This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft File: CmH1ryEJpoNhH7ogbyCM7-NImCE.mft (raw, json) Hash identifier: krEzJmEnX0vUfVGaw/DJQWFPiLrtCqa6ykzGoW1fphs= Subject key identifier: 47:29:A2:F2:F6:69:3D:8C:89:89:50:6A:66:A6:50:06:5B:D9:C1:65 Authority key identifier: 0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 Certificate issuer: /CN=A91559AC/serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Certificate serial: 0AE9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft Manifest number: 0B5E Signing time: Thu 04 Dec 2025 18:45:32 +0000 Manifest this update: Thu 04 Dec 2025 18:45:32 +0000 Manifest next update: Thu 11 Dec 2025 18:45:32 +0000 Files and hashes: 1: CmH1ryEJpoNhH7ogbyCM7-NImCE.crl (hash: aWqpNeMQ6Pg3i4OVhZBlKh0479g/WTc+6xiZE2broMw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2793 (0xae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91559AC, serialNumber=0A61F5AF2109A683611FBA206F208CEFE3489821 Validity Not Before: Dec 4 18:45:32 2025 GMT Not After : Dec 11 18:45:32 2025 GMT Subject: CN=6931d6cc-58e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4a:1d:3f:76:ec:5e:b2:58:76:ab:65:e0:85: e8:66:9f:99:ed:77:55:eb:e0:06:37:7b:b3:e8:9c: 5a:67:f9:08:9e:a8:ef:6e:e3:4d:8e:bd:62:93:57: 37:88:98:05:3d:7b:ea:06:f4:05:d3:0d:53:46:a8: 1d:3c:f2:a4:7e:a2:9d:a2:2a:7c:c4:b0:35:64:26: 4f:c8:8b:14:2e:1b:b3:1a:69:7b:e4:68:0b:15:a7: ba:f8:fa:25:4c:74:24:29:c1:a1:11:a5:dc:ca:69: b9:0c:be:ad:b2:95:2f:b4:09:82:f3:0a:39:6f:d4: 0b:e7:81:6f:e2:25:6c:28:77:1a:6e:60:16:3e:77: 26:66:5a:b7:62:e7:b5:78:cc:49:76:1b:d0:c4:42: 15:8e:e5:9a:a7:7d:f9:88:dd:1e:c1:c6:5f:a3:fa: 90:30:15:1b:45:64:88:26:35:68:d3:60:71:c2:bb: 10:ae:bd:8f:7f:49:96:09:d4:b2:90:66:e2:ab:0e: 75:09:0a:7d:dd:49:b4:7d:c7:5a:47:1d:9f:0b:39: 1e:c7:36:50:66:f2:17:3e:f5:c9:83:8b:46:79:49: dd:64:3f:03:be:bc:4a:68:1c:80:62:9d:80:da:70: 77:f0:ab:ad:a5:73:0e:23:f4:7e:38:3e:97:75:bc: 59:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:29:A2:F2:F6:69:3D:8C:89:89:50:6A:66:A6:50:06:5B:D9:C1:65 X509v3 Authority Key Identifier: keyid:0A:61:F5:AF:21:09:A6:83:61:1F:BA:20:6F:20:8C:EF:E3:48:98:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmH1ryEJpoNhH7ogbyCM7-NImCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91559AC/C06135165F8D11EAB500BD64C4F9AE02/CmH1ryEJpoNhH7ogbyCM7-NImCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:79:d2:c6:a7:4f:1c:d6:be:1e:fc:5a:44:3f:72:5f:1a:bd: 