This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft File: CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft (raw, json) Hash identifier: XpiXraLtCvSEtpGIlNH5ZKWpquYaiU3igjiPyzF/i4M= Subject key identifier: 40:97:D4:8F:17:D5:CC:68:CA:9A:24:BE:FD:74:C9:91:45:89:6F:C2 Authority key identifier: 09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD Certificate issuer: /CN=A91937EA/serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Certificate serial: 06FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft Manifest number: 06FC Signing time: Sat 06 Dec 2025 20:52:57 +0000 Manifest this update: Sat 06 Dec 2025 20:52:56 +0000 Manifest next update: Sat 13 Dec 2025 20:52:56 +0000 Files and hashes: 1: CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl (hash: lblplxUYXLq7BWFZZpdFwy5efmZBdjNtP4kxls5ZJ00=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Dec 2025 20:52:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1790 (0x6fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91937EA, serialNumber=0911E99AADF664F039929CABBB4874A3A161CAAD Validity Not Before: Dec 6 20:52:56 2025 GMT Not After : Dec 13 20:52:56 2025 GMT Subject: CN=693497a8-084f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:60:00:5d:fa:0e:25:c1:26:99:6a:d4:6b: 6d:12:e0:c3:3a:61:a3:10:74:8e:cc:61:1a:73:34: ea:a5:6c:d9:88:99:23:20:4b:0e:ed:86:9f:6e:6c: 89:db:fa:de:03:57:78:08:96:f1:70:da:6d:12:1c: 26:aa:79:d0:72:14:bf:1b:16:96:3c:cc:16:3f:6d: be:ec:89:cf:16:49:aa:27:e8:83:d3:6a:c2:fb:9a: 9e:22:6d:84:b0:9a:42:f3:ed:0e:56:7e:77:9c:c0: df:20:c7:44:04:b3:cf:e9:e4:5e:ef:8f:61:19:86: 92:25:db:32:ff:42:60:a8:95:6f:1e:57:49:af:2a: 96:bc:87:f0:78:17:2c:4f:f8:e6:41:94:22:cb:fc: 38:2c:71:70:57:33:f9:6e:a6:16:5f:f5:cc:87:27: e3:10:f7:6f:5b:08:2f:8c:7a:eb:26:7b:d8:51:9b: ef:42:7d:db:81:82:7a:2c:e8:da:df:0f:6e:d7:8e: 4e:cc:d3:17:00:cd:f2:c8:af:9c:f7:4c:ff:76:92: b7:e6:dd:a6:e7:ff:ad:58:4d:5f:dd:b7:32:96:5e: 30:88:89:31:82:7c:0a:55:e6:06:87:8a:17:1a:59: 17:05:e9:d6:4f:27:94:e3:4b:1f:ff:7d:a1:81:2d: 9d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:97:D4:8F:17:D5:CC:68:CA:9A:24:BE:FD:74:C9:91:45:89:6F:C2 X509v3 Authority Key Identifier: keyid:09:11:E9:9A:AD:F6:64:F0:39:92:9C:AB:BB:48:74:A3:A1:61:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CRHpmq32ZPA5kpyru0h0o6Fhyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91937EA/1E9656306A5911EBA3641C3DC4F9AE02/CRHpmq32ZPA5kpyru0h0o6Fhyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:e3:83:a7:65:9c:d7:2f:20:62:a2:10:a1:41:04:5a:f1:94: 27:77:26:e5:9e:e8:b5:13:f9:f2:27:ab:39:04:c3:cf:e1:67: 5f:01:04:c1:92:4f:72:56:d5:d3:99:4c:76:92:48:73:33:c5: 33:15:4b:47:14:74:75:12:d0:5f:5b:79:14:88:7d:6a:7c:ad: 63:98:ef:a6:f7:e2:6c:04:1a:c5:bd:be:38:67:83:73:8c:cf: 48:29:f1:7e:50:31:0f:2f:c4:c2:ba:0c:97:17:a1:c7:b0:a0: 85:f5:80:c9:ff:f7:ab:29:0f:52:58:0f:e9:ca:72:f3:8a:41: 26:39:47:5e:a9:17:2b:6e:77:03:5b:4b:37:74:ed:88:f4:86: 9c:dd:dd:91:7a:ff:f1:59:7e:ac:53:2e:57:35:7d:89:9e:2c: ce:91:79:9c:ec:1f:31:8e:e7:62:31:b1:34:71:1c:9b:47:53: 57:86:c8:90:7d:24:87:34:1b:0b:46:03:3e:02:85:36:a8:ce: cf:2b:00:e5:1c:f2:6b:1c:64:6c:82:54:4b:48:f8:96:05:2a: 13:ab:7b:8a:a1:99:32:0b:9f:09:be:24:97:7c:73:7b:c8:b4: be:02:40:89:07:41:3d:8b:0c:92:f0:b7:56:97:3c:98:52:06: a2:8f:8c:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM3RUExMTAvBgNVBAUTKDA5MTFFOTlBQURGNjY0RjAzOTkyOUNBQkJCNDg3NEEz QTE2MUNBQUQwHhcNMjUxMjA2MjA1MjU2WhcNMjUxMjEzMjA1MjU2WjAYMRYwFAYD VQQDEw02OTM0OTdhOC0wODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZFgAF36DiXBJplq1GttEuDDOmGjEHSOzGEaczTqpWzZiJkjIEsO7YafbmyJ 2/reA1d4CJbxcNptEhwmqnnQchS/GxaWPMwWP22+7InPFkmqJ+iD02rC+5qeIm2E sJpC8+0OVn53nMDfIMdEBLPP6eRe749hGYaSJdsy/0JgqJVvHldJryqWvIfweBcs T/jmQZQiy/w4LHFwVzP5bqYWX/XMhyfjEPdvWwgvjHrrJnvYUZvvQn3bgYJ6LOja 3w9u145OzNMXAM3yyK+c90z/dpK35t2m5/+tWE1f3bcyll4wiIkxgnwKVeYGh4oX GlkXBenWTyeU40sf/32hgS2dJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFECX1I8X 1cxoypokvv10yZFFiW/CMB8GA1UdIwQYMBaAFAkR6Zqt9mTwOZKcq7tIdKOhYcqt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzdFQS8xRTk2NTYzMDZB NTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQQTVrcHlydTBoMG82Rmh5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NSSHBtcTMyWlBBNWtweXJ1MGgwbzZGaHlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MzdFQS8xRTk2NTYzMDZBNTkxMUVCQTM2NDFDM0RDNEY5QUUwMi9DUkhwbXEzMlpQ QTVrcHlydTBoMG82Rmh5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/44OnZZzXLyBiohChQQRa8ZQndyblnui1E/nyJ6s5BMPP4WdfAQTB kk9yVtXTmUx2kkhzM8UzFUtHFHR1EtBfW3kUiH1qfK1jmO+m9+JsBBrFvb44Z4Nz jM9IKfF+UDEPL8TCugyXF6HHsKCF9YDJ//erKQ9SWA/pynLzikEmOUdeqRcrbncD W0s3dO2I9Iac3d2Rev/xWX6sUy5XNX2JnizOkXmc7B8xjudiMbE0cRybR1NXhsiQ fSSHNBsLRgM+AoU2qM7PKwDlHPJrHGRsglRLSPiWBSoTq3uKoZkyC58JviSXfHN7 yLS+AkCJB0E9iwyS8LdWlzyYUgaij4y4 -----END CERTIFICATE-----Generated at Sun Dec 7 00:57:54 2025 by rpki-client