This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft File: 06m0znk41yolUFSgwIW_eI6wabA.mft (raw, json) Hash identifier: IJ3Az2fjQ7D7Hdh/6djv3QmEOC1zl5OV/n5WMRfV9DQ= Subject key identifier: BC:52:95:8B:5C:37:D7:A6:88:00:3D:EC:14:AB:9A:10:34:66:73:47 Authority key identifier: D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 Certificate issuer: /CN=A914331D/serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Certificate serial: 0955 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft Manifest number: 094D Signing time: Thu 18 Dec 2025 19:42:59 +0000 Manifest this update: Thu 18 Dec 2025 19:42:58 +0000 Manifest next update: Thu 25 Dec 2025 19:42:58 +0000 Files and hashes: 1: 06m0znk41yolUFSgwIW_eI6wabA.crl (hash: daMR/5q2D84unbANcWBGaTSc3UCp50JlbpVovOCNXLM=) 2: 425602A0AD2111EA9510AC0DC4F9AE02.roa (hash: eiGSH0P7OA/wuySnx+L4WnNP4YI49fVfK6qem5HgBnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 19:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2389 (0x955) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914331D, serialNumber=D3A9B4CE7938D72A255054A0C085BF788EB069B0 Validity Not Before: Dec 18 19:42:58 2025 GMT Not After : Dec 25 19:42:58 2025 GMT Subject: CN=69445943-c2fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:42:9a:f3:47:1e:5b:32:84:cc:29:23:f4:32: cb:98:48:b8:63:e8:1a:84:84:0d:2a:c5:f6:93:00: c5:e2:7e:5d:b8:5b:d5:d1:d4:3b:a5:52:f9:2c:ac: 76:8f:64:5d:f1:dd:2e:a3:35:dd:52:6a:0f:4c:04: 39:c3:9e:5d:d8:3f:e9:47:96:05:67:0d:45:7f:eb: b9:ef:1e:20:5f:73:d0:5f:a5:13:43:ce:0f:32:e9: 30:5f:9e:b8:90:52:3c:8e:e8:76:ed:4f:8f:1f:33: 76:58:c6:da:9f:d0:29:4a:37:95:d6:c9:a2:1b:c9: 6e:c5:d2:1e:f1:88:9e:7e:5a:38:81:ed:31:ed:cb: 07:8a:bf:a4:38:1e:89:27:f6:75:d7:cf:8d:e7:92: 95:b2:82:a2:cf:05:e4:4b:87:7f:27:e6:aa:d8:fa: 75:94:df:b4:88:2e:8e:41:5d:cc:b7:29:dc:f1:51: 04:e0:c3:5a:02:b2:de:c4:5a:d7:6b:e5:37:07:ff: 4b:7f:a2:c9:32:32:a1:75:1e:b4:97:e4:cf:53:7e: 04:be:46:5a:83:f5:cc:4b:3d:23:ec:6f:d0:b2:8b: 87:15:73:5e:eb:a0:82:27:6c:cf:7b:d4:72:08:25: 72:7d:bd:d7:9b:f7:80:6a:7d:02:a6:75:f8:0c:85: ee:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:52:95:8B:5C:37:D7:A6:88:00:3D:EC:14:AB:9A:10:34:66:73:47 X509v3 Authority Key Identifier: keyid:D3:A9:B4:CE:79:38:D7:2A:25:50:54:A0:C0:85:BF:78:8E:B0:69:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/06m0znk41yolUFSgwIW_eI6wabA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914331D/4B45BFE8AD1E11EA94C7E581C4F9AE02/06m0znk41yolUFSgwIW_eI6wabA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:47:ef:01:cd:eb:71:f2:f6:38:78:1f:d5:10:41:75:47:84: