This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: pcS+n6ISKFZeCvW5jgOiy7bBENWVwpCdVpE5yArNXRc= Subject key identifier: 04:D7:58:FC:F6:7D:E7:2C:A8:3B:26:0B:1A:32:C1:A2:DF:5E:29:E4 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 357A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 3528 Signing time: Thu 04 Dec 2025 14:17:10 +0000 Manifest this update: Thu 04 Dec 2025 14:17:10 +0000 Manifest next update: Thu 11 Dec 2025 14:17:10 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: s96ZN5/REL1PwiZTgJ+4F6+W/ALRm3Ub2eqfOjkiTTc=) 2: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: jqW67pSJSIsRiaBgE6s/DK3BAL3JeM6fk0sbod9Ihss=) 3: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 4: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: tqonfMb2T4kEzGLFTTW3PK/xQqepl87jr8dA78s4VGI=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: D48/pxU7MzDuerY2hyHqIJz8Ni5AYoPlrPyxeWvQn8M=) 7: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: H76rrDZxK8h/g51b1krAIQ2ulCKuPO82m4joCbnFfEs=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: kN3zyoollwJXDugnYM0yHLk48cRpRCSo426eiI4jnbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Dec 2025 14:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13690 (0x357a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Dec 4 14:17:10 2025 GMT Not After : Dec 11 14:17:10 2025 GMT Subject: CN=693197e6-1662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b3:9e:3d:4b:25:40:c2:fe:46:43:d6:c5:b6: 89:48:f0:14:86:ba:b3:08:c6:5d:d6:a4:d4:a3:e2: 5e:da:19:b3:77:1c:76:1a:3b:71:04:cc:fe:d1:5f: 78:f2:7c:b2:ed:1b:12:28:e6:da:b2:38:54:42:49: 5c:70:7c:55:07:48:06:f2:ee:48:d3:b6:60:52:04: 77:44:4e:55:86:68:3c:4a:3c:4e:ce:51:26:9f:1f: 5c:cd:1a:2b:31:f7:28:f0:e7:d2:89:1c:a6:90:72: 57:c5:1d:14:c2:dc:08:25:68:d7:01:71:2b:b7:0c: f0:32:83:9e:bc:05:eb:17:7b:8f:99:23:69:9f:51: 39:bd:29:13:60:4b:07:c1:50:fb:e9:c0:d4:e6:0f: 3f:d5:09:65:35:fa:46:6c:05:db:79:ad:1b:1c:f4: 93:66:3e:3c:3f:2b:09:7e:1b:18:f9:18:e6:e5:fa: 4b:06:d9:95:c2:2f:f0:e0:36:87:db:ef:25:45:85: 6c:21:39:ca:f8:3d:6d:52:79:28:71:fd:4d:3f:bf: 3e:8c:1d:5e:63:48:c0:ed:06:0a:03:e9:af:da:80: c8:9a:82:4d:e6:f3:73:0e:4d:26:3a:a9:20:ec:4f: 08:1d:8d:0d:a2:e5:df:a1:05:5c:f6:fd:69:35:47: 90:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D7:58:FC:F6:7D:E7:2C:A8:3B:26:0B:1A:32:C1:A2:DF:5E:29:E4 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:c3:29:bc:a4:3e:d3:75:dd:5a:7b:75:86:51:32:f0:45:a4: 95:ca:30:6f:75:f1:52:38:83:e8:45:64:ae:61:c4:e2:33:cb: 2f:88:d7:87:b4:17:ab:20:0e:67:e7:0a:f0:07:91:36:d7:5e: 92:29:97:e7:09:de:c0:78:df:8d:c3:ad:7f:75:6c:d0:95:93: d8:67:f3:f7:a5:26:fe:e1:4c:9b:8e:a6:48:e8:c9:d2:dd:79: b4:58:e7:23:75:7c:d7:0a:9c:c4:27:53:71:bd:94:d0:88:4a: 7e:ac:b9:51:b2:99:fe:18:87:17:6b:05:3b:75:fa:a0:2e:72: 61:2a:fa:5a:78:7f:04:84:73:0b:e2:5a:4c:d4:5b:8d:9d:7c: 6a:b0:56:9b:7f:75:9c:a3:c7:d6:f2:dd:7f:26:22:8d:b7:16: a3:b6:b3:09:1c:37:96:bf:b3:e6:8e:a7:fe:62:42:9d:0c:b1: 3d:8b:c9:7d:1b:36:b2:84:97:56:4b:49:55:b8:82:dd:53:fb: 79:4f:bd:29:ca:dd:d4:49:17:a2:45:56:76:40:c0:6c:44:57: 1e:44:5b:58:25:87:ab:84:92:cd:7b:41:4f:17:d2:a7:ea:ab: e0:47:9b:d0:91:3d:9f:71:26:3c:16:97:90:80:49:42:7d:57: f8:fc:7f:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjUxMjA0MTQxNzEwWhcNMjUxMjExMTQxNzEwWjAYMRYwFAYD VQQDEw02OTMxOTdlNi0xNjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbOePUslQML+RkPWxbaJSPAUhrqzCMZd1qTUo+Je2hmzdxx2GjtxBMz+0V94 8nyy7RsSKObasjhUQklccHxVB0gG8u5I07ZgUgR3RE5Vhmg8SjxOzlEmnx9czRor Mfco8OfSiRymkHJXxR0UwtwIJWjXAXErtwzwMoOevAXrF3uPmSNpn1E5vSkTYEsH wVD76cDU5g8/1QllNfpGbAXbea0bHPSTZj48PysJfhsY+Rjm5fpLBtmVwi/w4DaH 2+8lRYVsITnK+D1tUnkocf1NP78+jB1eY0jA7QYKA+mv2oDImoJN5vNzDk0mOqkg 7E8IHY0NouXfoQVc9v1pNUeQDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATXWPz2 fecsqDsmCxoywaLfXinkMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNwym8pD7Tdd1ae3WGUTLwRaSVyjBvdfFSOIPoRWSuYcTiM8sviNeH tBerIA5n5wrwB5E2116SKZfnCd7AeN+Nw61/dWzQlZPYZ/P3pSb+4UybjqZI6MnS 3Xm0WOcjdXzXCpzEJ1NxvZTQiEp+rLlRspn+GIcXawU7dfqgLnJhKvpaeH8EhHML 4lpM1FuNnXxqsFabf3Wco8fW8t1/JiKNtxajtrMJHDeWv7Pmjqf+YkKdDLE9i8l9 GzayhJdWS0lVuILdU/t5T70pyt3USReiRVZ2QMBsRFceRFtYJYerhJLNe0FPF9Kn 6qvgR5vQkT2fcSY8FpeQgElCfVf4/H/q -----END CERTIFICATE-----Generated at Sat Dec 6 09:17:20 2025 by rpki-client