This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: rfAtOQAx7Yi5FrQNL4DeLGpTC6y9/r2AcjZifMH/IjM= Subject key identifier: 5F:B5:E6:FF:71:87:D8:E8:25:4B:61:1C:CF:6E:78:58:D7:84:77:2F Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: F3 Signing time: Fri 05 Dec 2025 03:21:22 +0000 Manifest this update: Fri 05 Dec 2025 03:21:22 +0000 Manifest next update: Fri 12 Dec 2025 03:21:22 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: OZ6f4QDXHBDNtSSrahUk1j2k4F5WRNnEXuprQL8d9eQ=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 9MXU4baBCAJAJy9aPNxn57TypL0yxNcRqoUsf2K4Xic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 03:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Dec 5 03:21:22 2025 GMT Not After : Dec 12 03:21:22 2025 GMT Subject: CN=69324fb2-5252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e4:98:b5:41:20:00:83:84:13:06:aa:cf:45: 7c:55:eb:00:b6:99:0c:fe:3f:96:4a:fc:ec:ca:02: 6a:18:85:76:9e:71:01:3a:46:e1:60:1d:e3:24:3f: c9:34:6f:83:52:4b:1b:0c:0d:fc:fe:4c:8a:e6:00: d7:22:6b:73:28:9c:0f:5d:ea:96:7f:dd:34:d6:0a: 89:fb:5c:67:ee:7e:8c:e9:82:04:f5:50:e6:d1:eb: 56:e5:03:03:5d:db:c9:53:14:b5:49:70:8d:4d:96: d0:43:08:23:a9:32:cc:44:58:e6:c9:78:4a:5b:63: a3:57:23:94:63:70:22:99:97:37:04:7b:a9:b5:5d: 5c:a0:8a:ba:93:34:7d:f9:ab:b2:c4:d4:0d:f4:51: 80:d0:63:7e:1a:e8:dc:87:e7:da:9c:73:a0:a2:2f: 5f:71:98:2c:91:97:ff:67:1a:71:51:1f:25:84:82: 85:8b:83:09:1f:57:0a:af:4e:32:71:9b:26:0d:4a: a9:7e:01:95:4b:c1:e5:7f:93:3c:5f:25:9e:24:0e: 9c:83:bf:a5:0a:69:6a:2f:00:4c:2f:06:3d:25:21: 7c:de:96:97:42:73:4c:87:b0:72:06:85:d3:ab:18: 67:4a:3e:eb:c8:3f:63:5f:81:4d:f9:da:f3:31:22: 86:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B5:E6:FF:71:87:D8:E8:25:4B:61:1C:CF:6E:78:58:D7:84:77:2F X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:fb:c8:d4:63:7d:e0:bd:f1:33:fb:67:ec:31:19:cb:9f:ae: 2e:ff:08:0a:b2:4f:b5:c3:b8:75:07:26:31:7d:11:c8:46:47: 96:f8:ed:12:d0:6a:62:0c:36:be:38:f0:e0:54:6e:6c:80:b7: f7:05:6f:c0:eb:31:f1:d8:01:c0:5f:cd:4d:15:5f:71:01:fd: ac:78:fa:2e:56:0d:07:aa:75:72:5d:2b:60:2f:75:ec:c9:91: dd:ae:75:e2:fd:7b:be:8d:8f:4e:10:91:73:2f:4e:bc:f0:09: 34:e3:d3:e4:23:f4:09:fd:0b:cc:ff:38:97:61:a2:b0:3f:ba: 90:22:52:9a:1b:13:89:f7:e6:ef:ef:82:8d:4f:ac:54:85:b1: 72:25:f7:b4:82:cd:98:66:68:5e:11:d1:33:18:d2:c5:ae:05: d9:f8:bc:33:a2:5c:67:90:67:b2:b9:c0:49:6c:b5:be:20:fc: a4:b2:2e:fa:ea:b8:70:20:3f:22:54:48:f8:85:ed:94:e0:60: 28:4e:84:a8:5d:7f:c6:ea:d9:0b:da:aa:07:00:5d:9c:c5:db: 49:f2:ee:df:0b:c4:d2:27:69:ba:ac:a2:e5:dc:ff:f3:a7:fb: dd:89:c5:0c:20:cb:ba:5d:59:31:45:75:3f:57:98:97:b6:d9: 8f:8d:53:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUxMjA1MDMyMTIyWhcNMjUxMjEyMDMyMTIyWjAYMRYwFAYD VQQDEw02OTMyNGZiMi01MjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreSYtUEgAIOEEwaqz0V8VesAtpkM/j+WSvzsygJqGIV2nnEBOkbhYB3jJD/J NG+DUksbDA38/kyK5gDXImtzKJwPXeqWf9001gqJ+1xn7n6M6YIE9VDm0etW5QMD XdvJUxS1SXCNTZbQQwgjqTLMRFjmyXhKW2OjVyOUY3AimZc3BHuptV1coIq6kzR9 +auyxNQN9FGA0GN+Gujch+fanHOgoi9fcZgskZf/ZxpxUR8lhIKFi4MJH1cKr04y cZsmDUqpfgGVS8Hlf5M8XyWeJA6cg7+lCmlqLwBMLwY9JSF83paXQnNMh7ByBoXT qxhnSj7ryD9jX4FN+drzMSKGoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+15v9x h9joJUthHM9ueFjXhHcvMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT+8jUY33gvfEz+2fsMRnLn64u/wgKsk+1w7h1ByYxfRHIRkeW+O0S 0GpiDDa+OPDgVG5sgLf3BW/A6zHx2AHAX81NFV9xAf2sePouVg0HqnVyXStgL3Xs yZHdrnXi/Xu+jY9OEJFzL0688Ak049PkI/QJ/QvM/ziXYaKwP7qQIlKaGxOJ9+bv 74KNT6xUhbFyJfe0gs2YZmheEdEzGNLFrgXZ+LwzolxnkGeyucBJbLW+IPyksi76 6rhwID8iVEj4he2U4GAoToSoXX/G6tkL2qoHAF2cxdtJ8u7fC8TSJ2m6rKLl3P/z p/vdicUMIMu6XVkxRXU/V5iXttmPjVNi -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:49 2025 by rpki-client