25:df:05:31:2a:1c:55:3d:bb:09:17:2d:ef:c9:87:3e:16:5f: ea:c3:10:4f:01:29:ac:47:92:80:ac:57:0c:ca:b2:a3:8d:cf: 4e:88:82:f7:41:c1:cf:b7:72:fa:b0:c3:ca:43:1d:1d:6f:b9: bb:49:ae:cc:7b:4c:17:f6:6d:33:78:a0:e5:69:c2:0a:aa:ef: da:cd:9e:24:38:d9:bd:7d:c4:16:02:18:b0:72:8f:5a:a4:58: a7:42:70:7c:ac:e6:f0:de:48:40:d0:46:7e:2c:11:95:18:30: 28:01:ef:fb:25:43:4c:de:de:f3:6d:0b:ef:a3:4c:04:16:fb: 06:26:b1:a2:63:5a:6a:04:da:60:5b:a7:4b:4d:74:31:7a:4d: 2b:84:81:5a:70:a6:f2:64:ae:4c:ea:80:b6:d0:82:83:7a:24: 94:12:c6:cd:4e:0d:7c:20:c8:10:e6:b9:0f:8b:85:bf:7f:72: db:2e:52:fb:15:8d:9a:df:ee:06:07:5e:79:6d:76:f3:61:b7: 45:d0:a7:86:24:6f:91:86:b8:55:61:45:e2:32:68:8e:78:15: 7f:a6:2c:9d:08:79:89:fa:77:f4:06:9d:e8:a3:8f:6c:15:81: 30:c0:f8:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU5QUMxMTAvBgNVBAUTKDBBNjFGNUFGMjEwOUE2ODM2MTFGQkEyMDZGMjA4Q0VG RTM0ODk4MjEwHhcNMjUxMjA0MTg0NTMyWhcNMjUxMjExMTg0NTMyWjAYMRYwFAYD VQQDEw02OTMxZDZjYy01OGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEodP3bsXrJYdqtl4IXoZp+Z7XdV6+AGN3uz6JxaZ/kInqjvbuNNjr1ik1c3 iJgFPXvqBvQF0w1TRqgdPPKkfqKdoip8xLA1ZCZPyIsULhuzGml75GgLFae6+Pol THQkKcGhEaXcymm5DL6tspUvtAmC8wo5b9QL54Fv4iVsKHcabmAWPncmZlq3Yue1 eMxJdhvQxEIVjuWap335iN0ewcZfo/qQMBUbRWSIJjVo02BxwrsQrr2Pf0mWCdSy kGbiqw51CQp93Um0fcdaRx2fCzkexzZQZvIXPvXJg4tGeUndZD8DvrxKaByAYp2A 2nB38KutpXMOI/R+OD6XdbxZxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEcpovL2 aT2MiYlQamamUAZb2cFlMB8GA1UdIwQYMBaAFAph9a8hCaaDYR+6IG8gjO/jSJgh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTlBQy9DMDYxMzUxNjVG OEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBvTmhIN29nYnlDTTctTklt Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtSDFyeUVKcG9OaEg3b2dieUNNNy1OSW1DRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTlBQy9DMDYxMzUxNjVGOEQxMUVBQjUwMEJENjRDNEY5QUUwMi9DbUgxcnlFSnBv TmhIN29nYnlDTTctTkltQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGedLGp08c1r4e/FpEP3JfGr0l3wUxKhxVPbsJFy3vyYc+Fl/qwxBP ASmsR5KArFcMyrKjjc9OiIL3QcHPt3L6sMPKQx0db7m7Sa7Me0wX9m0zeKDlacIK qu/azZ4kONm9fcQWAhiwco9apFinQnB8rObw3khA0EZ+LBGVGDAoAe/7JUNM3t7z bQvvo0wEFvsGJrGiY1pqBNpgW6dLTXQxek0rhIFacKbyZK5M6oC20IKDeiSUEsbN Tg18IMgQ5rkPi4W/f3LbLlL7FY2a3+4GB155bXbzYbdF0KeGJG+RhrhVYUXiMmiO eBV/piydCHmJ+nf0Bp3oo49sFYEwwPjq -----END CERTIFICATE-----Generated at Sat Dec 6 15:09:39 2025 by rpki-client