This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft File: b09GjkMIsA0N9f6shChm1U539dM.mft (raw, json) Hash identifier: ILKTRkOI6neSZlJC6a/QjMNQdQWTwevz03N7kopxMYU= Subject key identifier: 1D:18:4E:32:C2:AD:20:92:48:3B:79:B1:76:29:A5:00:2A:6A:3C:29 Authority key identifier: 6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 Certificate issuer: /CN=A915D1A2/serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Certificate serial: 0CDB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft Manifest number: 0CC1 Signing time: Wed 24 Dec 2025 17:59:39 +0000 Manifest this update: Wed 24 Dec 2025 17:59:39 +0000 Manifest next update: Wed 31 Dec 2025 17:59:39 +0000 Files and hashes: 1: b09GjkMIsA0N9f6shChm1U539dM.crl (hash: Ys5SCpdiZhPK6y0oHkTXQ/tfdmdrVeGRpOMYoXv970U=) 2: 38360112C3EB11F080C9980DC4F9AE02.roa (hash: XqYyZyrqJ9BamfB85dIngxi60ilbd+EHlah+RvSpOvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 17:59:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3291 (0xcdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D1A2, serialNumber=6F4F468E4308B00D0DF5FEAC842866D54E77F5D3 Validity Not Before: Dec 24 17:59:39 2025 GMT Not After : Dec 31 17:59:39 2025 GMT Subject: CN=694c2a0b-88e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e6:b1:ba:42:8f:a9:63:fa:cd:4b:62:8a:63: 03:af:24:1f:b3:76:59:91:3a:1e:04:ec:9f:25:b1: e9:62:c6:90:3b:42:59:c2:f7:a3:b0:70:4f:75:fb: 15:7d:b6:73:cb:78:33:4e:52:23:ee:ab:62:2a:bf: 95:24:1f:96:b8:a7:86:83:e4:9e:89:bb:97:06:a6: 5d:57:ac:c2:61:34:84:89:81:ff:45:8b:d3:86:3a: 61:b7:54:c7:6c:0c:04:45:d2:ec:cc:3a:a3:c6:aa: 87:8b:62:ef:df:15:a8:3e:de:21:73:a8:33:c4:2e: c6:6b:c2:8f:61:e1:84:d5:8e:df:1f:38:42:6a:ff: fd:8a:f2:e9:50:cb:d2:36:f2:b0:7c:b4:d7:31:fe: 60:99:40:88:b6:49:55:28:d2:65:23:50:da:86:99: 9b:1b:fb:bb:01:8d:86:c0:f0:ba:12:13:9d:cc:6c: a4:d3:a6:37:51:d2:b7:ec:12:65:c5:a5:7b:fb:5a: 1a:2e:ae:cf:29:ee:1e:bf:f9:fe:79:3f:0f:cc:7c: 52:7b:7f:6b:0c:a0:f0:be:3c:ac:b9:3b:e2:db:85: 29:da:ca:59:39:ff:19:7f:7e:a7:69:79:d7:fb:6b: 67:63:4d:15:b0:4b:76:67:3a:91:e9:6c:12:08:11: 54:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:18:4E:32:C2:AD:20:92:48:3B:79:B1:76:29:A5:00:2A:6A:3C:29 X509v3 Authority Key Identifier: keyid:6F:4F:46:8E:43:08:B0:0D:0D:F5:FE:AC:84:28:66:D5:4E:77:F5:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b09GjkMIsA0N9f6shChm1U539dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D1A2/DFD11F2806A611EA8975E341C4F9AE02/b09GjkMIsA0N9f6shChm1U539dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:4c:a0:88:e4:46:b7:1d:f7:b0:d3:76:a2:2c:4e:77:0b:93: