This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: 8CwJAGGXTKrsAmY9lnDqmHF0re09yE1d8beHDqBvYJI= Subject key identifier: 33:4A:D6:E9:2C:DE:B8:81:AF:9D:5E:69:6A:67:0C:73:9D:86:48:11 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2CA9 Signing time: Thu 04 Dec 2025 16:26:16 +0000 Manifest this update: Thu 04 Dec 2025 16:26:16 +0000 Manifest next update: Thu 11 Dec 2025 16:26:16 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: XGP5S2BlOOouQrfX8yy/uj52STnZc1T9c7H1r+DJyrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 16:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3939 (0xf63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Dec 4 16:26:16 2025 GMT Not After : Dec 11 16:26:16 2025 GMT Subject: CN=6931b628-e5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:94:04:d1:55:6b:3f:e3:27:ad:26:29:20:89: ce:9a:38:ed:36:c7:d9:91:d6:74:e5:f0:04:f6:f9: 89:32:bc:56:23:33:ba:21:79:d9:01:ad:21:1f:76: 0f:d4:c8:d1:95:6b:76:8c:ce:72:42:e5:7c:66:df: b9:9c:0e:54:20:a4:4c:1a:6f:75:ef:51:40:b0:69: 04:a4:87:8a:a9:64:05:5f:ec:e5:0d:58:3e:25:30: 92:71:67:fd:9c:37:97:15:68:23:88:e9:00:41:24: df:17:bb:a4:a8:e9:da:4b:07:6f:95:fc:98:79:19: b9:d5:7f:1a:3d:be:be:1b:f7:cd:c8:08:15:ca:b4: ab:fc:62:5b:b4:bf:25:6a:e8:45:df:a9:ab:32:d0: 12:60:04:56:ab:af:0c:ff:32:95:c3:2a:48:17:82: 40:97:c9:de:cb:06:22:a5:41:34:40:89:29:ab:87: a0:94:87:df:75:16:14:e7:b1:f2:8c:10:39:8c:f5: e6:c9:a1:a5:fa:86:82:33:ca:3d:d1:4f:45:e7:3e: 0f:62:f1:3b:4e:0a:d6:5a:c6:59:e0:b4:3b:ea:4f: 08:7c:00:9e:bd:cb:1b:db:3c:50:99:c3:57:2c:be: 6b:b1:4f:eb:02:36:1f:7e:92:d8:23:11:98:94:b4: e0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:4A:D6:E9:2C:DE:B8:81:AF:9D:5E:69:6A:67:0C:73:9D:86:48:11 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:b1:1d:7a:5d:ca:e5:fb:7a:33:a3:9c:8e:49:5e:82:4f:7f: 41:ed:ac:7f:a3:df:cb:7b:2c:f1:71:56:cc:ff:c8:fd:db:b7: ae:9a:08:fc:c7:61:8e:84:0e:49:1a:60:83:ad:08:c6:9b:05: 9f:0a:e2:d3:df:d2:88:a5:1e:b5:c8:28:45:db:3a:86:64:9c: 25:0c:75:e5:42:43:15:70:7a:ae:9a:4f:e8:06:45:ae:72:4b: a9:cd:59:e0:84:08:6d:25:f5:01:d6:7e:21:5c:3c:37:12:04: 70:6c:a9:6c:d6:95:26:38:be:59:f2:e7:e2:84:3c:f1:47:80: ce:39:c0:c9:28:c3:2b:b4:03:26:39:ed:68:f1:e0:ff:0b:e5: 7c:ce:21:b5:b8:50:63:fd:34:94:b1:14:d5:59:5f:ff:e5:31: 3f:a0:cb:f5:0f:50:93:b1:f9:0f:ff:e2:f4:0b:85:7c:0b:28: c7:f4:c2:7e:63:1d:ba:4d:10:57:71:63:3c:d1:a9:9c:8a:d1: 78:c2:8d:e2:25:70:3a:19:87:b9:b7:1a:7b:02:e0:e6:ac:a4: 29:4d:52:47:15:79:de:9f:53:65:f2:33:d7:ef:1e:d3:ee:64: a1:41:94:bc:b9:f5:7f:c5:07:27:a7:3b:bd:c4:be:87:1f:93: 3d:8c:1b:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUxMjA0MTYyNjE2WhcNMjUxMjExMTYyNjE2WjAYMRYwFAYD VQQDEw02OTMxYjYyOC1lNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5QE0VVrP+MnrSYpIInOmjjtNsfZkdZ05fAE9vmJMrxWIzO6IXnZAa0hH3YP 1MjRlWt2jM5yQuV8Zt+5nA5UIKRMGm9171FAsGkEpIeKqWQFX+zlDVg+JTCScWf9 nDeXFWgjiOkAQSTfF7ukqOnaSwdvlfyYeRm51X8aPb6+G/fNyAgVyrSr/GJbtL8l auhF36mrMtASYARWq68M/zKVwypIF4JAl8neywYipUE0QIkpq4eglIffdRYU57Hy jBA5jPXmyaGl+oaCM8o90U9F5z4PYvE7TgrWWsZZ4LQ76k8IfACevcsb2zxQmcNX LL5rsU/rAjYffpLYIxGYlLTgbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNK1uks 3riBr51eaWpnDHOdhkgRMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcsR16Xcrl+3ozo5yOSV6CT39B7ax/o9/LeyzxcVbM/8j927eumgj8 x2GOhA5JGmCDrQjGmwWfCuLT39KIpR61yChF2zqGZJwlDHXlQkMVcHqumk/oBkWu ckupzVnghAhtJfUB1n4hXDw3EgRwbKls1pUmOL5Z8ufihDzxR4DOOcDJKMMrtAMm Oe1o8eD/C+V8ziG1uFBj/TSUsRTVWV//5TE/oMv1D1CTsfkP/+L0C4V8CyjH9MJ+ Yx26TRBXcWM80amcitF4wo3iJXA6GYe5txp7AuDmrKQpTVJHFXnen1Nl8jPX7x7T 7mShQZS8ufV/xQcnpzu9xL6HH5M9jBvW -----END CERTIFICATE-----Generated at Sat Dec 6 17:07:14 2025 by rpki-client