This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft File: 40gJvFtFT8eZSH_u2tcCEkAkYjo.mft (raw, json) Hash identifier: effopouRoYkN+XhUrU7iW1jMpan4A2mUrTaQKC5GGw4= Subject key identifier: 81:24:81:A1:40:4E:18:90:2E:E5:85:6E:2F:9D:88:AD:98:39:D6:D4 Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0C1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft Manifest number: 0C0F Signing time: Thu 04 Dec 2025 18:12:16 +0000 Manifest this update: Thu 04 Dec 2025 18:12:15 +0000 Manifest next update: Thu 11 Dec 2025 18:12:15 +0000 Files and hashes: 1: 40gJvFtFT8eZSH_u2tcCEkAkYjo.crl (hash: WK3IbZezRYHSvNk4Rdvr2BMM2Btsqhr8aPE5PxD3TCI=) 2: 783907BC225E11EA8BD18A62C4F9AE02.roa (hash: Myi9k4IrBdVLRWD9OtQqLIwtmIphhX+YDXYJBcNy/bw=) 3: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (hash: MyUFtJY4lLof0Zwtdhx7AIg2aYopA1OEBl/K6VizYaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 18:12:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9, serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Validity Not Before: Dec 4 18:12:15 2025 GMT Not After : Dec 11 18:12:15 2025 GMT Subject: CN=6931ceff-5fa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:08:c4:9d:d9:45:cb:c1:e7:80:d5:37:ad:66: 56:1e:da:a7:c8:3b:60:7d:fe:7d:b7:8a:ea:6c:5a: 4d:14:cc:88:d4:43:46:72:49:39:8b:03:9f:ea:1d: 76:1a:92:29:b4:61:93:15:1f:9e:47:3c:2e:6c:99: 15:b8:1b:a1:de:b1:68:f7:ff:83:3e:1c:69:59:6e: b1:16:90:1b:99:6e:ef:61:22:81:33:90:d5:cc:49: 2d:83:7b:8a:55:aa:af:91:70:74:61:39:42:45:53: b0:89:4b:40:5b:52:b0:8e:60:3f:f0:1a:31:8b:23: c2:76:76:59:b7:c3:78:80:f8:3a:a8:ae:f3:c9:0b: f0:60:12:5f:39:34:3a:68:d8:06:53:19:4d:58:42: b5:e8:5d:a7:a7:18:0c:d2:27:49:7b:3f:ef:d9:4b: ca:11:dc:72:c9:d9:ad:3a:cb:0a:77:e8:d2:e8:9c: 03:e5:be:e4:0d:a4:84:52:56:e7:b4:57:41:b2:5d: 06:f3:f2:54:3d:38:fc:57:62:f3:b2:1b:63:80:0c: 96:3e:39:ea:be:e8:2f:2c:9b:30:d5:98:91:03:ba: d2:ff:d9:83:5f:dd:e0:91:83:cd:66:a5:a0:88:1e: f5:c1:a9:b2:28:e1:e8:95:63:88:84:da:0b:51:d1: a5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:24:81:A1:40:4E:18:90:2E:E5:85:6E:2F:9D:88:AD:98:39:D6:D4 X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:a1:2d:3a:75:63:f1:08:5f:42:4e:4d:38:01:50:c3:b9:3f: 6e:bb:b5:82:1e:99:7c:7c:c0:39:37:dd:b9:36:6b:f8:88:d4: ee:43:7d:72:5b:37:ea:15:70:46:63:57:df:d5:72:d5:68:be: e3:c8:5a:8b:a4:1b:ac:33:be:b9:99:af:17:dd:68:5b:58:4d: 29:78:0d:24:a8:bc:b8:6f:88:60:92:2d:43:ea:92:45:c0:0e: 46:25:43:05:df:2d:7a:f3:d9:59:0a:4b:85:2c:41:c1:c1:52: a0:71:89:24:63:58:f9:db:7b:cd:e3:ca:48:5e:82:3a:bb:7e: 53:04:40:2f:f5:96:e3:a5:2a:95:de:fc:8c:17:98:20:19:a8: af:14:57:6c:30:b3:90:84:20:38:d0:ae:f5:e6:c5:a8:e5:85: f6:38:d8:f5:79:85:d1:47:ee:d2:fc:59:1e:5f:62:55:a1:e6: 90:21:c9:99:b0:ef:d6:25:98:a6:76:02:84:3c:06:df:19:cb: af:6a:f7:b8:3b:93:25:ee:c3:e8:cc:a9:d7:85:30:68:cf:6d: 48:23:60:ef:96:39:e3:a3:0a:4b:ee:03:50:a6:bf:6d:57:86: 03:0e:76:5d:60:f3:02:a0:fb:95:12:d4:e9:c4:d5:1a:f2:33: f2:e8:dd:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjUxMjA0MTgxMjE1WhcNMjUxMjExMTgxMjE1WjAYMRYwFAYD VQQDEw02OTMxY2VmZi01ZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AjEndlFy8HngNU3rWZWHtqnyDtgff59t4rqbFpNFMyI1ENGckk5iwOf6h12 GpIptGGTFR+eRzwubJkVuBuh3rFo9/+DPhxpWW6xFpAbmW7vYSKBM5DVzEktg3uK VaqvkXB0YTlCRVOwiUtAW1KwjmA/8BoxiyPCdnZZt8N4gPg6qK7zyQvwYBJfOTQ6 aNgGUxlNWEK16F2npxgM0idJez/v2UvKEdxyydmtOssKd+jS6JwD5b7kDaSEUlbn tFdBsl0G8/JUPTj8V2LzshtjgAyWPjnqvugvLJsw1ZiRA7rS/9mDX93gkYPNZqWg iB71wamyKOHolWOIhNoLUdGllQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEkgaFA ThiQLuWFbi+diK2YOdbUMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzRDOS82NzM2MDI0QTIyNUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4 ZVpTSF91MnRjQ0VrQWtZam8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuoS06dWPxCF9CTk04AVDDuT9uu7WCHpl8fMA5N925Nmv4iNTuQ31y WzfqFXBGY1ff1XLVaL7jyFqLpBusM765ma8X3WhbWE0peA0kqLy4b4hgki1D6pJF wA5GJUMF3y1689lZCkuFLEHBwVKgcYkkY1j523vN48pIXoI6u35TBEAv9ZbjpSqV 3vyMF5ggGaivFFdsMLOQhCA40K715sWo5YX2ONj1eYXRR+7S/FkeX2JVoeaQIcmZ sO/WJZimdgKEPAbfGcuvave4O5Ml7sPozKnXhTBoz21II2DvljnjowpL7gNQpr9t V4YDDnZdYPMCoPuVEtTpxNUa8jPy6N3U -----END CERTIFICATE-----Generated at Sat Dec 6 19:30:39 2025 by rpki-client