:b3:23:6a:66:2c:de:43:57:e8:40:8a: f7:2d:9d:2d:5b:71:d1:2a:08:6d:03:65:9e:d4:17: 42:7e:73:81:46:fd:10:12:6f:c3:f0:cc:23:39:af: 61:35:79:4e:1d:31:04:e3:6b:04:6a:a9:20:7f:a5: 8d:06:4b:b2:9b:e8:f5:74:2c:8f:14:71:97:56:23: 9e:6a:c6:e7:94:c9:fc:8f:af:6d:4a:78:a9:52:4c: af:75:ca:00:62:de:78:ab:8e:f8:e2:3b:bc:e9:7e: b7:50:e8:e9:90:30:3d:a8:53:62:fd:23:78:04:d4: 37:01:b8:08:58:9e:bf:81:3e:c7:1e:31:06:b8:73: 35:25:4c:53:4c:4d:9c:a4:33:f1:88:2d:32:00:6a: 51:61:b7:ba:71:6b:c8:e3:5e:c7:b4:62:34:0c:63: 72:2d:65:0d:22:8e:04:54:35:f1:d0:2d:88:b4:7b: f6:d0:e9:68:74:5b:e6:5a:a9:6c:30:49:a3:ff:5c: 0f:59:43:71:41:06:76:10:f2:a7:7d:42:00:bf:21: 33:c4:b1:0c:2d:b1:4e:1f:5b:f4:21:e4:03:94:8d: 69:02:53:80:05:8b:d5:ec:40:84:f5:9c:22:76:3f: c9:5c:97:9a:5b:66:c5:19:20:30:00:74:b7:56:22: 02:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9E:7D:26:9F:4D:8D:7C:43:D3:F9:9A:5A:BC:A8:C5:2B:5D:E0:3D X509v3 Authority Key Identifier: keyid:2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:01:33:fe:ca:18:73:de:ad:04:1c:70:4d:a2:64:9e:57:0c: 17:03:f6:32:23:89:8b:2b:65:13:4e:e9:42:02:15:fc:14:9b: 99:f2:7a:98:56:cf:e1:9b:e5:15:c9:db:2b:60:70:dd:9f:7f: 03:40:32:93:65:49:bb:ab:17:8b:0c:cc:ea:fd:f5:da:7f:d0: 33:17:c2:64:af:79:5f:4c:c5:5a:fd:b7:e5:83:26:17:77:f9: 46:98:63:00:f9:22:4f:ee:db:fb:db:51:35:1d:d7:4c:73:4b: 1f:f1:53:64:64:27:49:1c:bc:55:94:32:29:73:2b:5e:b8:e1: 91:3f:c0:1b:50:b1:ac:bd:0e:e6:bc:cf:5e:12:b6:30:79:9b: aa:ea:6c:74:b3:5f:86:3f:5e:91:d3:29:1a:0c:f0:a8:47:06: a6:bf:30:cf:e1:53:69:e7:6f:04:be:f8:72:3c:13:9d:dd:1c: 9c:ae:2d:c9:61:9e:f4:30:4d:a2:bd:ad:b8:ed:37:1b:82:a5: dc:9e:ac:05:7f:6b:f7:0e:ec:1e:5c:98:ed:2d:16:85:d9:df: 03:7a:aa:bb:56:74:e4:a5:b3:35:6f:c4:47:b7:23:9a:fd:c0: 0b:a8:0e:0d:65:3d:a6:5f:d5:53:14:a0:92:1b:c2:50:7d:f7: 81:06:71:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDJCNEYzMjNDNThBNzc2QjRFNzUzODZERUU4MzcyMkUw NDU2MjMyQzYwHhcNMjUxMjIwMTUyOTMyWhcNMjUxMjI3MTUyOTMyWjAYMRYwFAYD VQQDDA02OTQ2YzBkZC0xOTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobg9syNqZizeQ1foQIr3LZ0tW3HRKghtA2We1BdCfnOBRv0QEm/D8MwjOa9h NXlOHTEE42sEaqkgf6WNBkuym+j1dCyPFHGXViOeasbnlMn8j69tSnipUkyvdcoA Yt54q4744ju86X63UOjpkDA9qFNi/SN4BNQ3AbgIWJ6/gT7HHjEGuHM1JUxTTE2c pDPxiC0yAGpRYbe6cWvI417HtGI0DGNyLWUNIo4EVDXx0C2ItHv20OlodFvmWqls MEmj/1wPWUNxQQZ2EPKnfUIAvyEzxLEMLbFOH1v0IeQDlI1pAlOABYvV7ECE9Zwi dj/JXJeaW2bFGSAwAHS3ViICjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGefSaf TY18Q9P5mlq8qMUrXeA9MB8GA1UdIwQYMBaAFCtPMjxYp3a051OG3ug3IuBFYjLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi9FRTk1RkQ0MkI3 NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRyVG5VNGJlNkRjaTRFVmlN c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0swOHlQRmluZHJUblU0YmU2RGNpNEVWaU1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QkM2Mi9FRTk1RkQ0MkI3NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRy VG5VNGJlNkRjaTRFVmlNc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApATP+yhhz3q0EHHBNomSeVwwXA/YyI4mLK2UTTulCAhX8FJuZ8nqY Vs/hm+UVydsrYHDdn38DQDKTZUm7qxeLDMzq/fXaf9AzF8Jkr3lfTMVa/bflgyYX d/lGmGMA+SJP7tv721E1HddMc0sf8VNkZCdJHLxVlDIpcyteuOGRP8AbULGsvQ7m vM9eErYweZuq6mx0s1+GP16R0ykaDPCoRwamvzDP4VNp528EvvhyPBOd3Rycri3J YZ70ME2iva247TcbgqXcnqwFf2v3DuweXJjtLRaF2d8Deqq7VnTkpbM1b8RHtyOa /cALqA4NZT2mX9VTFKCSG8JQffeBBnEZ -----END CERTIFICATE-----Generated at Sat Dec 20 21:07:23 2025 by rpki-client