c2:d7:68:40:2f:7d:d3:44:4b:53:01:6c:6e:37:e9:3f:0c:17: 04:41:6d:69:48:1e:0a:d0:fc:1d:42:7c:1c:cc:74:3c:6f:8e: f8:61:90:ea:fb:3f:f8:d9:51:75:ca:c2:94:ce:95:66:4d:4a: 50:5f:dc:13:ca:ed:32:f6:19:90:ea:93:b2:4a:35:09:b4:6e: 11:0e:a1:66:0b:89:ba:85:ee:10:5b:bb:bc:39:94:27:d1:ab: 76:63:9d:f8:89:0e:b8:f4:e0:59:43:23:66:df:ae:1b:8b:91: 56:cc:ef:a7:ee:67:57:37:05:3f:fd:2e:06:62:b0:ad:27:86: 35:eb:4e:e2:41:b1:9b:d8:65:44:52:42:d0:96:f3:15:09:e9: 38:2a:be:34:87:9b:a5:e1:95:c2:b4:16:6c:6e:6e:08:83:c1: 1f:c7:4a:b3:31:5e:67:50:6f:ad:4e:63:c6:9e:d8:0b:5e:54: 8d:50:ee:e0:b1:8a:3d:2b:cf:a1:a5:39:f8:2d:d2:52:b2:8e: 6d:00:41:d3:90:f3:8b:fe:f6:f1:f9:ea:0b:78:fa:8a:8c:4e: b9:e7:6f:78:42:a2:49:8f:cd:a3:18:7a:9f:bf:84:6a:8a:06: a1:48:18:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzMUQxMTAvBgNVBAUTKEQzQTlCNENFNzkzOEQ3MkEyNTUwNTRBMEMwODVCRjc4 OEVCMDY5QjAwHhcNMjUxMjE4MTk0MjU4WhcNMjUxMjI1MTk0MjU4WjAYMRYwFAYD VQQDDA02OTQ0NTk0My1jMmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkKa80ceWzKEzCkj9DLLmEi4Y+gahIQNKsX2kwDF4n5duFvV0dQ7pVL5LKx2 j2Rd8d0uozXdUmoPTAQ5w55d2D/pR5YFZw1Ff+u57x4gX3PQX6UTQ84PMukwX564 kFI8juh27U+PHzN2WMban9ApSjeV1smiG8luxdIe8Yieflo4ge0x7csHir+kOB6J J/Z118+N55KVsoKizwXkS4d/J+aq2Pp1lN+0iC6OQV3Mtync8VEE4MNaArLexFrX a+U3B/9Lf6LJMjKhdR60l+TPU34EvkZag/XMSz0j7G/QsouHFXNe66CCJ2zPe9Ry CCVyfb3Xm/eAan0CpnX4DIXuPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxSlYtc N9emiAA97BSrmhA0ZnNHMB8GA1UdIwQYMBaAFNOptM55ONcqJVBUoMCFv3iOsGmw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzMxRC80QjQ1QkZFOEFE MUUxMUVBOTRDN0U1ODFDNEY5QUUwMi8wNm0wem5rNDF5b2xVRlNnd0lXX2VJNndh YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2bTB6bms0MXlvbFVGU2d3SVdfZUk2d2FiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzMxRC80QjQ1QkZFOEFEMUUxMUVBOTRDN0U1ODFDNEY5QUUwMi8wNm0wem5rNDF5 b2xVRlNnd0lXX2VJNndhYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzR+8Bzetx8vY4eB/VEEF1R4TC12hAL33TREtTAWxuN+k/DBcEQW1p SB4K0PwdQnwczHQ8b474YZDq+z/42VF1ysKUzpVmTUpQX9wTyu0y9hmQ6pOySjUJ tG4RDqFmC4m6he4QW7u8OZQn0at2Y534iQ649OBZQyNm364bi5FWzO+n7mdXNwU/ /S4GYrCtJ4Y1607iQbGb2GVEUkLQlvMVCek4Kr40h5ul4ZXCtBZsbm4Ig8Efx0qz MV5nUG+tTmPGntgLXlSNUO7gsYo9K8+hpTn4LdJSso5tAEHTkPOL/vbx+eoLePqK jE655294QqJJj82jGHqfv4RqigahSBgK -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:39 2025 by rpki-client