This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: HGOyb00VaGIRH4gNKICbKxx4donbluDYudA/TPxEaR4= Subject key identifier: 01:B2:52:E7:5F:9E:6C:AE:ED:2F:FA:BE:2E:AC:33:97:8F:DC:52:F5 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 084A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0839 Signing time: Wed 24 Dec 2025 20:13:46 +0000 Manifest this update: Wed 24 Dec 2025 20:13:46 +0000 Manifest next update: Wed 31 Dec 2025 20:13:46 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: 03kHHx6t2cWX3Qy2g+igFVOqh4PkIi9zaebzBtX/mKk=) 2: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 4: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 20:13:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2122 (0x84a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Dec 24 20:13:46 2025 GMT Not After : Dec 31 20:13:46 2025 GMT Subject: CN=694c497a-796b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:95:b8:24:c7:d7:bf:0c:42:86:32:fd:7d:ef: 15:62:a7:ef:af:c5:a0:02:f2:b3:09:63:ef:5c:ca: 2e:ca:55:d3:89:7e:36:58:32:59:38:fe:14:cb:2f: c1:05:2d:b5:35:c8:49:cf:1c:c2:d4:4a:25:d5:d2: dc:07:e0:6d:28:f6:01:90:e7:6b:14:62:ac:d6:43: 3c:aa:1c:16:cb:4a:1d:e1:a1:55:79:52:59:fb:f9: a5:64:89:d7:21:bb:a3:f8:48:98:bf:9d:6e:8c:b8: 53:50:66:89:cf:e0:2b:a3:3f:3c:69:e3:34:5d:39: 86:3b:9d:de:33:2e:02:a4:38:5d:66:f7:49:e7:4a: 82:95:51:bf:5e:18:70:cd:21:2d:b8:1b:39:3e:14: 47:89:d5:60:9f:73:7a:48:3a:5f:a9:38:04:54:d8: 86:4f:af:b6:7d:d5:9e:a9:46:2c:9d:fb:33:4b:29: b9:ff:9d:5f:3d:82:f7:d6:f4:59:9f:5e:ac:04:74: d3:17:73:6b:b9:e3:b1:7d:36:57:e3:db:ba:6f:60: 9a:60:e1:6e:c7:84:ba:05:4d:9e:cf:55:5f:17:fe: 64:e4:cb:17:72:15:68:0b:ef:3e:c9:79:eb:48:06: 24:0b:2b:7f:8f:60:5f:9c:7a:2a:52:29:7f:0f:b0: 5f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B2:52:E7:5F:9E:6C:AE:ED:2F:FA:BE:2E:AC:33:97:8F:DC:52:F5 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:07:78:b5:08:e4:e8:ea:37:57:6e:3e:9c:7c:bb:6a:88:7e: 5d:c1:0d:0d:b7:20:46:c0:06:62:61:7f:79:35:ee:a3:60:83: f1:28:66:4b:48:8c:ac:ba:4a:ac:f0:73:cd:f3:ab:7e:b6:31: f0:59:d1:bf:98:66:fb:a2:98:43:61:30:92:ed:5e:66:38:c8: 25:c6:d2:d8:d0:6c:52:a1:4f:0c:84:6b:bb:32:c0:29:76:8c: 97:dd:cc:80:af:eb:5a:8d:8d:3d:56:55:a2:3c:df:4a:da:4f: 68:49:6d:57:80:1f:cc:66:38:44:bd:04:aa:fc:10:2f:19:df: 8e:bc:92:23:35:c1:f6:02:4b:ae:ac:0f:5b:a2:dc:09:f2:10: ae:75:6a:53:18:c1:f6:92:4b:55:f4:4a:8d:3c:4d:dc:f1:b8: ed:65:a9:95:ad:4d:72:4e:74:bc:bd:3f:63:de:cd:63:39:0b: 8e:25:f4:dd:f2:58:41:90:90:f2:1d:82:61:9a:35:43:9e:2e: 98:19:f8:2f:37:2a:64:26:16:02:a7:87:8a:7b:00:24:c4:dd: 11:18:79:1d:c9:df:5b:00:b4:96:47:ad:df:7e:53:bc:e2:5f: 7a:75:83:f7:ec:fc:73:fd:00:6c:d9:95:12:7e:37:08:59:26: a9:37:d3:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUxMjI0MjAxMzQ2WhcNMjUxMjMxMjAxMzQ2WjAYMRYwFAYD VQQDDA02OTRjNDk3YS03OTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlJW4JMfXvwxChjL9fe8VYqfvr8WgAvKzCWPvXMouylXTiX42WDJZOP4Uyy/B BS21NchJzxzC1Eol1dLcB+BtKPYBkOdrFGKs1kM8qhwWy0od4aFVeVJZ+/mlZInX Ibuj+EiYv51ujLhTUGaJz+Aroz88aeM0XTmGO53eMy4CpDhdZvdJ50qClVG/Xhhw zSEtuBs5PhRHidVgn3N6SDpfqTgEVNiGT6+2fdWeqUYsnfszSym5/51fPYL31vRZ n16sBHTTF3NrueOxfTZX49u6b2CaYOFux4S6BU2ez1VfF/5k5MsXchVoC+8+yXnr SAYkCyt/j2BfnHoqUil/D7BfNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGyUudf nmyu7S/6vi6sM5eP3FL1MB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/B3i1COTo6jdXbj6cfLtqiH5dwQ0NtyBGwAZiYX95Ne6jYIPxKGZL SIysukqs8HPN86t+tjHwWdG/mGb7ophDYTCS7V5mOMglxtLY0GxSoU8MhGu7MsAp doyX3cyAr+tajY09VlWiPN9K2k9oSW1XgB/MZjhEvQSq/BAvGd+OvJIjNcH2Akuu rA9botwJ8hCudWpTGMH2kktV9EqNPE3c8bjtZamVrU1yTnS8vT9j3s1jOQuOJfTd 8lhBkJDyHYJhmjVDni6YGfgvNypkJhYCp4eKewAkxN0RGHkdyd9bALSWR63fflO8 4l96dYP37Pxz/QBs2ZUSfjcIWSapN9NY -----END CERTIFICATE-----Generated at Thu Dec 25 03:01:45 2025 by rpki-client