This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: lryoPSu41Y4DMrkzJvFjS1J69N0qb2PbubkLKuhDflE= Subject key identifier: C9:68:52:15:DE:8C:92:1F:65:02:96:A0:BE:3C:33:09:89:AE:5E:44 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: B2 Signing time: Fri 05 Dec 2025 04:08:18 +0000 Manifest this update: Fri 05 Dec 2025 04:08:18 +0000 Manifest next update: Fri 12 Dec 2025 04:08:18 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: PeRTH8vy/Ne/W4G+Y/1m1BXNBicONjZA6oQfl12WdOc=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: drd+idSshs98eOD0pXc/+ttH+udrA5TRp96UQZXHfUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 04:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Dec 5 04:08:18 2025 GMT Not After : Dec 12 04:08:18 2025 GMT Subject: CN=69325ab2-75b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5c:25:04:c4:fd:e6:83:1a:20:8d:82:bd:aa: 25:f6:09:8b:4b:33:56:c5:a5:fd:b7:3b:0c:a3:9b: bf:67:42:ec:f7:09:19:86:9d:76:81:f5:19:ce:7e: b6:56:fe:2b:1b:4c:5c:df:2e:2b:1f:17:f6:58:c0: 7d:e7:70:6b:c4:7d:0c:ba:f2:a3:6d:d2:ed:43:12: 6c:2d:75:db:34:68:71:d7:1f:2c:dd:98:07:67:08: 1a:87:33:25:41:65:a9:71:22:70:27:24:78:73:2a: 18:9c:ea:f0:a8:b6:9b:5b:8e:64:5f:b6:d7:ee:74: 27:43:2a:c3:b8:b5:aa:7e:d5:9c:22:19:18:c8:c2: 6a:24:3c:9c:17:a7:2c:e1:d2:af:ab:d5:da:83:e3: 7d:4d:57:f1:7c:a2:0a:f7:1d:8a:1b:93:07:b3:8a: 58:1b:70:2d:03:5b:e3:81:64:1a:8c:c0:ec:8a:d9: ad:89:68:6d:55:3d:47:4b:09:95:6e:fc:20:49:6e: e2:18:cf:6b:2d:f0:ec:27:04:a2:13:2e:18:73:a0: ae:95:1b:26:5e:eb:a6:8a:d8:db:c4:e2:9e:ac:80: 28:fe:73:90:ed:5f:5d:4f:fd:ed:87:e5:1b:85:17: 85:c7:dc:26:7a:82:1f:c1:6d:bb:56:56:06:b1:ea: bd:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:68:52:15:DE:8C:92:1F:65:02:96:A0:BE:3C:33:09:89:AE:5E:44 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:47:79:6d:98:c1:ca:0e:18:40:c0:cb:38:b7:b0:d0:0f:23: 87:d0:5b:60:cd:97:e0:cc:1c:fe:2b:23:50:30:19:60:d0:99: 58:19:82:45:52:d2:8a:7c:2b:9f:d7:3e:06:03:4f:3d:47:eb: 71:82:4f:8d:5e:25:32:34:47:e3:45:40:89:d5:27:44:60:4b: 31:be:ac:b1:b6:47:e8:78:2d:3a:5b:60:77:90:9d:77:d1:76: f5:eb:88:9c:80:9e:7c:fe:f0:8b:fe:41:b9:5f:7e:f7:a5:c6: c0:30:7f:a6:ac:94:f1:12:2c:01:88:c8:cd:63:1e:c6:e1:7c: a2:01:ba:9f:20:4e:bd:1d:a2:6a:72:ee:e7:46:b9:78:0f:53: e8:e9:17:4b:25:d9:e3:aa:9a:d4:2b:38:d3:dd:fe:29:82:d7: 01:b4:b6:df:76:b6:2a:e5:d9:b7:a9:d2:5f:e2:0a:04:63:99: 53:2a:48:f5:1b:03:e0:a3:e5:9e:6e:54:54:6a:35:6f:1f:a2: b5:66:b7:b4:90:6e:19:13:c3:3b:55:17:d0:0e:21:16:05:51: 2a:61:1b:fc:bf:37:0d:e1:de:e3:b7:cb:60:5b:86:97:8b:5d: 2e:07:cf:d5:ff:34:7f:be:69:be:36:92:0b:ab:4f:4a:0c:6e: fe:49:a8:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjUxMjA1MDQwODE4WhcNMjUxMjEyMDQwODE4WjAYMRYwFAYD VQQDEw02OTMyNWFiMi03NWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FwlBMT95oMaII2Cvaol9gmLSzNWxaX9tzsMo5u/Z0Ls9wkZhp12gfUZzn62 Vv4rG0xc3y4rHxf2WMB953BrxH0MuvKjbdLtQxJsLXXbNGhx1x8s3ZgHZwgahzMl QWWpcSJwJyR4cyoYnOrwqLabW45kX7bX7nQnQyrDuLWqftWcIhkYyMJqJDycF6cs 4dKvq9Xag+N9TVfxfKIK9x2KG5MHs4pYG3AtA1vjgWQajMDsitmtiWhtVT1HSwmV bvwgSW7iGM9rLfDsJwSiEy4Yc6CulRsmXuumitjbxOKerIAo/nOQ7V9dT/3th+Ub hReFx9wmeoIfwW27VlYGseq9MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMloUhXe jJIfZQKWoL48MwmJrl5EMB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwR3ltmMHKDhhAwMs4t7DQDyOH0FtgzZfgzBz+KyNQMBlg0JlYGYJF UtKKfCuf1z4GA089R+txgk+NXiUyNEfjRUCJ1SdEYEsxvqyxtkfoeC06W2B3kJ13 0Xb164icgJ58/vCL/kG5X373pcbAMH+mrJTxEiwBiMjNYx7G4XyiAbqfIE69HaJq cu7nRrl4D1Po6RdLJdnjqprUKzjT3f4pgtcBtLbfdrYq5dm3qdJf4goEY5lTKkj1 GwPgo+WeblRUajVvH6K1Zre0kG4ZE8M7VRfQDiEWBVEqYRv8vzcN4d7jt8tgW4aX i10uB8/V/zR/vmm+NpILq09KDG7+SagQ -----END CERTIFICATE-----Generated at Sat Dec 6 17:27:11 2025 by rpki-client