This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: T9tWId4wdp/aWCN5E5t5mIpYZprIIE/V+hUyPa5DBI0= Subject key identifier: 21:38:19:9A:70:34:50:00:74:54:82:42:9A:6D:52:79:0A:E0:5E:98 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 1419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 13F8 Signing time: Sat 20 Dec 2025 16:41:47 +0000 Manifest this update: Sat 20 Dec 2025 16:41:46 +0000 Manifest next update: Sat 27 Dec 2025 16:41:46 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: KYd2Hrr9Tv4G35Y2+nO9b4GwShLG5SP4JIko2PP+k4M=) 2: 43A759B0C82811F0B893BE0BC4F9AE02.roa (hash: rbeldU58m4YF2/4dOPbk3su/ZdQtCAeI5lgK94z/0hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 16:41:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5145 (0x1419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Dec 20 16:41:46 2025 GMT Not After : Dec 27 16:41:46 2025 GMT Subject: CN=6946d1cb-cedc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:0c:85:10:ca:0b:29:f0:16:42:3f:e5:bf:94: c9:ff:4e:c8:87:b8:87:5f:cd:0e:a4:d8:b7:13:ea: e9:5d:dd:c4:bf:aa:43:fa:ab:92:b0:a5:03:85:61: 0a:4e:41:c9:88:81:0c:59:8d:dd:62:e0:4f:58:13: a0:a0:4a:4e:25:4f:11:ae:33:32:00:08:dc:c9:7d: 28:45:f7:30:b2:8f:61:f6:1d:be:4f:78:a0:c7:28: 2d:55:df:84:95:04:c7:ef:bc:f2:92:bc:cd:4c:05: 06:4e:85:2e:9f:e5:7d:39:61:11:a2:9d:94:24:70: 26:23:be:9e:88:0a:53:b8:67:ca:95:73:76:50:df: 38:16:b2:00:58:99:0b:4f:c3:da:45:89:9f:cc:82: c1:e0:a2:46:37:7b:ba:64:fe:31:50:69:59:9d:10: 57:ad:46:1c:e7:cc:d3:ed:16:76:8d:dc:21:17:ac: a2:7d:37:fe:c6:7a:ba:9d:5f:74:79:37:16:ff:c2: de:6e:07:f1:9f:64:6d:29:30:d0:f1:c5:79:50:86: 6a:ae:8f:f7:8b:51:f2:68:45:95:e9:e3:eb:d4:1e: a1:c8:10:42:d1:d6:20:be:d1:72:a5:88:c6:d9:4c: 07:b9:71:4f:20:33:fe:58:62:08:1c:75:c1:48:42: 4a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:38:19:9A:70:34:50:00:74:54:82:42:9A:6D:52:79:0A:E0:5E:98 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0f:36:68:ae:a6:6b:f5:56:87:6e:31:74:3b:25:62:7c:e6: 40:1c:0f:ed:f6:be:de:83:be:b6:ac:3c:23:00:09:84:66:d7: bd:84:5d:0a:dc:eb:77:3c:7c:b6:df:d6:cc:22:f9:2d:ce:01: b2:fa:ae:7b:45:88:1d:8b:99:2f:9e:38:63:88:e3:ad:03:24: e2:94:df:c3:ed:89:01:f9:e0:b5:78:35:47:bd:be:fc:88:81: 19:4d:bf:50:e4:1c:7f:45:2d:29:f4:4a:22:c6:07:c5:90:6b: 93:d1:e2:fc:3f:38:1c:6a:2b:cf:61:72:40:6e:80:fb:62:0b: 77:8c:b1:1e:e8:b2:f1:f1:ee:79:9f:54:ac:46:54:be:22:06: f4:6a:8d:06:2d:52:78:ac:66:1c:68:5b:5e:5f:19:86:f1:95: 0a:2e:58:1e:8f:97:26:e8:8b:33:ee:77:9e:eb:31:b6:86:be: f1:49:d8:64:08:67:af:9e:eb:07:43:d7:45:f6:03:3f:93:a9: 8e:2a:aa:ee:f5:2e:f5:15:9e:ed:58:44:13:3e:36:fb:39:43: ca:51:ef:b6:7e:6f:7f:15:87:38:65:b6:af:8c:e8:e1:bc:26: 4b:04:7d:d7:48:71:44:64:89:c7:0c:0b:21:a6:34:be:59:34: f3:fc:2b:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUxMjIwMTY0MTQ2WhcNMjUxMjI3MTY0MTQ2WjAYMRYwFAYD VQQDDA02OTQ2ZDFjYi1jZWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjQyFEMoLKfAWQj/lv5TJ/07Ih7iHX80OpNi3E+rpXd3Ev6pD+quSsKUDhWEK TkHJiIEMWY3dYuBPWBOgoEpOJU8RrjMyAAjcyX0oRfcwso9h9h2+T3igxygtVd+E lQTH77zykrzNTAUGToUun+V9OWERop2UJHAmI76eiApTuGfKlXN2UN84FrIAWJkL T8PaRYmfzILB4KJGN3u6ZP4xUGlZnRBXrUYc58zT7RZ2jdwhF6yifTf+xnq6nV90 eTcW/8Lebgfxn2RtKTDQ8cV5UIZqro/3i1HyaEWV6ePr1B6hyBBC0dYgvtFypYjG 2UwHuXFPIDP+WGIIHHXBSEJKiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCE4GZpw NFAAdFSCQpptUnkK4F6YMB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcDzZorqZr9VaHbjF0OyVifOZAHA/t9r7eg762rDwjAAmEZte9hF0K 3Ot3PHy239bMIvktzgGy+q57RYgdi5kvnjhjiOOtAyTilN/D7YkB+eC1eDVHvb78 iIEZTb9Q5Bx/RS0p9EoixgfFkGuT0eL8PzgcaivPYXJAboD7Ygt3jLEe6LLx8e55 n1SsRlS+Igb0ao0GLVJ4rGYcaFteXxmG8ZUKLlgej5cm6Isz7nee6zG2hr7xSdhk CGevnusHQ9dF9gM/k6mOKqru9S71FZ7tWEQTPjb7OUPKUe+2fm9/FYc4ZbavjOjh vCZLBH3XSHFEZInHDAshpjS+WTTz/Ct6 -----END CERTIFICATE-----Generated at Sun Dec 21 12:28:44 2025 by rpki-client