a3:4c:b6:82:fc:0e:41:21:62:34:77:c0:cb:8f:bb:42:97:4c: e2:28:3c:33:7c:f6:be:a1:50:f9:18:ba:e7:38:4a:73:b1:08: 65:c2:ae:29:65:b7:51:7b:67:c5:e2:d7:cf:72:01:e0:87:3a: 1d:e9:46:8a:7b:50:06:86:2d:5a:86:a1:82:2c:4c:bc:a5:83: 04:88:d1:3f:57:4a:b6:78:01:af:4d:6b:b5:e4:7f:71:ea:43: d2:8a:be:fa:45:6a:99:e3:73:00:11:16:0d:c8:f1:74:53:10: bc:ab:0d:a5:d2:0a:6a:95:dc:70:66:9f:55:cb:cc:3d:41:36: 56:ee:93:26:f5:af:ab:36:54:fa:62:42:6c:ac:bd:a4:1e:de: 97:e6:8a:4b:c8:94:4a:19:d0:8e:cd:d5:7c:30:1d:17:5a:3d: 68:18:d5:a3:ac:1d:d2:e5:ec:4b:f1:49:df:c0:b9:fc:72:a4: bc:74:8b:2f:17:64:0b:bf:fc:8e:ca:f4:b2:24:75:0c:18:85: 8e:31:52:d6:6a:e4:e6:23:9e:60:66:49:69:b1:15:84:3e:0c: e8:68:f4:bd:ee:3a:da:ee:77:74:49:8a:df:58:06:11:13:c4: b0:c6:ac:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQxQTIxMTAvBgNVBAUTKDZGNEY0NjhFNDMwOEIwMEQwREY1RkVBQzg0Mjg2NkQ1 NEU3N0Y1RDMwHhcNMjUxMjI0MTc1OTM5WhcNMjUxMjMxMTc1OTM5WjAYMRYwFAYD VQQDDA02OTRjMmEwYi04OGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuaxukKPqWP6zUtiimMDryQfs3ZZkToeBOyfJbHpYsaQO0JZwvejsHBPdfsV fbZzy3gzTlIj7qtiKr+VJB+WuKeGg+SeibuXBqZdV6zCYTSEiYH/RYvThjpht1TH bAwERdLszDqjxqqHi2Lv3xWoPt4hc6gzxC7Ga8KPYeGE1Y7fHzhCav/9ivLpUMvS NvKwfLTXMf5gmUCItklVKNJlI1DahpmbG/u7AY2GwPC6EhOdzGyk06Y3UdK37BJl xaV7+1oaLq7PKe4ev/n+eT8PzHxSe39rDKDwvjysuTvi24Up2spZOf8Zf36naXnX +2tnY00VsEt2ZzqR6WwSCBFUEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0YTjLC rSCSSDt5sXYppQAqajwpMB8GA1UdIwQYMBaAFG9PRo5DCLANDfX+rIQoZtVOd/XT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDFBMi9ERkQxMUYyODA2 QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNBME45ZjZzaENobTFVNTM5 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IwOUdqa01Jc0EwTjlmNnNoQ2htMVU1MzlkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDFBMi9ERkQxMUYyODA2QTYxMUVBODk3NUUzNDFDNEY5QUUwMi9iMDlHamtNSXNB ME45ZjZzaENobTFVNTM5ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdTKCI5Ea3Hfew03aiLE53C5OjTLaC/A5BIWI0d8DLj7tCl0ziKDwz fPa+oVD5GLrnOEpzsQhlwq4pZbdRe2fF4tfPcgHghzod6UaKe1AGhi1ahqGCLEy8 pYMEiNE/V0q2eAGvTWu15H9x6kPSir76RWqZ43MAERYNyPF0UxC8qw2l0gpqldxw Zp9Vy8w9QTZW7pMm9a+rNlT6YkJsrL2kHt6X5opLyJRKGdCOzdV8MB0XWj1oGNWj rB3S5exL8UnfwLn8cqS8dIsvF2QLv/yOyvSyJHUMGIWOMVLWauTmI55gZklpsRWE PgzoaPS97jra7nd0SYrfWAYRE8SwxqzW -----END CERTIFICATE-----Generated at Wed Dec 24 23:26:47 2025 by rpki-client