This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft File: M_iOrx5M4PGhh31J75fA5_7cA5o.mft (raw, json) Hash identifier: IMIIfib35UX6b3JFm3J5BEZQXrXSVTn9Sr3q5wjryk4= Subject key identifier: B3:70:57:7F:57:F6:B6:FB:F2:D6:AE:A3:82:32:C7:5D:B2:16:07:3E Authority key identifier: 33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A Certificate issuer: /CN=A91758DF/serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Certificate serial: 04F2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft Manifest number: 04E7 Signing time: Sat 06 Dec 2025 19:45:22 +0000 Manifest this update: Sat 06 Dec 2025 19:45:22 +0000 Manifest next update: Sat 13 Dec 2025 19:45:22 +0000 Files and hashes: 1: M_iOrx5M4PGhh31J75fA5_7cA5o.crl (hash: eE9glgF3JeUtXgZZV5DkvZG85H0jbCS6VCCaVeElx2c=) 2: E763AA76A3E811EC8665D621C4F9AE02.roa (hash: trLJfSwyymOYXghPy0PGh0ipgzAzEgwWMLJxE/C/bWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 19:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1266 (0x4f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Validity Not Before: Dec 6 19:45:22 2025 GMT Not After : Dec 13 19:45:22 2025 GMT Subject: CN=693487d2-3aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a8:bf:d6:16:7a:6e:a5:7e:82:c0:d3:44:71: 40:0b:5f:86:73:47:8e:23:58:d4:0a:b4:21:40:6a: cb:ea:8c:20:91:ac:f3:55:06:c0:83:6f:bd:53:54: 13:84:b0:6f:41:79:e2:4d:8f:42:02:fc:49:d6:27: 57:20:fb:56:37:d0:17:7f:29:d6:b4:6a:8a:9a:98: 1e:f8:ce:59:71:5f:d9:4b:01:50:23:f8:50:75:f0: 77:fc:4e:7e:26:ee:ca:33:4a:ee:68:73:2a:54:b1: 4e:17:8d:41:72:e4:ae:05:d5:66:75:3c:5a:64:79: 9a:ee:2a:f3:ca:e3:86:48:7e:47:a4:5d:f6:2b:97: 90:f6:9f:a1:9a:95:e9:cd:c0:9c:cd:9c:69:99:5e: de:d5:52:66:6c:23:6e:27:61:6b:57:a8:0f:3a:2c: de:98:a5:12:4c:82:a4:f9:d8:6d:58:19:7e:d6:c0: 0a:35:22:8c:a1:2c:28:46:bd:73:97:1d:d2:d9:4b: 75:d5:76:75:34:0f:2c:5c:b2:d1:df:fd:35:57:f2: 56:a4:5c:bb:36:04:71:8f:7b:b6:00:b3:cf:6c:97: 33:f3:58:89:6b:7e:92:bb:a0:6e:cc:2c:36:f1:41: 43:68:00:e8:1e:63:c1:af:00:fa:4f:c0:a8:f2:cc: 5f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:70:57:7F:57:F6:B6:FB:F2:D6:AE:A3:82:32:C7:5D:B2:16:07:3E X509v3 Authority Key Identifier: keyid:33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ff:9e:dd:a8:40:7d:44:a1:15:8e:22:34:8c:d7:26:51:28: f2:50:7e:e4:ea:87:b3:79:c0:4e:4a:c4:63:9f:b3:de:5b:e1: 06:28:51:98:c9:6c:7e:b7:bc:eb:99:19:4e:6d:d5:c6:ed:3b: 76:43:98:7f:8f:4a:f9:e3:5d:9b:b6:aa:7a:dd:c7:c5:b9:b6: 56:ce:ae:ba:14:94:40:2c:8a:58:f9:09:ad:0d:9b:3c:f5:27: 25:05:09:76:1a:b5:70:23:b7:a5:37:17:91:eb:39:0f:ae:26: 3e:59:c3:b0:7f:0f:22:fb:ff:23:ef:e1:44:d9:99:d8:b8:bf: aa:97:79:02:da:30:bb:3c:74:de:3e:65:48:56:90:f6:2d:a7: d4:0f:8f:e4:d1:cf:d1:dd:0e:c7:b7:f0:ee:74:78:e0:18:75: dd:dd:b7:a2:01:31:c6:7f:63:99:73:02:a2:ba:0e:ec:3e:58: 43:9d:4d:0a:27:da:7f:b9:4b:c6:7d:ae:22:b7:b3:c7:74:20: bb:b6:50:e6:a1:72:c3:cd:6d:68:93:71:f0:50:24:14:7b:f8: 99:de:08:23:a3:06:d2:90:75:94:bf:a9:04:10:bc:20:96:f0: 8e:74:e3:1f:1b:d7:4a:d9:a8:67:5e:a7:67:c5:03:ef:d7:a1: f5:d4:0b:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDMzRjg4RUFGMUU0Q0UwRjFBMTg3N0Q0OUVGOTdDMEU3 RkVEQzAzOUEwHhcNMjUxMjA2MTk0NTIyWhcNMjUxMjEzMTk0NTIyWjAYMRYwFAYD VQQDEw02OTM0ODdkMi0zYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qi/1hZ6bqV+gsDTRHFAC1+Gc0eOI1jUCrQhQGrL6owgkazzVQbAg2+9U1QT hLBvQXniTY9CAvxJ1idXIPtWN9AXfynWtGqKmpge+M5ZcV/ZSwFQI/hQdfB3/E5+ Ju7KM0ruaHMqVLFOF41BcuSuBdVmdTxaZHma7irzyuOGSH5HpF32K5eQ9p+hmpXp zcCczZxpmV7e1VJmbCNuJ2FrV6gPOizemKUSTIKk+dhtWBl+1sAKNSKMoSwoRr1z lx3S2Ut11XZ1NA8sXLLR3/01V/JWpFy7NgRxj3u2ALPPbJcz81iJa36Su6BuzCw2 8UFDaADoHmPBrwD6T8Co8sxfvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNwV39X 9rb78tauo4Iyx12yFgc+MB8GA1UdIwQYMBaAFDP4jq8eTODxoYd9Se+XwOf+3AOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi84NjczNjA4MDQ3 RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQR2hoMzFKNzVmQTVfN2NB NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01faU9yeDVNNFBHaGgzMUo3NWZBNV83Y0E1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThERi84NjczNjA4MDQ3RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQ R2hoMzFKNzVmQTVfN2NBNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ/57dqEB9RKEVjiI0jNcmUSjyUH7k6oezecBOSsRjn7PeW+EGKFGY yWx+t7zrmRlObdXG7Tt2Q5h/j0r5412btqp63cfFubZWzq66FJRALIpY+QmtDZs8 9SclBQl2GrVwI7elNxeR6zkPriY+WcOwfw8i+/8j7+FE2ZnYuL+ql3kC2jC7PHTe PmVIVpD2LafUD4/k0c/R3Q7Ht/DudHjgGHXd3beiATHGf2OZcwKiug7sPlhDnU0K J9p/uUvGfa4it7PHdCC7tlDmoXLDzW1ok3HwUCQUe/iZ3ggjowbSkHWUv6kEELwg lvCOdOMfG9dK2ahnXqdnxQPv16H11AsZ -----END CERTIFICATE-----Generated at Sun Dec 7 08:12:54 2025 by rpki-client