This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft File: C0io-y5r59-P7QejyRmyPKQL3so.mft (raw, json) Hash identifier: s5+6xVLjV9igXw/W6RqxK7Hox2sf0ZixcCdGcbxDhd4= Subject key identifier: 46:BB:9C:F5:14:42:CA:8B:A1:EB:3A:2A:CA:45:79:44:68:57:9C:07 Authority key identifier: 0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA Certificate issuer: /CN=A91442B0/serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Certificate serial: 0B2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft Manifest number: 0B1A Signing time: Sat 06 Dec 2025 18:37:39 +0000 Manifest this update: Sat 06 Dec 2025 18:37:38 +0000 Manifest next update: Sat 13 Dec 2025 18:37:38 +0000 Files and hashes: 1: C0io-y5r59-P7QejyRmyPKQL3so.crl (hash: sPemgjRzNo+jdJOvj3z1CNXM25kX1AbSULDkoOyLOcc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 15:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442B0, serialNumber=0B48A8FB2E6BE7DF8FED07A3C919B23CA40BDECA Validity Not Before: Dec 6 18:37:38 2025 GMT Not After : Dec 13 18:37:38 2025 GMT Subject: CN=693477f2-3a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ee:2b:74:67:b4:3c:1a:e0:74:d0:30:15:ad: 1f:33:05:14:2d:6b:4d:91:b2:e6:e1:38:a4:c2:96: fc:fa:93:1f:5d:8a:cd:0b:8e:4e:df:b6:b0:2c:98: 7e:35:1e:56:37:e9:64:be:07:d2:16:b7:4b:45:dc: b0:40:79:78:93:bf:86:33:98:47:33:99:bf:36:c3: f6:bf:53:f5:7a:29:95:be:7f:7f:d3:2a:46:56:46: ac:ff:f2:8a:ef:be:31:d9:7d:91:dc:1a:7c:0c:6a: 9c:df:24:c0:be:31:f3:33:60:93:17:b5:c8:77:a0: 0a:d2:3c:67:04:d7:72:54:59:44:09:bb:c9:11:c3: c7:77:18:2d:1f:55:b9:39:55:0c:30:ed:fb:76:95: ac:79:52:b7:c1:92:42:c6:a3:ac:41:3e:5a:a4:8a: 84:90:dd:00:48:02:ee:ee:04:a2:5b:9e:43:f5:b8: 5f:19:c6:d2:ad:27:17:63:f6:6f:2e:fd:90:73:f2: 2f:59:58:b0:d2:f1:0c:b6:28:41:99:2a:9b:93:04: 17:fb:b3:90:a8:65:81:52:79:84:e7:01:92:5d:6f: 31:d7:e9:28:72:d7:06:d4:eb:83:cc:ae:75:ef:c7: 58:24:b2:4e:bc:fd:36:f7:e2:4f:a5:16:5b:cc:38: 7f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:BB:9C:F5:14:42:CA:8B:A1:EB:3A:2A:CA:45:79:44:68:57:9C:07 X509v3 Authority Key Identifier: keyid:0B:48:A8:FB:2E:6B:E7:DF:8F:ED:07:A3:C9:19:B2:3C:A4:0B:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C0io-y5r59-P7QejyRmyPKQL3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442B0/66E0CAD656ED11EAA747C237C4F9AE02/C0io-y5r59-P7QejyRmyPKQL3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:73:16:49:6c:29:80:f1:a8:9a:aa:8c:28:50:9d:ad:2b:c3: 80:bd:4c:a0:c9:fe:08:54:a1:55:37:e7:79:92:e5:29:4a:12: 1f:a7:c5:6e:91:fa:22:85:43:d8:c2:52:db:3f:16:19:72:75: ec:e7:94:8f:9c:d6:7d:91:84:4f:a8:4e:c9:6c:1f:f3:49:a8: 49:70:5f:49:ad:cf:97:2a:00:b8:79:0e:6f:ab:54:24:4c:f6: 77:56:ae:e2:88:fb:98:53:4d:b5:69:a0:a6:15:69:71:1a:0d: 1f:2d:de:67:e2:dc:5d:5e:d9:de:c3:33:63:54:9e:a0:46:21: 4f:9b:ea:67:9d:f7:3d:00:ba:ff:06:7c:4e:66:a0:f8:52:f4: 5e:69:6a:1d:bd:c2:c8:c9:d1:90:d3:87:f6:ae:52:45:86:e5: d1:ae:e4:09:53:58:f8:69:da:dd:e7:61:e7:41:4a:ff:a2:57: 40:14:61:be:b7:67:a5:64:b5:59:40:6f:0b:eb:27:6d:51:19: f0:4a:c0:81:87:bf:b5:45:d5:e4:f5:f4:d9:7a:bb:6c:6b:0b: 66:6a:b8:a2:85:bd:fa:51:a8:b4:4f:6f:72:90:f0:0a:c8:2c: 23:b0:30:d0:62:1e:97:08:e7:9e:87:b8:c6:f3:2a:71:3e:1b: 71:15:1e:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyQjAxMTAvBgNVBAUTKDBCNDhBOEZCMkU2QkU3REY4RkVEMDdBM0M5MTlCMjND QTQwQkRFQ0EwHhcNMjUxMjA2MTgzNzM4WhcNMjUxMjEzMTgzNzM4WjAYMRYwFAYD VQQDEw02OTM0NzdmMi0zYTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoe4rdGe0PBrgdNAwFa0fMwUULWtNkbLm4Tikwpb8+pMfXYrNC45O37awLJh+ NR5WN+lkvgfSFrdLRdywQHl4k7+GM5hHM5m/NsP2v1P1eimVvn9/0ypGVkas//KK 774x2X2R3Bp8DGqc3yTAvjHzM2CTF7XId6AK0jxnBNdyVFlECbvJEcPHdxgtH1W5 OVUMMO37dpWseVK3wZJCxqOsQT5apIqEkN0ASALu7gSiW55D9bhfGcbSrScXY/Zv Lv2Qc/IvWViw0vEMtihBmSqbkwQX+7OQqGWBUnmE5wGSXW8x1+koctcG1OuDzK51 78dYJLJOvP029+JPpRZbzDh/2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEa7nPUU QsqLoes6KspFeURoV5wHMB8GA1UdIwQYMBaAFAtIqPsua+ffj+0Ho8kZsjykC97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJCMC82NkUwQ0FENjU2 RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5LVA3UWVqeVJteVBLUUwz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MwaW8teTVyNTktUDdRZWp5Um15UEtRTDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJCMC82NkUwQ0FENjU2RUQxMUVBQTc0N0MyMzdDNEY5QUUwMi9DMGlvLXk1cjU5 LVA3UWVqeVJteVBLUUwzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDcxZJbCmA8aiaqowoUJ2tK8OAvUygyf4IVKFVN+d5kuUpShIfp8Vu kfoihUPYwlLbPxYZcnXs55SPnNZ9kYRPqE7JbB/zSahJcF9Jrc+XKgC4eQ5vq1Qk TPZ3Vq7iiPuYU021aaCmFWlxGg0fLd5n4txdXtnewzNjVJ6gRiFPm+pnnfc9ALr/ BnxOZqD4UvReaWodvcLIydGQ04f2rlJFhuXRruQJU1j4adrd52HnQUr/oldAFGG+ t2elZLVZQG8L6ydtURnwSsCBh7+1RdXk9fTZertsawtmariihb36Uai0T29ykPAK yCwjsDDQYh6XCOeeh7jG8ypxPhtxFR76 -----END CERTIFICATE-----Generated at Sat Dec 6 20:06:37 2025 by rpki-client